Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit b617b702 authored by Herbert Xu's avatar Herbert Xu
Browse files

crypto: rng - Zero seed in crypto_rng_reset 



If we allocate a seed on behalf ot the user in crypto_rng_reset,
we must ensure that it is zeroed afterwards or the RNG may be
compromised.

Reported-by: default avatarStephan Mueller <smueller@chronox.de>
Signed-off-by: default avatarHerbert Xu <herbert@gondor.apana.org.au>
parent 654ae152

crypto/rng.c

+1 −1
Original line number Diff line number Diff line
@@ -53,7 +53,7 @@ int crypto_rng_reset(struct crypto_rng *tfm, const u8 *seed, unsigned int slen) 


	err = crypto_rng_alg(tfm)->seed(tfm, seed, slen);



	kfree(buf);

	kzfree(buf);

	return err;

}

EXPORT_SYMBOL_GPL(crypto_rng_reset);