Hailey Mothershead b502d4a088 crypto: aead,cipher - zeroize key buffer after use ...

[ Upstream commit 23e4099bdc ]

I.G 9.7.B for FIPS 140-3 specifies that variables temporarily holding
cryptographic information should be zeroized once they are no longer
needed. Accomplish this by using kfree_sensitive for buffers that
previously held the private key.

Signed-off-by: Hailey Mothershead <hailmo@amazon.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
Signed-off-by: Sasha Levin <sashal@kernel.org>

2024-07-11 12:49:04 +02:00

3.2 KiB

Raw Permalink Blame History

View Raw