| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <YZObImtJITs1ZfUc@kroah.com>
Date: Tue, 16 Nov 2021 12:50:58 +0100
From: Greg Kroah-Hartman <gregkh@...uxfoundation.org>
To: Sandy Harris <sandyinchina@...il.com>
Cc: LKML <linux-kernel@...r.kernel.org>,
Linux Crypto Mailing List <linux-crypto@...r.kernel.org>,
"David S. Miller" <davem@...emloft.net>,
Herbert Xu <herbert@...dor.apana.org.au>
Subject: Re: [PATCH 1/8] Replace memset() with memzero_explicit()
On Tue, Nov 16, 2021 at 07:25:22PM +0800, Sandy Harris wrote:
> Replace memset(address,0,bytes) which may be optimised away
> with memzero_explicit(address,bytes) which resists
> such optimisation
>
> ---
> crypto/des_generic.c | 4 ++--
> 1 file changed, 2 insertions(+), 2 deletions(-)
>
> diff --git a/crypto/des_generic.c b/crypto/des_generic.c
> index c85354a5e94c..105a32e7afea 100644
> --- a/crypto/des_generic.c
> +++ b/crypto/des_generic.c
> @@ -30,7 +30,7 @@ static int des_setkey(struct crypto_tfm *tfm, const u8 *key,
> err = 0;
> }
> if (err)
> - memset(dctx, 0, sizeof(*dctx));
> + memzero_explicit(dctx, sizeof(*dctx));
> return err;
> }
>
> @@ -62,7 +62,7 @@ static int des3_ede_setkey(struct crypto_tfm *tfm,
> const u8 *key,
> err = 0;
> }
> if (err)
> - memset(dctx, 0, sizeof(*dctx));
> + memzero_explicit(dctx, sizeof(*dctx));
> return err;
> }
>
Have you looked at the output of the compiler to see if this really is
needed or not?
And what exactly are you zeroing out that could be read afterward
somehow?
thanks,
greg k-h
Powered by blists - more mailing lists