Stop using Libgcrypt 1.9.0

29

Stop using Libgcrypt 1.9.0 cryptography security lists.gnupg.org
via hanno 2 years ago | archive
Archive.org Archive.today Ghostarchive
| 6 comments

6

8

Foxboron 2 years ago | link

Fix commit: https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgcrypt.git;a=commitdiff;h=512c0c75276949f13b6373b5c04f7065af750b08

Announcement: https://lists.gnupg.org/pipermail/gnupg-announce/2021q1/000456.html

Some meta commentary: https://twitter.com/FiloSottile/status/1355124205080240131
1. 3
  
  janus 2 years ago | link
  
  That’s a great Twitter thread.
  
  I hadn’t seen the concept “distant state invariants” before, though it seems like a very useful concept!
  1. 3
    
    JoachimSchipper 2 years ago | link
    
    Yes, “distant state invariants” is indeed useful - although I tend to call it “locally correct code” (i.e. code which isn’t only correct, but where you can convince yourself it’s correct by just looking at the surrounding lines. Such code is much less likely to break under maintenance.)
4
Flow 2 years ago | link
I am frightened by the behavior and development style of (some) principal gnupg/libbcrypt developers:
1. The fix release 1.9.1 apparently did not build on x86: https://twitter.com/FiloSottile/status/1355153432081031171
2. Feature requests to use ASAN are closed: https://twitter.com/FiloSottile/status/1355194247482384392
3. It appears that even a basic CI is missing, leave alone CI runs with sanitizers and static code analysis (e.g. Facebooks infer)
I really like to switch away from gpg as fast as possible. Luckily there are already some alternatives, like https://sequoia-pgp.org/, emerging.
1. 1
  
  hjr3 2 years ago | link
  
  I would also look at age: https://github.com/FiloSottile/age
  1. 2
    
    Flow 2 years ago | link
    
    This does not seem to be OpenPGP based, which rules it out as gpg replacement.