1 files changed, 59 insertions, 0 deletions
diff --git a/net/sctp/sysctl.c b/net/sctp/sysctl.c
index 70e3ba5cb50b..043889ac86c0 100644
--- a/net/sctp/sysctl.c
+++ b/net/sctp/sysctl.c
@@ -62,6 +62,11 @@ extern long sysctl_sctp_mem[3];
 extern int sysctl_sctp_rmem[3];
 extern int sysctl_sctp_wmem[3];
+static int proc_sctp_do_hmac_alg(ctl_table *ctl,
+                                int write,
+                                void __user *buffer, size_t *lenp,
+                                loff_t *ppos);
 static ctl_table sctp_table[] = {
        {
                .procname       = "sctp_mem",
@@ -147,6 +152,12 @@ static ctl_table sctp_net_table[] = {
                .proc_handler   = proc_dointvec,
        },
        {
+                .procname       = "cookie_hmac_alg",
+                .maxlen         = 8,
+                .mode           = 0644,
+                .proc_handler   = proc_sctp_do_hmac_alg,
+        },
+        {
                .procname       = "valid_cookie_life",
                .data           = &init_net.sctp.valid_cookie_life,
                .maxlen         = sizeof(unsigned int),
@@ -289,6 +300,54 @@ static ctl_table sctp_net_table[] = {
        { /* sentinel */ }
 };
+static int proc_sctp_do_hmac_alg(ctl_table *ctl,
+                                int write,
+                                void __user *buffer, size_t *lenp,
+                                loff_t *ppos)
+{
+        struct net *net = current->nsproxy->net_ns;
+        char tmp[8];
+        ctl_table tbl;
+        int ret;
+        int changed = 0;
+        char *none = "none";
+        memset(&tbl, 0, sizeof(struct ctl_table));
+        if (write) {
+                tbl.data = tmp;
+                tbl.maxlen = 8;
+        } else {
+                tbl.data = net->sctp.sctp_hmac_alg ? : none;
+                tbl.maxlen = strlen(tbl.data);
+        }
+                ret = proc_dostring(&tbl, write, buffer, lenp, ppos);
+        if (write) {
+#ifdef CONFIG_CRYPTO_MD5
+                if (!strncmp(tmp, "md5", 3)) {
+                        net->sctp.sctp_hmac_alg = "md5";
+                        changed = 1;
+                }
+#endif
+#ifdef CONFIG_CRYPTO_SHA1
+                if (!strncmp(tmp, "sha1", 4)) {
+                        net->sctp.sctp_hmac_alg = "sha1";
+                        changed = 1;
+                }
+#endif
+                if (!strncmp(tmp, "none", 4)) {
+                        net->sctp.sctp_hmac_alg = NULL;
+                        changed = 1;
+                }
+                if (!changed)
+                        ret = -EINVAL;
+        }
+        return ret;
+}
 int sctp_sysctl_net_register(struct net *net)
 {
        struct ctl_table *table;

diff --git a/net/sctp/sysctl.c b/net/sctp/sysctl.c index 70e3ba5cb50b..043889ac86c0 100644 --- a/net/sctp/sysctl.c +++ b/net/sctp/sysctl.c
@@ -62,6 +62,11 @@ extern long sysctl_sctp_mem[3];
62	extern int sysctl_sctp_rmem[3];	62	extern int sysctl_sctp_rmem[3];
63	extern int sysctl_sctp_wmem[3];	63	extern int sysctl_sctp_wmem[3];
64		64
		65	static int proc_sctp_do_hmac_alg(ctl_table *ctl,
		66	int write,
		67	void __user buffer, size_t lenp,
		68
		69	loff_t *ppos);
65	static ctl_table sctp_table[] = {	70	static ctl_table sctp_table[] = {
66	{	71	{
67	.procname = "sctp_mem",	72	.procname = "sctp_mem",
@@ -147,6 +152,12 @@ static ctl_table sctp_net_table[] = {
147	.proc_handler = proc_dointvec,	152	.proc_handler = proc_dointvec,
148	},	153	},
149	{	154	{
		155	.procname = "cookie_hmac_alg",
		156	.maxlen = 8,
		157	.mode = 0644,
		158	.proc_handler = proc_sctp_do_hmac_alg,
		159	},
		160	{
150	.procname = "valid_cookie_life",	161	.procname = "valid_cookie_life",
151	.data = &init_net.sctp.valid_cookie_life,	162	.data = &init_net.sctp.valid_cookie_life,
152	.maxlen = sizeof(unsigned int),	163	.maxlen = sizeof(unsigned int),
@@ -289,6 +300,54 @@ static ctl_table sctp_net_table[] = {
289	{ /* sentinel */ }	300	{ /* sentinel */ }
290	};	301	};
291		302
		303	static int proc_sctp_do_hmac_alg(ctl_table *ctl,
		304	int write,
		305	void __user buffer, size_t lenp,
		306	loff_t *ppos)
		307	{
		308	struct net *net = current->nsproxy->net_ns;
		309	char tmp[8];
		310	ctl_table tbl;
		311	int ret;
		312	int changed = 0;
		313	char *none = "none";
		314
		315	memset(&tbl, 0, sizeof(struct ctl_table));
		316
		317	if (write) {
		318	tbl.data = tmp;
		319	tbl.maxlen = 8;
		320	} else {
		321	tbl.data = net->sctp.sctp_hmac_alg ? : none;
		322	tbl.maxlen = strlen(tbl.data);
		323	}
		324	ret = proc_dostring(&tbl, write, buffer, lenp, ppos);
		325
		326	if (write) {
		327	#ifdef CONFIG_CRYPTO_MD5
		328	if (!strncmp(tmp, "md5", 3)) {
		329	net->sctp.sctp_hmac_alg = "md5";
		330	changed = 1;
		331	}
		332	#endif
		333	#ifdef CONFIG_CRYPTO_SHA1
		334	if (!strncmp(tmp, "sha1", 4)) {
		335	net->sctp.sctp_hmac_alg = "sha1";
		336	changed = 1;
		337	}
		338	#endif
		339	if (!strncmp(tmp, "none", 4)) {
		340	net->sctp.sctp_hmac_alg = NULL;
		341	changed = 1;
		342	}
		343
		344	if (!changed)
		345	ret = -EINVAL;
		346	}
		347
		348	return ret;
		349	}
		350
292	int sctp_sysctl_net_register(struct net *net)	351	int sctp_sysctl_net_register(struct net *net)
293	{	352	{
294	struct ctl_table *table;	353	struct ctl_table *table;