There was a discussion of this topic recently on the ASSEMBLER list or
on IBM-MAIN,
I don't recall exactly, on which list.
Things are worse, IIRC; there is no operation exception, but:
you get a specification exception 0C6, which is not explained in the PoOp,
and the 0C6 means that the cipher/encipher feature is not activated on that
particular machine, because it was exported to a foreign country first.
There are reasons for 0C6 like wrong parameter to the KxM instructions,
but there is the reason outlined above, too, which is not mentioned in
the PoOp.
IIRC, you need help from an IBM engineer to get the feature activated on the
particular machine.
(everybody would understand the 0C1, but not the 0C6)
Kind regards
Bernd
Am 04.02.2014 20:41, schrieb Tony Thigpen:
I work with a company that buys and sells z9's here in the US and uses
them in our DR facility.
We have handled 2 different z9s that were delivered originally in the US
that did NOT have the feature installed. Use of the KLM instructions
returned an "operation exception" on both boxes.
Tony Thigpen
-----Original Message -----
From: Robert Ngan
Sent: 02/04/2014 01:50 PM
I vaguely remember seeing references that IBM machines shipped to some
countries are missing the cryptographic features due to export
restrictions.
Does anyone know if disablement of the cryptographic functions
affects the
SHA functions of the KIMD/KLMD instructions? Or can I assume that if
the
machine is a z9 or higher, the SHA-1 function at a minimum will be
available?
Basically, if we require our software to be run on z9 or later hardware,
can we ship software that uses KLMD with the SHA-1 function and not
have it
fail due to that function not being available?
And no, I really don't want to dual path the code with my own
implementation of SHA-1 when I can't use KLMD.
Robert Ngan
CSC Financial Services Group
