diff mbox series

[v4,05/12] crypto/qat: use secure memset

Message ID	20241114184452.31854-6-stephen@networkplumber.org (mailing list archive)
State	Superseded
Delegated to:	Thomas Monjalon
Headers	From: Stephen Hemminger <stephen@networkplumber.org> To: dev@dpdk.org Cc: Stephen Hemminger <stephen@networkplumber.org>, Bruce Richardson <bruce.richardson@intel.com>, Kai Ji <kai.ji@intel.com> Subject: [PATCH v4 05/12] crypto/qat: use secure memset Date: Thu, 14 Nov 2024 10:43:27 -0800 Message-ID: <20241114184452.31854-6-stephen@networkplumber.org> In-Reply-To: <20241114184452.31854-1-stephen@networkplumber.org> References: <20241114011129.451243-1-stephen@networkplumber.org> <20241114184452.31854-1-stephen@networkplumber.org> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Precedence: list Errors-To: dev-bounces@dpdk.org
Series	memset security fixes \| [v4,00/12] memset security fixes [v4,01/12] eal: introduce new secure memory fill [v4,02/12] eal: add new secure free function [v4,03/12] crypto/qat: force zero of keys [v4,04/12] crypto/qat: fix size calculation for memset [v4,05/12] crypto/qat: use secure memset [v4,06/12] bus/uacce: remove memset before free [v4,07/12] compress/octeontx: remove unnecessary memset [v4,08/12] test: remove unneeded memset [v4,09/12] net/ntnic: remove unnecessary void cast [v4,10/12] net/ntnic: check result of malloc [v4,11/12] net/ntnic: remove unnecessary memset [v4,12/12] devtools/cocci: add script to find problematic memset

Checks

Context	Check	Description
ci/checkpatch	success	coding style OK

Commit Message

Stephen Hemminger Nov. 14, 2024, 6:43 p.m. UTC

Regular memset maybe removed by compiler if done before a free
function. Use new rte_free_sensitive instead.

Signed-off-by: Stephen Hemminger <stephen@networkplumber.org>
Acked-by: Bruce Richardson <bruce.richardson@intel.com>
---
 drivers/crypto/qat/qat_asym.c | 5 +----
 1 file changed, 1 insertion(+), 4 deletions(-)

diff mbox series

Patch

diff --git a/drivers/crypto/qat/qat_asym.c b/drivers/crypto/qat/qat_asym.c
index f5b56b2f71..d8a1406819 100644
--- a/drivers/crypto/qat/qat_asym.c
+++ b/drivers/crypto/qat/qat_asym.c
@@ -102,10 +102,7 @@  static const struct rte_driver cryptodev_qat_asym_driver = {
 		curve.p.data, curve.bytesize)
 
 #define PARAM_CLR(what) \
-	do { \
-		memset(what.data, 0, what.length); \
-		rte_free(what.data);	\
-	} while (0)
+	rte_free_sensitive(what.data)
 
 static void
 request_init(struct icp_qat_fw_pke_request *qat_req)