Bug ID: 6665548 convert pkcs11 mechanism to corresponding key generation mechanism

Bug ID	6665548
Synopsis	convert pkcs11 mechanism to corresponding key generation mechanism
State	10-Fix Delivered (Fix available in build)
Category:Subcategory	solaris-crypto:other
Keywords
Responsible Engineer	Dina Kurktchi
Reported Against
Duplicate Of
Introduced In
Commit to Fix	snv_85
Fixed In	snv_85
Release Fixed	solaris_nevada(snv_85)
Related Bugs	6440054
Submit Date	20-February-2008
Last Update Date	12-March-2008
Description	When an application needs to generate a key to use for encryption with some pkcs11 mechanism, it also needs a way to find the key generation mechanism associated with that encryption mechanism. While it is possible to hard code the key gen mechanism, for example, if using CKM_AES_CBC the key gen mech is CKM_AES_KEY_GEN, that approach isn't very flexible. If the number of mechanisms supported grows, it also creates a maintenance issue. As the number of crypto-enabled applications also grows, the maintenance problem is compounded. Implementing the mapping centrally solves the problem once for any app that may need to use it.
Work Around	Hard code what you need, add to it as you need.
Comments	N/A

OpenSolaris