From: Daniel Borkmann <dborkman@redhat.com>
To: Milan Broz <gmazyland@gmail.com>
Cc: herbert@gondor.apana.org.au, tytso@mit.edu,
hannes@stressinduktion.org, linux-crypto@vger.kernel.org,
Julia Lawall <julia.lawall@lip6.fr>,
device-mapper development <dm-devel@redhat.com>
Subject: Re: [PATCH] crypto: memzero_explicit - make sure to clear out sensitive data
Date: Sun, 07 Sep 2014 21:53:11 +0200 [thread overview]
Message-ID: <540CB7A7.6070505@redhat.com> (raw)
In-Reply-To: <540C9295.8070409@gmail.com>
Hi Milan,
On 09/07/2014 07:15 PM, Milan Broz wrote:
> On 09/07/2014 06:46 PM, Daniel Borkmann wrote:
>> Recently, in commit 13aa93c70e71 ("random: add and use memzero_explicit()
>> for clearing data"), we have found that GCC may optimize some memset()
>> cases away when it detects a stack variable is not being used anymore
>> and going out of scope. This can happen, for example, in cases when we
>> are clearing out sensitive information such as keying material or any
>> e.g. intermediate results from crypto computations, etc.
>
> Hi,
>
> do you plan to send patches also for other crypto code in kernel?
> (I am almost sure we have the same pattern in dmcrypt.)
>
> If not, I can do this for the dmcrypt part.
Yes, please feel free and go ahead.
I have checked random driver, crypto and networking subsystem. With this
patch that I've sent here, these three are covered (in networking, there
was no such candidate, just one false positive in Bluetooth). But if you
find other areas with a similar case, feel free to go ahead and fix it,
very much appreciated.
Thanks & best,
Daniel
> Milan
>
prev parent reply other threads:[~2014-09-07 19:54 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-09-07 16:46 [PATCH] crypto: memzero_explicit - make sure to clear out sensitive data Daniel Borkmann
2014-09-07 17:15 ` Milan Broz
2014-09-07 19:53 ` Daniel Borkmann [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=540CB7A7.6070505@redhat.com \
--to=dborkman@redhat.com \
--cc=dm-devel@redhat.com \
--cc=gmazyland@gmail.com \
--cc=hannes@stressinduktion.org \
--cc=herbert@gondor.apana.org.au \
--cc=julia.lawall@lip6.fr \
--cc=linux-crypto@vger.kernel.org \
--cc=tytso@mit.edu \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).