Cryptographically used keys should be zeroed out when our session ends resp. memory is freed, thus do not leave them somewhere in the memory. Daniel Borkmann (2): net: sctp: sctp_setsockopt_auth_key: use kzfree instead of kfree net: sctp: sctp_endpoint_free: zero out secret key data net/sctp/endpointola.c | 5 +++++ net/sctp/socket.c | 2 +- 2 files changed, 6 insertions(+), 1 deletion(-) -- 1.7.11.7 -- To unsubscribe from this list: send the line "unsubscribe linux-sctp" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
