| From 3089c288f0cc2b8126e668b48236e6d922ab8b31 Mon Sep 17 00:00:00 2001 |
| From: Daniel Borkmann <dborkman@redhat.com> |
| Date: Thu, 7 Feb 2013 00:55:37 +0000 |
| Subject: [PATCH] net: sctp: sctp_auth_key_put: use kzfree instead of kfree |
| |
| commit 586c31f3bf04c290dc0a0de7fc91d20aa9a5ee53 upstream. |
| |
| For sensitive data like keying material, it is common practice to zero |
| out keys before returning the memory back to the allocator. Thus, use |
| kzfree instead of kfree. |
| |
| Signed-off-by: Daniel Borkmann <dborkman@redhat.com> |
| Acked-by: Neil Horman <nhorman@tuxdriver.com> |
| Acked-by: Vlad Yasevich <vyasevich@gmail.com> |
| Signed-off-by: David S. Miller <davem@davemloft.net> |
| Signed-off-by: Paul Gortmaker <paul.gortmaker@windriver.com> |
| --- |
| net/sctp/auth.c | 2 +- |
| 1 file changed, 1 insertion(+), 1 deletion(-) |
| |
| diff --git a/net/sctp/auth.c b/net/sctp/auth.c |
| index ddbbf7c81fa1..ce9ef56708ac 100644 |
| --- a/net/sctp/auth.c |
| +++ b/net/sctp/auth.c |
| @@ -71,7 +71,7 @@ void sctp_auth_key_put(struct sctp_auth_bytes *key) |
| return; |
| |
| if (atomic_dec_and_test(&key->refcnt)) { |
| - kfree(key); |
| + kzfree(key); |
| SCTP_DBG_OBJCNT_DEC(keys); |
| } |
| } |
| -- |
| 1.8.5.2 |
| |
