提交 586c31f3 编写于 作者: D Daniel Borkmann 提交者: David S. Miller

net: sctp: sctp_auth_key_put: use kzfree instead of kfree

For sensitive data like keying material, it is common practice to zero
out keys before returning the memory back to the allocator. Thus, use
kzfree instead of kfree.
Signed-off-by: NDaniel Borkmann <dborkman@redhat.com>
Acked-by: NNeil Horman <nhorman@tuxdriver.com>
Acked-by: NVlad Yasevich <vyasevich@gmail.com>
Signed-off-by: NDavid S. Miller <davem@davemloft.net>
上级 6cddded4
...@@ -71,7 +71,7 @@ void sctp_auth_key_put(struct sctp_auth_bytes *key) ...@@ -71,7 +71,7 @@ void sctp_auth_key_put(struct sctp_auth_bytes *key)
return; return;
if (atomic_dec_and_test(&key->refcnt)) { if (atomic_dec_and_test(&key->refcnt)) {
kfree(key); kzfree(key);
SCTP_DBG_OBJCNT_DEC(keys); SCTP_DBG_OBJCNT_DEC(keys);
} }
} }
......
Markdown is supported
0% .
You are about to add 0 people to the discussion. Proceed with caution.
先完成此消息的编辑!
想要评论请 注册