On Thu, 2020-06-04 at 20:30 +0300, Denis Efremov wrote: > > On 6/4/20 7:27 PM, Joe Perches wrote: > > On Thu, 2020-06-04 at 17:08 +0300, Denis Efremov wrote: > > > Check for memset() with 0 followed by kfree(). > > > > Perhaps those uses should be memzero_explicit or kvfree_sensitive. > > Thanks, I will add memzero_explicit(). However, I can't find > kvfree_sensitive(). > Is it in next already?
Yes $ git grep kvfree_sensitive include/linux/mm.h:extern void kvfree_sensitive(const void *addr, size_t len); mm/util.c: * kvfree_sensitive - Free a data object containing sensitive information. mm/util.c:void kvfree_sensitive(const void *addr, size_t len) mm/util.c:EXPORT_SYMBOL(kvfree_sensitive); security/keys/keyctl.c: kvfree_sensitive(payload, plen); security/keys/keyctl.c: kvfree_sensitive(payload, plen); security/keys/keyctl.c: kvfree_sensitive(key_data, key_data_len); security/keys/keyctl.c: kvfree_sensitive(key_data, key_data_len); security/keys/keyctl.c: kvfree_sensitive(payload, plen); _______________________________________________ Cocci mailing list Cocci@systeme.lip6.fr https://systeme.lip6.fr/mailman/listinfo/cocci
