tcp: Use correct peer adr when copying MD5 keys When the TCP connection handshake completes on the passive side, a variety of state must be set up in the "child" sock, including the key if MD5 authentication is being used. Fix TCP for both address families to label the key with the peer's destination address, rather than the address from the listening sock, which is usually the wildcard. Reported-by: Stephen Hemminger <shemminger@vyatta.com> Signed-off-by: John Dykstra <john.dykstra1@gmail.com> Signed-off-by: David S. Miller <davem@davemloft.net>

commit: e547bc1eccf539b7403138d8ded913ffd2b7fd0d [log] [tgz]
author: John Dykstra <john.dykstra1@gmail.com> Fri Jul 17 09:23:22 2009 +0000
committer: David S. Miller <davem@davemloft.net> Mon Jul 20 07:49:08 2009 -0700
tree: a5d776438864387bdc305ef3ce186ba527f5b5d4
parent: e3afe7b75ed8f809c1473ea9b39267487c187ccb [diff] [blame]
diff --git a/net/ipv6/tcp_ipv6.c b/net/ipv6/tcp_ipv6.c
index ae3d657..d849dd5 100644
--- a/net/ipv6/tcp_ipv6.c
+++ b/net/ipv6/tcp_ipv6.c

@@ -1442,7 +1442,7 @@
 		 */
 		char *newkey = kmemdup(key->key, key->keylen, GFP_ATOMIC);
 		if (newkey != NULL)
-			tcp_v6_md5_do_add(newsk, &inet6_sk(sk)->daddr,
+			tcp_v6_md5_do_add(newsk, &newnp->daddr,
 					  newkey, key->keylen);
 	}
 #endif
commit	e547bc1eccf539b7403138d8ded913ffd2b7fd0d	[log] [tgz]
author	John Dykstra <john.dykstra1@gmail.com>	Fri Jul 17 09:23:22 2009 +0000
committer	David S. Miller <davem@davemloft.net>	Mon Jul 20 07:49:08 2009 -0700
tree	a5d776438864387bdc305ef3ce186ba527f5b5d4
parent	e3afe7b75ed8f809c1473ea9b39267487c187ccb [diff] [blame]