[DCCP]: Unaligned pointer access

#include "lib/tfrc.h"

#include "ccid3.h"

#include <asm/unaligned.h>

#ifdef CONFIG_IP_DCCP_CCID3_DEBUG

static int ccid3_debug;

#define ccid3_pr_debug(format, a...)	DCCP_PR_DEBUG(ccid3_debug, format, ##a)

	const struct dccp_sock *dp = dccp_sk(sk);

	struct ccid3_hc_tx_sock *hctx = ccid3_hc_tx_sk(sk);

	struct ccid3_options_received *opt_recv;

	__be32 opt_val;

	opt_recv = &hctx->ccid3hctx_options_received;

				  dccp_role(sk), sk, len);

			rc = -EINVAL;

		} else {

			opt_recv->ccid3or_loss_event_rate =

						ntohl(*(__be32 *)value);

			opt_val = get_unaligned((__be32 *)value);

			opt_recv->ccid3or_loss_event_rate = ntohl(opt_val);

			ccid3_pr_debug("%s(%p), LOSS_EVENT_RATE=%u\n",

				       dccp_role(sk), sk,

				       opt_recv->ccid3or_loss_event_rate);

				  dccp_role(sk), sk, len);

			rc = -EINVAL;

		} else {

			opt_recv->ccid3or_receive_rate =

						ntohl(*(__be32 *)value);

			opt_val = get_unaligned((__be32 *)value);

			opt_recv->ccid3or_receive_rate = ntohl(opt_val);

			ccid3_pr_debug("%s(%p), RECEIVE_RATE=%u\n",

				       dccp_role(sk), sk,

				       opt_recv->ccid3or_receive_rate);

#include <linux/dccp.h>

#include <linux/module.h>

#include <linux/types.h>

#include <asm/unaligned.h>

#include <linux/kernel.h>

#include <linux/skbuff.h>

	unsigned char opt, len;

	unsigned char *value;

	u32 elapsed_time;

	__be32 opt_val;

	int rc;

	int mandatory = 0;

			if (len != 4)

				goto out_invalid_option;

			opt_recv->dccpor_timestamp = ntohl(*(__be32 *)value);

			opt_val = get_unaligned((__be32 *)value);

			opt_recv->dccpor_timestamp = ntohl(opt_val);

			dp->dccps_timestamp_echo = opt_recv->dccpor_timestamp;

			dp->dccps_timestamp_time = ktime_get_real();

			if (len != 4 && len != 6 && len != 8)

				goto out_invalid_option;

			opt_recv->dccpor_timestamp_echo = ntohl(*(__be32 *)value);

			opt_val = get_unaligned((__be32 *)value);

			opt_recv->dccpor_timestamp_echo = ntohl(opt_val);

			dccp_pr_debug("%s rx opt: TIMESTAMP_ECHO=%u, len=%d, "

				      "ackno=%llu", dccp_role(sk),

				      (unsigned long long)

				      DCCP_SKB_CB(skb)->dccpd_ack_seq);

			value += 4;

			if (len == 4) {

			if (len == 4) {		/* no elapsed time included */

				dccp_pr_debug_cat("\n");

				break;

			}

			if (len == 6)

				elapsed_time = ntohs(*(__be16 *)(value + 4));

			else

				elapsed_time = ntohl(*(__be32 *)(value + 4));

			if (len == 6) {		/* 2-byte elapsed time */

				__be16 opt_val2 = get_unaligned((__be16 *)value);

				elapsed_time = ntohs(opt_val2);

			} else {		/* 4-byte elapsed time */

				opt_val = get_unaligned((__be32 *)value);

				elapsed_time = ntohl(opt_val);

			}

			dccp_pr_debug_cat(", ELAPSED_TIME=%u\n", elapsed_time);

			if (pkt_type == DCCP_PKT_DATA)

				continue;

			if (len == 2)

				elapsed_time = ntohs(*(__be16 *)value);

			else

				elapsed_time = ntohl(*(__be32 *)value);

			if (len == 2) {

				__be16 opt_val2 = get_unaligned((__be16 *)value);

				elapsed_time = ntohs(opt_val2);

			} else {

				opt_val = get_unaligned((__be32 *)value);

				elapsed_time = ntohl(opt_val);

			}

			if (elapsed_time > opt_recv->dccpor_elapsed_time)

				opt_recv->dccpor_elapsed_time = elapsed_time;