Product SiteDocumentation Site

1.119.  libgcrypt

1.119.1.  RHEA-2009:1264: enhancement update

Updated libgcrypt packages that contain enhancements necessary for FIPS validation are now available.
The libgcrypt library provides general-purpose implementations of various cryptographic algorithms.
This updated package rebases the libgcrypt library to version 1.4.4, the current upstream version. This rebase adds the following enhancements:
  • runtime self-tests and FIPS mode setting have been added, both of which are necessary for Federal Information Processing Standards level 1 (FIPS 140-2) validation. Note: libgcrypt 1.4.4 is currently undergoing FIPS-140-2 validation. FIPS mode is disabled by default, however, to ensure the libgcrypt library maintains feature parity and ABI compatibility with libgcrypt packages previously included in Red Hat Enterprise Linux 5. The FIPS mode can be enabled with kernel command line setting or by creating an empty file, /etc/gcrypt/fips_enabled. (BZ#444803)
  • libgcrypt now works with gnutls in non-enforced FIPS mode. (BZ#462718)
libgcrypt users are advised to upgrade to the updated packages, which provides these enhancements.

Note: This documentation is provided {and copyrighted} by Red Hat®, Inc. and is released via the Open Publication License. The copyright holder has added the further requirement that Distribution of substantively modified versions of this document is prohibited without the explicit permission of the copyright holder. The CentOS project redistributes these original works (in their unmodified form) as a reference for CentOS-5 because CentOS-5 is built from publicly available, open source SRPMS. The documentation is unmodified to be compliant with upstream distribution policy. Neither CentOS-5 nor the CentOS Project are in any way affiliated with or sponsored by Red Hat®, Inc.