From: Christophe Jaillet Date: Sun, 27 May 2018 20:14:16 +0000 (+0000) Subject: Have code and doc consistent. X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=f4799c2b2c2295bdc0d6444de809f61f4654e6da;p=apache Have code and doc consistent. The SSLRandomSeed builtin, uses 128 bytes of stack, not 1kb of scoreboard data. See PR 54752 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1832346 13f79535-47bb-0310-9956-ffa450edef68 --- diff --git a/docs/manual/mod/mod_ssl.xml b/docs/manual/mod/mod_ssl.xml index bd3f9cd41c..e24d363812 100644 --- a/docs/manual/mod/mod_ssl.xml +++ b/docs/manual/mod/mod_ssl.xml @@ -384,8 +384,8 @@ The following source variants are available:

This is the always available builtin seeding source. Its usage consumes minimum CPU cycles under runtime and hence can be always used without drawbacks. The source used for seeding the PRNG contains of the - current time, the current process id and (when applicable) a randomly - chosen 1KB extract of the inter-process scoreboard structure of Apache. + current time, the current process id and a randomly + chosen 128 bytes extract of the stack. The drawback is that this is not really a strong source and at startup time (where the scoreboard is still not available) this source just produces a few bytes of entropy. So you should always, at least for the