[SCTP]: Implement the receive and verification of AUTH chunk

This patch implements the receive path needed to process authenticated chunks. Add ability to process the AUTH chunk and handle edge cases for authenticated COOKIE-ECHO as well. Signed-off-by: Vlad Yasevich <vladislav.yasevich@hp.com> Signed-off-by: David S. Miller <davem@davemloft.net>
author: Vlad Yasevich <vladislav.yasevich@hp.com> 2007-10-03 17:51:34 -0700
committer: David S. Miller <davem@sunset.davemloft.net> 2007-10-10 16:51:31 -0700
commit: bbd0d59809f923ea2b540cbd781b32110e249f6e (patch)
tree: 8a278cfa0e7bcc7b415e93baf6d1a93536efe17a /net/sctp/associola.c
parent: 4cd57c8078fae0a4b1bf421191e94626d0cba92a (diff)
1 files changed, 10 insertions, 0 deletions
diff --git a/net/sctp/associola.c b/net/sctp/associola.c
index 3bdd8dcb76a..03158e3665d 100644
--- a/net/sctp/associola.c
+++ b/net/sctp/associola.c
@@ -1011,6 +1011,16 @@ static void sctp_assoc_bh_rcv(struct work_struct *work)
 		state = asoc->state;
 		subtype = SCTP_ST_CHUNK(chunk->chunk_hdr->type);
 
+		/* SCTP-AUTH, Section 6.3:
+		 *    The receiver has a list of chunk types which it expects
+		 *    to be received only after an AUTH-chunk.  This list has
+		 *    been sent to the peer during the association setup.  It
+		 *    MUST silently discard these chunks if they are not placed
+		 *    after an AUTH chunk in the packet.
+		 */
+		if (sctp_auth_recv_cid(subtype.chunk, asoc) && !chunk->auth)
+			continue;
+
 		/* Remember where the last DATA chunk came from so we
 		 * know where to send the SACK.
 		 */
author	Vlad Yasevich <vladislav.yasevich@hp.com>	2007-10-03 17:51:34 -0700
committer	David S. Miller <davem@sunset.davemloft.net>	2007-10-10 16:51:31 -0700
commit	bbd0d59809f923ea2b540cbd781b32110e249f6e (patch)
tree	8a278cfa0e7bcc7b415e93baf6d1a93536efe17a /net/sctp/associola.c
parent	4cd57c8078fae0a4b1bf421191e94626d0cba92a (diff)