[SERVER-20152] Lock SymmetricKey data pointer to avoid swapping Created: 26/Aug/15 Updated: 04/Nov/15 Resolved: 30/Oct/15 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | Security |
| Affects Version/s: | 3.1.7 |
| Fix Version/s: | 3.2.0-rc2 |
| Type: | Improvement | Priority: | Major - P3 |
| Reporter: | Andreas Nilsson | Assignee: | Andreas Nilsson |
| Resolution: | Done | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||
| Backwards Compatibility: | Fully Compatible | ||||||||
| Sprint: | Security 8 08/28/15, Security 9 (09/18/15), Security B 10/30/15 | ||||||||
| Participants: | |||||||||
| Description |
|
Use OS specific calls to mlock and Virtuallock to prevent swapping ESE key material to disk. The memory will be locked in the SymmetricKey constructor and unlocked in the SymmetricKey destructor. |
| Comments |
| Comment by Githook User [ 30/Oct/15 ] |
|
Author: {u'username': u'agralius', u'name': u'Andreas Nilsson', u'email': u'andreas.nilsson@10gen.com'}Message: |