[Cryptography] WIPEONFORK in Linux 4.14
darren at nessieroo.com
Tue Nov 28 02:54:14 EST 2017
Is the use case for when we are purposely creating a multi-process system,
by using fork/vfork/clone, where all the processes are running the same
Or is it about fork/exec? In this case an in kernel posix_spawn() avoids
many of the issues. Particularly those I've been involved with where the
JVM was using native crypto libraries and we were depending first on
getpid() and then on stacked pthread_atfork() handlers.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the cryptography