Re: encrypted swap (was Re: [PATCH encrypted swsusp 1/3] corefunctionality)

From: Arjan van de Ven
Date: Thu Apr 14 2005 - 03:51:57 EST

Next message: Rafael J. Wysocki: "Re: [PATCH encrypted swsusp 1/3] core functionality"
Previous message: Li Shaohua: "Re: [PATCH 6/6]suspend/resume SMP support"
In reply to: Herbert Xu: "Re: encrypted swap (was Re: [PATCH encrypted swsusp 1/3] core functionality)"
Next in thread: Bernd Eckenfels: "Re: [PATCH encrypted swsusp 1/3] core functionality"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

>
> > * the key is automatically regenerated every 2 hours (or whatever); as
> > pages encrypted under the old key age out, it can be freed eventually
>
> This'll require changes to dmcrypt but it's doable.

but it's not useful since linux actually generally keeps the pages also
in swap even when they're back in memory (so that if there's memory
pressure again they can just be swapped out cheap again), this leads to
very very long lived swap pages

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Rafael J. Wysocki: "Re: [PATCH encrypted swsusp 1/3] core functionality"
Previous message: Li Shaohua: "Re: [PATCH 6/6]suspend/resume SMP support"
In reply to: Herbert Xu: "Re: encrypted swap (was Re: [PATCH encrypted swsusp 1/3] core functionality)"
Next in thread: Bernd Eckenfels: "Re: [PATCH encrypted swsusp 1/3] core functionality"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]