Thanks for the info. A new patch is attached. I've included the ECC
information based on the IRC discussion.
--
Endi S. Dewata
On 5/15/2014 12:46 PM, John Magne wrote:
Edewata info about ecc params below:
thanks,
jack
----- Original Message -----
>> 3. We added support for ECC, so a couple params added to the mix (I have
>> my understanding of what they are, but it's best to ask Jack to provide
>> official info on those two) :
>>
>> +The following properties specify the key usage and which PIN user should
>> be granted.
>> +
>> +.nf
>> *+.B op.enroll.<tokenType>.keyGen.<keyType>.alg=1**
>> **+.B op.enroll.<tokenType>.keyGen.<keyType>.keySize=1024*
>> +.B op.enroll.<tokenType>.keyGen.<keyType>.keyUsage=0
>> +.B op.enroll.<tokenType>.keyGen.<keyType>.keyUser=0
>> +.fi
For ECC the keySizes we support are 256, 384. Theoretically we could do 521, but I'm
not sure we tested that yet, so just put the first two.
The algs are as follows:
ALG_EC_F2M = 4,
ALG_EC_FP = 5
These are just two different types of EC algs.
We really only support ALG_EC_FP_5 = 5 though. so you can either emphasize that or just
leave out the other one for now.