crypto: authenc - don't leak pointers to authenc keys

author Tudor-Dan Ambarus <tudor.ambarus@microchip.com>

Tue, 3 Apr 2018 06:39:00 +0000 (09:39 +0300)

committer Herbert Xu <herbert@gondor.apana.org.au>

Fri, 20 Apr 2018 16:58:30 +0000 (00:58 +0800)
author Tudor-Dan Ambarus <tudor.ambarus@microchip.com>
Tue, 3 Apr 2018 06:39:00 +0000 (09:39 +0300)
committer Herbert Xu <herbert@gondor.apana.org.au>
Fri, 20 Apr 2018 16:58:30 +0000 (00:58 +0800)
diff --git a/crypto/authenc.c b/crypto/authenc.c

index d3d6d72fe649ff00e87bf3a2eb0db591da11081e..4fa8d40d947b7594f8a7b089a8a86e8ea1b5e81d 100644 (file)
--- a/crypto/authenc.c
+++ b/crypto/authenc.c
@@ -108,6 +108,7 @@ static int crypto_authenc_setkey(struct crypto_aead *authenc, const u8 *key,
                                        CRYPTO_TFM_RES_MASK);
  
  out:
+       memzero_explicit(&keys, sizeof(keys));
         return err;
  
  badkey:
author	Tudor-Dan Ambarus <tudor.ambarus@microchip.com>
	Tue, 3 Apr 2018 06:39:00 +0000 (09:39 +0300)
committer	Herbert Xu <herbert@gondor.apana.org.au>
	Fri, 20 Apr 2018 16:58:30 +0000 (00:58 +0800)