[RFC PATCH] enable configurable SECMEM_BUFFER_SIZE

Werner Koch wk at gnupg.org
Tue Nov 28 07:59:32 CET 2017


On Tue, 28 Nov 2017 02:02, dkg at fifthhorseman.net said:

> At first glance, it looks like it would require patches to libgcrypt
> itself, in addition to patches to GnuPG.

FWIW, changes in the repo since 1.8.1 are:

59df8d6 * sexp: Avoid a fatal error in case of ENOMEM in called functions.
f4582f8 * api: Add auto expand secmem feature
334e1a1 * tests: Add HAVE_MMAP check for MinGW.
da127f7 * Fix secmem test for machine with larger page.

The first one actually fixes a side-effect of the "out of secure memory"
state.  I can do a Libcgrypt 1.8.2 at any time.  Just let me know.

Backporting the required change for GnuPG to any 2.1 version will be
trivial.

Shalom-Salam,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-devel/attachments/20171128/9e413351/attachment-0001.sig>


More information about the Gnupg-devel mailing list