place shielded keys (i.e. keys at rest in RAM) into memory allocated
authordjm <djm@openbsd.org>
Tue, 20 Aug 2024 03:48:30 +0000 (03:48 +0000)
committerdjm <djm@openbsd.org>
Tue, 20 Aug 2024 03:48:30 +0000 (03:48 +0000)
commit502d87712a89e1b564e9ca48c0fb0a622c17b927
tree844da33b52bf3640a0ffbfdaab0a3110688cdb8a
parentc6c75c181b179dc09cfdbc8eddbb674c8eb47538
place shielded keys (i.e. keys at rest in RAM) into memory allocated
using mmap(3) with MAP_CONCEAL set. This prevents exposure of the
key material in coredumps, etc (this is in addition to other measures
we take in this area).

ok deraadt@
usr.bin/ssh/sshkey.c