[SERVER-20152] Lock SymmetricKey data pointer to avoid swapping Created: 26/Aug/15  Updated: 04/Nov/15  Resolved: 30/Oct/15

Status: Closed
Project: Core Server
Component/s: Security
Affects Version/s: 3.1.7
Fix Version/s: 3.2.0-rc2

Type: Improvement Priority: Major - P3
Reporter: Andreas Nilsson Assignee: Andreas Nilsson
Resolution: Done Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Depends
depends on SERVER-20538 Build a general purpose SecureAllocator Closed
Backwards Compatibility: Fully Compatible
Sprint: Security 8 08/28/15, Security 9 (09/18/15), Security B 10/30/15
Participants:

 Description   

Use OS specific calls to mlock and Virtuallock to prevent swapping ESE key material to disk.

The memory will be locked in the SymmetricKey constructor and unlocked in the SymmetricKey destructor.



 Comments   
Comment by Githook User [ 30/Oct/15 ]

Author:

{u'username': u'agralius', u'name': u'Andreas Nilsson', u'email': u'andreas.nilsson@10gen.com'}

Message: SERVER-20152 Use the SecureAllocator in the SymmetricKey class
Branch: master
https://github.com/10gen/mongo-enterprise-modules/commit/034ba162ce44bd2a57d51a3c0be21de9e2b53fc8

Generated at Thu Feb 08 03:53:19 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.