Gitiles
Code Review Sign In
review.evervolv.com / android_kernel_htc_msm8960 / a009d58e52a816355a2423729c9aeded56fc40d1^! / . / net / sctp / auth.c
commita009d58e52a816355a2423729c9aeded56fc40d1[log] [tgz]
authorDaniel Borkmann <dborkman@redhat.com>Thu Feb 07 00:55:37 2013 +0000
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>Wed May 01 09:41:08 2013 -0700
tree251e07e807e46ad37327fe442814596880476a36
parentd768ca1b9fae5c2ee68ad39e6b1b5e9fc23ca9bf [diff] [blame]
net: sctp: sctp_auth_key_put: use kzfree instead of kfree

[ Upstream commit 586c31f3bf04c290dc0a0de7fc91d20aa9a5ee53 ]

For sensitive data like keying material, it is common practice to zero
out keys before returning the memory back to the allocator. Thus, use
kzfree instead of kfree.

Signed-off-by: Daniel Borkmann <dborkman@redhat.com>
Acked-by: Neil Horman <nhorman@tuxdriver.com>
Acked-by: Vlad Yasevich <vyasevich@gmail.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

diff --git a/net/sctp/auth.c b/net/sctp/auth.c
index bf81204..333926d 100644
--- a/net/sctp/auth.c
+++ b/net/sctp/auth.c

@@ -71,7 +71,7 @@
 		return;
 
 	if (atomic_dec_and_test(&key->refcnt)) {
-		kfree(key);
+		kzfree(key);
 		SCTP_DBG_OBJCNT_DEC(keys);
 	}
 }