Since this bug is fixed with openssl 3.0.8 and newer,
I'm changing the status of the current devel. release to Fix Released too
(since we are there on 3.0.10).
And with that the affected project status can be set to Fix Released, too.
Thx!
** Changed in: openssl (Ubuntu)
Status: In
This bug was fixed in the package openssl - 3.0.2-0ubuntu1.13
---
openssl (3.0.2-0ubuntu1.13) jammy; urgency=medium
* Fix (upstream): crash when using an engine for ciphers used by DRBG
(LP: #2023545)
-
Frank and Grgo, thanks for the verification. That was very helpful.
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/2023545
Title:
[UBUNTU 22.04] openssl with ibmca engine
Hi Grgo, did you also updated libssl3?
see test plan in Description:
"
- Upgrade not only the openssl package itself,
but also libssl3, before verification.
"
With that I could successfully verify.
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages,
verification on jammy was successful
** Description changed:
=== SRU information ===
[Meta]
This bug is part of a series of three bugs for a single SRU.
The "central" bug with the global information and debdiff is
http://pad.lv/2033422
[Impact]
Openssl using an engine dumps
Hello bugproxy, or anyone else affected,
Accepted openssl into jammy-proposed. The package will build now and be
available at
https://launchpad.net/ubuntu/+source/openssl/3.0.2-0ubuntu1.13 in a few
hours, and then in the -proposed repository.
Please help us by testing this new package. See
I had the update of the bug description on my todo list - it's done now.
** Description changed:
=== SRU information ===
+
[Meta]
This bug is part of a series of three bugs for a single SRU.
The "central" bug with the global information and debdiff is
http://pad.lv/2033422
> Excuse me for chiming in so late, but we can test (and even recreate)
> the situation by ourselves on our system (and we have systems with
> attached crypto hw to it).
Someone please update the bug description accordingly with a complete
description of the SRU test case.
** Changed in: openssl
Excuse me for chiming in so late, but we can test (and even recreate)
the situation by ourselves on our system (and we have systems with
attached crypto hw to it).
I just tried it on a jammy z/VM guest:
$ lszcrypt -V
CARD.DOM TYPE MODESTATUS REQUESTS PENDING HWTYPE QDEPTH FUNCTIONS
As you mention, it's difficult to test with this reproducer specifically
since it's specialized hardware and I've largely had to rely on testing
from the proxied persons who also have interests and duties in this
working well. The issue also appears without the specific hardware when
using
Adrien, we do have openssl-ibmca in the archive, for the s390x arch:
$ rmadison openssl-ibmca
openssl-ibmca | 1.3.0-0ubuntu2 | xenial/universe | source,
s390x
openssl-ibmca | 1.3.0-0ubuntu2.16.04.2 | xenial-updates/universe | source,
s390x
openssl-ibmca | 1.4.1-0ubuntu1
** Description changed:
=== SRU information ===
[Meta]
- This bug is part of a series of four bugs for a single SRU.
+ This bug is part of a series of three bugs for a single SRU.
The "central" bug with the global information and debdiff is
http://pad.lv/2033422
[Impact]
Openssl
A version containing a fix for this has been uploaded to the Jammy queue
to be processed by the SRU team. Thanks, Adrien :)
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to openssl in Ubuntu.
Hi Lucas,
Sorry, this is part of an SRU with 4 patches but that we've decided to
hold back for a bit (a few days after the current release). I've removed
ubuntu-sponsors from the "main" LP bug (link near the top of the bug
report) but not from the others. I'll do it now and I think maybe it's
Hi Adrien,
You subscribed ubuntu-sponsors, do you have any debdiff or MP to be
reviewed? Sorry, I did not find anything ready to review. Without that I
believe the best way is to unsubscribe ubuntu-sponsors until there is
something ready to be uploaded.
--
You received this bug notification
** Tags removed: foundations-todo
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/2023545
Title:
[UBUNTU 22.04] openssl with ibmca engine configured dumps core when
** Description changed:
=== SRU information ===
[Meta]
This bug is part of a series of four bugs for a single SRU.
- The "central" bug with the global information and debdiff is #2033422
+ The "central" bug with the global information and debdiff is
http://pad.lv/2033422
[Impact]
** Description changed:
=== SRU information ===
+ [Meta]
+ This bug is part of a series of four bugs for a single SRU.
+ The "central" bug with the global information and debdiff is #2033422
[Impact]
Openssl using an engine dumps core upon certificate creation; other
operations are
** Description changed:
=== SRU information ===
[Impact]
Openssl using an engine dumps core upon certificate creation; other
operations are probably affected too. Overall, engines are likely mostly
unusable.
[Test plan]
An engine is needed to test the fix and I don't think we
** Description changed:
+ === SRU information ===
+
+ [Impact]
+ Openssl using an engine dumps core upon certificate creation; other
operations are probably affected too. Overall, engines are likely mostly
unusable.
+
+ [Test plan]
+ An engine is needed to test the fix and I don't think we
Thanks a lot for taking the time to test and provide feedback. I'll
continue with the SRU process; landing will probably take a few weeks.
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to openssl in Ubuntu.
I've created a PPA for Jammy that incorporates the fix mentionned. The
details are available at
https://launchpad.net/~adrien-n/+archive/ubuntu/openssl-jammy-sru .
Could you test it and confirm your issue is solved?
--
You received this bug notification because you are a member of Ubuntu
Touch
** Also affects: openssl (Ubuntu Jammy)
Importance: Undecided
Status: New
** Also affects: openssl (Ubuntu Lunar)
Importance: Undecided
Status: New
** Changed in: openssl (Ubuntu Jammy)
Status: New => In Progress
** Changed in: openssl (Ubuntu Lunar)
Status:
** Changed in: ubuntu-z-systems
Status: New => In Progress
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/2023545
Title:
[UBUNTU 22.04] openssl with ibmca engine
** Changed in: openssl (Ubuntu)
Assignee: (unassigned) => Adrien Nader (adrien-n)
** Changed in: openssl (Ubuntu)
Milestone: None => jammy-updates
** Changed in: openssl (Ubuntu)
Status: New => In Progress
--
You received this bug notification because you are a member of Ubuntu
** Tags removed: rls-jj-incoming
** Tags added: foundations-todo
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to openssl in Ubuntu.
https://bugs.launchpad.net/bugs/2023545
Title:
[UBUNTU 22.04] openssl with ibmca engine
** Package changed: linux (Ubuntu) => openssl (Ubuntu)
** Also affects: ubuntu-z-systems
Importance: Undecided
Status: New
** Changed in: ubuntu-z-systems
Assignee: (unassigned) => Skipper Bug Screeners (skipper-screen-team)
** Changed in: openssl (Ubuntu)
Assignee: Skipper
27 matches
Mail list logo