Libgcrypt is a general purpose cryptography library used for GnuPG2.
For more information see the project home page:
https://gnupg.org/software/libgcrypt/
The following packages have been upgraded in the Cygwin distribution:
- libgcrypt-devel 1.12
- libgcrypt20 1.12
As there are multiple changes each release, see the link or list of
changes below, or read /usr/share/doc/libgcrypt/NEWS after installation;
for complete details of changes read /usr/share/doc/libgcrypt/ChangeLog
after installation.
https://dev.gnupg.org/T7643
2026-01-29 1.12
New and extended interfaces:
- Allow access to the FIPS service indicator via the new
GCRYCTL_FIPS_SERVICE_INDICATOR control code.
- Add GCRYCTL_FIPS_REJECT_NON_FIPS control code.
- Add GCRY_FIPS_FLAG_REJECT_PK_FLAGS constant.
- Make SHA-1 non-FIPS internally for the 1.12 API.
This introduces the GCRY_FIPS_FLAG_REJECT_MD_SHA1 constant.
- Add GCRY_FIPS_FLAG_REJECT_PK_FLAGS.
- Provide macros for each KEM enum constant.
- Add Dilithium (ML-DSA) support.
- Support optional random-override and support byte string data.
Performance:
- Add VAES/AVX512 accelerated implementation for AES which boosts OCB
performance by about 2 times on AMD Zen5.
- Avoid AVX512/AVX2/SSSE3 for single block processing with Zen5 for
ChaCha20.
- Avoid AVX/AVX2/AVX512 when CPU has high vector inst latency like Zen5
for Blake2.
- Various optimizations for Camellia.
- Add POLYVAL acceleration for RISC-V and GCM-SIV.
- Add RISC-V Zbb+Zbc implementation of CRC.
- Add RISC-V vector cryptography implementation of GHASH.
- Add RISC-V vector cryptography implementation of AES.
- Add RISC-V vector cryptography implementations of SHA256 and SHA512.
- Add AVX2 and AVX512 code paths to improve CRC.
Bug fixes:
- Use secure MPI in _gcry_mpi_assign_limb_space.
- Use CSIDL_COMMON_APPDATA instead of /etc on Windows.
- Apply a Kyber patch from upstream.
- Fix an edge case in Jent initialization.
- Fix stack overflow crash on win64/wine
Other:
- Add support for IBM z/OS, fixing -lpthread check with glibc.
- Introduce mpi_tfr and use it for point_tfr to decrease EM signal and
increase EM noise.
- Handle HAVE_BROKEN_MLOCK for the case of building with ASAN.
- Harden mask generation against branch optimization for several algorithms.
- Improve constant-time operation for ECDSA.
--
*** CYGWIN-ANNOUNCE UNSUBSCRIBE INFO ***
The easiest way to unsubscribe is to visit
<https://cygwin.com/mailman/options/cygwin-announce>, and click 'Unsubscribe'.
If you need more information on unsubscribing, start reading here:
<https://sourceware.org/lists.html#unsubscribe>.
