| From 325382a75784ecc05c6ae30e2e97e2c60d325cec Mon Sep 17 00:00:00 2001 |
| From: Daniel Borkmann <dborkman@redhat.com> |
| Date: Thu, 7 Feb 2013 00:55:37 +0000 |
| Subject: net: sctp: sctp_auth_key_put: use kzfree instead of kfree |
| |
| |
| From: Daniel Borkmann <dborkman@redhat.com> |
| |
| [ Upstream commit 586c31f3bf04c290dc0a0de7fc91d20aa9a5ee53 ] |
| |
| For sensitive data like keying material, it is common practice to zero |
| out keys before returning the memory back to the allocator. Thus, use |
| kzfree instead of kfree. |
| |
| Signed-off-by: Daniel Borkmann <dborkman@redhat.com> |
| Acked-by: Neil Horman <nhorman@tuxdriver.com> |
| Acked-by: Vlad Yasevich <vyasevich@gmail.com> |
| Signed-off-by: David S. Miller <davem@davemloft.net> |
| Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> |
| --- |
| net/sctp/auth.c | 2 +- |
| 1 file changed, 1 insertion(+), 1 deletion(-) |
| |
| --- a/net/sctp/auth.c |
| +++ b/net/sctp/auth.c |
| @@ -71,7 +71,7 @@ void sctp_auth_key_put(struct sctp_auth_ |
| return; |
| |
| if (atomic_dec_and_test(&key->refcnt)) { |
| - kfree(key); |
| + kzfree(key); |
| SCTP_DBG_OBJCNT_DEC(keys); |
| } |
| } |
