openssl: update 3.2.1, enable PAC/BTI, Fix deps in Makefile

• lib/accellerated: update asm and enable PAC/BTI

Update the asm sources generated from devel/openssl which have the BTI and PAC support. Add the -mbranch-protection=standard build flag to the generated sources. On older machines that don't have support, the options are in the NOP space and will be NOP'd, on architectures with support the instructions are executed as expected.

Note that this updates the ELF GNU NOTES section to indicate that BTI and PAC are enabled. For BTI this must be in all the ELF files loaded and linked or the feature is disabled as all execution segments need it.

readelf -n ./lib/.libs/libgnutls.so

Displaying notes found in: .note.gnu.property Owner Data size Description GNU 0x00000010 NT_GNU_PROPERTY_TYPE_0 Properties: AArch64 feature: BTI, PAC

Signed-off-by: Bill Roberts bill.roberts@arm.com

• cfg.mk: add common headers used for asm gen

The common headers are needed when generating the assembly, so make them depencies of the build target.

• openssl: update 3.2.1

Signed-off-by: Bill Roberts bill.roberts@arm.com

Checklist

• Commits have Signed-off-by: with name/author being identical to the commit author
• Code modified for feature
• (N/A Tests present) Test suite updated with functionality tests
• (N/A Tests present) Test suite updated with negative tests
• Documentation updated / NEWS entry present (for non-trivial changes)
• CI timeout is 2h or higher (see Settings/CICD/General pipelines/Timeout)

Reviewer's checklist:

• Any issues marked for closing are addressed
• There is a test suite reasonably covering new functionality or modifications
• Function naming, parameters, return values, types, etc., are consistent and according to CONTRIBUTION.md
• This feature/change has adequate documentation added
• No obvious mistakes in the code