libzfs_crypto.c doesn't need to use pkcs11_getrandom
While investigating #11613, it was also noticed that libzfs_crypto is using pkcs11_get_random(). There is no reason to do this when we have getrandom(2). Note we still need to use PKCS#11 for the PBKDF2 support (though perhaps it would be useful to move that to libsoftcrypto, but that should be a separate ticket).
Updated by Electric Monk almost 2 years ago
- Status changed from New to Closed
- % Done changed from 0 to 100
commit 4a3c0cdaf405cda95f1af235054ff0d94cd926c9 Author: Jason King <firstname.lastname@example.org> Date: 2019-08-27T00:15:43.000Z 11613 libzfs_crypto doesn't need to use kmfapi.h 11614 libzfs_crypto.c doesn't need to use pkcs11_getrandom Reviewed by: Toomas Soome <email@example.com> Reviewed by: Andrew Stormont <firstname.lastname@example.org> Approved by: Gordon Ross <email@example.com>