[gnutls-devel] GnuTLS | Make use of MADV_DONTDUMP for protecting sensitive data (#1192)
Read-only notification of GnuTLS library development activities
gnutls-devel at lists.gnutls.org
Thu Mar 18 19:09:28 CET 2021
Daiki Ueno created an issue: https://gitlab.com/gnutls/gnutls/-/issues/1192
We currently don't have any protection against sensitive data being leaked in a coredump. Perhaps it might worth considering the use of `madvise(MADV_DONTDUMP)`, as in [gnome-keyring](https://gitlab.gnome.org/GNOME/gnome-keyring/-/issues/30).
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1192
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20210318/113e56b4/attachment.html>
More information about the Gnutls-devel
mailing list