From 29b32e582a4aa93467f0613d4f782a832dd9f434 Mon Sep 17 00:00:00 2001
From: John Safranek <john@wolfssl.com>
Date: Wed, 26 Jun 2013 11:21:36 -0700
Subject: [PATCH] DTLS IPv6 Hello Cookie Update 1. Add support for IPv6
 addresses when calculating DTLS Cookie. 2. Simplify cookie calculation.

---
 src/io.c | 40 ++++++++++++++++++++--------------------
 1 file changed, 20 insertions(+), 20 deletions(-)

diff --git a/src/io.c b/src/io.c
index 239454a07..fa3c9adee 100644
--- a/src/io.c
+++ b/src/io.c
@@ -454,11 +454,10 @@ int EmbedSendTo(CYASSL* ssl, char *buf, int sz, void *ctx)
 int EmbedGenerateCookie(CYASSL* ssl, byte *buf, int sz, void *ctx)
 {
     int sd = ssl->wfd;
-    struct sockaddr_in peer;
+    struct sockaddr_in6 peer;
     XSOCKLENT peerSz = sizeof(peer);
-    byte cookieSrc[sizeof(struct in_addr) + sizeof(int)];
-    int cookieSrcSz = 0;
     Sha sha;
+    byte digest[SHA_DIGEST_SIZE];
 
     (void)ctx;
 
@@ -467,28 +466,29 @@ int EmbedGenerateCookie(CYASSL* ssl, byte *buf, int sz, void *ctx)
         return GEN_COOKIE_E;
     }
     
-    if (peer.sin_family == AF_INET) {
-        struct sockaddr_in *s = (struct sockaddr_in*)&peer;
-
-        cookieSrcSz = sizeof(struct in_addr) + sizeof(s->sin_port);
-        XMEMCPY(cookieSrc, &s->sin_port, sizeof(s->sin_port));
-        XMEMCPY(cookieSrc + sizeof(s->sin_port),
-                                     &s->sin_addr, sizeof(struct in_addr));
-    }
-
     InitSha(&sha);
-    ShaUpdate(&sha, cookieSrc, cookieSrcSz);
 
-    if (sz < SHA_DIGEST_SIZE) {
-        byte digest[SHA_DIGEST_SIZE];
-        ShaFinal(&sha, digest);
-        XMEMCPY(buf, digest, sz);
-        return sz;
+    if (peer.sin6_family == AF_INET6) {
+        ShaUpdate(&sha, (byte*)&peer.sin6_port, sizeof(peer.sin6_port));
+        ShaUpdate(&sha, (byte*)&peer.sin6_addr, sizeof(peer.sin6_addr));
+    }
+    else if (peer.sin6_family == AF_INET) {
+        struct sockaddr_in *s = (struct sockaddr_in*)&peer;
+        ShaUpdate(&sha, (byte*)&s->sin_port, sizeof(s->sin_port));
+        ShaUpdate(&sha, (byte*)&s->sin_addr, sizeof(s->sin_addr));
+    }
+    else {
+        CYASSL_MSG("peer sin_family unknown type in EmbedGenerateCookie");
+        return GEN_COOKIE_E;
     }
 
-    ShaFinal(&sha, buf);
+    ShaFinal(&sha, digest);
 
-    return SHA_DIGEST_SIZE;
+    if (sz > SHA_DIGEST_SIZE)
+        sz = SHA_DIGEST_SIZE;
+    XMEMCPY(buf, digest, sz);
+
+    return sz;
 }
 
 #endif /* CYASSL_DTLS */