releases/3.2.45/net-sctp-sctp_auth_key_put-use-kzfree-instead-of-kfree.patch - pub/scm/linux/kernel/git/bwh/linux-stable-queue - Git at Google

 From: Daniel Borkmann <dborkman@redhat.com>
 Date: Thu, 7 Feb 2013 00:55:37 +0000
 Subject: net: sctp: sctp_auth_key_put: use kzfree instead of  kfree

 [ Upstream commit 586c31f3bf04c290dc0a0de7fc91d20aa9a5ee53 ]

 For sensitive data like keying material, it is common practice to zero
 out keys before returning the memory back to the allocator. Thus, use
 kzfree instead of kfree.

 Signed-off-by: Daniel Borkmann <dborkman@redhat.com>
 Acked-by: Neil Horman <nhorman@tuxdriver.com>
 Acked-by: Vlad Yasevich <vyasevich@gmail.com>
 Signed-off-by: David S. Miller <davem@davemloft.net>
 Signed-off-by: Ben Hutchings <ben@decadent.org.uk>
 ---
  net/sctp/auth.c | 2 +-
  1 file changed, 1 insertion(+), 1 deletion(-)

 --- a/net/sctp/auth.c
 +++ b/net/sctp/auth.c
 @@ -71,7 +71,7 @@ void sctp_auth_key_put(struct sctp_auth_
  		return;

  	if (atomic_dec_and_test(&key->refcnt)) {
 -		kfree(key);
 +		kzfree(key);
  		SCTP_DBG_OBJCNT_DEC(keys);
  	}
  }
	From: Daniel Borkmann <dborkman@redhat.com>
	Date: Thu, 7 Feb 2013 00:55:37 +0000
	Subject: net: sctp: sctp_auth_key_put: use kzfree instead of kfree

	[ Upstream commit 586c31f3bf04c290dc0a0de7fc91d20aa9a5ee53 ]

	For sensitive data like keying material, it is common practice to zero
	out keys before returning the memory back to the allocator. Thus, use
	kzfree instead of kfree.

	Signed-off-by: Daniel Borkmann <dborkman@redhat.com>
	Acked-by: Neil Horman <nhorman@tuxdriver.com>
	Acked-by: Vlad Yasevich <vyasevich@gmail.com>
	Signed-off-by: David S. Miller <davem@davemloft.net>
	Signed-off-by: Ben Hutchings <ben@decadent.org.uk>
	---
	net/sctp/auth.c \| 2 +-
	1 file changed, 1 insertion(+), 1 deletion(-)

	--- a/net/sctp/auth.c
	+++ b/net/sctp/auth.c
	@@ -71,7 +71,7 @@ void sctp_auth_key_put(struct sctp_auth_
	return;

	if (atomic_dec_and_test(&key->refcnt)) {
	- kfree(key);
	+ kzfree(key);
	SCTP_DBG_OBJCNT_DEC(keys);
	}
	}