Merge pull request #31692 from rzarzynski/wip-fips-zeroize-memset_bzero

FIPS: audit and switch some memset & bzero users

Reviewed-by: Marcus Watts <mwatts@redhat.com>

diff --cc src/common/admin_socket_client.cc
Simple merge

diff --cc src/common/ceph_context.cc
Simple merge

diff --cc src/librados/librados_c.cc
Simple merge

diff --cc src/librbd/internal.cc
Simple merge

diff --cc src/librbd/librbd.cc
Simple merge

diff --cc src/mds/MDCache.cc
Simple merge

diff --cc src/msg/async/rdma/Infiniband.cc
Simple merge

diff --cc src/rgw/rgw_file.h
Simple merge

diff --cc src/rgw/rgw_kms.cc
index cb49193bb2ee70ff527505d0b281496531a4d0c7,ce40d1627a8eda671059421477b86fe524184901..5a86b25fefcc6f492305c817fb67246463f984e0
--- 1/src/rgw/rgw_kms.cc
--- 2/src/rgw/rgw_kms.cc
+++ b/src/rgw/rgw_kms.cc
@@@ -182,10 -169,10 +182,10 @@@ static int request_key_from_vault_with_
      --res;
    }
    vault_token = std::string{buf, static_cast<size_t>(res)};
-   memset(buf, 0, sizeof(buf));
+   ::ceph::crypto::zeroize_for_security(buf, sizeof(buf));
  
 -  vault_addr = cct->_conf->rgw_crypt_vault_addr;
 -  if (vault_addr.empty()) {
 +  secret_url = cct->_conf->rgw_crypt_vault_addr;
 +  if (secret_url.empty()) {
      ldout(cct, 0) << "ERROR: Vault address not set in rgw_crypt_vault_addr" << dendl;
      return -EINVAL;
    }