openssl-ibmca-2.1.1-3.3.1<>,4Tap9|a>QzD;pd}~yY2W]7"fѸ4X@m SЧ_R+7Id]Q!<"]^9Ϊ,y u^mo"6o.W8*IbXc9)شǹQ/Y)KhZ)͏ i)-.3-jǑώu^Ae3ZJpc+jn>zstB5q~F1h bfgy6Om>B*?*d  =  .\bhQ 8  L  `    R  \    4\ 8( b8 l9 : >%@%F%G%4 H%\ I% X%Y%\% ]% ^&jb'5c'd(fe(kf(nl(pu( v(w) x) y) z*$*4*8*>*Copenssl-ibmca2.1.13.3.1The IBMCA OpenSSL dynamic engineThis package contains a shared object OpenSSL dynamic engine for the IBM eServer Cryptographic Accelerator (ICA).as390zl34zSUSE Linux Enterprise 15SUSE LLC Apache-2.0https://www.suse.com/Hardware/Otherhttps://github.com/opencryptoki/openssl-ibmcalinuxs390x#Original fix for bsc#942839 was to update on first install #For bsc#966139 update if openssl_def not found SSLCNF=/etc/ssl/openssl.cnf SSLSMP=/usr/share/openssl-ibmca/openssl-ibmca.cnf # If the openssl.cnf file has already been modified to point to our configuration file, # don't re-modify it, just exit. if ! grep -q openssl-ibmca/openssl-ibmca.cnf ${SSLCNF} ; then cp -p ${SSLCNF} ${SSLCNF}.orig # Insert the openssl init section sed -i -e '/^HOME/ r /usr/share/openssl-ibmca/openssl-ibmca.sectiondef.txt' /etc/ssl/openssl.cnf # Insert the engine section declaration and the .include directive sed -i -e '/^oid_section/ a \ engines = engine_section\ \ .include /usr/share/openssl-ibmca/openssl-ibmca.cnf' /etc/ssl/openssl.cnf fiif [ $1 -eq 0 ]; then # last uninstall, modify %{_sysconfdir}/openssl.cnf (bsc#942839) SSLCNF=/etc/ssl/openssl.cnf if [ -f ${SSLCNF}.orig ]; then mv ${SSLCNF}.orig ${SSLCNF} fi fiB($v.A큤A큤A큤aa^daa^daaaa"Bd17fc47fcf9a160994c105df00212ade87874f4b86553c310775427e534d2c7fc6aba3f918c52fab417b67f904c977cd0d576d407f4bd8bf3dbe9e998c549a10f5014bc31d413288283754d826d0bc68d9d235dcf912f5ef8332f7276f9abc0ff943b5c7aee57ec8d33f5baabf638230e0d5c3c4404eb21ecfc2ba93567257a9a3e8092b5c2fb7257ce3df635e9a32e2b24e19a3bd7d9dbf9dcf50f4f30979cfcb5d0e971e91f963183c306dd3532dd0820d4f01542f9901713dde988051266216d92f1e7443d7a294854168b67bd9bec6277136f25d48cf813d977283413ca4rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootopenssl-ibmca-2.1.1-3.3.1.src.rpmopenssl-ibmcaopenssl-ibmca(s390-64)@@@@@@@@@@    /bin/sh/bin/shlibc.so.6()(64bit)libc.so.6(GLIBC_2.2)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libcrypto.so.1.1()(64bit)libcrypto.so.1.1(OPENSSL_1_1_0)(64bit)libdl.so.2()(64bit)libdl.so.2(GLIBC_2.2)(64bit)libica.so.3()(64bit)libica.so.3(LIBICA_3.6.0)(64bit)libica3opensslrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.3a_a@]w@]fl]@[1[_[@[-Y@Y@X@Ww@W@V@V@V/g@V/g@T9T~@mpost@suse.commpost@suse.commpost@suse.commpost@suse.commpost@suse.commpost@suse.commpost@suse.commpost@suse.commpost@suse.commpost@suse.commpost@suse.commpost@suse.commeissner@suse.commpluskal@suse.commpost@suse.comjjolly@suse.comjjolly@suse.comjjolly@suse.comp.drouand@gmail.commeissner@suse.com- Completely revamped the postinstall scriptlet so that it doesn't need to know or care about how many lines are in either /etc/ssl/openssl.cnf, or the sample file at /usr/share/doc/packages/openssl-ibmca/openssl.cnf.sample We're now using the ".include" directive for the openssl.cnf file, and only modifying that file the minimum necessary to implement the change. (bsc#1004463) - Modified spec file to * Define a global variable enginedir the same was as IBM does instead of _ENGINE_DIR as we had been doing. * Implemented %make_build macro according to spec-cleaner * Removed the redundant "autoreconf --force --install"- Upgrade to version 2.1.1 (jsc#SLE-13709) * Bug fixes- Upgrade to version 2.1.0 (jsc#SLE-7852, jsc#SLE-7882) Add MSA9 CPACF support for X25519, X448, Ed25519 and Ed448- Upgraded to version 2.0.3 (jsc#SLE-6123, jsc#SLE-6424) * openssl-ibmca 2.0.3 Add MSA9 CPACF support for ECDSA sign/verify - Dropped obsolete openssl-ibmca-sles15sp1-Move-ERR_load-unload-to-bind_helper-resp-destroy-fun.patch - Changed the ExclusiveArch directive to include s390x only. - The code in e_ibmca.c does a dlopen for libica.so.3, instead of linking against the shared library. As a result, if the package containing libica.so.3 isn't installed, problems occur. Added a "Requires: libica3" to the spec file to fix this. (bsc#1142286) - Made a couple of changes to the spec file based on the output from spec-cleaner.- Added openssl-ibmca-sles15sp1-Move-ERR_load-unload-to-bind_helper-resp-destroy-fun.patch An Apache HTTP Server was set up with mod_ssl and the openssl ibmca engine using libica and a CEX6A card. Whenever a worker process is cleaned up a segmentation fault occurs. (bsc#1138517)- Upgraded to version 2.0.2 (Fate#325688) * openssl-ibmca 2.0.2 Fix doing rsa-me, altough rsa-crt would be possible.- Upgraded to version 2.0.1 (Fate#325688) * openssl-ibmca 2.0.1 Dont fail when a libica symbol cannot be resolved. - Made multiple changes to the spec file based on spec-cleaner output.- Upgraded to version 2.0.0 (Fate#325688) * openssl-ibmca 2.0.0 Add ECC support. Add check and distcheck make-targets. Project cleanup, code was broken into multiple files and coding style cleanup. Improvements to compat macros for openssl. Don't disable libica sw fallbacks. Fix dlclose logic. * openssl-ibmca 1.4.1 Fix structure size for aes-256-ecb/cbc/cfb/ofb Update man page Switch to ibmca.so filename to allow standalone use Switch off Libica fallback mode if available Make sure ibmca_init only runs once Provide simple macro for DEBUG_PRINTF possibility Cleanup and slight rework of function set_supported_meths - Did some cleanup to the spec file, based on spec-cleanup. - Removed the following obsolete patches: * openssl-ibmca-sles15-Switch-to-ibmca.so-filename-to-allow-a-standalone-us.patch * openssl-ibmca-sles15-Fix-lib-name-in-test-code.patch * openssl-ibmca-sles15-Update-lib-name-in-documentation.patch- Added the following patches for bsc#1097463 * openssl-ibmca-sles15-Switch-to-ibmca.so-filename-to-allow-a-standalone-us.patch * openssl-ibmca-sles15-Fix-lib-name-in-test-code.patch * openssl-ibmca-sles15-Update-lib-name-in-documentation.patch- Upgraded to version 1.4.0 * Re-license to Apache License v2.0 * Fix aes_gcm initialization. * Update man page. * Add macros for OpenSSL 0.9.8 compat. * Remove AC_FUNC_MALLOC from configure.ac * Add compat macro for OpenSSL 1.0.1e-fips. * Setting 'foreign' strictness for automake. * Add AES-GCM support. * Rework EVP_aes macros. * Remove dependency of old local OpenSSL headers. * Fix engine initialization to set function pointers only once. * Remove blank COPYING and NEWS files. * Remove INSTALL and move its content to README.md * Update README.md file to make use of markdown. * Rename README file to README.md to use markdown * Add CONTRIBUTING guidelines. * Adding coding style documentation. * Enable EVP_MD_FLAG_FIPS flag for SHA-*. * Initialize rsa_keygen in RSA_METHOD for openssl < 1.1.0 * Fix SHA512 EVP digest struct to use EVP_MD_FLAG_PKEY_METHOD_SIGNATURE when using OpenSSL 1.0 * Fix wrong parenthesis * convert libica loading to dlopen() and friends * Add support to DSO on new API of OpenSSL-1.1.0 - Removed obsolete openssl-ibmca-fix-sha512-evp-digest-to-use-evp_md_flag_pkey_method_signature.patch - Added BuildRequires for autoconf, automake, and libtool. - Updated BuildRequires for libica-devel to be >= 3.1.1- Now that the openSSL engines directory is versioned: * Modified the spec file to query the libcrypto package for which directory to install the engine into. * Removed openssl-ibmca-fix-enginepath.patch. Replaced it with a sed command so that it will provide the correct versioned engines directory - Removed openssl-ibmca-configure.patch. It doesn't seem to be needed any longer.- Added openssl-ibmca-fix-sha512-evp-digest-to-use-evp_md_flag_pkey_method_signature.patch (bsc#1032113) - Added libica-tools to the BuildRequires due to repackaging of libica. - Renamed BuildRequires from libica2-devel to libica-devel for the same reason. - Tweaked a comment to get rid of an rpmlint warning message.- fixed ssl configuration merging (bsc#1004463) - openssl-ibmca-fix-enginepath.patch: fix the engine path- Use macro for configure (fate#319941) - Use url for source - Enable parallel building - Cleanup spec file with spec-cleaner- Upgraded to version 1.3.0 (fate#319941) - Updated openssl-ibmca-configure.patch to apply cleanly - Removed obsolete patches - openssl-ibmca-README.patch - openssl-ibmca-sha256-digest-length.patch - openssl-pkey.patch - openssl-des-ede.patch - Did some spec file cleanup.- Fixed %post script to update library path (the only dynamic part of the ibmca configuration) every time the package is installed. (bsc#966139)- Updated AUTHORS, INSTALL, and README (bsc#942839) - %post and %postun added to properly update openssl.cnf (bsc#942839)- Updated to used libica2 == v2.4.2 for SLE12-SP1 (bsc#951138)- Remove dependency on fillup anf insserv; the package provides neither sysconfig file nor sysvinit script - Remove depreciated AUTHORS section - Use %configure macro - Add openssl-ibmca-configure.patch- the openssl engines moved to /%_lib/engines bnc#905480/bin/sh/bin/shs390zl34 1640155345 2.1.1-3.3.12.1.1-3.3.1ibmca.soopenssl-ibmcaREADME.mdopenssl.cnf.sampleopenssl-ibmcaLICENSEibmca.5.gzopenssl-ibmcaopenssl-ibmca.cnfopenssl-ibmca.sectiondef.txt/usr/lib64/engines-1.1//usr/share/doc/packages//usr/share/doc/packages/openssl-ibmca//usr/share/licenses//usr/share/licenses/openssl-ibmca//usr/share/man/man5//usr/share//usr/share/openssl-ibmca/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:22259/SUSE_SLE-15-SP3_Update/0a91f0cebf7e0567a4b625ffc0d3a8f5-openssl-ibmca.SUSE_SLE-15-SP3_Updatedrpmxz5s390x-suse-linuxELF 64-bit MSB shared object, IBM S/390, version 1 (SYSV), dynamically linked, BuildID[sha1]=d7363a818edc7f9c46af023f4a980319c744ad2c, strippeddirectoryASCII texttroff or preprocessor input, ASCII text (gzip compressed data, max compression, from Unix) R RRRR RRR RRLEbWMޤUoutf-8a2e24c146f8c972fbae9b08cab52cb344f1a39dfb830d21ba88517c4b03ebb8b?7zXZ !t/8]"k%n..pBE95 kTPmOA+OF_0pJ|"0+Gײ&uxVѠcSEه*ן{|zIL&X9.i lMqLF9cx=SY6-xļoB+W]Ne8͚ȮTFˆmUTD,򪗣ɓux Bh'),-]-р|BuwkkuxrP39ܦ"?1&!ydqUHN:*IzE@E𜱤mKc'~{ΠSVur($16S(Uxqc5QlϏNt&l^ROtZKP]U )S۔Ȋ10FF22gN ,bJmcD*U$ۏ-E4_] Cچv84DZ [P{Knu}R,'}xaVi6ߤ0-t$|1k}^4̜%]mފkO@WWZH@9.n95EFCr>*O^}}y 5*N9OA)3GtJ TkD+ͧ,ٸ-=^vpc^d]3z 2,CFХИnLJjh4ƎkŁ١dX%1и|?-('$vpC>җXUfblh f[ _ʩ{ 2 ^ yAl&k9\R5E3ROXߊK _q:wB(nA.9^Wf"ĸr!N1Q!jnI+u L]'#^ŀ֎2XTGKyXeo`:^w!DsM:='Rřذ Ug!?1gW%Kq"krV`Ոx7;ul3IÂKp.ĈsM#O\ҙ5.d=#AKF -K[">zpJMfMqOi6!iRuZɫNפZek? -  YZ