Merge branch 'wireguard-siphash-patches-for-5-16-rc6'

	return exact;

}

static inline void connect_node(struct allowedips_node **parent, u8 bit, struct allowedips_node *node)

static inline void connect_node(struct allowedips_node __rcu **parent, u8 bit, struct allowedips_node *node)

{

	node->parent_bit_packed = (unsigned long)parent | bit;

	rcu_assign_pointer(*parent, node);

{

	struct wg_device *wg = netdev_priv(dev);

	struct wg_peer *peer;

	struct sk_buff *skb;

	mutex_lock(&wg->device_update_lock);

	list_for_each_entry(peer, &wg->peer_list, peer_list) {

		wg_noise_reset_last_sent_handshake(&peer->last_sent_handshake);

	}

	mutex_unlock(&wg->device_update_lock);

	skb_queue_purge(&wg->incoming_handshakes);

	while ((skb = ptr_ring_consume(&wg->handshake_queue.ring)) != NULL)

		kfree_skb(skb);

	atomic_set(&wg->handshake_queue_len, 0);

	wg_socket_reinit(wg, NULL, NULL);

	return 0;

}

	destroy_workqueue(wg->handshake_receive_wq);

	destroy_workqueue(wg->handshake_send_wq);

	destroy_workqueue(wg->packet_crypt_wq);

	wg_packet_queue_free(&wg->decrypt_queue);

	wg_packet_queue_free(&wg->encrypt_queue);

	wg_packet_queue_free(&wg->handshake_queue, true);

	wg_packet_queue_free(&wg->decrypt_queue, false);

	wg_packet_queue_free(&wg->encrypt_queue, false);

	rcu_barrier(); /* Wait for all the peers to be actually freed. */

	wg_ratelimiter_uninit();

	memzero_explicit(&wg->static_identity, sizeof(wg->static_identity));

	skb_queue_purge(&wg->incoming_handshakes);

	free_percpu(dev->tstats);

	free_percpu(wg->incoming_handshakes_worker);

	kvfree(wg->index_hashtable);

	kvfree(wg->peer_hashtable);

	mutex_unlock(&wg->device_update_lock);

	init_rwsem(&wg->static_identity.lock);

	mutex_init(&wg->socket_update_lock);

	mutex_init(&wg->device_update_lock);

	skb_queue_head_init(&wg->incoming_handshakes);

	wg_allowedips_init(&wg->peer_allowedips);

	wg_cookie_checker_init(&wg->cookie_checker, wg);

	INIT_LIST_HEAD(&wg->peer_list);

	if (!dev->tstats)

		goto err_free_index_hashtable;

	wg->incoming_handshakes_worker =

		wg_packet_percpu_multicore_worker_alloc(

				wg_packet_handshake_receive_worker, wg);

	if (!wg->incoming_handshakes_worker)

		goto err_free_tstats;

	wg->handshake_receive_wq = alloc_workqueue("wg-kex-%s",

			WQ_CPU_INTENSIVE | WQ_FREEZABLE, 0, dev->name);

	if (!wg->handshake_receive_wq)

		goto err_free_incoming_handshakes;

		goto err_free_tstats;

	wg->handshake_send_wq = alloc_workqueue("wg-kex-%s",

			WQ_UNBOUND | WQ_FREEZABLE, 0, dev->name);

	if (ret < 0)

		goto err_free_encrypt_queue;

	ret = wg_ratelimiter_init();

	ret = wg_packet_queue_init(&wg->handshake_queue, wg_packet_handshake_receive_worker,

				   MAX_QUEUED_INCOMING_HANDSHAKES);

	if (ret < 0)

		goto err_free_decrypt_queue;

	ret = wg_ratelimiter_init();

	if (ret < 0)

		goto err_free_handshake_queue;

	ret = register_netdevice(dev);

	if (ret < 0)

		goto err_uninit_ratelimiter;

err_uninit_ratelimiter:

	wg_ratelimiter_uninit();

err_free_handshake_queue:

	wg_packet_queue_free(&wg->handshake_queue, false);

err_free_decrypt_queue:

	wg_packet_queue_free(&wg->decrypt_queue);

	wg_packet_queue_free(&wg->decrypt_queue, false);

err_free_encrypt_queue:

	wg_packet_queue_free(&wg->encrypt_queue);

	wg_packet_queue_free(&wg->encrypt_queue, false);

err_destroy_packet_crypt:

	destroy_workqueue(wg->packet_crypt_wq);

err_destroy_handshake_send:

	destroy_workqueue(wg->handshake_send_wq);

err_destroy_handshake_receive:

	destroy_workqueue(wg->handshake_receive_wq);

err_free_incoming_handshakes:

	free_percpu(wg->incoming_handshakes_worker);

err_free_tstats:

	free_percpu(dev->tstats);

err_free_index_hashtable:

static void wg_netns_pre_exit(struct net *net)

{

	struct wg_device *wg;

	struct wg_peer *peer;

	rtnl_lock();

	list_for_each_entry(wg, &device_list, device_list) {

			mutex_lock(&wg->device_update_lock);

			rcu_assign_pointer(wg->creating_net, NULL);

			wg_socket_reinit(wg, NULL, NULL);

			list_for_each_entry(peer, &wg->peer_list, peer_list)

				wg_socket_clear_peer_endpoint_src(peer);

			mutex_unlock(&wg->device_update_lock);

		}

	}

struct wg_device {

	struct net_device *dev;

	struct crypt_queue encrypt_queue, decrypt_queue;

	struct crypt_queue encrypt_queue, decrypt_queue, handshake_queue;

	struct sock __rcu *sock4, *sock6;

	struct net __rcu *creating_net;

	struct noise_static_identity static_identity;

	struct workqueue_struct *handshake_receive_wq, *handshake_send_wq;

	struct workqueue_struct *packet_crypt_wq;

	struct sk_buff_head incoming_handshakes;

	int incoming_handshake_cpu;

	struct multicore_worker __percpu *incoming_handshakes_worker;

	struct workqueue_struct *packet_crypt_wq,*handshake_receive_wq, *handshake_send_wq;

	struct cookie_checker cookie_checker;

	struct pubkey_hashtable *peer_hashtable;

	struct index_hashtable *index_hashtable;

	struct allowedips peer_allowedips;

	struct mutex device_update_lock, socket_update_lock;

	struct list_head device_list, peer_list;

	atomic_t handshake_queue_len;

	unsigned int num_peers, device_update_gen;

	u32 fwmark;

	u16 incoming_port;

#include <linux/genetlink.h>

#include <net/rtnetlink.h>

static int __init mod_init(void)

static int __init wg_mod_init(void)

{

	int ret;

	return ret;

}

static void __exit mod_exit(void)

static void __exit wg_mod_exit(void)

{

	wg_genetlink_uninit();

	wg_device_uninit();

	wg_allowedips_slab_uninit();

}

module_init(mod_init);

module_exit(mod_exit);

module_init(wg_mod_init);

module_exit(wg_mod_exit);

MODULE_LICENSE("GPL v2");

MODULE_DESCRIPTION("WireGuard secure network tunnel");

MODULE_AUTHOR("Jason A. Donenfeld <Jason@zx2c4.com>");

	return 0;

}

void wg_packet_queue_free(struct crypt_queue *queue)

void wg_packet_queue_free(struct crypt_queue *queue, bool purge)

{

	free_percpu(queue->worker);

	WARN_ON(!__ptr_ring_empty(&queue->ring));

	ptr_ring_cleanup(&queue->ring, NULL);

	WARN_ON(!purge && !__ptr_ring_empty(&queue->ring));

	ptr_ring_cleanup(&queue->ring, purge ? (void(*)(void*))kfree_skb : NULL);

}

#define NEXT(skb) ((skb)->prev)