From a5a772a00526b0830c01254d0ba24305d46b1fa5 Mon Sep 17 00:00:00 2001
From: Philip Withnall <philip@tecnocode.co.uk>
Date: Tue, 11 Oct 2011 16:40:21 +0100
Subject: core: Ensure passwords and auth. tokens are stored in non-pageable
 memory

If we're compiled with --enable-gnome, we now allocate passwords and auth.
tokens in non-pageable memory where possible. Where not possible (due to API
constraints imposed by ourselves or libsoup) we ensure that the details are
zeroed out before being freed.

This is all with the aim of never having passwords or auth. tokens hit disk
or be leaked in other ways.

It hasn't been formally reviewed or certified, and there are probably cases
I've missed (which are bugs).

This adds an optional dependency on libgnome-keyring when compiled with
--enable-gnome.

Helps: bgo#656783
---
 README | 1 +
 1 file changed, 1 insertion(+)

(limited to 'README')

diff --git a/README b/README
index 82893ea0..b7c4b2fe 100644
--- a/README
+++ b/README
@@ -21,6 +21,7 @@ Dependencies
 
 If compiling with --enable-gnome (for GNOME support):
  * libsoup-gnome-2.4
+ * gnome-keyring-1
 
 Environment variables
 =====================
-- 
cgit v1.2.1