In the in-memory session manager, choose a random key at startup and

encrypt all of the sessions, decrypting before return. This minimizes load on the locked memory (48 bytes master secret per session, vs 32 bytes for a single master key). It might also make recovering session data from memory dumps a little bit harder though this isn't worth counting on IMO
author: lloyd <[email protected]> 2012-08-05 20:31:42 +0000
committer: lloyd <[email protected]> 2012-08-05 20:31:42 +0000
commit: abede6dce6be19d3e916bff16048096f36bddb03 (patch)
tree: a9b336cc8c7eac8176ce4a3db69fa10bad98202c /src/tls/tls_session.h
parent: de2d1a699748c4cbd6f8bc8aaa67e02826108125 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/src/tls/tls_session.h b/src/tls/tls_session.h
index 2c474bc6a..ac18ebb48 100644
--- a/src/tls/tls_session.h
+++ b/src/tls/tls_session.h
@@ -77,7 +77,7 @@ class BOTAN_DLL Session
       * Encrypt a session (useful for serialization or session tickets)
       */
       std::vector<byte> encrypt(const SymmetricKey& key,
-                                 RandomNumberGenerator& rng) const;
+                                RandomNumberGenerator& rng) const;
 
 
       /**
author	lloyd <[email protected]>	2012-08-05 20:31:42 +0000
committer	lloyd <[email protected]>	2012-08-05 20:31:42 +0000
commit	abede6dce6be19d3e916bff16048096f36bddb03 (patch)
tree	a9b336cc8c7eac8176ce4a3db69fa10bad98202c /src/tls/tls_session.h
parent	de2d1a699748c4cbd6f8bc8aaa67e02826108125 (diff)