3.16.52-rc1 review patch. If anyone has any objections, please let me know.
------------------
From: "Jason A. Donenfeld" Jason@zx2c4.com
commit 910801809b2e40a4baedd080ef5d80b4a180e70e upstream.
Error paths forgot to zero out sensitive material, so this patch changes some kfrees into a kzfrees.
Signed-off-by: Jason A. Donenfeld Jason@zx2c4.com Signed-off-by: David Howells dhowells@redhat.com Reviewed-by: Eric Biggers ebiggers3@gmail.com Cc: Herbert Xu herbert@gondor.apana.org.au Cc: Kirill Marinushkin k.marinushkin@gmail.com Cc: security@kernel.org [bwh: Backported to 3.16: there's only one kfree() to change] Signed-off-by: Ben Hutchings ben@decadent.org.uk --- security/keys/big_key.c | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-)
--- a/security/keys/big_key.c +++ b/security/keys/big_key.c @@ -135,7 +135,7 @@ void big_key_destroy(struct key *key) path->mnt = NULL; path->dentry = NULL; } else { - kfree(key->payload.data); + kzfree(key->payload.data); key->payload.data = NULL; } }