-
Notifications
You must be signed in to change notification settings - Fork 93
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
incorrect OQSPROVIDER_VERSION_TEXT in 0.7.0 release #550
Comments
Hmm -- how did you test this? There was an error in the initial release but when I built right now against tag "0.7.0", the release ID is correct. |
|
Ahh, thanks for the description @jschauma . @praveksharma , was there a reason the artifacts of the release didn't get corrected (to also be) in line with the release tag? |
Yes, confirmed that the release archive now has the right version in it. However, this brings with it a problem: the release archive was changed, but the version hasn't changed. This will trip up package management systems that verify archives against known checksums (e.g., NetBSD's pkgsrc). It'd be ideal if any time a release archive is changed, its version number changes. So you might e.g., include additional micro numbers or some other signifier to indicate to the user that this is a different archive from the previously published one (e.g., 0.7.0.1 or 0.7.0r1). |
I see, this makes sense. @baentsch should we do a 0.7.2 patch release to avoid this and any other issues that may arrise due to the mistakes made in #534? I say 0.7.2 specifically to avoid the 0.7.0/0.7.1 ambiguity caused by said error. |
Upstream had reported the wrong release version in the module and the fix updated the already released archive without bumping the version. See: open-quantum-safe/oqs-provider#550
Yeah, that would work. I have no strong preference for how you bump versions, but even though this seems like a cosmetic change, it might be easiest to just jump to 0.7.2 and then roll forward with every change. |
+1 to this comment I maintain the AUR package for Arch Linux and only now I noticed the checksum mismatch when setting up a new device. |
upstream changed artifacts See: open-quantum-safe/oqs-provider#550
@praveksharma as you volunteered doing a release fixing this issue, what about doing it now? The latest additions bringing the code in line with the different specs (IANA code points, Composite) IMO justifies, possibly even warrants, a release. |
You may want to hold off a little bit, as IANA will likely still alter the MLKEM codepoints: https://mailarchive.ietf.org/arch/msg/tls/0mVA6kJugR5XhSjqLLhLUActjQM/ |
Describe the bug
After installing the 0.7.0 release,
openssl list -providers
shows:This is due to 60417e9, which erroneously was included in the 0.7.0 release, it seems.
The text was updated successfully, but these errors were encountered: