Re: libgcrypt brain dead?
> Can anyone confirm the comment in the bug log that setuid shouldn't
> even be required to do what libgcrypt is doing here, namely locking
> memory so that it's not swapped to disk?
Well, I didn't test, but from 'man mlock':
| Since Linux 2.6.9, no limits are placed on the amount of memory
| that a privileged process can lock and the RLIMIT_MEMLOCK soft
| resource limit instead defines a limit on how much memory an
| unprivileged process may lock.
On my system 'ulimit -l' (max locked memory) shows 64 kB, which, you
know, ought to be enough for anybody.
Peter Samuelson | org-tld!p12n!peter | http://p12n.org/