crypto: rng - Zero seed in crypto_rng_reset

If we allocate a seed on behalf ot the user in crypto_rng_reset,
we must ensure that it is zeroed afterwards or the RNG may be
compromised.

Reported-by: Stephan Mueller <smueller@chronox.de>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
(cherry picked from commit b617b702da4e922277806f81c411d3051107d462)

Orabug: 27809271

Signed-off-by: John Haxby <john.haxby@oracle.com>
Reviewed-by: Håkon Bugge <haakon.bugge@oracle.com>

diff --git a/crypto/rng.c b/crypto/rng.c
index e98ce1ca527dc3e3a7a772a504a94b33cd074887..9ab8d903f72d6616672e1a55b3134d5c82beb54e 100644 (file)
--- a/crypto/rng.c
+++ b/crypto/rng.c
@@ -85,7 +85,7 @@ int crypto_rng_reset(struct crypto_rng *tfm, const u8 *seed, unsigned int slen)
 
        err = tfm->seed(tfm, seed, slen);
 
-       kfree(buf);
+       kzfree(buf);
        return err;
 }
 EXPORT_SYMBOL_GPL(crypto_rng_reset);