Re: [Qemu-devel] [PATCH for-2.8] virtio-crypto: zeroize the key material

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Qemu-devel] [PATCH for-2.8] virtio-crypto: zeroize the key material

From:	Michael S. Tsirkin
Subject:	Re: [Qemu-devel] [PATCH for-2.8] virtio-crypto: zeroize the key material before free
Date:	Tue, 6 Dec 2016 21:22:43 +0200

On Tue, Dec 06, 2016 at 05:33:37PM +0000, Stefan Hajnoczi wrote:
> On Tue, Dec 06, 2016 at 03:40:49PM +0200, Michael S. Tsirkin wrote:
> > On Tue, Dec 06, 2016 at 05:29:13PM +0800, Gonglei wrote:
> > > Zeroize the memory of CryptoDevBackendSymOpInfo structure pointed
> > > for key material security.
> > > 
> > > Signed-off-by: Gonglei <address@hidden>
> > > ---
> > >  hw/virtio/virtio-crypto.c | 13 ++++++++++++-
> > >  1 file changed, 12 insertions(+), 1 deletion(-)
> > > 
> > > diff --git a/hw/virtio/virtio-crypto.c b/hw/virtio/virtio-crypto.c
> > > index 2f2467e..ecb19b6 100644
> > > --- a/hw/virtio/virtio-crypto.c
> > > +++ b/hw/virtio/virtio-crypto.c
> > > @@ -337,7 +337,18 @@ static void 
> > > virtio_crypto_free_request(VirtIOCryptoReq *req)
> > >  {
> > >      if (req) {
> > >          if (req->flags == CRYPTODEV_BACKEND_ALG_SYM) {
> > > -            g_free(req->u.sym_op_info);
> > > +            size_t max_len;
> > > +            CryptoDevBackendSymOpInfo *op_info = req->u.sym_op_info;
> > > +
> > > +            max_len = op_info->iv_len +
> > > +                      op_info->aad_len +
> > > +                      op_info->src_len +
> > > +                      op_info->dst_len +
> > > +                      op_info->digest_result_len;
> > > +
> > > +            /* Zeroize and free request data structure */
> > > +            memset(op_info, 0, sizeof(*op_info) + max_len);
> > > +            g_free(op_info);
> > 
> > Write into memory, then free it?  This looks rather strange. Why are we
> > doing this?
> 
> Common practice with sensitive information (key material, passwords,
> etc).

Some kind of explanation about what makes this one
more sensitive than others would be nice.

Also, what makes it 2.8 material? Considering the pointer math
involved, it's not risk-free.

> coredumps, memory disclosure bugs when heap memory is reused, etc.
>
> Sensitive information is sometimes also held in mlocked pages to prevent
> it being swapped to disk but that's not being done here.
> 
> Perhaps the comment should be more explicit but this patch seems
> reasonable.

Right.  One can see memset and free at a glance.
The comment and the commit log should explain the why,
not the what.

> Reviewed-by: Stefan Hajnoczi <address@hidden>

[Prev in Thread]

Current Thread

[Next in Thread]

[Qemu-devel] [PATCH for-2.8] virtio-crypto: zeroize the key material before free, Gonglei, 2016/12/06
- Re: [Qemu-devel] [PATCH for-2.8] virtio-crypto: zeroize the key material before free, Michael S. Tsirkin, 2016/12/06
  - Re: [Qemu-devel] [PATCH for-2.8] virtio-crypto: zeroize the key material before free, Stefan Hajnoczi, 2016/12/06
    - Re: [Qemu-devel] [PATCH for-2.8] virtio-crypto: zeroize the key material before free, Michael S. Tsirkin <=
    - Re: [Qemu-devel] [PATCH for-2.8] virtio-crypto: zeroize the key material before free, Eric Blake, 2016/12/06
    - Re: [Qemu-devel] [PATCH for-2.8] virtio-crypto: zeroize the key material before free, Stefan Hajnoczi, 2016/12/06
    - Re: [Qemu-devel] [PATCH for-2.8] virtio-crypto: zeroize the key material before free, Gonglei (Arei), 2016/12/06

Prev by Date: Re: [Qemu-devel] [PATCH] virtio: fix HW_COMPAT_2_6 macro for virtio-*-pci drivers
Next by Date: Re: [Qemu-devel] [PATCH v4 3/7] fw-cfg: expose "file_slots" parameter in fw_cfg_init_io_dma()
Previous by thread: Re: [Qemu-devel] [PATCH for-2.8] virtio-crypto: zeroize the key material before free
Next by thread: Re: [Qemu-devel] [PATCH for-2.8] virtio-crypto: zeroize the key material before free
Index(es):
- Date
- Thread