Add sctp authentication to sctp_lib This only works for linux >=5.4. When enabled, it will use a shared key to authenticate messages. The functionality is controlled by a flag and behind a linux version check. Performance degradation is minimal, even for smaller messages and unnoticeable when measuring overall system performance. Change-Id: I836e61ec38a0c116fd7244b771437738ccca9828 Signed-off-by: James Kuszmaul <jabukuszmaul+collab@gmail.com>

commit: 96a0f4bd7f1de4ffe9c632e3760e808322200913 [log] [tgz]
author: Adam Snaider <adam.snaider@bluerivertech.com> Thu May 18 20:41:19 2023 -0700
committer: James Kuszmaul <jabukuszmaul+collab@gmail.com> Sun Jul 23 08:37:25 2023 -0700
tree: 2951704ab004f7eaaffbd50c8327694eddfa1a99
parent: be263510cb06ec9e2ad1e92f981c66392a81ec6b [diff] [blame]
diff --git a/aos/network/sctp_server.cc b/aos/network/sctp_server.cc
index fb736de..1bcbebd 100644
--- a/aos/network/sctp_server.cc
+++ b/aos/network/sctp_server.cc

@@ -21,8 +21,9 @@
 namespace aos {
 namespace message_bridge {
 
-SctpServer::SctpServer(int streams, std::string_view local_host,
-                       int local_port) {
+SctpServer::SctpServer(int streams, std::string_view local_host, int local_port,
+                       std::vector<uint8_t> sctp_auth_key)
+    : sctp_(std::move(sctp_auth_key)) {
   bool use_ipv6 = Ipv6Enabled();
   sockaddr_local_ = ResolveSocket(local_host, local_port, use_ipv6);
   while (true) {
commit	96a0f4bd7f1de4ffe9c632e3760e808322200913	[log] [tgz]
author	Adam Snaider <adam.snaider@bluerivertech.com>	Thu May 18 20:41:19 2023 -0700
committer	James Kuszmaul <jabukuszmaul+collab@gmail.com>	Sun Jul 23 08:37:25 2023 -0700
tree	2951704ab004f7eaaffbd50c8327694eddfa1a99
parent	be263510cb06ec9e2ad1e92f981c66392a81ec6b [diff] [blame]