Konstantin Belousov writes:
> Dag-Erling Smørgrav writes:
> > Wouldn't it be possible to just set up the page entry but leave it
> > unmapped, so that it is paged in (and zeroed if necessary) on first
> > access? Thus, a process that uses arc4random() and fork()s would not
> > incur a penalty un
Andrey Chernov writes:
> Theo kindly explained that zeroing whole page instead of single variable
> suits to his newest arc4random better, since clears two structs at once
> (including ChaCha state), making some form of backward secrecy.
Yes, avoiding leaking key material to child processes would
