[23.10 FEAT] [needs-packaging] openssl-pkcs11-sign-provider
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Ubuntu on IBM z Systems |
Fix Released
|
High
|
Skipper Bug Screeners | ||
opencryptoki (Ubuntu) |
Fix Released
|
High
|
Simon Chopin | ||
Mantic |
Won't Fix
|
Undecided
|
Unassigned | ||
Noble |
Fix Released
|
High
|
Simon Chopin |
Bug Description
openssl-
OpenSSL Provider for asymmetric signing operations with private PKCS#11 keys.
OpenSSL 3.0 replaces the engine pluging framework by a provider plugin frame work. Even though the engine framework shall remain as a deprecated framework in openSSL 3.0, Linux distributions may build openSSL without engine support.
Therefore a restricted PKCS #11 provider is required that supports signing operations via PKCS #11 for existing keys reference by an PKCS #11 object URI.
URL: https:/
License: Apache-2.0
Notes:
v1.0.0 was recently tagged: https:/
A package for FC exists as well: https:/
__________
Feature Description:
openSSL 3.0 replaces the engine pluging framework by a provider plugin frame work. Even though the engine framework shall remain as a deprecated framework in openSSL 3.0, Linux distributions may build openSSL without engine support.
Therefore a restricted PKCS #11 provider is required that supports signing operations via PKCS #11 for existing keys reference by an PKCS #11 object URI.
tags: | added: architecture-s39064 bugnameltc-201342 severity-high targetmilestone-inin2304 |
Changed in ubuntu: | |
assignee: | nobody → Skipper Bug Screeners (skipper-screen-team) |
affects: | ubuntu → linux (Ubuntu) |
summary: |
- [23.04 FEAT] openSSL: PKCS #11 provider for signing operations (crypto) + [23.10 FEAT] openSSL: PKCS #11 provider for signing operations (crypto) |
summary: |
- [23.10 FEAT] openSSL: PKCS #11 provider for signing operations (crypto) + [23.10 FEAT] [needs-packaging] openssl-pkcs11-sign-provider |
Changed in ubuntu-z-systems: | |
status: | Incomplete → Triaged |
Changed in openssl (Ubuntu): | |
status: | Incomplete → Triaged |
description: | updated |
Changed in opencryptoki (Ubuntu): | |
assignee: | Skipper Bug Screeners (skipper-screen-team) → Alexandre Erwin Ittner (aittner) |
status: | Triaged → In Progress |
Changed in ubuntu-z-systems: | |
status: | Triaged → In Progress |
information type: | Private → Public |
tags: | added: ubuntu-sponsors |
tags: |
added: pe-sponsoring-request removed: ubuntu-sponsors |
Is this feature part of a certain (minor) openssl release,
or is it required to cherrypick certain commits?