{"id":807995,"url":"http://patchwork.ozlabs.org/api/1.0/covers/807995/?format=json","project":{"id":7,"url":"http://patchwork.ozlabs.org/api/1.0/projects/7/?format=json","name":"Linux network development","link_name":"netdev","list_id":"netdev.vger.kernel.org","list_email":"netdev@vger.kernel.org","web_url":null,"scm_url":null,"webscm_url":null},"msgid":"<20170831013312.29142-1-colona@arista.com>","date":"2017-08-31T01:33:10","name":"[net-next,v4,0/2] report TCP MD5 signing keys and addresses","submitter":{"id":65664,"url":"http://patchwork.ozlabs.org/api/1.0/people/65664/?format=json","name":"Ivan Delalande","email":"colona@arista.com"},"series":[{"id":730,"url":"http://patchwork.ozlabs.org/api/1.0/series/730/?format=json","date":"2017-08-31T01:33:12","name":"report TCP MD5 signing keys and addresses","version":4,"mbox":"http://patchwork.ozlabs.org/series/730/mbox/"}],"headers":{"Return-Path":"<netdev-owner@vger.kernel.org>","X-Original-To":"patchwork-incoming@ozlabs.org","Delivered-To":"patchwork-incoming@ozlabs.org","Authentication-Results":["ozlabs.org;\n\tspf=none (mailfrom) smtp.mailfrom=vger.kernel.org\n\t(client-ip=209.132.180.67; helo=vger.kernel.org;\n\tenvelope-from=netdev-owner@vger.kernel.org;\n\treceiver=<UNKNOWN>)","ozlabs.org; dkim=pass (1024-bit key;\n\tunprotected) header.d=arista.com header.i=@arista.com\n\theader.b=\"Ik9+6tUO\"; dkim-atps=neutral"],"Received":["from vger.kernel.org (vger.kernel.org [209.132.180.67])\n\tby ozlabs.org (Postfix) with ESMTP id 3xjPyp4MgLz9s7G\n\tfor <patchwork-incoming@ozlabs.org>;\n\tThu, 31 Aug 2017 11:33:22 +1000 (AEST)","(majordomo@vger.kernel.org) by vger.kernel.org via listexpand\n\tid S1751250AbdHaBdO (ORCPT <rfc822;patchwork-incoming@ozlabs.org>);\n\tWed, 30 Aug 2017 21:33:14 -0400","from prod-mx.aristanetworks.com ([162.210.130.12]:58890 \"EHLO\n\tprod-mx.aristanetworks.com\" rhost-flags-OK-OK-OK-OK)\n\tby vger.kernel.org with ESMTP id S1750822AbdHaBdN (ORCPT\n\t<rfc822;netdev@vger.kernel.org>); Wed, 30 Aug 2017 21:33:13 -0400","from prod-mx.aristanetworks.com (localhost [127.0.0.1])\n\tby prod-mx.aristanetworks.com (Postfix) with ESMTP id 6C34F95D5;\n\tWed, 30 Aug 2017 18:33:12 -0700 (PDT)","from visor.sjc.aristanetworks.com\n\t(manila-157.sjc.aristanetworks.com [172.20.135.157])\n\tby prod-mx.aristanetworks.com (Postfix) with ESMTP id 6932995D3;\n\tWed, 30 Aug 2017 18:33:12 -0700 (PDT)"],"DKIM-Signature":"v=1; a=rsa-sha256; c=relaxed/relaxed; d=arista.com;\n\ts=AristaCom; t=1504143192;\n\tbh=iTj/s2sVXNaibojFYgzp10Js4q8dU4vfouIu67VFeik=;\n\th=From:To:Cc:Subject:Date;\n\tb=Ik9+6tUO0D3hB2UuHiDhEbq3Jr8slKLf6aLI+MF/kVQluvdz6qsXkfDpnzktcH90l\n\timatuWyxguD4AnGUg74H/T3zt2icJp+8YInCZU7cVEKQFa1d7gqfqI3rxvGYWbEe3S\n\tFb/7zcb1U6rgOD1Jx/gtC0+deS67YVshe84vxDso=","From":"Ivan Delalande <colona@arista.com>","To":"David Miller <davem@davemloft.net>","Cc":"Eric Dumazet <eric.dumazet@gmail.com>, netdev@vger.kernel.org,\n\tIvan Delalande <colona@arista.com>","Subject":"[PATCH net-next v4 0/2] report TCP MD5 signing keys and addresses","Date":"Wed, 30 Aug 2017 18:33:10 -0700","Message-Id":"<20170831013312.29142-1-colona@arista.com>","X-Mailer":"git-send-email 2.14.1","Sender":"netdev-owner@vger.kernel.org","Precedence":"bulk","List-ID":"<netdev.vger.kernel.org>","X-Mailing-List":"netdev@vger.kernel.org"},"content":"Allow userspace to retrieve MD5 signature keys and addresses configured\non TCP sockets through inet_diag.\n\nThanks to Eric Dumazet and Stephen Hemminger for their useful\nexplanations and feedback.\n\nv4: - add new struct tcp_diag_md5sig to report the data instead of\n      tcp_md5sig to avoid wasting 112 bytes on every tcpm_addr,\n    - memset tcpm_addr on IPv4 addresses to avoid leaks,\n    - style fix in inet_diag_dump_one_icsk.\n\nv3: - rename inet_diag_*md5sig in tcp_diag.c to tcp_diag_* for\n      consistency,\n    - don't lock the socket in tcp_diag_put_md5sig,\n    - add checks on md5sig_count in tcp_diag_put_md5sig to not create\n      the netlink attribute if the list is empty, and to avoid overflows\n      or memory leaks if the list has changed in the meantime.\n\nv2: - move changes to tcp_diag.c and extend inet_diag_handler to allow\n      protocols to provide additional data on INET_DIAG_INFO,\n    - lock socket before calling tcp_diag_put_md5sig.\n\n\nI also have a patch for iproute2/ss to test this change, making it print\nthis new attribute. I'm planning to polish and send it if this series\ngets applied.\n\n\nIvan Delalande (2):\n  inet_diag: allow protocols to provide additional data\n  tcp_diag: report TCP MD5 signing keys and addresses\n\n include/linux/inet_diag.h      |   7 +++\n include/uapi/linux/inet_diag.h |   1 +\n include/uapi/linux/tcp.h       |   9 ++++\n net/ipv4/inet_diag.c           |  22 +++++++--\n net/ipv4/tcp_diag.c            | 110 ++++++++++++++++++++++++++++++++++++++---\n 5 files changed, 139 insertions(+), 10 deletions(-)"}