176 {1, 64, CKF_SIGN|CKF_VERIFY}, /* CKM_SHA256_HMAC */
177 {1, 64, CKF_SIGN|CKF_VERIFY}, /* CKM_SHA256_HMAC_GENERAL */
178 {0, 0, CKF_DIGEST}, /* CKM_SHA384 */
179 {1, 128, CKF_SIGN|CKF_VERIFY}, /* CKM_SHA384_HMAC */
180 {1, 128, CKF_SIGN|CKF_VERIFY}, /* CKM_SHA384_HMAC_GENERAL */
181 {0, 0, CKF_DIGEST}, /* CKM_SHA512 */
182 {1, 128, CKF_SIGN|CKF_VERIFY}, /* CKM_SHA512_HMAC */
183 {1, 128, CKF_SIGN|CKF_VERIFY}, /* CKM_SHA512_HMAC_GENERAL */
184 {1, 512, CKF_SIGN|CKF_VERIFY}, /* CKM_SSL3_SHA1_MAC */
185 {0, 0, CKF_DIGEST}, /* CKM_MD5 */
186 {1, 64, CKF_SIGN|CKF_VERIFY}, /* CKM_MD5_HMAC */
187 {1, 64, CKF_SIGN|CKF_VERIFY}, /* CKM_MD5_HMAC_GENERAL */
188 {1, 512, CKF_SIGN|CKF_VERIFY}, /* CKM_SSL3_MD5_MAC */
189 {8, ARCFOUR_MAX_KEY_BITS, CKF_ENCRYPT|CKF_DECRYPT}, /* CKM_RC4; */
190 /* in bits */
191 {8, ARCFOUR_MAX_KEY_BITS, CKF_GENERATE }, /* CKM_RC4_KEY_GEN; in bits */
192 {512, 1024, CKF_SIGN|CKF_VERIFY}, /* CKM_DSA; in bits */
193 {512, 1024, CKF_SIGN|CKF_VERIFY}, /* CKM_DSA_SHA1; in bits */
194 {512, 1024, CKF_GENERATE_KEY_PAIR}, /* CKM_DSA_KEY_PAIR_GEN; */
195 /* in bits */
196 {256, 4096, CKF_ENCRYPT|CKF_DECRYPT|
197 CKF_SIGN|CKF_SIGN_RECOVER|
198 CKF_WRAP|CKF_UNWRAP|
199 CKF_VERIFY|CKF_VERIFY_RECOVER}, /* CKM_RSA_PKCS; in bits */
200 {256, 4096, CKF_GENERATE_KEY_PAIR}, /* CKM_RSA_PKCS_KEY_PAIR_GEN; */
201 /* in bits */
202 {256, 4096, CKF_ENCRYPT|CKF_DECRYPT|
203 CKF_SIGN|CKF_SIGN_RECOVER|
204 CKF_WRAP|CKF_UNWRAP|
205 CKF_VERIFY|CKF_VERIFY_RECOVER}, /* CKM_RSA_X_509 in bits */
206 {256, 4096, CKF_SIGN|CKF_VERIFY}, /* CKM_MD5_RSA_PKCS in bits */
207 {256, 4096, CKF_SIGN|CKF_VERIFY}, /* CKM_SHA1_RSA_PKCS in bits */
208 {256, 4096, CKF_SIGN|CKF_VERIFY}, /* CKM_SHA256_RSA_PKCS in bits */
209 {256, 4096, CKF_SIGN|CKF_VERIFY}, /* CKM_SHA384_RSA_PKCS in bits */
210 {256, 4096, CKF_SIGN|CKF_VERIFY}, /* CKM_SHA512_RSA_PKCS in bits */
211 {DH_MIN_KEY_LEN, DH_MAX_KEY_LEN, CKF_GENERATE_KEY_PAIR},
212 /* CKM_DH_PKCS_KEY_PAIR_GEN */
213 /* in bits */
214 {DH_MIN_KEY_LEN, DH_MAX_KEY_LEN, CKF_DERIVE},
215 /* CKM_DH_PKCS_DERIVE; */
216 /* in bits */
217 {1, 16, CKF_DERIVE}, /* CKM_MD5_KEY_DERIVATION */
218 {1, 20, CKF_DERIVE}, /* CKM_SHA1_KEY_DERIVATION */
219 {1, 32, CKF_DERIVE}, /* CKM_SHA256_KEY_DERIVATION */
220 {1, 48, CKF_DERIVE}, /* CKM_SHA384_KEY_DERIVATION */
221 {1, 64, CKF_DERIVE}, /* CKM_SHA512_KEY_DERIVATION */
222 {0, 0, CKF_GENERATE}, /* CKM_PBE_SHA1_RC4_128 */
223 {0, 0, CKF_GENERATE}, /* CKM_PKCS5_PBKD2 */
224 {48, 48, CKF_GENERATE}, /* CKM_SSL3_PRE_MASTER_KEY_GEN */
225 {48, 48, CKF_GENERATE}, /* CKM_TLS_PRE_MASTER_KEY_GEN */
226 {48, 48, CKF_DERIVE}, /* CKM_SSL3_MASTER_KEY_DERIVE */
227 {48, 48, CKF_DERIVE}, /* CKM_TLS_MASTER_KEY_DERIVE */
228 {48, 48, CKF_DERIVE}, /* CKM_SSL3_MASTER_KEY_DERIVE_DH */
229 {48, 48, CKF_DERIVE}, /* CKM_TLS_MASTER_KEY_DERIVE_DH */
230 {0, 0, CKF_DERIVE}, /* CKM_SSL3_KEY_AND_MAC_DERIVE */
|
176 {1, 64, CKF_SIGN|CKF_VERIFY}, /* CKM_SHA256_HMAC */
177 {1, 64, CKF_SIGN|CKF_VERIFY}, /* CKM_SHA256_HMAC_GENERAL */
178 {0, 0, CKF_DIGEST}, /* CKM_SHA384 */
179 {1, 128, CKF_SIGN|CKF_VERIFY}, /* CKM_SHA384_HMAC */
180 {1, 128, CKF_SIGN|CKF_VERIFY}, /* CKM_SHA384_HMAC_GENERAL */
181 {0, 0, CKF_DIGEST}, /* CKM_SHA512 */
182 {1, 128, CKF_SIGN|CKF_VERIFY}, /* CKM_SHA512_HMAC */
183 {1, 128, CKF_SIGN|CKF_VERIFY}, /* CKM_SHA512_HMAC_GENERAL */
184 {1, 512, CKF_SIGN|CKF_VERIFY}, /* CKM_SSL3_SHA1_MAC */
185 {0, 0, CKF_DIGEST}, /* CKM_MD5 */
186 {1, 64, CKF_SIGN|CKF_VERIFY}, /* CKM_MD5_HMAC */
187 {1, 64, CKF_SIGN|CKF_VERIFY}, /* CKM_MD5_HMAC_GENERAL */
188 {1, 512, CKF_SIGN|CKF_VERIFY}, /* CKM_SSL3_MD5_MAC */
189 {8, ARCFOUR_MAX_KEY_BITS, CKF_ENCRYPT|CKF_DECRYPT}, /* CKM_RC4; */
190 /* in bits */
191 {8, ARCFOUR_MAX_KEY_BITS, CKF_GENERATE }, /* CKM_RC4_KEY_GEN; in bits */
192 {512, 1024, CKF_SIGN|CKF_VERIFY}, /* CKM_DSA; in bits */
193 {512, 1024, CKF_SIGN|CKF_VERIFY}, /* CKM_DSA_SHA1; in bits */
194 {512, 1024, CKF_GENERATE_KEY_PAIR}, /* CKM_DSA_KEY_PAIR_GEN; */
195 /* in bits */
196 {RSA_MIN_KEY_LEN, RSA_MAX_KEY_LEN, CKF_ENCRYPT|CKF_DECRYPT|
197 CKF_SIGN|CKF_SIGN_RECOVER|
198 CKF_WRAP|CKF_UNWRAP|
199 CKF_VERIFY|CKF_VERIFY_RECOVER}, /* CKM_RSA_PKCS; in bits */
200 {RSA_MIN_KEY_LEN, RSA_MAX_KEY_LEN,
201 CKF_GENERATE_KEY_PAIR}, /* CKM_RSA_PKCS_KEY_PAIR_GEN; */
202 /* in bits */
203 {RSA_MIN_KEY_LEN, RSA_MAX_KEY_LEN, CKF_ENCRYPT|CKF_DECRYPT|
204 CKF_SIGN|CKF_SIGN_RECOVER|
205 CKF_WRAP|CKF_UNWRAP|
206 CKF_VERIFY|CKF_VERIFY_RECOVER}, /* CKM_RSA_X_509 in bits */
207 {RSA_MIN_KEY_LEN, RSA_MAX_KEY_LEN,
208 CKF_SIGN|CKF_VERIFY}, /* CKM_MD5_RSA_PKCS in bits */
209 {RSA_MIN_KEY_LEN, RSA_MAX_KEY_LEN,
210 CKF_SIGN|CKF_VERIFY}, /* CKM_SHA1_RSA_PKCS in bits */
211 {RSA_MIN_KEY_LEN, RSA_MAX_KEY_LEN,
212 CKF_SIGN|CKF_VERIFY}, /* CKM_SHA256_RSA_PKCS in bits */
213 {RSA_MIN_KEY_LEN, RSA_MAX_KEY_LEN,
214 CKF_SIGN|CKF_VERIFY}, /* CKM_SHA384_RSA_PKCS in bits */
215 {RSA_MIN_KEY_LEN, RSA_MAX_KEY_LEN,
216 CKF_SIGN|CKF_VERIFY}, /* CKM_SHA512_RSA_PKCS in bits */
217 {DH_MIN_KEY_LEN, DH_MAX_KEY_LEN, CKF_GENERATE_KEY_PAIR},
218 /* CKM_DH_PKCS_KEY_PAIR_GEN */
219 /* in bits */
220 {DH_MIN_KEY_LEN, DH_MAX_KEY_LEN, CKF_DERIVE},
221 /* CKM_DH_PKCS_DERIVE; */
222 /* in bits */
223 {1, 16, CKF_DERIVE}, /* CKM_MD5_KEY_DERIVATION */
224 {1, 20, CKF_DERIVE}, /* CKM_SHA1_KEY_DERIVATION */
225 {1, 32, CKF_DERIVE}, /* CKM_SHA256_KEY_DERIVATION */
226 {1, 48, CKF_DERIVE}, /* CKM_SHA384_KEY_DERIVATION */
227 {1, 64, CKF_DERIVE}, /* CKM_SHA512_KEY_DERIVATION */
228 {0, 0, CKF_GENERATE}, /* CKM_PBE_SHA1_RC4_128 */
229 {0, 0, CKF_GENERATE}, /* CKM_PKCS5_PBKD2 */
230 {48, 48, CKF_GENERATE}, /* CKM_SSL3_PRE_MASTER_KEY_GEN */
231 {48, 48, CKF_GENERATE}, /* CKM_TLS_PRE_MASTER_KEY_GEN */
232 {48, 48, CKF_DERIVE}, /* CKM_SSL3_MASTER_KEY_DERIVE */
233 {48, 48, CKF_DERIVE}, /* CKM_TLS_MASTER_KEY_DERIVE */
234 {48, 48, CKF_DERIVE}, /* CKM_SSL3_MASTER_KEY_DERIVE_DH */
235 {48, 48, CKF_DERIVE}, /* CKM_TLS_MASTER_KEY_DERIVE_DH */
236 {0, 0, CKF_DERIVE}, /* CKM_SSL3_KEY_AND_MAC_DERIVE */
|