tcp: switch tcp_fastopen key generation to net_get_random_once

int tcp_fastopen_reset_cipher(void *key, unsigned int len);

void tcp_fastopen_cookie_gen(__be32 src, __be32 dst,

			     struct tcp_fastopen_cookie *foc);

void tcp_fastopen_init_key_once(bool publish);

#define TCP_FASTOPEN_KEY_LENGTH 16

/* Fastopen key context */

			ret = -EINVAL;

			goto bad_key;

		}

		/* Generate a dummy secret but don't publish it. This

		 * is needed so we don't regenerate a new key on the

		 * first invocation of tcp_fastopen_cookie_gen

		 */

		tcp_fastopen_init_key_once(false);

		tcp_fastopen_reset_cipher(user_key, TCP_FASTOPEN_KEY_LENGTH);

	}

static DEFINE_SPINLOCK(tcp_fastopen_ctx_lock);

void tcp_fastopen_init_key_once(bool publish)

{

	static u8 key[TCP_FASTOPEN_KEY_LENGTH];

	/* tcp_fastopen_reset_cipher publishes the new context

	 * atomically, so we allow this race happening here.

	 *

	 * All call sites of tcp_fastopen_cookie_gen also check

	 * for a valid cookie, so this is an acceptable risk.

	 */

	if (net_get_random_once(key, sizeof(key)) && publish)

		tcp_fastopen_reset_cipher(key, sizeof(key));

}

static void tcp_fastopen_ctx_free(struct rcu_head *head)

{

	struct tcp_fastopen_context *ctx =

	__be32 path[4] = { src, dst, 0, 0 };

	struct tcp_fastopen_context *ctx;

	tcp_fastopen_init_key_once(true);

	rcu_read_lock();

	ctx = rcu_dereference(tcp_fastopen_ctx);

	if (ctx) {

	}

	rcu_read_unlock();

}

static int __init tcp_fastopen_init(void)

{

	__u8 key[TCP_FASTOPEN_KEY_LENGTH];

	get_random_bytes(key, sizeof(key));

	tcp_fastopen_reset_cipher(key, sizeof(key));

	return 0;

}

late_initcall(tcp_fastopen_init);