1 files changed, 11 insertions, 22 deletions
diff --git a/net/ipv6/tcp_ipv6.c b/net/ipv6/tcp_ipv6.c
index cff778b23a7f..78185a409212 100644
--- a/net/ipv6/tcp_ipv6.c
+++ b/net/ipv6/tcp_ipv6.c
@@ -748,7 +748,7 @@ static int tcp_v6_md5_hash_pseudoheader(struct tcp_md5sig_pool *hp,
        ipv6_addr_copy(&bp->saddr, saddr);
        ipv6_addr_copy(&bp->daddr, daddr);
        bp->protocol = cpu_to_be32(IPPROTO_TCP);
-        bp->len = cpu_to_be16(nbytes);
+        bp->len = cpu_to_be32(nbytes);
        sg_init_one(&sg, bp, sizeof(*bp));
        return crypto_hash_update(&hp->md5_desc, &sg, sizeof(*bp));
@@ -849,28 +849,17 @@ static int tcp_v6_inbound_md5_hash (struct sock *sk, struct sk_buff *skb)
        hash_expected = tcp_v6_md5_do_lookup(sk, &ip6h->saddr);
        hash_location = tcp_parse_md5sig_option(th);
-        /* do we have a hash as expected? */
+        /* We've parsed the options - do we have a hash? */
-        if (!hash_expected) {
+        if (!hash_expected && !hash_location)
-                if (!hash_location)
+                return 0;
-                        return 0;
-                if (net_ratelimit()) {
+        if (hash_expected && !hash_location) {
-                        printk(KERN_INFO "MD5 Hash NOT expected but found "
+                NET_INC_STATS_BH(sock_net(sk), LINUX_MIB_TCPMD5NOTFOUND);
-                               "(" NIP6_FMT ", %u)->"
-                               "(" NIP6_FMT ", %u)\n",
-                               NIP6(ip6h->saddr), ntohs(th->source),
-                               NIP6(ip6h->daddr), ntohs(th->dest));
-                }
                return 1;
        }
-        if (!hash_location) {
+        if (!hash_expected && hash_location) {
-                if (net_ratelimit()) {
+                NET_INC_STATS_BH(sock_net(sk), LINUX_MIB_TCPMD5UNEXPECTED);
-                        printk(KERN_INFO "MD5 Hash expected but NOT found "
-                               "(" NIP6_FMT ", %u)->"
-                               "(" NIP6_FMT ", %u)\n",
-                               NIP6(ip6h->saddr), ntohs(th->source),
-                               NIP6(ip6h->daddr), ntohs(th->dest));
-                }
                return 1;
        }
@@ -1105,8 +1094,8 @@ static void tcp_v6_send_ack(struct sk_buff *skb, u32 seq, u32 ack, u32 win, u32
                *topt++ = htonl((TCPOPT_NOP << 24) | (TCPOPT_NOP << 16) |
                                (TCPOPT_MD5SIG << 8) | TCPOLEN_MD5SIG);
                tcp_v6_md5_hash_hdr((__u8 *)topt, key,
-                                    &ipv6_hdr(skb)->daddr,
+                                    &ipv6_hdr(skb)->saddr,
-                                    &ipv6_hdr(skb)->saddr, t1);
+                                    &ipv6_hdr(skb)->daddr, t1);
        }
 #endif

diff --git a/net/ipv6/tcp_ipv6.c b/net/ipv6/tcp_ipv6.c index cff778b23a7f..78185a409212 100644 --- a/net/ipv6/tcp_ipv6.c +++ b/net/ipv6/tcp_ipv6.c
@@ -748,7 +748,7 @@ static int tcp_v6_md5_hash_pseudoheader(struct tcp_md5sig_pool *hp,
748	ipv6_addr_copy(&bp->saddr, saddr);	748	ipv6_addr_copy(&bp->saddr, saddr);
749	ipv6_addr_copy(&bp->daddr, daddr);	749	ipv6_addr_copy(&bp->daddr, daddr);
750	bp->protocol = cpu_to_be32(IPPROTO_TCP);	750	bp->protocol = cpu_to_be32(IPPROTO_TCP);
751	bp->len = cpu_to_be16(nbytes);	751	bp->len = cpu_to_be32(nbytes);
752		752
753	sg_init_one(&sg, bp, sizeof(*bp));	753	sg_init_one(&sg, bp, sizeof(*bp));
754	return crypto_hash_update(&hp->md5_desc, &sg, sizeof(*bp));	754	return crypto_hash_update(&hp->md5_desc, &sg, sizeof(*bp));
@@ -849,28 +849,17 @@ static int tcp_v6_inbound_md5_hash (struct sock sk, struct sk_buff skb)
849	hash_expected = tcp_v6_md5_do_lookup(sk, &ip6h->saddr);	849	hash_expected = tcp_v6_md5_do_lookup(sk, &ip6h->saddr);
850	hash_location = tcp_parse_md5sig_option(th);	850	hash_location = tcp_parse_md5sig_option(th);
851		851
852	/* do we have a hash as expected? */	852	/* We've parsed the options - do we have a hash? */
853	if (!hash_expected) {	853	if (!hash_expected && !hash_location)
854	if (!hash_location)	854	return 0;
855	return 0;	855
856	if (net_ratelimit()) {	856	if (hash_expected && !hash_location) {
857	printk(KERN_INFO "MD5 Hash NOT expected but found "	857	NET_INC_STATS_BH(sock_net(sk), LINUX_MIB_TCPMD5NOTFOUND);
858	"(" NIP6_FMT ", %u)->"
859	"(" NIP6_FMT ", %u)\n",
860	NIP6(ip6h->saddr), ntohs(th->source),
861	NIP6(ip6h->daddr), ntohs(th->dest));
862	}
863	return 1;	858	return 1;
864	}	859	}
865		860
866	if (!hash_location) {	861	if (!hash_expected && hash_location) {
867	if (net_ratelimit()) {	862	NET_INC_STATS_BH(sock_net(sk), LINUX_MIB_TCPMD5UNEXPECTED);
868	printk(KERN_INFO "MD5 Hash expected but NOT found "
869	"(" NIP6_FMT ", %u)->"
870	"(" NIP6_FMT ", %u)\n",
871	NIP6(ip6h->saddr), ntohs(th->source),
872	NIP6(ip6h->daddr), ntohs(th->dest));
873	}
874	return 1;	863	return 1;
875	}	864	}
876		865
@@ -1105,8 +1094,8 @@ static void tcp_v6_send_ack(struct sk_buff *skb, u32 seq, u32 ack, u32 win, u32
1105	*topt++ = htonl((TCPOPT_NOP << 24) \| (TCPOPT_NOP << 16) \|	1094	*topt++ = htonl((TCPOPT_NOP << 24) \| (TCPOPT_NOP << 16) \|
1106	(TCPOPT_MD5SIG << 8) \| TCPOLEN_MD5SIG);	1095	(TCPOPT_MD5SIG << 8) \| TCPOLEN_MD5SIG);
1107	tcp_v6_md5_hash_hdr((__u8 *)topt, key,	1096	tcp_v6_md5_hash_hdr((__u8 *)topt, key,
1108	&ipv6_hdr(skb)->daddr,	1097	&ipv6_hdr(skb)->saddr,
1109	&ipv6_hdr(skb)->saddr, t1);	1098	&ipv6_hdr(skb)->daddr, t1);
1110	}	1099	}
1111	#endif	1100	#endif
1112		1101