From owner-freebsd-gnome@FreeBSD.ORG  Mon Apr 23 21:22:57 2012
Return-Path: <owner-freebsd-gnome@FreeBSD.ORG>
Delivered-To: gnome@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 035131065672
	for <gnome@freebsd.org>; Mon, 23 Apr 2012 21:22:57 +0000 (UTC)
	(envelope-from lists@eitanadler.com)
Received: from mail-wi0-f172.google.com (mail-wi0-f172.google.com
	[209.85.212.172])
	by mx1.freebsd.org (Postfix) with ESMTP id 784528FC0C
	for <gnome@freebsd.org>; Mon, 23 Apr 2012 21:22:56 +0000 (UTC)
Received: by wibhj6 with SMTP id hj6so2626724wib.13
	for <gnome@freebsd.org>; Mon, 23 Apr 2012 14:22:55 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
	d=eitanadler.com; s=0xdeadbeef;
	h=mime-version:in-reply-to:references:from:date:message-id:subject:to
	:cc:content-type;
	bh=M+pVn+SqHnt/L/oz9xENzBMOx0NLNBf39ORxbgU7Y+c=;
	b=RLfKIPQlg3RSmkrh3jQY7Q+NRZ75mwlU//EHBbYGN7ksMu5wbR2QfRtLTj8tmSyOPk
	Ozj3lrH/AuQnleUEygULUfrKUyHtnpaURl/KHex6y9LMcSa1p9pZmVXASGEgFupxzXck
	7cjKNOshcjW3Nxb/eZp1FQmJi7TT2b77he8iY=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
	d=google.com; s=20120113;
	h=mime-version:in-reply-to:references:from:date:message-id:subject:to
	:cc:content-type:x-gm-message-state;
	bh=M+pVn+SqHnt/L/oz9xENzBMOx0NLNBf39ORxbgU7Y+c=;
	b=TzRft5DSd0HCd7lGbTD9taCPn5MSuXGZ1IN4bxL70hRmVHamrRskxh6+RsfiRt0efd
	c45BhgSTG+cN/7lTkTrgOCtu96g79zc8YP3dL/tX9kICrzExSf6OKymgwflhrDurHC3i
	QPn8oIaaqJPyKkpxmRId5ScjIEf+n10w8ZAO5O0ki1dsro1mbIiWWp5KkxI78gIVqI/R
	BFYV64ZfbdzLEHvrUoyjrOXaJFKBIspBISzcVwQGmDqFy0HUtF2cyn4ibwxjg5TH04/9
	j0owpPmGkwYMOpM7CNR1SB+jGWdiqgx4X21UIcHr1tRftA+5CQeSY0QfuuMFu/l9Y7t0
	WlZQ==
Received: by 10.180.92.71 with SMTP id ck7mr25072161wib.2.1335216175373; Mon,
	23 Apr 2012 14:22:55 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.223.73.195 with HTTP; Mon, 23 Apr 2012 14:22:25 -0700 (PDT)
In-Reply-To: <4F95C2B1.2050706@freebsd.org>
References: <alpine.BSF.2.00.1204222157150.55889@mail.neu.net>
	<CADLFttd0JwjLZyoaVzjWZPE8dNSBptphOooxy6r9VYKuykBXTg@mail.gmail.com>
	<20120423220812.0000178d@unknown> <4F95C2B1.2050706@freebsd.org>
From: Eitan Adler <lists@eitanadler.com>
Date: Mon, 23 Apr 2012 17:22:25 -0400
Message-ID: <CAF6rxgmfW6j_R9qRPE5sLiANd40wAp94riKiJv-NuZOzVBVwPg@mail.gmail.com>
To: Joe Marcus Clarke <marcus@freebsd.org>
Content-Type: text/plain; charset=UTF-8
X-Gm-Message-State: ALoCoQnQZKyHNQmTaRUBvLdVnSeCwJ1n7HUm+WaeI+H0Vj62zZiQPX+Jlwcw1+lfEH5PdJC5upu8
Cc: Jeremy Messenger <mezz.freebsd@gmail.com>,
	Alexander Leidinger <Alexander@leidinger.net>, AN <andy@neu.net>,
	gnome@freebsd.org
Subject: Re: Unable to allocate secure memory from gnome-keyring
X-BeenThere: freebsd-gnome@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: GNOME for FreeBSD -- porting and maintaining
	<freebsd-gnome.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-gnome>,
	<mailto:freebsd-gnome-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-gnome>
List-Post: <mailto:freebsd-gnome@freebsd.org>
List-Help: <mailto:freebsd-gnome-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-gnome>,
	<mailto:freebsd-gnome-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Apr 2012 21:22:57 -0000

On 23 April 2012 16:59, Joe Marcus Clarke <marcus@freebsd.org> wrote:
> On 4/23/12 4:08 PM, Alexander Leidinger wrote:
>> On Sun, 22 Apr 2012 22:06:41 -0500 Jeremy Messenger
>> <mezz.freebsd@gmail.com> wrote:
>>
>>> On Sun, Apr 22, 2012 at 9:12 PM, AN <andy@neu.net> wrote:
>>
>>>> ** (process:42587): WARNING **: Unable to allocate secure memory
>>>> from gnome-keyring.
>>>>
>>>>
>>>> ** (process:42587): WARNING **: Proceeding using insecure memory for
>>>> password fields.
>>>
>>> Both of warnings here are known for age. I don't remember exactly why,
>>> I think it's something that FreeBSD lacks of what Linux has or maybe
>>> just need to complete port to FreeBSD. I am not sure.
>>
>> I would expect that this is caused by a failed call to mlock(). Only
>> root is allowed to do that. I would also expect that this message
>> disappears, if the executables is marked as SUID-root. If it makes
>> sense to mark it SUID-root from a security point of view in this case or
>> not is a different question.

The concern here is that the memory may be paged out and written to
disk. This data on disk may be recoverable even after the memory is
wiped. Very few people need concern themselves with attacks that rely
on this.


-- 
Eitan Adler