tcp md5sig: Share MD5 Signature option parser between IPv4 and IPv6.

Signed-off-by: YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org>
author: YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org> 2008-04-16 23:29:53 -0400
committer: YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org> 2008-06-11 13:38:18 -0400
commit: 7d5d5525bd88313e6fd90c0659665aee5114bc2d (patch)
tree: 41517e753220261c8cc46d975977cfd711892f6c /net/ipv4/tcp_ipv4.c
parent: 81b302a321a0d99ff172b8cb2a8de17bff2f9499 (diff)
1 files changed, 1 insertions, 41 deletions
diff --git a/net/ipv4/tcp_ipv4.c b/net/ipv4/tcp_ipv4.c
index cd601a866c2f..56f550933644 100644
--- a/net/ipv4/tcp_ipv4.c
+++ b/net/ipv4/tcp_ipv4.c
@@ -1134,52 +1134,12 @@ static int tcp_v4_inbound_md5_hash(struct sock *sk, struct sk_buff *skb)
        struct tcp_md5sig_key *hash_expected;
        const struct iphdr *iph = ip_hdr(skb);
        struct tcphdr *th = tcp_hdr(skb);
-        int length = (th->doff << 2) - sizeof(struct tcphdr);
        int genhash;
-        unsigned char *ptr;
        unsigned char newhash[16];
        hash_expected = tcp_v4_md5_do_lookup(sk, iph->saddr);
+        hash_location = tcp_parse_md5sig_option(th);
-        /*
-         * If the TCP option length is less than the TCP_MD5SIG
-         * option length, then we can shortcut
-         */
-        if (length < TCPOLEN_MD5SIG) {
-                if (hash_expected)
-                        return 1;
-                else
-                        return 0;
-        }
-        /* Okay, we can't shortcut - we have to grub through the options */
-        ptr = (unsigned char *)(th + 1);
-        while (length > 0) {
-                int opcode = *ptr++;
-                int opsize;
-                switch (opcode) {
-                case TCPOPT_EOL:
-                        goto done_opts;
-                case TCPOPT_NOP:
-                        length--;
-                        continue;
-                default:
-                        opsize = *ptr++;
-                        if (opsize < 2)
-                                goto done_opts;
-                        if (opsize > length)
-                                goto done_opts;
-                        if (opcode == TCPOPT_MD5SIG) {
-                                hash_location = ptr;
-                                goto done_opts;
-                        }
-                }
-                ptr += opsize-2;
-                length -= opsize;
-        }
-done_opts:
        /* We've parsed the options - do we have a hash? */
        if (!hash_expected && !hash_location)
                return 0;
author	YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org>	2008-04-16 23:29:53 -0400
committer	YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org>	2008-06-11 13:38:18 -0400
commit	7d5d5525bd88313e6fd90c0659665aee5114bc2d (patch)
tree	41517e753220261c8cc46d975977cfd711892f6c /net/ipv4/tcp_ipv4.c
parent	81b302a321a0d99ff172b8cb2a8de17bff2f9499 (diff)

diff --git a/net/ipv4/tcp_ipv4.c b/net/ipv4/tcp_ipv4.c index cd601a866c2f..56f550933644 100644 --- a/net/ipv4/tcp_ipv4.c +++ b/net/ipv4/tcp_ipv4.c
@@ -1134,52 +1134,12 @@ static int tcp_v4_inbound_md5_hash(struct sock sk, struct sk_buff skb)
1134	struct tcp_md5sig_key *hash_expected;	1134	struct tcp_md5sig_key *hash_expected;
1135	const struct iphdr *iph = ip_hdr(skb);	1135	const struct iphdr *iph = ip_hdr(skb);
1136	struct tcphdr *th = tcp_hdr(skb);	1136	struct tcphdr *th = tcp_hdr(skb);
1137	int length = (th->doff << 2) - sizeof(struct tcphdr);
1138	int genhash;	1137	int genhash;
1139	unsigned char *ptr;
1140	unsigned char newhash[16];	1138	unsigned char newhash[16];
1141		1139
1142	hash_expected = tcp_v4_md5_do_lookup(sk, iph->saddr);	1140	hash_expected = tcp_v4_md5_do_lookup(sk, iph->saddr);
		1141	hash_location = tcp_parse_md5sig_option(th);
1143		1142
1144	/*
1145	* If the TCP option length is less than the TCP_MD5SIG
1146	* option length, then we can shortcut
1147	*/
1148	if (length < TCPOLEN_MD5SIG) {
1149	if (hash_expected)
1150	return 1;
1151	else
1152	return 0;
1153	}
1154
1155	/* Okay, we can't shortcut - we have to grub through the options */
1156	ptr = (unsigned char *)(th + 1);
1157	while (length > 0) {
1158	int opcode = *ptr++;
1159	int opsize;
1160
1161	switch (opcode) {
1162	case TCPOPT_EOL:
1163	goto done_opts;
1164	case TCPOPT_NOP:
1165	length--;
1166	continue;
1167	default:
1168	opsize = *ptr++;
1169	if (opsize < 2)
1170	goto done_opts;
1171	if (opsize > length)
1172	goto done_opts;
1173
1174	if (opcode == TCPOPT_MD5SIG) {
1175	hash_location = ptr;
1176	goto done_opts;
1177	}
1178	}
1179	ptr += opsize-2;
1180	length -= opsize;
1181	}
1182	done_opts:
1183	/* We've parsed the options - do we have a hash? */	1143	/* We've parsed the options - do we have a hash? */
1184	if (!hash_expected && !hash_location)	1144	if (!hash_expected && !hash_location)
1185	return 0;	1145	return 0;