net: sctp: sctp_setsockopt_auth_key: use kzfree instead of kfree

[ Upstream commit 6ba542a291a5e558603ac51cda9bded347ce7627 ] In sctp_setsockopt_auth_key, we create a temporary copy of the user passed shared auth key for the endpoint or association and after internal setup, we free it right away. Since it's sensitive data, we should zero out the key before returning the memory back to the allocator. Thus, use kzfree instead of kfree, just as we do in sctp_auth_key_put(). Signed-off-by: Daniel Borkmann <dborkman@redhat.com> Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
author: Daniel Borkmann <dborkman@redhat.com> 2013-02-08 03:04:34 +0000
committer: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 2013-02-14 10:47:35 -0800
commit: 7340fda068b62790d612ebbd3a331a2847895f19 (patch)
tree: 10c1ba3ef522d37ae8ed3d432ecc8178d978752b
parent: daba311aef717d505bc2ebb9a24f96ad15b7f394 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/net/sctp/socket.c b/net/sctp/socket.c
index 8ac6d0b18e68..6b766cd8b276 100644
--- a/net/sctp/socket.c
+++ b/net/sctp/socket.c
@@ -3304,7 +3304,7 @@ static int sctp_setsockopt_auth_key(struct sock *sk,
 
 	ret = sctp_auth_set_key(sctp_sk(sk)->ep, asoc, authkey);
 out:
-	kfree(authkey);
+	kzfree(authkey);
 	return ret;
 }
author	Daniel Borkmann <dborkman@redhat.com>	2013-02-08 03:04:34 +0000
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2013-02-14 10:47:35 -0800
commit	7340fda068b62790d612ebbd3a331a2847895f19 (patch)
tree	10c1ba3ef522d37ae8ed3d432ecc8178d978752b
parent	daba311aef717d505bc2ebb9a24f96ad15b7f394 (diff)