Re: [PATCH v2 2/2] crypto: aead,cipher - zeroize key buffer after use

From: Herbert Xu
Date: Fri Apr 26 2024 - 05:30:22 EST

Next message: Laurent Pinchart: "Re: [PATCH] drm: zynqmp_dpsub: Always register bridge"
Previous message: Johan Hovold: "Re: [PATCH 4/6] HID: i2c-hid: elan: fix reset suspend current leakage"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Apr 15, 2024 at 10:19:15PM +0000, Hailey Mothershead wrote:
> I.G 9.7.B for FIPS 140-3 specifies that variables temporarily holding
> cryptographic information should be zeroized once they are no longer
> needed. Accomplish this by using kfree_sensitive for buffers that
> previously held the private key.
>
> Signed-off-by: Hailey Mothershead <hailmo@xxxxxxxxxx>
> ---
> crypto/aead.c | 3 +--
> crypto/cipher.c | 3 +--
> 2 files changed, 2 insertions(+), 4 deletions(-)

Patch applied. Thanks.
--
Email: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt

Next message: Laurent Pinchart: "Re: [PATCH] drm: zynqmp_dpsub: Always register bridge"
Previous message: Johan Hovold: "Re: [PATCH 4/6] HID: i2c-hid: elan: fix reset suspend current leakage"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]