Differential D53182

random: remove hifn(4)
ClosedPublic
Actions

Authored by obrien on Oct 18 2025, 3:49 AM.

Tags

None

Referenced Files

	Unknown Object (File)
	Mon, Nov 24, 9:24 PM

	Unknown Object (File)
	Thu, Nov 6, 10:36 PM

	Unknown Object (File)
	Nov 3 2025, 2:08 AM

	Unknown Object (File)
	Nov 2 2025, 9:03 AM

	Unknown Object (File)
	Oct 31 2025, 11:14 PM

	Unknown Object (File)
	Oct 31 2025, 6:12 AM

	Unknown Object (File)
	Oct 31 2025, 2:44 AM

	Unknown Object (File)
	Oct 31 2025, 2:20 AM

View All 34 Files

Subscribers

Details

Reviewers

Group Reviewers

Commits

rG685a78570b35: random: remove hifn(4)

Summary

The Hifn 7955 & 7956 only supports deprecated & NIST disallowed
algorithms (NIST SP800-224idp): SHA1 and SHA1-HMAC.

Furtermore the entropy RNG of the Hifn 7751, 7951, 7811, 7955,
and 7956 has no NIST Entropy Source Validation (ESV) certificate
and cannot be used in a FIPS-140-3 nor Common Criteara environment.

Furtermore the most prolific instance for FreeBSD was the
Soekris Engineering vpn1201, vpn1211, vpn1401, and vpn1411
offerings. These are all 32-bit only processors. The i386
kernel was de-supported in 15.0.

Diff Detail

Repository

rG FreeBSD src repository

Lint

Lint Skipped

Unit

Tests Skipped

Build Status

Buildable 67892
Build 64775: arc lint + arc unit

Event Timeline

obrien created this revision.Oct 18 2025, 3:49 AM

Herald added a subscriber: imp. · View Herald TranscriptOct 18 2025, 3:49 AM

obrien requested review of this revision.Oct 18 2025, 3:49 AM

Harbormaster completed remote builds in B67890: Diff 164469.Oct 18 2025, 3:49 AM

tags

Harbormaster completed remote builds in B67892: Diff 164471.Oct 18 2025, 4:10 AM

obrien mentioned this in D53181: random: remove safe(4).Oct 21 2025, 9:03 PM

Also share/man/man4/hifn.4 and any possible xrefs

embelish

Herald added a subscriber: ziaee. · View Herald TranscriptOct 22 2025, 6:51 PM

Harbormaster completed remote builds in B67999: Diff 164785.Oct 22 2025, 6:51 PM

more instances

Harbormaster completed remote builds in B68001: Diff 164788.Oct 22 2025, 7:21 PM

As with safe(4), FreeBSD itself has not yet deprecated SHA1 and SHA1-HMAC, but I think the hardware is ancient.

ObsoleteFiles.inc
54 ↗	(On Diff #164788)	Typical comment lines for drivers are this succinct (and we don't generally list FreeBSD versions in this file)

This revision is now accepted and ready to land.Oct 28 2025, 7:02 PM

s/Furtermore/Furthermore/g in the commit log btw.

obrien marked an inline comment as done.Oct 28 2025, 11:45 PM

tweak comment

This revision now requires review to proceed.Oct 28 2025, 11:45 PM

Harbormaster completed remote builds in B68203: Diff 165270.Oct 28 2025, 11:45 PM

This revision was not accepted when it landed; it landed in state Needs Review.Oct 29 2025, 6:03 AM

Closed by commit rG685a78570b35: random: remove hifn(4) (authored by obrien). · Explain Why

This revision was automatically updated to reflect the committed changes.

obrien added a commit: rG685a78570b35: random: remove hifn(4).

Revision Contents
Changeset List

Path

Size

sys/

conf/

4 lines

1 line

4 lines

dev/

hifn/

random/

fenestrasX/

3 lines

random_harvestq.c

1 line

modules/

1 line

hifn/

sys/

1 line

Diff 164471

sys/conf/NOTES

Loading...

sys/conf/files

Loading...

sys/conf/options

Loading...

sys/dev/hifn/hifn7751.c

Loading...

sys/dev/hifn/hifn7751reg.h

Loading...

sys/dev/hifn/hifn7751var.h

Loading...

sys/dev/random/fenestrasX/fx_pool.c

Loading...

sys/dev/random/random_harvestq.c

Loading...

sys/modules/Makefile

Loading...

sys/modules/hifn/Makefile

Loading...

sys/sys/random.h

Loading...