[SCTP]: Implement the receive and verification of AUTH chunk This patch implements the receive path needed to process authenticated chunks. Add ability to process the AUTH chunk and handle edge cases for authenticated COOKIE-ECHO as well. Signed-off-by: Vlad Yasevich <vladislav.yasevich@hp.com> Signed-off-by: David S. Miller <davem@davemloft.net>

commit: bbd0d59809f923ea2b540cbd781b32110e249f6e [log] [tgz]
author: Vlad Yasevich <vladislav.yasevich@hp.com> Wed Oct 03 17:51:34 2007 -0700
committer: David S. Miller <davem@sunset.davemloft.net> Wed Oct 10 16:51:31 2007 -0700
tree: 8a278cfa0e7bcc7b415e93baf6d1a93536efe17a
parent: 4cd57c8078fae0a4b1bf421191e94626d0cba92a [diff] [blame]
diff --git a/net/sctp/associola.c b/net/sctp/associola.c
index 3bdd8dc..03158e3 100644
--- a/net/sctp/associola.c
+++ b/net/sctp/associola.c

@@ -1011,6 +1011,16 @@
 		state = asoc->state;
 		subtype = SCTP_ST_CHUNK(chunk->chunk_hdr->type);
 
+		/* SCTP-AUTH, Section 6.3:
+		 *    The receiver has a list of chunk types which it expects
+		 *    to be received only after an AUTH-chunk.  This list has
+		 *    been sent to the peer during the association setup.  It
+		 *    MUST silently discard these chunks if they are not placed
+		 *    after an AUTH chunk in the packet.
+		 */
+		if (sctp_auth_recv_cid(subtype.chunk, asoc) && !chunk->auth)
+			continue;
+
 		/* Remember where the last DATA chunk came from so we
 		 * know where to send the SACK.
 		 */
commit	bbd0d59809f923ea2b540cbd781b32110e249f6e	[log] [tgz]
author	Vlad Yasevich <vladislav.yasevich@hp.com>	Wed Oct 03 17:51:34 2007 -0700
committer	David S. Miller <davem@sunset.davemloft.net>	Wed Oct 10 16:51:31 2007 -0700
tree	8a278cfa0e7bcc7b415e93baf6d1a93536efe17a
parent	4cd57c8078fae0a4b1bf421191e94626d0cba92a [diff] [blame]