[Bug 2036724] Re: [FFe] sync libgcrypt20 1.10.2-3 from Debian to mantic

Paride Legovini 2036724 at bugs.launchpad.net
Fri Sep 22 13:29:58 UTC 2023 

By reading Tobias' comment on the FIPS archive, looks like that dropping
disable_fips_enabled_read.patch doesn't actually make a difference in
practice, as on FIPS systems a different libgcrypt20 will be used. Is
this the case?

Technically I think this FFe is safe, but if the above is correct then
the justification for the FFe is basically missing, and should wait for
the NN cycle to sync the library. If OTOH there is a justification for
the FFe then please help us better understand it. Thanks!

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to libgcrypt20 in Ubuntu.
https://bugs.launchpad.net/bugs/2036724

Title:
  [FFe] sync libgcrypt20 1.10.2-3 from Debian to mantic

Status in libgcrypt20 package in Ubuntu:
  New

Bug description:
  To sync libgcrypt20 1.10.2-3 instead of merging, it will drop 2
  remaining changes:

  1. d/p/12_lessdeps_libgcrypt-config.diff: refresh patch offsets

     It's same as the debian package, and it can be applied successfully without
     this delta.

  2. d/p/disable_fips_enabled_read.patch
     Disable the library reading /proc/sys/crypto/fips_enabled file
     and going into FIPS mode.
     libgcrypt is not a FIPS certified library.

     I want to request FFe for this one. libgcrypt is FIPS certified library
     nowadays. So this patch is obsoleted.

  Changelog entries since current mantic version 1.10.2-2ubuntu1:

  libgcrypt20 (1.10.2-3) unstable; urgency=medium

   [ Simon Josefsson ]
   * Update Homepage: URL.

   [ Andreas Metzler ]
   * Drop --insert-timestamp linker option on mingw*, binutils 2.41 should use
     SOURCE_DATE_EPOCH automatically and the Debian package has dropped the
     patch to add the --insert-timestamp option. Closes: #1052219

   -- Andreas Metzler <ametzler at debian.org>  Tue, 19 Sep 2023 13:48:32
  +0200¬

  This new version fixes libgcrypt20 FTBFS.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libgcrypt20/+bug/2036724/+subscriptions

More information about the foundations-bugs mailing list