libzfs_crypto.c doesn't need to use pkcs11_getrandom
While investigating #11613, it was also noticed that libzfs_crypto is using pkcs11_get_random(). There is no reason to do this when we have getrandom(2). Note we still need to use PKCS#11 for the PBKDF2 support (though perhaps it would be useful to move that to libsoftcrypto, but that should be a separate ticket).
Updated by Electric Monk about 1 year ago
- Status changed from New to Closed
- % Done changed from 0 to 100
commit 4a3c0cdaf405cda95f1af235054ff0d94cd926c9 Author: Jason King <email@example.com> Date: 2019-08-27T00:15:43.000Z 11613 libzfs_crypto doesn't need to use kmfapi.h 11614 libzfs_crypto.c doesn't need to use pkcs11_getrandom Reviewed by: Toomas Soome <firstname.lastname@example.org> Reviewed by: Andrew Stormont <email@example.com> Approved by: Gordon Ross <firstname.lastname@example.org>