File: README

package info (click to toggle)
qca2 2.3.10-2
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 5,888 kB
  • sloc: cpp: 59,224; ansic: 814; perl: 133; sh: 89; makefile: 34
file content (89 lines) | stat: -rw-r--r-- 2,236 bytes parent folder | download | duplicates (6) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
 
qca-pkcs11 2.0.0 -- PKCS#11 Plug-in to QCA

ABOUT
	qca-pkcs11 enables QCA smartcard integration.

	qca-pkcs11 supports the following features:
	 - Multiple providers.
	 - Multiple tokens.
	 - Private key signature and decryption.
	 - Keystore objects serialization.
	 - Keystore update notifications.
	 - Asker integration for token and PIN.

DEPENDENCIES
	pkcs11-helper>=1.02
		http://www.opensc-project.org/

INSTALL
	For Unix/Linux/Mac:
		./configure
		make
		make install

	For Windows:
		configwin rd
		qmake
		nmake (or make)
		copy lib\*.dll qtdir\plugins\crypto

CONFIGURATION
	Configuration is stored at ~/.config/Affinix/QCA.conf, in order to
	generate default configuration use:

	$ qcatool config save qca-pkcs11

	Attributes:
		allow_load_rootca (Boolean)
			Allow loading root certificate authorities' certificate
			from token. Loading root certificates from PKCS#11 enabled
			tokens is highly insecure, as public objects can be added
			without user notice.

		allow_protected_authentication (Boolean)
			Enable/disable global protected authentication support.
			If disabled, no protected authentication will be allowed,
			even if provider supports this feature.

		pin_cache (Integer)
			Maximum PIN/session cache period in seconds.
			-1 is infinite, until provider invalidates session.

		log_level (Integer)
			Log level of pkcs11-helper, can be from 0-5.

		provider_##_enabled (Boolean)
			Provider at this index is enabled.

		provider_##_name (String)
			Provider unique friendly name.

		provider_##_library (String)
			Provider library to load.

		provider_##_allow_protected_authentication (Boolean)
			Enable protected authentication if provider supports the feature.

		provider_##_cert_private (Boolean)
			Provider stores the certificates as private objects.

		provider_##_private_mask (Integer)
			Provider private key mask:
			0	Determine automatically.
			1	Use sign.
			2	Use sign recover.
			4	Use decrypt.
			8	Use unwrap.

		provider_##_slotevent_method (String)
			auto	Determine automatically.
			trigger	Use trigger.
			poll	Use poll.

		provider_##_slotevent_timeout (Integer)
			Timeout for slotevent in poll mode.
			Specify 0 for default.

AUTHORS
	Alon Bar-Lev <alon.barlev@gmail.com>