Re: [PATCH encrypted swsusp 1/3] core functionality

From: Matt Mackall
Date: Fri Apr 15 2005 - 12:03:13 EST

Next message: Jean-Luc Cooke: "Re: Fortuna"
Previous message: linux: "Re: Fortuna"
In reply to: Andreas Steinmetz: "Re: [PATCH encrypted swsusp 1/3] core functionality"
Next in thread: Pavel Machek: "Re: [PATCH encrypted swsusp 1/3] core functionality"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Apr 15, 2005 at 11:44:06AM +0200, Andreas Steinmetz wrote:
> Matt Mackall wrote:
> > Zero only the mlocked regions. This should take essentially no time at
> > all. Swsusp knows which these are because they have to be mlocked
> > after resume as well. If it's not mlocked, it's liable to be swapped
> > out anyway.
>
> Nitpicking:
> What happens if the disk decides to relocate a close to failing sector
> containing mlocked data during resume zeroing? This just means that
> there will be sensitive data around on the disk that can't be zeroed
> out anymore but which might be recovered by specialized
> companies/institutions.
> Encrypting these data in the first place reduces this problem to a
> single potentially problematic sector.

Well that's what the dmcrypt phase is for.

--
Mathematics is the supreme nostalgia of our time.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jean-Luc Cooke: "Re: Fortuna"
Previous message: linux: "Re: Fortuna"
In reply to: Andreas Steinmetz: "Re: [PATCH encrypted swsusp 1/3] core functionality"
Next in thread: Pavel Machek: "Re: [PATCH encrypted swsusp 1/3] core functionality"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]