Documentations bugs?

Victor Stinner victor.stinner at
Wed Jun 17 13:26:46 CEST 2009


I think that gcrypt documentation contains some bugs.

Extract (1):
This command tells the PRNG to store random numbers in secure memory. This 
command should be run right after gcry_check_version and not later than the 
command GCRYCTL_INIT_SECMEM. Note that in FIPS mode the secure memory is 
always used.

Does it mean that GCRYCTL_USE_SECURE_RNDPOOL can be used before 
GCRYCTL_INIT_SECMEM? Because if I use both, I get this:

   Oops, secure memory pool already initialized

Extract (2):

       /* Allocate a pool of 16k secure memory.  This make the secure memory
          available and also drops privileges where needed.  */
       gcry_control (GCRYCTL_INIT_SECMEM, 16384, 0);

Does gcry_control have one or two arguments? I think that it's just one and 
the doc is wrong.

Victor Stinner

More information about the Gnupg-users mailing list