summaryrefslogtreecommitdiff
path: root/usr/src/uts/common/crypto/api
AgeCommit message (Collapse)AuthorFilesLines
2015-02-15OS-3845 want arc4random(3C) suiteRobert Mustacchi1-0/+11
OS-3846 want getentropy(3C) OS-3847 want getrandom(2) OS-3848 want explicit_bzero(3C) OS-3843 want MC_INHERIT_ZERO OS-3844 uuid_generate can leak its cache in edge conditions Reviewed by: Jerry Jelinek <jerry.jelinek@joyent.com> Reviewed by: Joshua M. Clulow <josh@sysmgr.org>
2013-01-14Illumos SyncJohn Sonnenschein1-25/+57
Merge github.com:illumos/illumos-gate Conflicts: usr/src/cmd/isainfo/isainfo.c usr/src/uts/common/Makefile.files usr/src/uts/common/fs/zfs/dmu.c usr/src/uts/common/fs/zfs/zvol.c usr/src/uts/common/io/mr_sas/fusion.h usr/src/uts/common/io/mr_sas/ld_pd_map.c usr/src/uts/common/io/mr_sas/ld_pd_map.h usr/src/uts/common/io/mr_sas/mr_sas.c usr/src/uts/common/io/mr_sas/mr_sas.h usr/src/uts/common/io/mr_sas/mr_sas_list.c usr/src/uts/common/io/mr_sas/mr_sas_list.h usr/src/uts/common/io/mr_sas/mr_sas_tbolt.c usr/src/uts/i86pc/io/apix/apix.c usr/src/uts/i86pc/os/intr.c usr/src/uts/intel/sys/x86_archext.h
2012-12-28995 boot message: No randomness provider enabled for /dev/randomGordon Ross1-25/+57
Reviewed by: Garrett D'Amore <garrett@damore.org> Reviewed by: Dan McDonald <danmcd@nexenta.com> Reviewed by: Hans Rosenfeld <hans.rosenfeld@nexenta.com> Reviewed by: Boris Protopopov <boris.protopopov@nexenta.com> Approved by: Garrett D'Amore <garrett@damore.org>
2011-01-12OS-110 WARNING: No randomness provider enabled for /dev/random. Use ↵jerry1-1/+3
cryptoadm(1M) to enable a provider.
2010-10-19349 hang during network boot (circular kcf dependency)Garrett D'Amore1-2/+11
Reviewed by: richlowe@richlowe.net Reviewed by: gwr@nexenta.com Reviewed by: bryancantrill@nexenta.com Approved by: gwr@nexenta.com
2010-09-126 Need open kcfdGarrett D'Amore1-46/+3
Reviewed by: gwr@nexenta.com, richlowe@richlowe.net, matt@greenviolet.net Approved by: richlowe@richlowe.net
2010-07-066966188 missing mutex_exit call if error occurs while gathering random bytesValerie Bubb Fenwick1-0/+1
2010-05-04PSARC/2010/146 EOF unnecessary elfsign and kCF optionsValerie Bubb Fenwick11-128/+101
6855881 clean up unnecessary technology from elfsign and kcf
2010-01-016719591 non-exploitable integer wraparound issue in copyin_key() [external ↵Dan OpenSolaris Anderson2-5/+5
report]
2009-12-11FWARC 2008/613 KT IOS Performance Counters APIJanie Lu1-5/+5
FWARC 2008/615 KT Perf Reg HV API FWARC 2009/434 KT IOS Performance Counters API Update FWARC 2009/567 Parallel Boot HV APIs PSARC 2009/177 Solaris support for Rainbow Falls platforms PSARC 2009/389 Sun4v faulted SP events extension PSARC 2009/533 CRYPTO_HMAC_NO_UPDATE - A new KCF SPI flag PSARC 2009/605 more sun4v platform-independent cpu/mem FMA events PSARC 2009/649 Generic PCIe root complex FMA events 6704999 extend xaui enum to work in platform independent world 6773223 RFE: guest epkt for faulted SP 6773225 RFE: Diagnosis of a faulted SP 6797776 Solaris support for Rainbow Falls platforms
2009-10-07PSARC/2009/447 Kernel Cryptographic Framework support for FIPS 140-2Anthony Scarpino1-0/+47
6703950 Solaris cryptographic framework needs to implement changes for FIPS-140-2 compliance
2009-09-246882364 networking wedged up behind blocked taskq_thread() workerKrishna Yenduri1-3/+26
2009-09-236826942 Need an optimized GCM leveraging Intel's PCMULQDQ instructionDan OpenSolaris Anderson1-4/+6
2009-09-11PSARC 2009/347 cryptoadm(1M) enhancement for FIPS-140 modeHai-May Chao1-1/+4
6787364 Administration and policy configuration changes to support FIPS 140-2 6867384 Solaris Crypto Framework needs to implement self tests for FIPS 140-2 compliance
2009-09-026786946 kcf should check the key sizes before passing a job to a providerVladimir Kotal8-98/+87
6831413 multiple SCF providers advertise wrong boundaries for CKM_DES3_{CBC,ECB}{,_PAD} key lengths
2009-05-126836582 kcf_limit_hwrng tunable can be removedKrishna Yenduri1-44/+13
2009-04-294781345 me_mutex lock in kcf_mech_entry_t can be broken upKrishna Yenduri1-16/+23
6771819 Use of atomic increment in KCF causes scaling problems on multi-socket T2 systems 6705174 C_EncryptInit scaling issues on T2plus 6813873 assertion failed: (prov_desc)->pd_refcnt != 0, file: ../../common/crypto/core/kcf_prov_tabs.c, line
2009-02-276803803 rnd_chpoll() should not reject (EINVAL) events==0Krishna Yenduri1-11/+19
2009-02-096799258 Continuous RNG test sometimes fails to compare 160-bit blocksHai-May Chao1-8/+8
2009-01-096790685 stubs for random_add_pseudo_entropy() are missingVladimir Kotal1-2/+3
2008-12-08PSARC 2007/001 lofi(7d) crypto supportDina K Nimeh1-3/+12
4926125 lofi(7d) should support encrypted block devices 6236948 need userland interface to list crypto algorithms available to kernel consumers
2008-11-066703956 Solaris cryptographic framework needs a FIPS-186-2 certifiable RNGHai-May Chao1-142/+113
2007-04-19PSARC/2007/213 Support KCF Providers with Limited Digest Capabilitykrishna2-16/+70
6473274 pkcs11_kernel should support multipart ops even for hardware that has only single part 6534615 For extra credit, dprov could make HMAC mechanisms work for PKCS #11 clients 6541772 usr/src/cmd/mdb/common/modules/crypto/sched_impl.c should not include stdlib.h 6542759 HMAC mechanisms broken in sha2 kernel module
2007-02-23PSARC/2007/093 Crypto Context sharing between providerskrishna4-53/+90
6494834 support check for threshold when using hardware providers even for multi-part requests
2007-01-046509484 Needless calls to KCF_PROV_REFHOLD() in some routineskrishna6-62/+6
2006-11-116488985 kcf_submit_request() should handle the EMPTYQ case for a hardware ↵krishna1-8/+29
provider 6478655 kcf should not log complaints as frequently as it does 6470608 /dev/urandom should provide data blocks larger then 1040 bytes 6478016 crypto_mechanism32_t should be available from sys/crypto/spi.h
2006-09-25PSARC/2006/540 Crypto event notification updatekrishna1-28/+39
6385143 Support usage of non-extractable keys 6466686 need events to support session based clients 6466693 need a routine to get provider information given a provider handle 6465847 ksslcfg reports service to be online even when there is an error 6469846 dprov needs to set CKF_LOGIN_REQUIRED
2006-05-01PSARC 2006/214 Crypto Framework random number API/SPI updatemcpowers1-12/+24
6374503 C_SeedRandom is too slow causing poor performance with Apache/OpenSSL when using pkcs11
2006-04-136399680 logical provider selects busy membermcpowers8-127/+79
2005-12-096357426 increase rndmag_threshold and rndbuf_len default valueskais1-5/+4
2005-11-14PSARC 2005/576 Support for complex cryptographic mechanismsmcpowers10-155/+2061
PSARC 2005/630 session, object, and key management kernel crypto API PSARC 2005/656 AES CTR mode for KCF PSARC 2005/659 Hiding members of KCF logical providers 4721729 Support AES Counter mode for encryption 6243992 dprov stores attributes based on data model of application 6203141 Sessions and objects management kernel crypto API 6253484 Support mechanisms with complex mech_param structures across the EF stack 6314217 Hide underlying providers of logical providers
2005-08-296266835 Increase default values of /dev/urandom's parameters for kernel SSL ↵krishna1-4/+4
needs 6300280 kcf_mech_entry_t structure is no longer aligned right 6308632 mechanism tables have holes making their real size half the intended size
2005-06-14OpenSolaris Launchstevel@tonic-gate10-0/+6445
generated by cgit v1.2.3 (git 2.39.1) at 2025-07-27 09:03:56 +0000