2
|
1 |
name = nss
|
|
2 |
|
|
3 |
slot = 2
|
|
4 |
|
|
5 |
#password = test12
|
|
6 |
|
|
7 |
library = ${nss.lib}
|
|
8 |
|
|
9 |
nssArgs = "configdir='.' certPrefix='' keyPrefix='' secmod='secmod.db'"
|
|
10 |
|
|
11 |
#forceLogin = true
|
|
12 |
|
|
13 |
attributes(*,CKO_PRIVATE_KEY,*) = {
|
|
14 |
CKA_TOKEN = true
|
|
15 |
}
|
|
16 |
|
|
17 |
attributes(import,CKO_PRIVATE_KEY,*) = {
|
|
18 |
CKA_SENSITIVE = true
|
|
19 |
CKA_EXTRACTABLE = false
|
|
20 |
}
|
|
21 |
|
|
22 |
attributes(*,CKO_PRIVATE_KEY,CKK_RSA) = {
|
|
23 |
CKA_SENSITIVE = true
|
|
24 |
CKA_EXTRACTABLE = false
|
|
25 |
# CKA_DECRYPT = true
|
|
26 |
CKA_SIGN = true
|
|
27 |
# CKA_SIGN_RECOVER = true
|
|
28 |
# CKA_UNWRAP = true
|
|
29 |
}
|
|
30 |
|
|
31 |
attributes(*,CKO_SECRET_KEY,*) = {
|
|
32 |
CKA_TOKEN = false
|
|
33 |
CKA_SENSITIVE = true
|
|
34 |
CKA_EXTRACTABLE = false
|
|
35 |
CKA_ENCRYPT = true
|
|
36 |
CKA_DECRYPT = true
|
|
37 |
# CKA_WRAP = true
|
|
38 |
# CKA_UNWRAP = true
|
|
39 |
}
|