8 files changed, 293 insertions, 113 deletions
diff --git a/include/linux/ethtool.h b/include/linux/ethtool.h
index dc80d829424..12cfbd0be2e 100644
--- a/include/linux/ethtool.h
+++ b/include/linux/ethtool.h
@@ -380,27 +380,42 @@ struct ethtool_usrip4_spec {
        __u8    proto;
 };
+union ethtool_flow_union {
+        struct ethtool_tcpip4_spec              tcp_ip4_spec;
+        struct ethtool_tcpip4_spec              udp_ip4_spec;
+        struct ethtool_tcpip4_spec              sctp_ip4_spec;
+        struct ethtool_ah_espip4_spec           ah_ip4_spec;
+        struct ethtool_ah_espip4_spec           esp_ip4_spec;
+        struct ethtool_usrip4_spec              usr_ip4_spec;
+        struct ethhdr                           ether_spec;
+        __u8                                    hdata[60];
+};
+struct ethtool_flow_ext {
+        __be16  vlan_etype;
+        __be16  vlan_tci;
+        __be32  data[2];
+};
 /**
 * struct ethtool_rx_flow_spec - specification for RX flow filter
 * @flow_type: Type of match to perform, e.g. %TCP_V4_FLOW
 * @h_u: Flow fields to match (dependent on @flow_type)
- * @m_u: Masks for flow field bits to be ignored
+ * @h_ext: Additional fields to match
+ * @m_u: Masks for flow field bits to be matched
+ * @m_ext: Masks for additional field bits to be matched
+ *      Note, all additional fields must be ignored unless @flow_type
+ *      includes the %FLOW_EXT flag.
 * @ring_cookie: RX ring/queue index to deliver to, or %RX_CLS_FLOW_DISC
 *      if packets should be discarded
 * @location: Index of filter in hardware table
 */
 struct ethtool_rx_flow_spec {
        __u32           flow_type;
-        union {
+        union ethtool_flow_union h_u;
-                struct ethtool_tcpip4_spec              tcp_ip4_spec;
+        struct ethtool_flow_ext h_ext;
-                struct ethtool_tcpip4_spec              udp_ip4_spec;
+        union ethtool_flow_union m_u;
-                struct ethtool_tcpip4_spec              sctp_ip4_spec;
+        struct ethtool_flow_ext m_ext;
-                struct ethtool_ah_espip4_spec           ah_ip4_spec;
-                struct ethtool_ah_espip4_spec           esp_ip4_spec;
-                struct ethtool_usrip4_spec              usr_ip4_spec;
-                struct ethhdr                           ether_spec;
-                __u8                                    hdata[72];
-        } h_u, m_u;
        __u64           ring_cookie;
        __u32           location;
 };
@@ -458,16 +473,10 @@ struct ethtool_rxnfc {
 struct compat_ethtool_rx_flow_spec {
        u32             flow_type;
-        union {
+        union ethtool_flow_union h_u;
-                struct ethtool_tcpip4_spec              tcp_ip4_spec;
+        struct ethtool_flow_ext h_ext;
-                struct ethtool_tcpip4_spec              udp_ip4_spec;
+        union ethtool_flow_union m_u;
-                struct ethtool_tcpip4_spec              sctp_ip4_spec;
+        struct ethtool_flow_ext m_ext;
-                struct ethtool_ah_espip4_spec           ah_ip4_spec;
-                struct ethtool_ah_espip4_spec           esp_ip4_spec;
-                struct ethtool_usrip4_spec              usr_ip4_spec;
-                struct ethhdr                           ether_spec;
-                u8                                      hdata[72];
-        } h_u, m_u;
        compat_u64      ring_cookie;
        u32             location;
 };
@@ -663,6 +672,22 @@ struct ethtool_rx_ntuple_list {
        unsigned int            count;
 };
+/**
+ * enum ethtool_phys_id_state - indicator state for physical identification
+ * @ETHTOOL_ID_INACTIVE: Physical ID indicator should be deactivated
+ * @ETHTOOL_ID_ACTIVE: Physical ID indicator should be activated
+ * @ETHTOOL_ID_ON: LED should be turned on (used iff %ETHTOOL_ID_ACTIVE
+ *      is not supported)
+ * @ETHTOOL_ID_OFF: LED should be turned off (used iff %ETHTOOL_ID_ACTIVE
+ *      is not supported)
+ */
+enum ethtool_phys_id_state {
+        ETHTOOL_ID_INACTIVE,
+        ETHTOOL_ID_ACTIVE,
+        ETHTOOL_ID_ON,
+        ETHTOOL_ID_OFF
+};
 struct net_device;
 /* Some generic methods drivers may use in their ethtool_ops */
@@ -683,63 +708,126 @@ void ethtool_ntuple_flush(struct net_device *dev);
 bool ethtool_invalid_flags(struct net_device *dev, u32 data, u32 supported);
 /**
- * &ethtool_ops - Alter and report network device settings
+ * struct ethtool_ops - optional netdev operations
- * get_settings: Get device-specific settings
+ * @get_settings: Get various device settings including Ethernet link
- * set_settings: Set device-specific settings
+ *      settings.  Returns a negative error code or zero.
- * get_drvinfo: Report driver information
+ * @set_settings: Set various device settings including Ethernet link
- * get_regs: Get device registers
+ *      settings.  Returns a negative error code or zero.
- * get_wol: Report whether Wake-on-Lan is enabled
+ * @get_drvinfo: Report driver/device information.  Should only set the
- * set_wol: Turn Wake-on-Lan on or off
+ *      @driver, @version, @fw_version and @bus_info fields.  If not
- * get_msglevel: Report driver message level
+ *      implemented, the @driver and @bus_info fields will be filled in
- * set_msglevel: Set driver message level
+ *      according to the netdev's parent device.
- * nway_reset: Restart autonegotiation
+ * @get_regs_len: Get buffer length required for @get_regs
- * get_link: Get link status
+ * @get_regs: Get device registers
- * get_eeprom: Read data from the device EEPROM
+ * @get_wol: Report whether Wake-on-Lan is enabled
- * set_eeprom: Write data to the device EEPROM
+ * @set_wol: Turn Wake-on-Lan on or off.  Returns a negative error code
- * get_coalesce: Get interrupt coalescing parameters
+ *      or zero.
- * set_coalesce: Set interrupt coalescing parameters
+ * @get_msglevel: Report driver message level.  This should be the value
- * get_ringparam: Report ring sizes
+ *      of the @msg_enable field used by netif logging functions.
- * set_ringparam: Set ring sizes
+ * @set_msglevel: Set driver message level
- * get_pauseparam: Report pause parameters
+ * @nway_reset: Restart autonegotiation.  Returns a negative error code
- * set_pauseparam: Set pause parameters
+ *      or zero.
- * get_rx_csum: Report whether receive checksums are turned on or off
+ * @get_link: Report whether physical link is up.  Will only be called if
- * set_rx_csum: Turn receive checksum on or off
+ *      the netdev is up.  Should usually be set to ethtool_op_get_link(),
- * get_tx_csum: Report whether transmit checksums are turned on or off
+ *      which uses netif_carrier_ok().
- * set_tx_csum: Turn transmit checksums on or off
+ * @get_eeprom: Read data from the device EEPROM.
- * get_sg: Report whether scatter-gather is enabled
- * set_sg: Turn scatter-gather on or off
- * get_tso: Report whether TCP segmentation offload is enabled
- * set_tso: Turn TCP segmentation offload on or off
- * get_ufo: Report whether UDP fragmentation offload is enabled
- * set_ufo: Turn UDP fragmentation offload on or off
- * self_test: Run specified self-tests
- * get_strings: Return a set of strings that describe the requested objects
- * phys_id: Identify the device
- * get_stats: Return statistics about the device
- * get_flags: get 32-bit flags bitmap
- * set_flags: set 32-bit flags bitmap
- *
- * Description:
- *
- * get_settings:
- *      @get_settings is passed an &ethtool_cmd to fill in.  It returns
- *      an negative errno or zero.
- *
- * set_settings:
- *      @set_settings is passed an &ethtool_cmd and should attempt to set
- *      all the settings this device supports.  It may return an error value
- *      if something goes wrong (otherwise 0).
- *
- * get_eeprom:
 *      Should fill in the magic field.  Don't need to check len for zero
 *      or wraparound.  Fill in the data argument with the eeprom values
 *      from offset to offset + len.  Update len to the amount read.
 *      Returns an error or zero.
- *
+ * @set_eeprom: Write data to the device EEPROM.
- * set_eeprom:
 *      Should validate the magic field.  Don't need to check len for zero
 *      or wraparound.  Update len to the amount written.  Returns an error
 *      or zero.
+ * @get_coalesce: Get interrupt coalescing parameters.  Returns a negative
+ *      error code or zero.
+ * @set_coalesce: Set interrupt coalescing parameters.  Returns a negative
+ *      error code or zero.
+ * @get_ringparam: Report ring sizes
+ * @set_ringparam: Set ring sizes.  Returns a negative error code or zero.
+ * @get_pauseparam: Report pause parameters
+ * @set_pauseparam: Set pause parameters.  Returns a negative error code
+ *      or zero.
+ * @get_rx_csum: Deprecated in favour of the netdev feature %NETIF_F_RXCSUM.
+ *      Report whether receive checksums are turned on or off.
+ * @set_rx_csum: Deprecated in favour of generic netdev features.  Turn
+ *      receive checksum on or off.  Returns a negative error code or zero.
+ * @get_tx_csum: Deprecated as redundant. Report whether transmit checksums
+ *      are turned on or off.
+ * @set_tx_csum: Deprecated in favour of generic netdev features.  Turn
+ *      transmit checksums on or off.  Returns a egative error code or zero.
+ * @get_sg: Deprecated as redundant.  Report whether scatter-gather is
+ *      enabled.  
+ * @set_sg: Deprecated in favour of generic netdev features.  Turn
+ *      scatter-gather on or off. Returns a negative error code or zero.
+ * @get_tso: Deprecated as redundant.  Report whether TCP segmentation
+ *      offload is enabled.
+ * @set_tso: Deprecated in favour of generic netdev features.  Turn TCP
+ *      segmentation offload on or off.  Returns a negative error code or zero.
+ * @self_test: Run specified self-tests
+ * @get_strings: Return a set of strings that describe the requested objects
+ * @set_phys_id: Identify the physical devices, e.g. by flashing an LED
+ *      attached to it.  The implementation may update the indicator
+ *      asynchronously or synchronously, but in either case it must return
+ *      quickly.  It is initially called with the argument %ETHTOOL_ID_ACTIVE,
+ *      and must either activate asynchronous updates or return -%EINVAL.
+ *      If it returns -%EINVAL then it will be called again at intervals with
+ *      argument %ETHTOOL_ID_ON or %ETHTOOL_ID_OFF and should set the state of
+ *      the indicator accordingly.  Finally, it is called with the argument
+ *      %ETHTOOL_ID_INACTIVE and must deactivate the indicator.  Returns a
+ *      negative error code or zero.
+ * @phys_id: Deprecated in favour of @set_phys_id.
+ *      Identify the physical device, e.g. by flashing an LED
+ *      attached to it until interrupted by a signal or the given time
+ *      (in seconds) elapses.  If the given time is zero, use a default
+ *      time limit.  Returns a negative error code or zero.  Being
+ *      interrupted by a signal is not an error.
+ * @get_ethtool_stats: Return extended statistics about the device.
+ *      This is only useful if the device maintains statistics not
+ *      included in &struct rtnl_link_stats64.
+ * @begin: Function to be called before any other operation.  Returns a
+ *      negative error code or zero.
+ * @complete: Function to be called after any other operation except
+ *      @begin.  Will be called even if the other operation failed.
+ * @get_ufo: Deprecated as redundant.  Report whether UDP fragmentation
+ *      offload is enabled.
+ * @set_ufo: Deprecated in favour of generic netdev features.  Turn UDP
+ *      fragmentation offload on or off.  Returns a negative error code or zero.
+ * @get_flags: Deprecated as redundant.  Report features included in
+ *      &enum ethtool_flags that are enabled.  
+ * @set_flags: Deprecated in favour of generic netdev features.  Turn
+ *      features included in &enum ethtool_flags on or off.  Returns a
+ *      negative error code or zero.
+ * @get_priv_flags: Report driver-specific feature flags.
+ * @set_priv_flags: Set driver-specific feature flags.  Returns a negative
+ *      error code or zero.
+ * @get_sset_count: Get number of strings that @get_strings will write.
+ * @get_rxnfc: Get RX flow classification rules.  Returns a negative
+ *      error code or zero.
+ * @set_rxnfc: Set RX flow classification rules.  Returns a negative
+ *      error code or zero.
+ * @flash_device: Write a firmware image to device's flash memory.
+ *      Returns a negative error code or zero.
+ * @reset: Reset (part of) the device, as specified by a bitmask of
+ *      flags from &enum ethtool_reset_flags.  Returns a negative
+ *      error code or zero.
+ * @set_rx_ntuple: Set an RX n-tuple rule.  Returns a negative error code
+ *      or zero.
+ * @get_rx_ntuple: Deprecated.
+ * @get_rxfh_indir: Get the contents of the RX flow hash indirection table.
+ *      Returns a negative error code or zero.
+ * @set_rxfh_indir: Set the contents of the RX flow hash indirection table.
+ *      Returns a negative error code or zero.
+ *
+ * All operations are optional (i.e. the function pointer may be set
+ * to %NULL) and callers must take this into account.  Callers must
+ * hold the RTNL, except that for @get_drvinfo the caller may or may
+ * not hold the RTNL.
+ *
+ * See the structures used by these operations for further documentation.
+ *
+ * See &struct net_device and &struct net_device_ops for documentation
+ * of the generic netdev features interface.
 */
 struct ethtool_ops {
        int     (*get_settings)(struct net_device *, struct ethtool_cmd *);
@@ -778,6 +866,7 @@ struct ethtool_ops {
        int     (*set_tso)(struct net_device *, u32);
        void    (*self_test)(struct net_device *, struct ethtool_test *, u64 *);
        void    (*get_strings)(struct net_device *, u32 stringset, u8 *);
+        int     (*set_phys_id)(struct net_device *, enum ethtool_phys_id_state);
        int     (*phys_id)(struct net_device *, u32);
        void    (*get_ethtool_stats)(struct net_device *,
                                     struct ethtool_stats *, u64 *);
@@ -992,6 +1081,8 @@ struct ethtool_ops {
 #define IPV4_FLOW       0x10    /* hash only */
 #define IPV6_FLOW       0x11    /* hash only */
 #define ETHER_FLOW      0x12    /* spec only (ether_spec) */
+/* Flag to enable additional fields in struct ethtool_rx_flow_spec */
+#define FLOW_EXT        0x80000000
 /* L3-L4 network traffic flow hash options */
 #define RXH_L2DA        (1 << 1)
diff --git a/include/linux/netdevice.h b/include/linux/netdevice.h
index 0249fe7e387..09d26241576 100644
--- a/include/linux/netdevice.h
+++ b/include/linux/netdevice.h
@@ -1066,6 +1066,7 @@ struct net_device {
 #define NETIF_F_NTUPLE          (1 << 27) /* N-tuple filters supported */
 #define NETIF_F_RXHASH          (1 << 28) /* Receive hashing offload */
 #define NETIF_F_RXCSUM          (1 << 29) /* Receive checksumming offload */
+#define NETIF_F_NOCACHE_COPY    (1 << 30) /* Use no-cache copyfromuser */
        /* Segmentation offload features */
 #define NETIF_F_GSO_SHIFT       16
@@ -1081,7 +1082,7 @@ struct net_device {
        /* = all defined minus driver/device-class-related */
 #define NETIF_F_NEVER_CHANGE    (NETIF_F_HIGHDMA | NETIF_F_VLAN_CHALLENGED | \
                                  NETIF_F_LLTX | NETIF_F_NETNS_LOCAL)
-#define NETIF_F_ETHTOOL_BITS    (0x3f3fffff & ~NETIF_F_NEVER_CHANGE)
+#define NETIF_F_ETHTOOL_BITS    (0x7f3fffff & ~NETIF_F_NEVER_CHANGE)
        /* List of features with software fallbacks. */
 #define NETIF_F_GSO_SOFTWARE    (NETIF_F_TSO | NETIF_F_TSO_ECN | \
@@ -2550,6 +2551,7 @@ static inline u32 netdev_get_wanted_features(struct net_device *dev)
 }
 u32 netdev_increment_features(u32 all, u32 one, u32 mask);
 u32 netdev_fix_features(struct net_device *dev, u32 features);
+int __netdev_update_features(struct net_device *dev);
 void netdev_update_features(struct net_device *dev);
 void netif_stacked_transfer_operstate(const struct net_device *rootdev,
diff --git a/include/linux/pkt_sched.h b/include/linux/pkt_sched.h
index 3a02e020857..c5336705921 100644
--- a/include/linux/pkt_sched.h
+++ b/include/linux/pkt_sched.h
@@ -588,4 +588,19 @@ struct tc_sfb_xstats {
 #define SFB_MAX_PROB 0xFFFF
+/* QFQ */
+enum {
+        TCA_QFQ_UNSPEC,
+        TCA_QFQ_WEIGHT,
+        TCA_QFQ_LMAX,
+        __TCA_QFQ_MAX
+};
+#define TCA_QFQ_MAX     (__TCA_QFQ_MAX - 1)
+struct tc_qfq_stats {
+        __u32 weight;
+        __u32 lmax;
+};
 #endif
diff --git a/include/net/flow.h b/include/net/flow.h
index 7fe5a0f9483..c6d5fe5ec1b 100644
--- a/include/net/flow.h
+++ b/include/net/flow.h
@@ -26,8 +26,8 @@ struct flowi_common {
 union flowi_uli {
        struct {
-                __be16  sport;
                __be16  dport;
+                __be16  sport;
        } ports;
        struct {
@@ -36,8 +36,8 @@ union flowi_uli {
        } icmpt;
        struct {
-                __le16  sport;
                __le16  dport;
+                __le16  sport;
        } dnports;
        __be32          spi;
@@ -70,6 +70,27 @@ struct flowi4 {
 #define fl4_gre_key             uli.gre_key
 };
+static inline void flowi4_init_output(struct flowi4 *fl4, int oif,
+                                      __u32 mark, __u8 tos, __u8 scope,
+                                      __u8 proto, __u8 flags,
+                                      __be32 daddr, __be32 saddr,
+                                      __be16 dport, __be32 sport)
+{
+        fl4->flowi4_oif = oif;
+        fl4->flowi4_iif = 0;
+        fl4->flowi4_mark = mark;
+        fl4->flowi4_tos = tos;
+        fl4->flowi4_scope = scope;
+        fl4->flowi4_proto = proto;
+        fl4->flowi4_flags = flags;
+        fl4->flowi4_secid = 0;
+        fl4->daddr = daddr;
+        fl4->saddr = saddr;
+        fl4->fl4_dport = dport;
+        fl4->fl4_sport = sport;
+}
+                                      
 struct flowi6 {
        struct flowi_common     __fl_common;
 #define flowi6_oif              __fl_common.flowic_oif
diff --git a/include/net/ip_fib.h b/include/net/ip_fib.h
index e5d66ec88cf..514627f5633 100644
--- a/include/net/ip_fib.h
+++ b/include/net/ip_fib.h
@@ -227,9 +227,9 @@ extern struct fib_table *fib_get_table(struct net *net, u32 id);
 /* Exported by fib_frontend.c */
 extern const struct nla_policy rtm_ipv4_policy[];
 extern void             ip_fib_init(void);
-extern int fib_validate_source(__be32 src, __be32 dst, u8 tos, int oif,
+extern int fib_validate_source(struct sk_buff *skb, __be32 src, __be32 dst,
-                               struct net_device *dev, __be32 *spec_dst,
+                               u8 tos, int oif, struct net_device *dev,
-                               u32 *itag, u32 mark);
+                               __be32 *spec_dst, u32 *itag);
 extern void fib_select_default(struct fib_result *res);
 /* Exported by fib_semantics.c */
diff --git a/include/net/route.h b/include/net/route.h
index 8fce0621cad..3782cddd138 100644
--- a/include/net/route.h
+++ b/include/net/route.h
@@ -150,17 +150,12 @@ static inline struct rtable *ip_route_output_ports(struct net *net, struct sock
                                                   __be16 dport, __be16 sport,
                                                   __u8 proto, __u8 tos, int oif)
 {
-        struct flowi4 fl4 = {
+        struct flowi4 fl4;
-                .flowi4_oif = oif,
-                .flowi4_flags = sk ? inet_sk_flowi_flags(sk) : 0,
+        flowi4_init_output(&fl4, oif, sk ? sk->sk_mark : 0, tos,
-                .flowi4_mark = sk ? sk->sk_mark : 0,
+                           RT_SCOPE_UNIVERSE, proto,
-                .daddr = daddr,
+                           sk ? inet_sk_flowi_flags(sk) : 0,
-                .saddr = saddr,
+                           daddr, saddr, dport, sport);
-                .flowi4_tos = tos,
-                .flowi4_proto = proto,
-                .fl4_dport = dport,
-                .fl4_sport = sport,
-        };
        if (sk)
                security_sk_classify_flow(sk, flowi4_to_flowi(&fl4));
        return ip_route_output_flow(net, &fl4, sk);
@@ -230,25 +225,21 @@ static inline struct rtable *ip_route_connect(__be32 dst, __be32 src, u32 tos,
                                              __be16 sport, __be16 dport,
                                              struct sock *sk, bool can_sleep)
 {
-        struct flowi4 fl4 = {
-                .flowi4_oif = oif,
-                .flowi4_mark = sk->sk_mark,
-                .daddr = dst,
-                .saddr = src,
-                .flowi4_tos = tos,
-                .flowi4_proto = protocol,
-                .fl4_sport = sport,
-                .fl4_dport = dport,
-        };
        struct net *net = sock_net(sk);
        struct rtable *rt;
+        struct flowi4 fl4;
+        __u8 flow_flags;
+        flow_flags = 0;
        if (inet_sk(sk)->transparent)
-                fl4.flowi4_flags |= FLOWI_FLAG_ANYSRC;
+                flow_flags |= FLOWI_FLAG_ANYSRC;
        if (protocol == IPPROTO_TCP)
-                fl4.flowi4_flags |= FLOWI_FLAG_PRECOW_METRICS;
+                flow_flags |= FLOWI_FLAG_PRECOW_METRICS;
        if (can_sleep)
-                fl4.flowi4_flags |= FLOWI_FLAG_CAN_SLEEP;
+                flow_flags |= FLOWI_FLAG_CAN_SLEEP;
+        flowi4_init_output(&fl4, oif, sk->sk_mark, tos, RT_SCOPE_UNIVERSE,
+                           protocol, flow_flags, dst, src, dport, sport);
        if (!dst || !src) {
                rt = __ip_route_output_key(net, &fl4);
@@ -268,20 +259,17 @@ static inline struct rtable *ip_route_newports(struct rtable *rt,
                                               __be16 dport, struct sock *sk)
 {
        if (sport != orig_sport || dport != orig_dport) {
-                struct flowi4 fl4 = {
+                struct flowi4 fl4;
-                        .flowi4_oif = rt->rt_oif,
+                __u8 flow_flags;
-                        .flowi4_mark = rt->rt_mark,
-                        .daddr = rt->rt_dst,
+                flow_flags = 0;
-                        .saddr = rt->rt_src,
-                        .flowi4_tos = rt->rt_tos,
-                        .flowi4_proto = protocol,
-                        .fl4_sport = sport,
-                        .fl4_dport = dport
-                };
                if (inet_sk(sk)->transparent)
-                        fl4.flowi4_flags |= FLOWI_FLAG_ANYSRC;
+                        flow_flags |= FLOWI_FLAG_ANYSRC;
                if (protocol == IPPROTO_TCP)
-                        fl4.flowi4_flags |= FLOWI_FLAG_PRECOW_METRICS;
+                        flow_flags |= FLOWI_FLAG_PRECOW_METRICS;
+                flowi4_init_output(&fl4, rt->rt_oif, rt->rt_mark, rt->rt_tos,
+                                   RT_SCOPE_UNIVERSE, protocol, flow_flags,
+                                   rt->rt_dst, rt->rt_src, dport, sport);
                ip_rt_put(rt);
                security_sk_classify_flow(sk, flowi4_to_flowi(&fl4));
                return ip_route_output_flow(sock_net(sk), &fl4, sk);
diff --git a/include/net/sock.h b/include/net/sock.h
index 01810a3f19d..f2046e404a6 100644
--- a/include/net/sock.h
+++ b/include/net/sock.h
@@ -52,6 +52,7 @@
 #include <linux/mm.h>
 #include <linux/security.h>
 #include <linux/slab.h>
+#include <linux/uaccess.h>
 #include <linux/filter.h>
 #include <linux/rculist_nulls.h>
@@ -1389,6 +1390,59 @@ static inline void sk_nocaps_add(struct sock *sk, int flags)
        sk->sk_route_caps &= ~flags;
 }
+static inline int skb_do_copy_data_nocache(struct sock *sk, struct sk_buff *skb,
+                                           char __user *from, char *to,
+                                           int copy, int offset)
+{
+        if (skb->ip_summed == CHECKSUM_NONE) {
+                int err = 0;
+                __wsum csum = csum_and_copy_from_user(from, to, copy, 0, &err);
+                if (err)
+                        return err;
+                skb->csum = csum_block_add(skb->csum, csum, offset);
+        } else if (sk->sk_route_caps & NETIF_F_NOCACHE_COPY) {
+                if (!access_ok(VERIFY_READ, from, copy) ||
+                    __copy_from_user_nocache(to, from, copy))
+                        return -EFAULT;
+        } else if (copy_from_user(to, from, copy))
+                return -EFAULT;
+        return 0;
+}
+static inline int skb_add_data_nocache(struct sock *sk, struct sk_buff *skb,
+                                       char __user *from, int copy)
+{
+        int err, offset = skb->len;
+        err = skb_do_copy_data_nocache(sk, skb, from, skb_put(skb, copy),
+                                       copy, offset);
+        if (err)
+                __skb_trim(skb, offset);
+        return err;
+}
+static inline int skb_copy_to_page_nocache(struct sock *sk, char __user *from,
+                                           struct sk_buff *skb,
+                                           struct page *page,
+                                           int off, int copy)
+{
+        int err;
+        err = skb_do_copy_data_nocache(sk, skb, from, page_address(page) + off,
+                                       copy, skb->len);
+        if (err)
+                return err;
+        skb->len             += copy;
+        skb->data_len        += copy;
+        skb->truesize        += copy;
+        sk->sk_wmem_queued   += copy;
+        sk_mem_charge(sk, copy);
+        return 0;
+}
 static inline int skb_copy_to_page(struct sock *sk, char __user *from,
                                   struct sk_buff *skb, struct page *page,
                                   int off, int copy)
diff --git a/include/net/xfrm.h b/include/net/xfrm.h
index 6ae4bc5ce8a..65ea3134863 100644
--- a/include/net/xfrm.h
+++ b/include/net/xfrm.h
@@ -957,6 +957,15 @@ struct sec_path {
        struct xfrm_state       *xvec[XFRM_MAX_DEPTH];
 };
+static inline int secpath_exists(struct sk_buff *skb)
+{
+#ifdef CONFIG_XFRM
+        return skb->sp != NULL;
+#else
+        return 0;
+#endif
+}
 static inline struct sec_path *
 secpath_get(struct sec_path *sp)
 {