* [PATCH] [iproute2] XFRM: fixing IPsec algorithm key
@ 2004-09-06 7:46 Masahide Nakamura
0 siblings, 0 replies; only message in thread
From: Masahide Nakamura @ 2004-09-06 7:46 UTC (permalink / raw)
To: Stephen Hemminger; +Cc: netdev, linux-net, yoshfuji, nakam
Hello,
This patch fixes `ip xfrm`'s algorithm key when using hexadecimal
number from command line. Please apply it.
The ChangeSet is also available at:
<bk://bk.skbuff.net:38000/iproute2-FIX-algokey/>
# This is a BitKeeper generated diff -Nru style patch.
#
# ChangeSet
# 2004/09/02 17:35:23+09:00 nakam@linux-ipv6.org
# fix specifying IPsec algorithm key.
#
# ip/xfrm_state.c
# 2004/09/02 17:35:21+09:00 nakam@linux-ipv6.org +27 -26
# fix algorithm key when using hexadecimal number
# (clean-up by Hideaki YOSHIFUJI <yoshfuji@linux-ipv6.org>).
#
diff -Nru a/ip/xfrm_state.c b/ip/xfrm_state.c
--- a/ip/xfrm_state.c 2004-09-02 23:04:14 +09:00
+++ b/ip/xfrm_state.c 2004-09-02 23:04:14 +09:00
@@ -114,34 +114,35 @@
strncpy(alg->alg_name, name, sizeof(alg->alg_name));
if (slen > 2 && strncmp(key, "0x", 2) == 0) {
- /*
- * XXX: fix me!!
+ /* split two chars "0x" from the top */
+ char *p = key + 2;
+ int plen = slen - 2;
+ int i;
+ int j;
+
+ /* Converting hexadecimal numbered string into real key;
+ * Convert each two chars into one char(value). If number
+ * of the length is odd, add zero on the top for rounding.
*/
- union {
- __u64 x;
- unsigned char p[8];
- } val;
-
- memset(&val, 0, sizeof(val));
-
- if (get_u64(&val.x, key, 16))
- invarg("\"ALGOKEY\" is invalid", key);
-
- len = (slen - 2) / 2;
- if (len > sizeof(val))
- invarg("\"ALGOKEY\" is invalid: too large", key);
-
- if (len > 0) {
- int i;
-
- if (len > max)
- invarg("\"ALGOKEY\" makes buffer overflow\n", key);
- for (i = sizeof(val.p) - 1; i >= 0; i--) {
- int j = sizeof(val.p) - 1 - i;
- alg->alg_key[j] = val.p[i];
- }
- }
+ /* calculate length of the converted values(real key) */
+ len = (plen + 1) / 2;
+ if (len > max)
+ invarg("\"ALGOKEY\" makes buffer overflow\n", key);
+
+ for (i = - (plen % 2), j = 0; j < len; i += 2, j++) {
+ char vbuf[3];
+ char val;
+
+ vbuf[0] = i >= 0 ? p[i] : '0';
+ vbuf[1] = p[i + 1];
+ vbuf[2] = '\0';
+
+ if (get_u8(&val, vbuf, 16))
+ invarg("\"ALGOKEY\" is invalid", key);
+
+ alg->alg_key[j] = val;
+ }
} else {
len = slen;
if (len > 0) {
--
Masahide NAKAMURA
--
Masahide NAKAMURA
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2004-09-06 7:46 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-09-06 7:46 [PATCH] [iproute2] XFRM: fixing IPsec algorithm key Masahide Nakamura
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).