[Bug 963768] New: qemu-ppc - AES support seems to be broken in emulated qemu ppc64le on x86_64
http://bugzilla.opensuse.org/show_bug.cgi?id=963768 Bug ID: 963768 Summary: qemu-ppc - AES support seems to be broken in emulated qemu ppc64le on x86_64 Classification: openSUSE Product: openSUSE Tumbleweed Version: 2015* Hardware: x86-64 OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: KVM Assignee: kvm-bugs@forge.provo.novell.com Reporter: thehejik@suse.com QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- Created attachment 663427 --> http://bugzilla.opensuse.org/attachment.cgi?id=663427&action=edit Virsh domain xml for emulated ppc64le guest Trying setup of SLES12_SP1 in emulated qemu-system-ppc64 (domain name="qemu") on x86_64 host and I'm not able to connect to SSH server running on emulated ppc64le server. sshd complains about: sshd fatal: buffer_consume_end: trying to get more bytes than in buffer [preauth] It is possible to connect by x86 or ppc client "ssh -c (blowfish|arcfour|3des)" but not possible to connect with any AES (default for ssh) encryption cipher (aes128-cbc, aes128-ctr, aes192-cbc, aes192-ctr, aes256-cbc, aes256-ctr). There is no problem with SSH connection when the ppc64le guest is virtualized on ppc by emulator="/usr/bin/qemu-system-ppc64" and domain name="kvm" (instead of name="qemu" for emulation). Seems like a bug in AES instruction implementation for qemu-ppc emulator. Problem spotted in tumbleweed with package qemu-ppc-2.4.0-2.2.x86_64 and the same problem is present in Leap. Virsh domain xml for emulated ppc64le guest in attachment. -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=963768
Tomas Hehejik
http://bugzilla.opensuse.org/show_bug.cgi?id=963768
http://bugzilla.opensuse.org/show_bug.cgi?id=963768#c1
--- Comment #1 from Tomas Hehejik
SLE_12_SP1-ppc64le-default:~ # openssl aes-256-cbc -in /etc/passwd -out ./passwd.enc enter aes-256-cbc encryption password: Verifying - enter aes-256-cbc encryption password: SLE_12_SP1-ppc64le-default:~ # openssl aes-256-cbc -d -in ./passwd.enc -out ./passwd enter aes-256-cbc decryption password: bad decrypt 70366804988176:error:06065064:digital envelope routines:EVP_DecryptFinal_ex:bad decrypt:evp_enc.c:596:
The same commands are working on x86_64 and virtualized ppc without problem. -- You are receiving this mail because: You are on the CC list for the bug.
http://bugzilla.opensuse.org/show_bug.cgi?id=963768
http://bugzilla.opensuse.org/show_bug.cgi?id=963768#c2
--- Comment #2 from Tomas Hehejik
http://bugzilla.opensuse.org/show_bug.cgi?id=963768
http://bugzilla.opensuse.org/show_bug.cgi?id=963768#c3
--- Comment #3 from Tomas Hehejik
http://bugzilla.opensuse.org/show_bug.cgi?id=963768
http://bugzilla.opensuse.org/show_bug.cgi?id=963768#c4
Michal Suchanek
participants (1)
-
bugzilla_noreply@novell.com