Jussi Kivilinna <jussi.kivili...@iki.fi> writes: > Do other crypto libraries do this? Surely this control should not be in > library side but in > application. Libgcrypt could be loaded by application for number of reasons > and not all > those use-cases require toggling these knobs (such as file checksumming, CRC > or SHA). Even > worse, libgcrypt might be loaded by another library and actual application > may not even > have knowledge of that. Libgcrypt might get loaded through library > dependencies but > end up not being used by application at all (except initialization, > global_init, etc).
I had the same thought when I saw the patch and checked openssl. It doesn't do it. Perhaps some others do, but I don't have them cloned to check. :) Collin
signature.asc
Description: PGP signature
_______________________________________________ Gcrypt-devel mailing list Gcrypt-devel@gnupg.org https://lists.gnupg.org/mailman/listinfo/gcrypt-devel