Re: Revised keyrings(7) man page for review

From: Michael Kerrisk (man-pages)
Date: Wed Dec 14 2016 - 02:28:51 EST

On 12/13/2016 03:20 PM, David Howells wrote:
> Michael Kerrisk (man-pages) <mtk.manpages@xxxxxxxxx> wrote:
>> The payload data may be stored in a tmpfs filesystem,
>> rather than in kernel memory, if the data size exceeds the
>> overhead of storing the data in the filesystem. (Storing
>> the data in a filesystem requires filesystem structures to
>> be allocated in the kernel. The size of these structures
>> determines the size threshold above which the tmpfs storage
>> method is used.) Since Linux 4.8, the payload data is
>> encrypted when stored in tmpfs, to prevent it being written
>> unencrypted into swap space.
> "... thereby preventing it from being written unencrypted into the swapspace"?




Michael Kerrisk
Linux man-pages maintainer;
Linux/UNIX System Programming Training: