|
Packit |
549fdc |
GNUTLS { }
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
DEFINITIONS EXPLICIT TAGS ::=
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
BEGIN
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
-- This file contains parts of PKCS-1 structures and some stuff
|
|
Packit |
549fdc |
-- required for DSA keys.
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
RSAPublicKey ::= SEQUENCE {
|
|
Packit |
549fdc |
modulus INTEGER, -- n
|
|
Packit |
549fdc |
publicExponent INTEGER -- e
|
|
Packit |
549fdc |
}
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
--
|
|
Packit |
549fdc |
-- Representation of RSA private key with information for the
|
|
Packit |
549fdc |
-- CRT algorithm.
|
|
Packit |
549fdc |
--
|
|
Packit |
549fdc |
RSAPrivateKey ::= SEQUENCE {
|
|
Packit |
549fdc |
version INTEGER,
|
|
Packit |
549fdc |
modulus INTEGER, -- (Usually large) n
|
|
Packit |
549fdc |
publicExponent INTEGER, -- (Usually small) e
|
|
Packit |
549fdc |
privateExponent INTEGER, -- (Usually large) d
|
|
Packit |
549fdc |
prime1 INTEGER, -- (Usually large) p
|
|
Packit |
549fdc |
prime2 INTEGER, -- (Usually large) q
|
|
Packit |
549fdc |
exponent1 INTEGER, -- (Usually large) d mod (p-1)
|
|
Packit |
549fdc |
exponent2 INTEGER, -- (Usually large) d mod (q-1)
|
|
Packit |
549fdc |
coefficient INTEGER, -- (Usually large) (inverse of q) mod p
|
|
Packit |
549fdc |
otherPrimeInfos OtherPrimeInfos OPTIONAL
|
|
Packit |
549fdc |
}
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
ProvableSeed ::= SEQUENCE {
|
|
Packit |
549fdc |
algorithm OBJECT IDENTIFIER, -- the hash algorithm OID used for FIPS186-4 generation
|
|
Packit |
549fdc |
seed OCTET STRING
|
|
Packit |
549fdc |
}
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
OtherPrimeInfos ::= SEQUENCE SIZE(1..MAX) OF OtherPrimeInfo
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
OtherPrimeInfo ::= SEQUENCE {
|
|
Packit |
549fdc |
prime INTEGER, -- ri
|
|
Packit |
549fdc |
exponent INTEGER, -- di
|
|
Packit |
549fdc |
coefficient INTEGER -- ti
|
|
Packit |
549fdc |
}
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
-- for signature calculation
|
|
Packit |
549fdc |
-- added by nmav
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
AlgorithmIdentifier ::= SEQUENCE {
|
|
Packit |
549fdc |
algorithm OBJECT IDENTIFIER,
|
|
Packit |
549fdc |
parameters ANY DEFINED BY algorithm OPTIONAL
|
|
Packit |
549fdc |
}
|
|
Packit |
549fdc |
-- contains a value of the type
|
|
Packit |
549fdc |
-- registered for use with the
|
|
Packit |
549fdc |
-- algorithm object identifier value
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
DigestInfo ::= SEQUENCE {
|
|
Packit |
549fdc |
digestAlgorithm DigestAlgorithmIdentifier,
|
|
Packit |
549fdc |
digest OCTET STRING
|
|
Packit |
549fdc |
}
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
DigestAlgorithmIdentifier ::= AlgorithmIdentifier
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
DSAPublicKey ::= INTEGER
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
DSAParameters ::= SEQUENCE {
|
|
Packit |
549fdc |
p INTEGER,
|
|
Packit |
549fdc |
q INTEGER,
|
|
Packit |
549fdc |
g INTEGER
|
|
Packit |
549fdc |
}
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
DSASignatureValue ::= SEQUENCE {
|
|
Packit |
549fdc |
r INTEGER,
|
|
Packit |
549fdc |
s INTEGER
|
|
Packit |
549fdc |
}
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
DSAPrivateKey ::= SEQUENCE {
|
|
Packit |
549fdc |
version INTEGER, -- should be zero
|
|
Packit |
549fdc |
p INTEGER,
|
|
Packit |
549fdc |
q INTEGER,
|
|
Packit |
549fdc |
g INTEGER,
|
|
Packit |
549fdc |
Y INTEGER, -- public
|
|
Packit |
549fdc |
priv INTEGER
|
|
Packit |
549fdc |
}
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
-- from PKCS#3
|
|
Packit |
549fdc |
DHParameter ::= SEQUENCE {
|
|
Packit |
549fdc |
prime INTEGER, -- p
|
|
Packit |
549fdc |
base INTEGER, -- g
|
|
Packit |
549fdc |
privateValueLength INTEGER OPTIONAL
|
|
Packit |
549fdc |
}
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
-- ECC from RFC5480
|
|
Packit |
549fdc |
ECParameters ::= CHOICE {
|
|
Packit |
549fdc |
namedCurve OBJECT IDENTIFIER
|
|
Packit |
549fdc |
}
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
ECPrivateKey ::= SEQUENCE {
|
|
Packit |
549fdc |
Version INTEGER, -- { ecPrivkeyVer1(1) }
|
|
Packit |
549fdc |
privateKey OCTET STRING,
|
|
Packit |
549fdc |
parameters [0] ECParameters OPTIONAL,
|
|
Packit |
549fdc |
publicKey [1] BIT STRING OPTIONAL
|
|
Packit |
549fdc |
}
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
-- Structures used for the PKINIT othername variables
|
|
Packit |
549fdc |
PrincipalName ::= SEQUENCE {
|
|
Packit |
549fdc |
name-type [0] INTEGER,
|
|
Packit |
549fdc |
name-string [1] SEQUENCE OF GeneralString
|
|
Packit |
549fdc |
}
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
KRB5PrincipalName ::= SEQUENCE {
|
|
Packit |
549fdc |
realm [0] GeneralString,
|
|
Packit |
549fdc |
principalName [1] PrincipalName
|
|
Packit |
549fdc |
}
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
-- from RFC4055
|
|
Packit |
549fdc |
RSAPSSParameters ::= SEQUENCE {
|
|
Packit |
549fdc |
hashAlgorithm [0] AlgorithmIdentifier OPTIONAL, -- sha1Identifier
|
|
Packit |
549fdc |
maskGenAlgorithm [1] AlgorithmIdentifier OPTIONAL, -- mgf1SHA1Identifier
|
|
Packit |
549fdc |
saltLength [2] INTEGER DEFAULT 20,
|
|
Packit |
549fdc |
trailerField [3] INTEGER DEFAULT 1
|
|
Packit |
549fdc |
}
|
|
Packit |
549fdc |
|
|
Packit |
549fdc |
END
|