summaryrefslogtreecommitdiffstats
path: root/crypto/cipher.c
diff options
context:
space:
mode:
authorHailey Mothershead <hailmo@amazon.com>2024-04-16 00:19:15 +0200
committerHerbert Xu <herbert@gondor.apana.org.au>2024-04-26 11:26:09 +0200
commit23e4099bdc3c8381992f9eb975c79196d6755210 (patch)
tree8dd796204b3ab2ac7637559cc89fbeb51b1bebe9 /crypto/cipher.c
parentcrypto: arm64/aes-ce - Simplify round key load sequence (diff)
downloadlinux-23e4099bdc3c8381992f9eb975c79196d6755210.tar.xz
linux-23e4099bdc3c8381992f9eb975c79196d6755210.zip
crypto: aead,cipher - zeroize key buffer after use
I.G 9.7.B for FIPS 140-3 specifies that variables temporarily holding cryptographic information should be zeroized once they are no longer needed. Accomplish this by using kfree_sensitive for buffers that previously held the private key. Signed-off-by: Hailey Mothershead <hailmo@amazon.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Diffstat (limited to '')
-rw-r--r--crypto/cipher.c3
1 files changed, 1 insertions, 2 deletions
diff --git a/crypto/cipher.c b/crypto/cipher.c
index 47c77a3e5978..40cae908788e 100644
--- a/crypto/cipher.c
+++ b/crypto/cipher.c
@@ -34,8 +34,7 @@ static int setkey_unaligned(struct crypto_cipher *tfm, const u8 *key,
alignbuffer = (u8 *)ALIGN((unsigned long)buffer, alignmask + 1);
memcpy(alignbuffer, key, keylen);
ret = cia->cia_setkey(crypto_cipher_tfm(tfm), alignbuffer, keylen);
- memset(alignbuffer, 0, keylen);
- kfree(buffer);
+ kfree_sensitive(buffer);
return ret;
}