cifs: Use kzfree() to zero out the password [ Upstream commit 478228e57f81f6cb60798d54fc02a74ea7dd267e ] It's safer to zero out the password so that it can never be disclosed. Fixes: 0c219f5799c7 ("cifs: set domainName when a domain-key is used in multiuser") Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com> Signed-off-by: Steve French <stfrench@microsoft.com> Signed-off-by: Sasha Levin <sashal@kernel.org>

commit: 3571c9bb0158cb12092e77123f19fa825d3d8005 [log] [tgz]
author: Dan Carpenter <dan.carpenter@oracle.com> Tue Aug 27 13:59:17 2019 +0300
committer: Greg Kroah-Hartman <gregkh@linuxfoundation.org> Sat Sep 21 07:14:17 2019 +0200
tree: fa545f41b87cad4bdf825ecca3385b1b8212e8cf
parent: 16764d7486d02b1699ae16e91d7a577602398b17 [diff] [blame]
diff --git a/fs/cifs/connect.c b/fs/cifs/connect.c
index 2a199f4..e43ba6d 100644
--- a/fs/cifs/connect.c
+++ b/fs/cifs/connect.c

@@ -2567,7 +2567,7 @@
 			rc = -ENOMEM;
 			kfree(vol->username);
 			vol->username = NULL;
-			kfree(vol->password);
+			kzfree(vol->password);
 			vol->password = NULL;
 			goto out_key_put;
 		}
commit	3571c9bb0158cb12092e77123f19fa825d3d8005	[log] [tgz]
author	Dan Carpenter <dan.carpenter@oracle.com>	Tue Aug 27 13:59:17 2019 +0300
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	Sat Sep 21 07:14:17 2019 +0200
tree	fa545f41b87cad4bdf825ecca3385b1b8212e8cf
parent	16764d7486d02b1699ae16e91d7a577602398b17 [diff] [blame]