net: sctp: sctp_setsockopt_auth_key: use kzfree instead of kfree · 6ba542a291 - Gogs: Go Git Service GfA electronic

Sfoglia il codice sorgente

net: sctp: sctp_setsockopt_auth_key: use kzfree instead of kfree

In sctp_setsockopt_auth_key, we create a temporary copy of the user
passed shared auth key for the endpoint or association and after
internal setup, we free it right away. Since it's sensitive data, we
should zero out the key before returning the memory back to the
allocator. Thus, use kzfree instead of kfree, just as we do in
sctp_auth_key_put().

Signed-off-by: Daniel Borkmann <dborkman@redhat.com>
Signed-off-by: David S. Miller <davem@davemloft.net>

Daniel Borkmann 12 anni fa

parent

ab54ee80aa

commit

6ba542a291

1 ha cambiato i file con 1 aggiunte e 1 eliminazioni

Visualizzazione separata Mostra Diff Stats

						
							+ 1
							
							- 1
						
net/sctp/socket.c
							 
								Vedi File
							
				@@ -3390,7 +3390,7 @@ static int sctp_setsockopt_auth_key(struct sock *sk,
			
				 	ret = sctp_auth_set_key(sctp_sk(sk)->ep, asoc, authkey);
			
				 out:
			
				-	kfree(authkey);
			
				+	kzfree(authkey);
			
				 	return ret;
			
				 }