[ 166/184] net: sctp: sctp_auth_key_put: use kzfree instead of

From: Willy Tarreau
Date: Tue Jun 04 2013 - 18:53:00 EST

Next message: Greg KH: "Re: [hv] BUG: kernel freezes after [ 13.356381] PCI: CLS 0 bytes,default 64"
Previous message: Willy Tarreau: "[ 169/184] netfilter: nf_ct_ipv4: packets with wrong ihl are"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

2.6.32-longterm review patch. If anyone has any objections, please let me know.

------------------
kfree

From: Daniel Borkmann <dborkman@xxxxxxxxxx>

[ Upstream commit 586c31f3bf04c290dc0a0de7fc91d20aa9a5ee53 ]

For sensitive data like keying material, it is common practice to zero
out keys before returning the memory back to the allocator. Thus, use
kzfree instead of kfree.

Signed-off-by: Daniel Borkmann <dborkman@xxxxxxxxxx>
Acked-by: Neil Horman <nhorman@xxxxxxxxxxxxx>
Acked-by: Vlad Yasevich <vyasevich@xxxxxxxxx>
Signed-off-by: David S. Miller <davem@xxxxxxxxxxxxx>
Signed-off-by: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
Signed-off-by: Willy Tarreau <w@xxxxxx>
---
net/sctp/auth.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/net/sctp/auth.c b/net/sctp/auth.c
index 914c419..7363b9f 100644
--- a/net/sctp/auth.c
+++ b/net/sctp/auth.c
@@ -70,7 +70,7 @@ void sctp_auth_key_put(struct sctp_auth_bytes *key)
return;

if (atomic_dec_and_test(&key->refcnt)) {
- kfree(key);
+ kzfree(key);
SCTP_DBG_OBJCNT_DEC(keys);
}
}
--
1.7.12.2.21.g234cd45.dirty

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Greg KH: "Re: [hv] BUG: kernel freezes after [ 13.356381] PCI: CLS 0 bytes,default 64"
Previous message: Willy Tarreau: "[ 169/184] netfilter: nf_ct_ipv4: packets with wrong ihl are"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]