summaryrefslogtreecommitdiff
path: root/usr/src/lib/pkcs11
AgeCommit message (Collapse)AuthorFilesLines
2009-09-11PSARC 2009/347 cryptoadm(1M) enhancement for FIPS-140 modeHai-May Chao8-7/+1001
6787364 Administration and policy configuration changes to support FIPS 140-2 6867384 Solaris Crypto Framework needs to implement self tests for FIPS 140-2 compliance
2009-09-026786946 kcf should check the key sizes before passing a job to a providerVladimir Kotal2-1/+17
6831413 multiple SCF providers advertise wrong boundaries for CKM_DES3_{CBC,ECB}{,_PAD} key lengths
2009-08-286842872 Race condition in fork() and C_Initialize() causes deadlock in pkcs11Zdenek Kotala6-131/+175
6862268 C_Initialize() does not correctly cleans resources when fails 6862202 token_session mutexes are not covered by at_fork handler 6862207 PKCS11 softtoken:C_Initialize() sets softtoken_initialized to TRUE also when it fails
2009-08-196855414 Deliver SPARC support for TPMWyllys Ingersoll8-79/+147
6865428 pkcs11_tpm should be installed by default, or it won't be used
2009-08-17backout 6855414: breaks buildjmcp8-147/+76
2009-08-176855414 Deliver SPARC support for TPMWyllys Ingersoll8-76/+147
6865428 pkcs11_tpm should be installed by default, or it won't be used
2009-08-106859220 pkcs11_softoken.so crashes in RC4 when doing a java benchmarkZdenek Kotala1-4/+5
2009-07-306866515 pkcs11_tpm provider does not delete token objects correctlyWyllys Ingersoll1-1/+5
2009-07-296864230 hiho, hiho, it'ch chtime for CH to gojmcp1-3/+2
Portions contributed by Rich Lowe
2009-07-206854948 pkcs11_tpm code stomps on memoryWyllys Ingersoll1-5/+10
2009-07-176852240 libelfsign should use pkcs11_softtoken instead of OpenSSL for ↵Valerie Bubb Fenwick8-1/+340
FIPS-140 integrity checking 6851814 tools elfsign is unnecessarily linked against pkcs11_softtoken
2009-06-096837738 ssh and javaws dump core in libsoftcrypto when freeing memory under ↵Dina K Nimeh1-28/+27
libumem
2009-06-056814722 C_Digest() does not unlock session mutex which causes deadlockZdenek Kotala3-27/+54
6847226 session reference counter is not thread safe in pkcs11_kernel
2009-05-286806387 Move OpenSSL from ON to SFWMark Phalan1-1/+1
2009-05-196823591 pkcs11_kernel and pkcs11_softtoken object session reference counter ↵Zdenek Kotala13-63/+127
must to be handled after fork 6828366 pkcs11_kernel/softtoken atfork handler should acquire session objects mutex too
2009-05-186840408 Cores found when running ef test in tpm:none:amd64 modeWyllys Ingersoll4-53/+42
2009-05-056835006 pkcs11 TPM leaks memory in some cases.Wyllys Ingersoll1-7/+2
6834645 DEBUG tpm driver scares me on boot 6829606 TPM failure codes should not be part of the general fail_value message list.
2009-05-046820466 CKA_PUBLIC_EXPONENT is inconsistently optional for C_GenerateKeyPair ↵Dina K Nimeh1-3/+53
for RSA keys 6820888 CKA_MODULUS_BITS attribute is sometimes missing in pkcs11_softtoken
2009-05-016560563 libpkcs11.so should handle premature library calls betterPeter Shoults2-14/+110
2009-04-246824612 C_DestroyObject() destroys token key objects during a read only sessionWyllys Ingersoll13-466/+616
6824692 C_SeedRandom() should not suceed with null seed 6824700 C_DigestInit() should not fail if mech->ulParameterLen != 0 6824077 C_Login fails because of error codes being returned and incorrect error checking 6827617 C_SignRecover() & C_VerifyRecover() with mechanism RSA_PKCS fail in pk11asymmetrictest_test 6830264 pkcs11 TPM provider does not load on 64-bit 6831335 pkcs11_tpm provider does not handle forks and mutexes correctly.
2009-04-176767618 Need an optimized AES leveraging Intel's AES instructionsDan OpenSolaris Anderson2-4/+5
6747587 Remove redundant code in ccm.c --HG-- rename : usr/src/common/crypto/aes/amd64/THIRDPARTYLICENSE => usr/src/common/crypto/aes/amd64/THIRDPARTYLICENSE.gladman rename : usr/src/common/crypto/aes/amd64/THIRDPARTYLICENSE.descrip => usr/src/common/crypto/aes/amd64/THIRDPARTYLICENSE.gladman.descrip
2009-04-106439989 CKM_CMS_SIG & WTLS missing from pkcs11_mech2str mappingAnthony Scarpino13-128/+101
6282064 C_GetSlotInfo returns CKR_SLOT_ID_INVALID when the logical provider is the only slot on the system 6177650 Wrong error code returned when key does not allow requested operation 6437677 C_GenerateKey with missing CKA_VALUE_LEN attr should fail with CKR_TEMPLATE_INCOMPLETE 6499687 softDSA.c should use a meaningful #define rather than a hard coded number 6773550 Crypto Framework is too strict when checking DSA key parameters 6815120 C_Logout with metaslot can leave metaslot object info in memory 6606384 SCF consumers crash after mechanisms are disabled using cryptoadm when using libumem 6636169 softtoken is confused by .nfs files 6636960 C_GetOperationState should fail if there is no active digest operation 6627939 functional test failure - got CKR_UNWRAPPING_KEY_TYPE_INCONSISTENT
2009-03-206666204 meta slot opens and closes /dev/urandom needlessly for every readDina K Nimeh13-254/+61
6722460 finish moving /dev/random and /dev/urandom seeding and usage to libcryptoutil
2009-03-20PSARC 2008/725 TPM SupportWyllys Ingersoll34-1/+26294
6771298 Solaris needs a PKCS11 provider for the TPM 6771289 Solaris needs TCG support
2009-03-196812615 64-bit RC4 has poor performance on Intel NehalemDan OpenSolaris Anderson1-3/+2
2009-02-276799218 RSA using Solaris Kernel Crypto framework lagging behind OpenSSLDan OpenSolaris Anderson1-9/+8
5016936 bignumimpl:big_mul: potential memory leak 6810280 panic from bignum module: vmem_xalloc(): size == 0
2009-02-276784451 consolidate duplicative looping_read() and looping_write() code into ↵Dina K Nimeh9-357/+140
libcryptoutil
2009-02-106798660 Cadmium .NOT file processing problem with CWD relative file pathsAli Bahrami6-7/+85
Contributed by Richard Lowe 6785284 Mapfile versioning rules need to be more visible to gatelings 6800164 Standard file exclusion mechanism needed for Cadmium tools
2009-02-096796952 bignum sparc not using optimizations in libsoftcryptoAnthony Scarpino11-67/+118
6782907 Certificate signing request (CSR) using certutil fails on T1/T2 based systems 6609549 Sun Metaslot erroneously reports CKR_SESSION_READ_ONLY for C_DestroyObject on RW session 6728680 T2000 SoftToken slot reports absent but non-removable token when .sunw directory inaccessible
2008-11-14PSARC/2006/684 libsoftcryptoAnthony Scarpino27-225/+1151
4911870 pkcs11_softtoken crypto should be factored out into a new library to support $PLATFORM & $HWCAP
2008-09-266638987 soft_delete_session() clears magic_marker too soon for ↵Vladimir Kotal1-5/+9
soft_remove_object_from_session()
2008-09-256720255 soft_digest_init() memory leaks caused by digest operations on a ↵Alexandr Nedvedicky4-138/+158
system with HW crypto provider 6745244 inconsistent locking of soft_session_t mutex in soft_{get,set}_operationstate() 6748371 memcpy() wastes cycles in soft_get_operationstate()/soft_set_operationstate()
2008-09-126693650 kernel implementation of AES lacks support for >64 bits long AES counterMark Powers3-22/+16
2008-09-12PSARC/2008/520 SunSSH with the OpenSSL PKCS#11 engine supportJan Pechanec2-8/+14
6445288 ssh needs to be OpenSSL engine aware 6709963 SunSSH server leaks memory during initialization 6687401 ssh monitor shouldn't try to log remote IP when child closed the pipe 6696629 sshd should remove alarm signal handler after authentication 6674088 userland threshold for hw offloading makes it difficult for SSL and SSH protocols 6728450 6708125 prevents parent to use the Crypto Framework after the fork(2) 6742247 ssh debug output with PACKET_DEBUG code could be more readable
2008-09-096589063 typo in 'possiblely' in pkcs#11 kernel/soft tokenViswanathan Kannappan4-34/+28
Contributed by Deepthi Devaki A R <deepthi_05cse14@students.amrita.ac.in> and R Vidya Lakshmi <vidyalakshmi_05cse56@students.amrita.ac.in>
2008-09-086739502 attribute value length checking not always happening or returning ↵Anthony Scarpino2-8/+16
the right error msg
2008-08-296739381 memory leak in pkcs11_kernel when n2cp is used for digestsKrishna Yenduri1-11/+12
2008-08-296681527 meta_SetOperationState() doesn't return a slot session to the idle poolKrishna Yenduri1-7/+9
2008-08-036545046 pkcs11_softtoken doesn't properly strip pkcs7 paddingbubbva1-0/+5
Contributed by Derek Morr <derekmorr@psu.edu>
2008-08-016727960 C_Sign fails when using sensitive ECC private keymcpowers6-47/+63
6731694 CCM unnecessarily allocates output buffers for uio data 6731818 sparc/kcf/Makefile has commented out linkage dependency
2008-07-246559619 Enhance n2cp to support CCM modemcpowers12-85/+346
6637487 put algorithm mode code and other common code into kcf module 6648214 need CKM_AES_CTR for softtoken --HG-- rename : usr/src/common/crypto/aes/aes_cbc_crypt.c => deleted_files/usr/src/common/crypto/aes/aes_cbc_crypt.c rename : usr/src/common/crypto/aes/aes_cbc_crypt.h => deleted_files/usr/src/common/crypto/aes/aes_cbc_crypt.h rename : usr/src/common/crypto/blowfish/blowfish_cbc_crypt.c => deleted_files/usr/src/common/crypto/blowfish/blowfish_cbc_crypt.c rename : usr/src/common/crypto/blowfish/blowfish_cbc_crypt.h => deleted_files/usr/src/common/crypto/blowfish/blowfish_cbc_crypt.h rename : usr/src/common/crypto/des/des_cbc_crypt.c => deleted_files/usr/src/common/crypto/des/des_cbc_crypt.c rename : usr/src/common/crypto/des/des_cbc_crypt.h => deleted_files/usr/src/common/crypto/des/des_cbc_crypt.h
2008-07-186708125 metaslot leaks memory upon fork() and ↵wyllys1-1/+5
C_Initialize()/C_GetMechanismInfo() (fix core dump)
2008-07-176708125 metaslot leaks memory upon fork() and ↵wyllys1-10/+14
C_Initialize()/C_GetMechanismInfo()
2008-07-156723237 libcryptoutil should allow mechanism number "0x80000000" (the value ↵da730241-2/+2
of marker CKM_VENDOR_DEFINED)
2008-07-106705398 kernel_get_operationstate() returns CKR_FUNCTION_NOT_SUPPORTED when ↵krishna1-6/+15
no operation is active
2008-07-106720197 linked list handling in crypto libraries needs to be more robustvk1998391-1/+9
2008-07-024947627 improve libcrypto string/mechanism conversion functions in edge casesda730241-13/+25
5031131 perf: pkcs11_kernel can benefit from a more efficient pkcs11_mech2str()
2008-06-135072963 Need an optimized AES implementation for amd64da730241-7/+15
6699938 CCM max payload computation is off by one 6704653 THIRDPARTYLICENSE fixes for open source crypto source --HG-- rename : usr/src/common/crypto/arcfour/amd64/THIRDPARTYLICENSE => deleted_files/usr/src/common/crypto/arcfour/amd64/THIRDPARTYLICENSE rename : usr/src/common/crypto/arcfour/amd64/THIRDPARTYLICENSE.descrip => deleted_files/usr/src/common/crypto/arcfour/amd64/THIRDPARTYLICENSE.descrip rename : usr/src/common/crypto/sha1/amd64/THIRDPARTYLICENSE => deleted_files/usr/src/common/crypto/sha1/amd64/THIRDPARTYLICENSE rename : usr/src/common/crypto/sha1/amd64/THIRDPARTYLICENSE.descrip => deleted_files/usr/src/common/crypto/sha1/amd64/THIRDPARTYLICENSE.descrip rename : usr/src/common/crypto/sha2/amd64/THIRDPARTYLICENSE => deleted_files/usr/src/common/crypto/sha2/amd64/THIRDPARTYLICENSE rename : usr/src/common/crypto/sha2/amd64/THIRDPARTYLICENSE.descrip => deleted_files/usr/src/common/crypto/sha2/amd64/THIRDPARTYLICENSE.descrip
2008-06-076548350 pkcs11 pthread_atfork() covers insufficient locksrupertk7-14/+269
2008-05-066494306 need single source for bignum codefr412797-121/+122
--HG-- rename : usr/src/uts/sun4u/rsa/Makefile => deleted_files/usr/src/uts/sun4u/rsa/Makefile rename : usr/src/uts/sun4u/rsa/mont_mulf.s => usr/src/common/bignum/sun4u/mont_mulf_kernel_v9.s rename : usr/src/uts/intel/rsa/Makefile.32 => usr/src/uts/intel/bignum/Makefile.32 rename : usr/src/uts/intel/rsa/Makefile.64 => usr/src/uts/intel/bignum/Makefile.64
generated by cgit v1.2.3 (git 2.39.1) at 2025-08-01 19:19:05 +0000