Release Libgcrypt 1.9.1
Closed, ResolvedPublic

Description

Noteworthy changes in version 1.9.1 (2021-01-29)

  • Bug fixes:
    • Fix exploitable bug in hash functions introduced with 1.9.0. [T5275]
    • Return an error if a negative MPI is used with sexp scan functions. [T4964]
    • Check for operational FIPS in the random and KDF functions. [T5243]
    • Fix compile error on ARMv7 with NEON disabled. [T5251]
    • Fix self-test in KDF module. [T5254]
    • Improve assembler checks for better LTO support. [T5255]
    • Fix assember problem on macOS running on M1. [T5157]
    • Support older macOS without posix_spawn. [T5159]
    • Fix 32-bit cross build on x86. [T5257]
    • Fix non-NEON ARM assembly implementation for SHA512. [T5263]
    • Fix build problems with the cipher_bulk_ops_t typedef. [T5264]
    • Fix Ed25519 private key handling for preceding ZEROs. [T5267]
    • Fix overflow in modular inverse implementation. [T5269]
    • Fix register access for AVX/AVX2 implementations of Blake2. [T5271].
  • Performance:
    • Add optimized cipher and hash functions for s390x/zSeries.
    • Use hardware bit counting functionx when available.
  • Internal changes:

(prev T4294, next T5276)

Related Objects

gniibe added a subscriber: gniibe.Jan 29 2021, 1:35 AM

I linked all related tasks for the release of 1.9.1, so that making release notes can be easier and recording information here.

Other than those, we have commits from master:

And commits from cipher-s390x-optimizations branch (through master).

Although we have fixed issues in T5264, old MacOS X build is not yet well-supported wrt T5268.

werner updated the task description. (Show Details)Jan 29 2021, 11:24 AM
werner changed the task status from Open to Testing.

Release done.

werner set External Link to https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000456.html.Jan 29 2021, 12:27 PM
werner removed Due Date.
werner closed this task as Resolved.Fri, Feb 12, 12:34 PM