dm ioctl: add flag to wipe buffers for secure data
authorMilan Broz <mbroz@redhat.com>
Thu, 24 Mar 2011 13:54:30 +0000 (13:54 +0000)
committerAlasdair G Kergon <agk@redhat.com>
Thu, 24 Mar 2011 13:54:30 +0000 (13:54 +0000)
commitf868120549fc1664b2c451d4b9882a363928c698
tree20d95a8f3b9fac1348bd42a5ff1e3f9d43918b93
parent6bb43b5d1f54fb44c0408d86d5e71e4405a3ebe1
dm ioctl: add flag to wipe buffers for secure data

Add DM_SECURE_DATA_FLAG which userspace can use to ensure
that all buffers allocated for dm-ioctl are wiped
immediately after use.

The user buffer is wiped as well (we do not want to keep
and return sensitive data back to userspace if the flag is set).

Wiping is useful for cryptsetup to ensure that the key
is present in memory only in defined places and only
for the time needed.

(For crypt, key can be present in table during load or table
status, wait and message commands).

Signed-off-by: Milan Broz <mbroz@redhat.com>
Signed-off-by: Alasdair G Kergon <agk@redhat.com>
drivers/md/dm-ioctl.c
include/linux/dm-ioctl.h