1 files changed, 12 insertions, 16 deletions
diff --git a/net/ipv4/syncookies.c b/net/ipv4/syncookies.c
index 650cace2180d..26461492a847 100644
--- a/net/ipv4/syncookies.c
+++ b/net/ipv4/syncookies.c
@@ -321,10 +321,10 @@ struct sock *cookie_v4_check(struct sock *sk, struct sk_buff *skb,
         * the ACK carries the same options again (see RFC1122 4.2.3.8)
         */
        if (opt && opt->optlen) {
-                int opt_size = sizeof(struct ip_options) + opt->optlen;
+                int opt_size = sizeof(struct ip_options_rcu) + opt->optlen;
                ireq->opt = kmalloc(opt_size, GFP_ATOMIC);
-                if (ireq->opt != NULL && ip_options_echo(ireq->opt, skb)) {
+                if (ireq->opt != NULL && ip_options_echo(&ireq->opt->opt, skb)) {
                        kfree(ireq->opt);
                        ireq->opt = NULL;
                }
@@ -345,20 +345,16 @@ struct sock *cookie_v4_check(struct sock *sk, struct sk_buff *skb,
         * no easy way to do this.
         */
        {
-                struct flowi fl = { .mark = sk->sk_mark,
+                struct flowi4 fl4;
-                                    .nl_u = { .ip4_u =
-                                              { .daddr = ((opt && opt->srr) ?
+                flowi4_init_output(&fl4, 0, sk->sk_mark, RT_CONN_FLAGS(sk),
-                                                          opt->faddr :
+                                   RT_SCOPE_UNIVERSE, IPPROTO_TCP,
-                                                          ireq->rmt_addr),
+                                   inet_sk_flowi_flags(sk),
-                                                .saddr = ireq->loc_addr,
+                                   (opt && opt->srr) ? opt->faddr : ireq->rmt_addr,
-                                                .tos = RT_CONN_FLAGS(sk) } },
+                                   ireq->loc_addr, th->source, th->dest);
-                                    .proto = IPPROTO_TCP,
+                security_req_classify_flow(req, flowi4_to_flowi(&fl4));
-                                    .flags = inet_sk_flowi_flags(sk),
+                rt = ip_route_output_key(sock_net(sk), &fl4);
-                                    .uli_u = { .ports =
+                if (IS_ERR(rt)) {
-                                               { .sport = th->dest,
-                                                 .dport = th->source } } };
-                security_req_classify_flow(req, &fl);
-                if (ip_route_output_key(sock_net(sk), &rt, &fl)) {
                        reqsk_free(req);
                        goto out;
                }

diff --git a/net/ipv4/syncookies.c b/net/ipv4/syncookies.c index 650cace2180d..26461492a847 100644 --- a/net/ipv4/syncookies.c +++ b/net/ipv4/syncookies.c
@@ -321,10 +321,10 @@ struct sock cookie_v4_check(struct sock sk, struct sk_buff *skb,
321	* the ACK carries the same options again (see RFC1122 4.2.3.8)	321	* the ACK carries the same options again (see RFC1122 4.2.3.8)
322	*/	322	*/
323	if (opt && opt->optlen) {	323	if (opt && opt->optlen) {
324	int opt_size = sizeof(struct ip_options) + opt->optlen;	324	int opt_size = sizeof(struct ip_options_rcu) + opt->optlen;
325		325
326	ireq->opt = kmalloc(opt_size, GFP_ATOMIC);	326	ireq->opt = kmalloc(opt_size, GFP_ATOMIC);
327	if (ireq->opt != NULL && ip_options_echo(ireq->opt, skb)) {	327	if (ireq->opt != NULL && ip_options_echo(&ireq->opt->opt, skb)) {
328	kfree(ireq->opt);	328	kfree(ireq->opt);
329	ireq->opt = NULL;	329	ireq->opt = NULL;
330	}	330	}
@@ -345,20 +345,16 @@ struct sock cookie_v4_check(struct sock sk, struct sk_buff *skb,
345	* no easy way to do this.	345	* no easy way to do this.
346	*/	346	*/
347	{	347	{
348	struct flowi fl = { .mark = sk->sk_mark,	348	struct flowi4 fl4;
349	.nl_u = { .ip4_u =	349
350	{ .daddr = ((opt && opt->srr) ?	350	flowi4_init_output(&fl4, 0, sk->sk_mark, RT_CONN_FLAGS(sk),
351	opt->faddr :	351	RT_SCOPE_UNIVERSE, IPPROTO_TCP,
352	ireq->rmt_addr),	352	inet_sk_flowi_flags(sk),
353	.saddr = ireq->loc_addr,	353	(opt && opt->srr) ? opt->faddr : ireq->rmt_addr,
354	.tos = RT_CONN_FLAGS(sk) } },	354	ireq->loc_addr, th->source, th->dest);
355	.proto = IPPROTO_TCP,	355	security_req_classify_flow(req, flowi4_to_flowi(&fl4));
356	.flags = inet_sk_flowi_flags(sk),	356	rt = ip_route_output_key(sock_net(sk), &fl4);
357	.uli_u = { .ports =	357	if (IS_ERR(rt)) {
358	{ .sport = th->dest,
359	.dport = th->source } } };
360	security_req_classify_flow(req, &fl);
361	if (ip_route_output_key(sock_net(sk), &rt, &fl)) {
362	reqsk_free(req);	358	reqsk_free(req);
363	goto out;	359	goto out;
364	}	360	}