Re: [patch 0/8] kzfree()

From: Andrew Morton
Date: Mon Feb 16 2009 - 15:20:43 EST

Next message: Johannes Weiner: "Re: [patch 7/8] ecryptfs: use kzfree()"
Previous message: Robert Hancock: "[PATCH] libata: Don't trust current capacity values in identify words57-58"
In reply to: Pekka Enberg: "Re: [patch 0/8] kzfree()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 16 Feb 2009 21:58:14 +0200 Pekka Enberg <penberg@xxxxxxxxxxxxxx> wrote:

> Hi Andrew,
>
> Andrew Morton wrote:
> > On Mon, 16 Feb 2009 15:29:26 +0100 Johannes Weiner <hannes@xxxxxxxxxxx> wrote:
> >
> >> This series introduces kzfree() and converts callsites which do
> >> memset() + kfree() explicitely.
> >
> > I dunno, this looks like putting lipstick on a pig.
> >
> > What is the point in zeroing memory just before freeing it? afacit
> > this is always done as a poor-man's poisoning operation.
>
> I think they do it as security paranoia to make sure other callers don't
> accidentally see parts of crypto keys, passwords, and such. So I don't
> think we can just get rid of the memsets.

Ok, you're right - I thought only a couple were doing that but it looks like
all of them except for perhaps ATM are being non-stupid.
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Johannes Weiner: "Re: [patch 7/8] ecryptfs: use kzfree()"
Previous message: Robert Hancock: "[PATCH] libata: Don't trust current capacity values in identify words57-58"
In reply to: Pekka Enberg: "Re: [patch 0/8] kzfree()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]