summaryrefslogtreecommitdiff
path: root/usr/src/lib/pkcs11/libpkcs11
AgeCommit message (Collapse)AuthorFilesLines
2022-03-1014443 resection manual pages per IPD4Richard Lowe1-3/+3
Reviewed by: Toomas Soome <tsoome@me.com> Reviewed by: Robert Mustacchi <rm@fingolfin.org> Reviewed by: Peter Tribble <peter.tribble@gmail.com> Reviewed by: Andy Fiddaman <andy@omnios.org> Approved by: Dan McDonald <danmcd@joyent.com>
2020-05-0412454 remove lint library machineryRichard Lowe4-43/+31
Reviewed by: Andy Fiddaman <andy@omniosce.org> Reviewed by: Gordon Ross <gwr@nexenta.com> Approved by: Dan McDonald <danmcd@joyent.com>
2019-08-1611528 Makefile.noget can get goneJohn Levon1-1/+1
11529 Use -Wno-maybe-initialized Reviewed by: Peter Tribble <peter.tribble@gmail.com> Reviewed by: Toomas Soome <tsoome@me.com> Approved by: Robert Mustacchi <rm@joyent.com>
2019-06-2511151 libpkcs11: NULL pointer errorsToomas Soome4-31/+31
Reviewed by: Jason Lippert <jason@glasspelican.ca> Reviewed by: Jason King <jbk@joyent.com> Approved by: Dan McDonald <danmcd@joyent.com>
2019-02-1310361 usr/lib - stop lint library generation and packagingAndy Fiddaman1-32/+0
Reviewed by: Jason King <jason.king@joyent.com> Reviewed by: Peter Tribble <peter.tribble@gmail.com> Reviewed by: Frederik Wessels <wessels147@gmail.com> Approved by: Dan McDonald <danmcd@joyent.com>
2019-01-1410079 smatch Makefile changes for usr/src/libJohn Levon1-0/+4
Reviewed by: Andy Fiddaman <andy@omniosce.org> Approved by: Robert Mustacchi <rm@joyent.com>
2018-12-201228 Add CCM and GCM mode support to AES in pkcs11_softtokenJason King1-3/+13
Reviewed by: Dan McDonald <danmcd@joyent.com> Reviewed by: Robert Mustacchi <rm@joyent.com> Reviewed by: Igor Kozhukhov <igor@dilos.org> Approved by: Richard Lowe <richlowe@richlowe.net>
2018-08-079698 pkcs11 C_Digest() is too restrictive in inputJason King1-3/+2
Reviewed by: Dan McDonald <danmcd@joyent.com> Reviewed by: Robert Mustacchi <rm@joyent.com> Reviewed by: Yuri Pankov <yuripv@yuripv.net> Reviewed by: Igor Kozhukhov <igor@dilos.org> Reviewed by: Matt Barden <matt.barden@nexenta.com> Approved by: Richard Lowe <richlowe@richlowe.net>
2018-08-019642 PKCS#11 softtoken should use explicit_bzeroJason King2-19/+26
Reviewed by: Yuri Pankov <yuripv@yuripv.net> Reviewed by: Andy Fiddaman <omnios@citrus-it.co.uk> Reviewed by: Ken Mays <kmays2000@gmail.com> Reviewed by: Toomas Soome <tsoome@me.com> Approved by: Dan McDonald <danmcd@joyent.com>
2018-02-229155 pkcs11: this statement may fall throughToomas Soome1-0/+1
Reviewed by: Jason King <jason.brian.king@gmail.com> Reviewed by: Sebastian Wiedenroth <sebastian.wiedenroth@skylime.net> Approved by: Richard Lowe <richlowe@richlowe.net>
2016-12-226239 Add PKCS#11 v2.40 supportJason King2-5/+1
6240 pkcs11_mech2keytype returns incorrect key type for CKM_DH_PKCS_PARAMETER_GEN Reviewed by: Dan McDonald <danmcd@omniti.com> Reviewed by: Robert Mustacci <rm@joyent.com> Reviewed by: Igor Kozhukhov <igor@dilos.org> Approved by: Richard Lowe <richlowe@richlowe.net>
2014-06-061667 pkcs11 may deadlock when multi-threaded consumers forkDan McDonald1-3/+8
Reviewed by: Garrett D'Amore <garrett@damore.org> Reviewed by: Saso Kiselkov <skiselkov.ml@gmail.com> Approved by: Gordon Ross <gordon.ross@nexenta.com>
2012-09-222933 compiler warning gags need better granularityRichard Lowe1-0/+3
Reviewed by: Eric Schrock <eric.schrock@delphix.com> Approved by: Garrett D'Amore <garrett@damore.org>
2012-02-182077 lots of unreachable breaks in illumos gateMilan Jurik1-59/+57
Reviewed by: Dan McDonald <danmcd@nexenta.com> Reviewed by: Garrett D'Amore <garrett@damore.org> Approved by: Richard Lowe <richlowe@richlowe.net>
2010-09-13188 should keep unused closed-bins out of the proto areaGarrett D'Amore2-2/+1
193 kcfd removal causes check_rtime noise 116 README mentioned non existing usr/illumos Reviewed by: richlowe@richlowe.net, gwr@nexenta.com Approved by: richlowe@richlowe.net
2010-09-126 Need open kcfdGarrett D'Amore1-261/+4
Reviewed by: gwr@nexenta.com, richlowe@richlowe.net, matt@greenviolet.net Approved by: richlowe@richlowe.net
2010-08-096974684 libpkcs11 performance can be improved with less restrictive dlopen() ↵Valerie Bubb Fenwick2-9/+14
flags 6975112 libpkcs11 shouldn't try to dlclose its own metaslot
2010-06-246916796 OSnet mapfiles should use version 2 link-editor syntaxAli Bahrami1-4/+5
--HG-- rename : usr/src/cmd/sgs/libelf/common/mapfile-common => usr/src/cmd/sgs/libelf/common/mapfile-vers rename : usr/src/cmd/sgs/link_audit/i386/mapfile-vers-bindings => usr/src/cmd/sgs/link_audit/common/mapfile-vers-bindings rename : usr/src/cmd/sgs/link_audit/i386/mapfile-vers-perfcnt => usr/src/cmd/sgs/link_audit/common/mapfile-vers-perfcnt rename : usr/src/cmd/sgs/link_audit/i386/mapfile-vers-symbindrep => usr/src/cmd/sgs/link_audit/common/mapfile-vers-symbindrep rename : usr/src/cmd/sgs/link_audit/i386/mapfile-vers-truss => usr/src/cmd/sgs/link_audit/common/mapfile-vers-truss rename : usr/src/cmd/sgs/link_audit/i386/mapfile-vers-who => usr/src/cmd/sgs/link_audit/common/mapfile-vers-who rename : usr/src/common/mapfiles/i386/map.noexdata => usr/src/common/mapfiles/common/map.noexdata rename : usr/src/lib/libaio/sparc/mapfile-vers => usr/src/lib/libaio/common/mapfile-vers rename : usr/src/lib/libelfsign/common/mapfile.map => usr/src/lib/libelfsign/common/mapfile-vers rename : usr/src/lib/libpthread/sparc/mapfile-vers => usr/src/lib/libpthread/common/mapfile-vers rename : usr/src/lib/librt/amd64/mapfile-vers => usr/src/lib/librt/common/mapfile-vers rename : usr/src/lib/libsys/sparc/mapfile-vers => usr/src/lib/libsys/common/mapfile-vers rename : usr/src/lib/libthread/sparc/mapfile-vers => usr/src/lib/libthread/common/mapfile-vers
2010-06-046948198 metaslot leaks clone_template in metaObjectManager.cDan OpenSolaris Anderson1-4/+4
2010-05-256934074 What is an ODE? Shall I compare thee, to a Makefile typo?Darren J Moffat1-7/+6
6848439 pkcs11_ObjectToKey() arg checks too strict & could be more informative 6739850 CCM fails to update data_processed_len after decrypting remainder
2010-05-04PSARC/2010/146 EOF unnecessary elfsign and kCF optionsValerie Bubb Fenwick1-1/+0
6855881 clean up unnecessary technology from elfsign and kcf
2010-03-306939103 libpkcs11 is too chatty when kcfd isn't runningValerie Bubb Fenwick1-16/+21
2010-01-126916271 Memory leak in C_DeriveKey() when using CKM_TLS_PRF mechanismDan OpenSolaris Anderson1-16/+25
2009-12-186900477 libpkcs11 needs to be friendlierValerie Bubb Fenwick1-12/+17
6903648 pInfo->libraryVersion.minor left uninitialized in pkcs11_softtoken
2009-11-056897371 cryptoadm needs changes in order to support fips-140 mode in local zonesHai-May Chao1-0/+9
6897374 Memory leaking in kernel algorithm modules and softtoken dsa with fips enabled
2009-10-07PSARC/2009/447 Kernel Cryptographic Framework support for FIPS 140-2Anthony Scarpino1-125/+157
6703950 Solaris cryptographic framework needs to implement changes for FIPS-140-2 compliance
2009-08-286842872 Race condition in fork() and C_Initialize() causes deadlock in pkcs11Zdenek Kotala1-31/+66
6862268 C_Initialize() does not correctly cleans resources when fails 6862202 token_session mutexes are not covered by at_fork handler 6862207 PKCS11 softtoken:C_Initialize() sets softtoken_initialized to TRUE also when it fails
2009-05-016560563 libpkcs11.so should handle premature library calls betterPeter Shoults2-14/+110
2009-04-106439989 CKM_CMS_SIG & WTLS missing from pkcs11_mech2str mappingAnthony Scarpino3-66/+51
6282064 C_GetSlotInfo returns CKR_SLOT_ID_INVALID when the logical provider is the only slot on the system 6177650 Wrong error code returned when key does not allow requested operation 6437677 C_GenerateKey with missing CKA_VALUE_LEN attr should fail with CKR_TEMPLATE_INCOMPLETE 6499687 softDSA.c should use a meaningful #define rather than a hard coded number 6773550 Crypto Framework is too strict when checking DSA key parameters 6815120 C_Logout with metaslot can leave metaslot object info in memory 6606384 SCF consumers crash after mechanisms are disabled using cryptoadm when using libumem 6636169 softtoken is confused by .nfs files 6636960 C_GetOperationState should fail if there is no active digest operation 6627939 functional test failure - got CKR_UNWRAPPING_KEY_TYPE_INCONSISTENT
2009-03-206666204 meta slot opens and closes /dev/urandom needlessly for every readDina K Nimeh4-55/+10
6722460 finish moving /dev/random and /dev/urandom seeding and usage to libcryptoutil
2009-02-276784451 consolidate duplicative looping_read() and looping_write() code into ↵Dina K Nimeh4-91/+17
libcryptoutil
2009-02-106798660 Cadmium .NOT file processing problem with CWD relative file pathsAli Bahrami1-2/+14
Contributed by Richard Lowe 6785284 Mapfile versioning rules need to be more visible to gatelings 6800164 Standard file exclusion mechanism needed for Cadmium tools
2009-02-096796952 bignum sparc not using optimizations in libsoftcryptoAnthony Scarpino6-53/+67
6782907 Certificate signing request (CSR) using certutil fails on T1/T2 based systems 6609549 Sun Metaslot erroneously reports CKR_SESSION_READ_ONLY for C_DestroyObject on RW session 6728680 T2000 SoftToken slot reports absent but non-removable token when .sunw directory inaccessible
2008-09-12PSARC/2008/520 SunSSH with the OpenSSL PKCS#11 engine supportJan Pechanec2-8/+14
6445288 ssh needs to be OpenSSL engine aware 6709963 SunSSH server leaks memory during initialization 6687401 ssh monitor shouldn't try to log remote IP when child closed the pipe 6696629 sshd should remove alarm signal handler after authentication 6674088 userland threshold for hw offloading makes it difficult for SSL and SSH protocols 6728450 6708125 prevents parent to use the Crypto Framework after the fork(2) 6742247 ssh debug output with PACKET_DEBUG code could be more readable
2008-08-296681527 meta_SetOperationState() doesn't return a slot session to the idle poolKrishna Yenduri1-7/+9
2008-07-186708125 metaslot leaks memory upon fork() and ↵wyllys1-1/+5
C_Initialize()/C_GetMechanismInfo() (fix core dump)
2008-07-176708125 metaslot leaks memory upon fork() and ↵wyllys1-10/+14
C_Initialize()/C_GetMechanismInfo()
2008-07-106720197 linked list handling in crypto libraries needs to be more robustvk1998391-1/+9
2008-06-076548350 pkcs11 pthread_atfork() covers insufficient locksrupertk1-10/+53
2008-03-036665767 create pkcs11 sessions based on criteria beyond just matching mechanismonnv_85dinak2-3/+108
2008-02-29PSARC/2006/610 Data Encryption Kit (SUNWcry) Removalbubbva1-15/+1
6498066 PSARC/2006/610 Data Encryption Kit (SUNWcry) Removal --HG-- rename : usr/src/common/openssl/crypto/sunw.c => deleted_files/usr/src/common/openssl/crypto/sunw.c rename : usr/src/lib/openssl/libcrypto/common/mapfile => deleted_files/usr/src/lib/openssl/libcrypto/common/mapfile rename : usr/src/lib/openssl/libcrypto_extra/Makefile => deleted_files/usr/src/lib/openssl/libcrypto_extra/Makefile rename : usr/src/lib/openssl/libcrypto_extra/Makefile.com => deleted_files/usr/src/lib/openssl/libcrypto_extra/Makefile.com rename : usr/src/lib/openssl/libcrypto_extra/amd64/Makefile => deleted_files/usr/src/lib/openssl/libcrypto_extra/amd64/Makefile rename : usr/src/lib/openssl/libcrypto_extra/i386/Makefile => deleted_files/usr/src/lib/openssl/libcrypto_extra/i386/Makefile rename : usr/src/lib/openssl/libcrypto_extra/sparc/Makefile => deleted_files/usr/src/lib/openssl/libcrypto_extra/sparc/Makefile rename : usr/src/lib/openssl/libcrypto_extra/sparcv9/Makefile => deleted_files/usr/src/lib/openssl/libcrypto_extra/sparcv9/Makefile rename : usr/src/lib/openssl/libssl_extra/Makefile => deleted_files/usr/src/lib/openssl/libssl_extra/Makefile rename : usr/src/lib/openssl/libssl_extra/Makefile.com => deleted_files/usr/src/lib/openssl/libssl_extra/Makefile.com rename : usr/src/lib/openssl/libssl_extra/amd64/Makefile => deleted_files/usr/src/lib/openssl/libssl_extra/amd64/Makefile rename : usr/src/lib/openssl/libssl_extra/i386/Makefile => deleted_files/usr/src/lib/openssl/libssl_extra/i386/Makefile rename : usr/src/lib/openssl/libssl_extra/sparc/Makefile => deleted_files/usr/src/lib/openssl/libssl_extra/sparc/Makefile rename : usr/src/lib/openssl/libssl_extra/sparcv9/Makefile => deleted_files/usr/src/lib/openssl/libssl_extra/sparcv9/Makefile rename : usr/src/lib/pkcs11/Makefile.softtoken.amd64 => deleted_files/usr/src/lib/pkcs11/Makefile.softtoken.amd64 rename : usr/src/lib/pkcs11/Makefile.softtoken.com => deleted_files/usr/src/lib/pkcs11/Makefile.softtoken.com rename : usr/src/lib/pkcs11/Makefile.softtoken.i386 => deleted_files/usr/src/lib/pkcs11/Makefile.softtoken.i386 rename : usr/src/lib/pkcs11/README.Makefiles => deleted_files/usr/src/lib/pkcs11/README.Makefiles rename : usr/src/lib/pkcs11/Makefile.softtoken.sparc => deleted_files/usr/src/lib/pkcs11/pkcs11_softtoken/Makefile.softtoken.sparc.1 rename : usr/src/lib/pkcs11/Makefile.softtoken.sparcv9 => deleted_files/usr/src/lib/pkcs11/pkcs11_softtoken/Makefile.softtoken.sparcv9.1 rename : usr/src/lib/pkcs11/pkcs11_softtoken_extra/Makefile => deleted_files/usr/src/lib/pkcs11/pkcs11_softtoken_extra/Makefile rename : usr/src/lib/pkcs11/pkcs11_softtoken_extra/Makefile.com => deleted_files/usr/src/lib/pkcs11/pkcs11_softtoken_extra/Makefile.com rename : usr/src/lib/pkcs11/pkcs11_softtoken_extra/amd64/Makefile => deleted_files/usr/src/lib/pkcs11/pkcs11_softtoken_extra/amd64/Makefile rename : usr/src/lib/pkcs11/pkcs11_softtoken_extra/i386/Makefile => deleted_files/usr/src/lib/pkcs11/pkcs11_softtoken_extra/i386/Makefile rename : usr/src/lib/pkcs11/pkcs11_softtoken_extra/sparc/Makefile => deleted_files/usr/src/lib/pkcs11/pkcs11_softtoken_extra/sparc/Makefile rename : usr/src/lib/pkcs11/pkcs11_softtoken_extra/sparcv9/Makefile => deleted_files/usr/src/lib/pkcs11/pkcs11_softtoken_extra/sparcv9/Makefile rename : usr/src/pkgdefs/SUNWcry/Makefile => deleted_files/usr/src/pkgdefs/SUNWcry/Makefile rename : usr/src/pkgdefs/SUNWcry/pkginfo.tmpl => deleted_files/usr/src/pkgdefs/SUNWcry/pkginfo.tmpl rename : usr/src/pkgdefs/SUNWcry/postinstall => deleted_files/usr/src/pkgdefs/SUNWcry/postinstall rename : usr/src/pkgdefs/SUNWcry/preremove => deleted_files/usr/src/pkgdefs/SUNWcry/preremove rename : usr/src/pkgdefs/SUNWcry/prototype_com => deleted_files/usr/src/pkgdefs/SUNWcry/prototype_com rename : usr/src/pkgdefs/SUNWcry/prototype_i386 => deleted_files/usr/src/pkgdefs/SUNWcry/prototype_i386 rename : usr/src/pkgdefs/SUNWcry/prototype_sparc => deleted_files/usr/src/pkgdefs/SUNWcry/prototype_sparc rename : usr/src/pkgdefs/SUNWcryr/Makefile => deleted_files/usr/src/pkgdefs/SUNWcryr/Makefile rename : usr/src/pkgdefs/SUNWcryr/pkginfo.tmpl => deleted_files/usr/src/pkgdefs/SUNWcryr/pkginfo.tmpl rename : usr/src/pkgdefs/SUNWcryr/postinstall => deleted_files/usr/src/pkgdefs/SUNWcryr/postinstall rename : usr/src/pkgdefs/SUNWcryr/preremove => deleted_files/usr/src/pkgdefs/SUNWcryr/preremove rename : usr/src/pkgdefs/SUNWcryr/prototype_com => deleted_files/usr/src/pkgdefs/SUNWcryr/prototype_com rename : usr/src/pkgdefs/SUNWcryr/prototype_i386 => deleted_files/usr/src/pkgdefs/SUNWcryr/prototype_i386 rename : usr/src/pkgdefs/SUNWcryr/prototype_sparc => deleted_files/usr/src/pkgdefs/SUNWcryr/prototype_sparc rename : usr/src/uts/sparc/aes256/Makefile => deleted_files/usr/src/uts/sparc/aes256/Makefile rename : usr/src/uts/sparc/arcfour2048/Makefile => deleted_files/usr/src/uts/sparc/arcfour2048/Makefile rename : usr/src/uts/sparc/blowfish448/Makefile => deleted_files/usr/src/uts/sparc/blowfish448/Makefile rename : usr/src/uts/sun4u/aes256/Makefile => deleted_files/usr/src/uts/sun4u/aes256/Makefile
2008-02-206522116 handle2session() routines can be improved in pkcs11 librarieskrishna1-16/+5
2008-01-176648799 init operation trashes mechanism parameterhaimay1-4/+50
2007-12-186566433 zpool create fails during jumpstart due to random_get_pseudo_bytes ↵krishna1-7/+9
not random 6638710 Intermittent failures using n2cp via metaslot running pk11aesperf
2007-10-126552557 provide helper function that generates pkcs#5 keys from passphrasesdinak2-12/+240
6554395 consolidate duplicated code in decrypt and digest 6607990 SUNW_C_KeyToObject fails to set wrap/unwrap capability on object created from raw key 6607994 SUNW_C_KeyToObject looks like it may destroy an object that was never created 6607998 C_GetSessionInfo never returns CKR_ARGUMENTS_BAD 6608391 consolidate code that reads key data from file
2007-09-196603976 Bulk encryptions are not offloaded to hardware in a multi-process testhaimay3-4/+35
2007-09-126602015 cryptotest dumps corehaimay1-0/+1
2007-09-076596364 pkcs11 engine cannot be used with apache due to ↵haimay2-0/+6
SSL_R_DIGEST_CHECK_FAILED error
2007-08-096482533 Threshold for HW offload via PKCS11 interfacehaimay6-21/+386
2007-06-086554408 dprov does not generate rsa keys properlyizick1-17/+22
6564309 Some operations with FreeTokens can be modified during read-only sessions. 6565934 dprov needs to support spi changes for non-keystore hardware generation and deriviation
generated by cgit v1.2.3 (git 2.39.1) at 2025-07-31 03:10:04 +0000