On Mon, Sep 9, 2024 at 1:23 PM Konrad Dybcio <konradyb...@kernel.org> wrote: > > + > > + memzero_explicit(secret_buf, sw_secret_size); > > + > > +out_free_wrapped: > > Is there a reason to zero out the buffer that's being zero-allocated? >
It's my understanding that it is a good practice in crypto routines to immediately and explicitly zero out the memory used for storing secrets. Bart
