Allow reducing the size of the allocated mlock pool via env variable

(BOTAN_MLOCK_POOL_SIZE, specified in decimal KB). Currently we read this even when setuid as the worst a user could do is disable mlock, which they can already do via ulimits.
author: lloyd <[email protected]> 2015-01-24 15:25:14 +0000
committer: lloyd <[email protected]> 2015-01-24 15:25:14 +0000
commit: 43d080b5fff6c5d8ca0c1cc6b2578c7115ac5888 (patch)
tree: db19906a0ea3d30b9d0074ed453aeb7cf4b75ba0 /doc
parent: d591c1c6247f64a5fc178d8f883f7d429f2684a1 (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/doc/relnotes/1_11_14.rst b/doc/relnotes/1_11_14.rst
index 600f6dae1..f3a2527ad 100644
--- a/doc/relnotes/1_11_14.rst
+++ b/doc/relnotes/1_11_14.rst
@@ -7,3 +7,12 @@ Version 1.11.14, Not Yet Released
   finalized is not yet enabled by the default policy, and the
   ciphersuite numbers used are in the experimental range and may
   conflict with other uses.
+
+* The memory allocator available on Unix systems which uses mmap and
+  mlock to lock a pool of memory now checks an environment variable
+  BOTAN_MLOCK_POOL_SIZE. If this is set to a smaller value then the
+  library would originally have allocated the user specified size is
+  used. You can also set it to zero to disable the pool entirely.
+  Previously the allocator would consume all available mlocked memory,
+  this allows botan to coexist with an application which wants to
+  mlock memory of its own.
author	lloyd <[email protected]>	2015-01-24 15:25:14 +0000
committer	lloyd <[email protected]>	2015-01-24 15:25:14 +0000
commit	43d080b5fff6c5d8ca0c1cc6b2578c7115ac5888 (patch)
tree	db19906a0ea3d30b9d0074ed453aeb7cf4b75ba0 /doc
parent	d591c1c6247f64a5fc178d8f883f7d429f2684a1 (diff)