lockedpool: When possible, use madvise to avoid including sensitive i…

…nformation in core dumps or forked process memory spaces
bitcoin · Mar 14, 2019 · b021868 · b021868
1 parent 9828f9a
commit b021868
Showing 1 changed file with 6 additions and 0 deletions.
diff --git a/src/support/lockedpool.cpp b/src/support/lockedpool.cpp
@@ -230,6 +230,12 @@ void *PosixLockedPageAllocator::AllocateLocked(size_t len, bool *lockingSuccess)
     addr = mmap(nullptr, len, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0);
     if (addr) {
         *lockingSuccess = mlock(addr, len) == 0;
+#ifdef MADV_DONTFORK
+        madvise(addr, len, MADV_DONTFORK);
+#endif
+#ifdef MADV_DONTDUMP
+        madvise(addr, len, MADV_DONTDUMP);
+#endif
     }
     return addr;
 }