[PATCH libgcrypt] Disable CPU speculation-related misfeatures
Collin Funk
collin.funk1 at gmail.com
Sat Jun 14 08:40:03 CEST 2025
Jussi Kivilinna <jussi.kivilinna at iki.fi> writes:
> Do other crypto libraries do this? Surely this control should not be in library side but in
> application. Libgcrypt could be loaded by application for number of reasons and not all
> those use-cases require toggling these knobs (such as file checksumming, CRC or SHA). Even
> worse, libgcrypt might be loaded by another library and actual application may not even
> have knowledge of that. Libgcrypt might get loaded through library dependencies but
> end up not being used by application at all (except initialization, global_init, etc).
I had the same thought when I saw the patch and checked openssl. It
doesn't do it. Perhaps some others do, but I don't have them cloned to
check. :)
Collin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 832 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gcrypt-devel/attachments/20250613/09c91282/attachment.sig>
More information about the Gcrypt-devel
mailing list