From 7fc1e2fff38b7b417c989d4e1a4f32e48f0b7aa8 Mon Sep 17 00:00:00 2001
From: FUJITA Tomonori <fujita.tomonori@lab.ntt.co.jp>
Date: Thu, 13 Nov 2014 16:09:01 +0800
Subject: add TCPMD5SIG socket option helper

Signed-off-by: FUJITA Tomonori <fujita.tomonori@lab.ntt.co.jp>
---
 io/sockopt.go | 45 +++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 45 insertions(+)
 create mode 100644 io/sockopt.go

(limited to 'io/sockopt.go')

diff --git a/io/sockopt.go b/io/sockopt.go
new file mode 100644
index 00000000..3393a375
--- /dev/null
+++ b/io/sockopt.go
@@ -0,0 +1,45 @@
+package io
+
+import (
+	"net"
+	"syscall"
+	"unsafe"
+)
+
+const (
+	TCP_MD5SIG = 14
+)
+
+type tcpmd5sig struct {
+	ss_family uint16
+	ss        [126]byte
+	pad1      uint16
+	keylen    uint16
+	pad2      uint32
+	key       [80]byte
+}
+
+func buildTcpMD5Sig(address string, key string) (tcpmd5sig, error) {
+	t := tcpmd5sig{}
+	addr := net.ParseIP(address)
+	if addr.To4() != nil {
+		t.ss_family = syscall.AF_INET
+		copy(t.ss[2:], addr.To4())
+	} else {
+		t.ss_family = syscall.AF_INET6
+		copy(t.ss[6:], addr.To16())
+	}
+
+	t.keylen = uint16(len(key))
+	copy(t.key[0:], []byte(key))
+
+	return t, nil
+}
+
+func SetTcpMD5SigSockopts(fd int, address string, key string) error {
+	t, _ := buildTcpMD5Sig(address, key)
+	_, _, e := syscall.Syscall6(syscall.SYS_SETSOCKOPT, uintptr(fd),
+		uintptr(syscall.IPPROTO_TCP), uintptr(TCP_MD5SIG),
+		uintptr(unsafe.Pointer(&t)), unsafe.Sizeof(t), 0)
+	return e
+}
-- 
cgit v1.2.3