Your suggested change has been received. Thank you.

close

Suggest A Change

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

Thales Logo

All

  • All
back

Release Notes

Release Note for CTE v7.8.0 for AIX

search

Please Note:

Release Note for CTE v7.8.0 for AIX

Release Note Version Date
v7.8.0.24 2025-06-17

This release of CipherTrust Transparent Encryption (CTE) for AIX fixes known defects and addresses known vulnerabilities.

Resolved Issues

  • AGT-18086: Display P8 in-core cryptography support with vmsec check_hwenc

    In Linux, vmsec check_hwenc displays if AES-NI is supported or not. In an IBM POWER system, AES-NI is not supported on POWER. In AIX, this command now displays if P8 in-core cryptography is available. It previously displayed check_hwenc not supported on this platform.

  • AGT-45431: stat(2) generates ERROR message when debug.all.on is set

    The error message was unnecessary so it was removed.

  • AGT-63194: Server went to HUNG state during the NAS encryption

    In a previous fix, thales added a call to an AIX kernel function from a service thread. The thread environment was not configured properly. This led to the hang/crash. This issue has been fixed.

  • AGT-63279: CTE did not skip the .snapshot directory during Data Transformation

    This is a backup directory that is read-only so CTE should not be altering it. This has been fixed.

    Note

    If the user changes the key used to create the snapshot, they must keep track of which key was used for each version of the .snapshot. You can only restore the snapshot files with the same key that was used to transform it.

  • AGT-63289: Unable to Register CTE Client

    An OpenSSL installation that changed the default configuration caused register_host to fail. The solution was to ignore any OpenSSL environment variables during registration.

  • AGT-64739: Schedule upgrade on reboot, on a system with no agent installed, fails

    The AIX agent is acting as designed and expected. If there is no agent installed, then with the -u switch, one would expect the agent to be installed, but not started until the system was rebooted. Also, if the agent is installed with a "-u" switch and there is a subsequent install of a later version, the install completes as an upgrade, but the agent does not start until a reboot. This is what is expected. Thales has modified the description of the -u install switch to clarify it's action, which is, to schedule an upgrade on reboot on a system with no agent**

Known Issues

  • AGT-48611: AIX upgrade from 7.1.0.33 to 7.5.0.25 with existing GuardPoints causes IO to hang when DSM is used as Key Manager

    This issue occurs when using DSM as the key manager with CTE/VTE v6.4.9 or a previous version.

    Work-around

    Restart the agent or reboot the machine.

Note

This issue does not occur when:

  • Using CipherTrust Manager as the key manager

  • Using DSM as the key manager with CTE/VTE v6.4.10 or a subsequent version

End of Life

Due to the end of life status of DSM, CTE no longer ships with VMSSC.

On this page