Bug#819349: libnss3: broken AES on x32 on certain Intel CPUs
Adam Borowski
kilobyte at angband.pl
Sun Mar 27 11:50:51 UTC 2016
Package: libnss3
Version: 2:3.23-1
Severity: important
Tags: patch
User: debian-x32 at lists.debian.org
Usertags: port-x32
Hi!
I'm afraid there's a problem in the hardware AES implementation on x32 on
certain Intel CPUs. This is caught by the testsuite but only when the package
is built on one of such CPUs. This includes the vs76 buildd but none of
machines I currently have access to.
I've narrowed the problem to intel_aes_*_worker() functions in freebl, their
implementation is in nss/lib/freebl/intel-gcm-x64-masm.asm . Alas, properly
fixing this would require knowledge of obscure crypto opcodes, which I don't
possess. Here's a patch that disables this acceleration until someone with
more clue can help.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 38_x32_intel_aes.patch
Type: text/x-diff
Size: 709 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-mozilla-maintainers/attachments/20160327/99c84eb0/attachment.patch>
More information about the pkg-mozilla-maintainers
mailing list