Template Version: @(#)sac_nextcase 1.64 07/13/07 SMI
This information is Copyright 2007 Sun Microsystems
1. Introduction
    1.1. Project/Component Working Name:
	 SHA256/SHA512 crypt(3C) plugins
    1.2. Name of Document Author/Supplier:
	 Author:  Darren Moffat
    1.3  Date of This Document:
	06 November, 2007
4. Technical Description

This case provides an additional pair of crypt(3C) plugins based on the SHA256
and SHA512 digest algorithms.  It does so by implementing the interfaces
defined in PSARC/2005/426.

This algorithm was designed to provide a crypt(3C) hash that uses
FIPS 140-2 approved algorithms and move away from MD5 based hashes.
The algorithm justification/background and specification are in the case dir
as [1] and [2] the canonical references are [3] and [4] respectively.

This case does NOT change the default crypt(3C) algorithm in policy.conf(4),
that will be the subject of a future case, it does however update
CRYPT_ALGORITHMS_ALLOW for new installs but does not do so for upgrade (since
that could change an admins intended policy).

The config file /etc/security/crypt.conf is updated to add support for the
two new crypt(3C) algorithms on upgrade and new install.

This case requests patch release binding - with intent to ship in a Solaris 10
update release or as a standalone patch.

The two modules are delivered in /usr/lib/security alongside the existing
crypt(3C) plugins.

+---------- Imported Interfaces ---------------------------+
| libmd(3LIB)               |  Committed | PSARC/2005/426  |
|  SHA2Init/Update/Final    |            |                 |
+----------------------------------------------------------+

+---------- Exported Interfaces ------------------------------------+
| crypt_sha256(5)           | Committed  | Implements:              | 
| crypt(3C) algname=$5      |            | crypt_genhash_impl(3C)   |
|                           |            | crypt_gensalt_impl(3C)   |
| Package: SUNWcsl          |            | As per PSARC/2000/510    |
+-------------------------------------------------------------------+
| crypt_sha512(5)           | Committed  | Implements:              | 
| crypt(3C) algname=$6      |            | crypt_genhash_impl(3C)   |
|                           |            | crypt_gensalt_impl(3C)   |
| Package: SUNWcsl          |            | As per PSARC/2000/510    |
+-------------------------------------------------------------------+

References
1]	materials/justification-sha-crypt.html
[2]	materials/algorithm-spec.txt
[3]	http://people.redhat.com/drepper/SHA-crypt.txt
[4]	http://people.redhat.com/drepper/sha-crypt.html

6. Resources and Schedule
    6.4. Steering Committee requested information
   	6.4.1. Consolidation C-team Name:
		ON
    6.5. ARC review type: FastTrack
    6.6. ARC Exposure: open