On Mon, Mar 8, 2010 at 16:27:37 -0800, Russ Allbery wrote: > Can anyone confirm the comment in the bug log that setuid shouldn't even > be required to do what libgcrypt is doing here, namely locking memory so > that it's not swapped to disk? > linux-2.6/include/linux/resource.h:#define MLOCK_LIMIT ((PAGE_SIZE > 64*1024) ? PAGE_SIZE : 64*1024) so by default you can mlock up to 64k. Cheers, Julien
Attachment:
signature.asc
Description: Digital signature