Re: [PATCH 1/2] crypto: ecdh - zeroize crpytographic keys after use

From: Herbert Xu
Date: Thu Apr 11 2024 - 22:55:57 EST

Next message: Stephen Boyd: "Re: [PATCH v9 5/9] clk: mmp: Add Marvell PXA1908 clock driver"
Previous message: Jakub Kicinski: "Re: [net-next PatchV2] octeontx2-af: map management port always to first PF"
In reply to: Herbert Xu: "Re: [PATCH 2/2] crypto: aead,cipher - zeroize key buffer after use"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Apr 11, 2024 at 11:51:56PM +0000, Hailey Mothershead wrote:
>
> @@ -111,7 +113,7 @@ static int ecdh_compute_value(struct kpp_request *req)
> free_all:
> kfree_sensitive(shared_secret);
> free_pubkey:
> - kfree(public_key);
> + kfree_sensitive(public_key);

It makes no sense to zero the public key. Nack.
--
Email: Herbert Xu <herbert@xxxxxxxxxxxxxxxxxxx>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt

Next message: Stephen Boyd: "Re: [PATCH v9 5/9] clk: mmp: Add Marvell PXA1908 clock driver"
Previous message: Jakub Kicinski: "Re: [net-next PatchV2] octeontx2-af: map management port always to first PF"
In reply to: Herbert Xu: "Re: [PATCH 2/2] crypto: aead,cipher - zeroize key buffer after use"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]