Ubuntu
openssl package

[20.04 FEAT] OpenSSL: Support for CPACF enhancements - part 1

Bug #1853150 reported by bugproxy
14
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Ubuntu on IBM z Systems
Fix Released
High
Canonical Foundations Team
openssl (Ubuntu)
Fix Released
Undecided
Skipper Bug Screeners

Bug Description

openssl - support of CPACF enhancements

commit ids (apply bottom to top):

s390x assembly pack: cleanse only sensitive fields
https://github.com/openssl/openssl/commit/2281be2ed4a7df462677661d30b13826ae6b3e26

s390x assembly pack: fix OPENSSL_s390xcap z15 cpu mask
https://github.com/openssl/openssl/commit/ac037dc874a721ca81a33b4314e26cef4a7e8d48

s390x assembly pack: fix msa3 stfle bit detection
https://github.com/openssl/openssl/commit/b3681e2641999be6c1f70e66497fe384d683a07e

Fix 9bf682f which broke nistp224_method
https://github.com/openssl/openssl/commit/653b883b97f72a15d35d21246696881aa65311e2

OPENSSL_s390xcap.pod: list msa9 facility bit (155)
https://github.com/openssl/openssl/commit/3ded2288a45d2cc3a27a1b08d29499cbcec52c0e

s390x assembly pack: accelerate ECDSA
https://github.com/openssl/openssl/commit/58c35587eacba090414522a6506cb86f2d0e91af

Enable curve-spefific ECDSA implementations via EC_METHOD
https://github.com/openssl/openssl/commit/9bf682f62bd819d2fbceb95eeabd61dd4532240f

s390x assembly pack: accelerate scalar multiplication
https://github.com/openssl/openssl/commit/1461e66706f24da657d7322706d1165ae515533f

s390xcpuid.pl: fix comment
https://github.com/openssl/openssl/commit/9baa4d5f4c9f596faba2b3e219b367a09c472d1d

s390x assembly pack: update OPENSSL_s390xcap(3)
https://github.com/openssl/openssl/pull/9258/commits/bfd2d995f917b5bf248cd8955849eb985f057457

s390x assembly pack: add support for pcc and kma instructions
https://github.com/openssl/openssl/pull/9258/commits/f56e1510f6fcee4682dbf4ddc5e04f4a477654d7

bugproxy (bugproxy)
tags: added: architecture-s39064 bugnameltc-182226 severity-high targetmilestone-inin2004
Changed in ubuntu:
assignee: nobody → Skipper Bug Screeners (skipper-screen-team)
affects: ubuntu → linux (Ubuntu)
Frank Heimes (fheimes)
affects: linux (Ubuntu) → openssl (Ubuntu)
Revision history for this message
Frank Heimes (fheimes) wrote :

Looks like all patches are pretty new, since they are not yet tagged to an upstream release.

Changed in ubuntu-z-systems:
status: New → Triaged
importance: Undecided → High
Frank Heimes (fheimes)
Changed in ubuntu-z-systems:
assignee: nobody → Canonical Foundations Team (canonical-foundations)
Revision history for this message
Dimitri John Ledkov (xnox) wrote :

It would be nice to maintain a public git repo of 1.1.1-Stable+z-backports branch somewhere. I have backported the previous set of things. I will try to backport these on top of the previous ones, but this is starting to become hairy.

Revision history for this message
bugproxy (bugproxy) wrote : Comment bridged from LTC Bugzilla

------- Comment From <email address hidden> 2020-01-20 09:40 EDT-------
Hi,

backports for openssl's 1.1.1 branch are available on my ecc111 branch:

https://github.com/p-steuer/openssl/commits/ecc111

Francis Ginther (fginther)
tags: added: id-5e1cbe12e32ba43046a65ce6
Frank Heimes (fheimes)
Changed in ubuntu-z-systems:
status: Triaged → In Progress
Revision history for this message
Frank Heimes (fheimes) wrote :

The s390x ECC assembly pack improvements landed in package openssl version 1.1.1d-2ubuntu4
and we have version 1.1.1d-2ubuntu6 in the focal release pocket,
hence changing the status of this ticket to Fix Released.

Changed in openssl (Ubuntu):
status: New → Fix Released
Changed in ubuntu-z-systems:
status: In Progress → Fix Released
information type: Private → Public
Revision history for this message
bugproxy (bugproxy) wrote :

------- Comment From <email address hidden> 2020-03-12 06:19 EDT-------
IBM Bugzilla status -> closed, Fix Released with focal

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.