[svn] gcry - r1401 - trunk/doc
svn author wk
cvs at cvs.gnupg.org
Thu Jul 9 14:26:27 CEST 2009
Author: wk
Date: 2009-07-09 14:26:26 +0200 (Thu, 09 Jul 2009)
New Revision: 1401
Modified:
trunk/doc/gcrypt.texi
Log:
Explicitly mention zeroisation.
Modified: trunk/doc/gcrypt.texi
===================================================================
--- trunk/doc/gcrypt.texi 2009-07-09 11:57:28 UTC (rev 1400)
+++ trunk/doc/gcrypt.texi 2009-07-09 12:26:26 UTC (rev 1401)
@@ -1695,6 +1695,8 @@
@deftypefun void gcry_cipher_close (gcry_cipher_hd_t @var{h})
This function releases the context created by @code{gcry_cipher_open}.
+It also zeroises all sensitive information associated with this cipher
+handle.
@end deftypefun
In order to use a handle for performing cryptographic operations, a
@@ -3652,8 +3654,10 @@
Release all resources of hash context @var{h}. @var{h} should not be
used after a call to this function. A @code{NULL} passed as @var{h} is
-ignored.
+ignored. The function also zeroises all sensitive information
+associated with this handle.
+
@end deftypefun
Often you have to do several hash operations using the same algorithm.
@@ -4055,7 +4059,10 @@
@deftypefun void gcry_sexp_release (@w{gcry_sexp_t @var{sexp}})
-Release the S-expression object @var{sexp}.
+Release the S-expression object @var{sexp}. If the S-expression is
+stored in secure memory it explicitly zeroises that memory; note that
+this is done in addition to the zeroisation always done when freeing
+secure memory.
@end deftypefun
@@ -5135,8 +5142,6 @@
used with the test context the DT value is taken from the context and
incremented on each use.
-
-
@c @node Helper Subsystems Architecture
@c @section Helper Subsystems Architecture
@c
More information about the Gnupg-commits
mailing list