1 // SPDX-License-Identifier: GPL-2.0-only
3 * Copyright 2002-2005, Instant802 Networks, Inc.
4 * Copyright 2005-2006, Devicescape Software, Inc.
5 * Copyright 2006-2007 Jiri Benc <jbenc@suse.cz>
6 * Copyright 2008-2010 Johannes Berg <johannes@sipsolutions.net>
7 * Copyright 2013-2014 Intel Mobile Communications GmbH
8 * Copyright 2021-2023 Intel Corporation
11 #include <linux/export.h>
12 #include <linux/etherdevice.h>
13 #include <net/mac80211.h>
14 #include <asm/unaligned.h>
15 #include "ieee80211_i.h"
22 void ieee80211_tx_status_irqsafe(struct ieee80211_hw *hw,
25 struct ieee80211_local *local = hw_to_local(hw);
26 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(skb);
29 skb->pkt_type = IEEE80211_TX_STATUS_MSG;
30 skb_queue_tail(info->flags & IEEE80211_TX_CTL_REQ_TX_STATUS ?
31 &local->skb_queue : &local->skb_queue_unreliable, skb);
32 tmp = skb_queue_len(&local->skb_queue) +
33 skb_queue_len(&local->skb_queue_unreliable);
34 while (tmp > IEEE80211_IRQSAFE_QUEUE_LIMIT &&
35 (skb = skb_dequeue(&local->skb_queue_unreliable))) {
36 ieee80211_free_txskb(hw, skb);
38 I802_DEBUG_INC(local->tx_status_drop);
40 tasklet_schedule(&local->tasklet);
42 EXPORT_SYMBOL(ieee80211_tx_status_irqsafe);
44 static void ieee80211_handle_filtered_frame(struct ieee80211_local *local,
48 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(skb);
49 struct ieee80211_hdr *hdr = (void *)skb->data;
52 if (info->flags & (IEEE80211_TX_CTL_NO_PS_BUFFER |
53 IEEE80211_TX_CTL_AMPDU |
54 IEEE80211_TX_CTL_HW_80211_ENCAP)) {
55 ieee80211_free_txskb(&local->hw, skb);
60 * This skb 'survived' a round-trip through the driver, and
61 * hopefully the driver didn't mangle it too badly. However,
62 * we can definitely not rely on the control information
63 * being correct. Clear it so we don't get junk there, and
64 * indicate that it needs new processing, but must not be
65 * modified/encrypted again.
67 memset(&info->control, 0, sizeof(info->control));
69 info->control.jiffies = jiffies;
70 info->control.vif = &sta->sdata->vif;
71 info->control.flags |= IEEE80211_TX_INTCFL_NEED_TXPROCESSING;
72 info->flags |= IEEE80211_TX_INTFL_RETRANSMISSION;
73 info->flags &= ~IEEE80211_TX_TEMPORARY_FLAGS;
75 sta->deflink.status_stats.filtered++;
78 * Clear more-data bit on filtered frames, it might be set
79 * but later frames might time out so it might have to be
80 * clear again ... It's all rather unlikely (this frame
81 * should time out first, right?) but let's not confuse
82 * peers unnecessarily.
84 if (hdr->frame_control & cpu_to_le16(IEEE80211_FCTL_MOREDATA))
85 hdr->frame_control &= ~cpu_to_le16(IEEE80211_FCTL_MOREDATA);
87 if (ieee80211_is_data_qos(hdr->frame_control)) {
88 u8 *p = ieee80211_get_qos_ctl(hdr);
89 int tid = *p & IEEE80211_QOS_CTL_TID_MASK;
92 * Clear EOSP if set, this could happen e.g.
93 * if an absence period (us being a P2P GO)
96 if (*p & IEEE80211_QOS_CTL_EOSP)
97 *p &= ~IEEE80211_QOS_CTL_EOSP;
98 ac = ieee80211_ac_from_tid(tid);
100 ac = IEEE80211_AC_BE;
104 * Clear the TX filter mask for this STA when sending the next
105 * packet. If the STA went to power save mode, this will happen
106 * when it wakes up for the next time.
108 set_sta_flag(sta, WLAN_STA_CLEAR_PS_FILT);
109 ieee80211_clear_fast_xmit(sta);
112 * This code races in the following way:
114 * (1) STA sends frame indicating it will go to sleep and does so
115 * (2) hardware/firmware adds STA to filter list, passes frame up
116 * (3) hardware/firmware processes TX fifo and suppresses a frame
117 * (4) we get TX status before having processed the frame and
118 * knowing that the STA has gone to sleep.
120 * This is actually quite unlikely even when both those events are
121 * processed from interrupts coming in quickly after one another or
122 * even at the same time because we queue both TX status events and
123 * RX frames to be processed by a tasklet and process them in the
124 * same order that they were received or TX status last. Hence, there
125 * is no race as long as the frame RX is processed before the next TX
126 * status, which drivers can ensure, see below.
128 * Note that this can only happen if the hardware or firmware can
129 * actually add STAs to the filter list, if this is done by the
130 * driver in response to set_tim() (which will only reduce the race
131 * this whole filtering tries to solve, not completely solve it)
132 * this situation cannot happen.
134 * To completely solve this race drivers need to make sure that they
135 * (a) don't mix the irq-safe/not irq-safe TX status/RX processing
137 * (b) always process RX events before TX status events if ordering
138 * can be unknown, for example with different interrupt status
140 * (c) if PS mode transitions are manual (i.e. the flag
141 * %IEEE80211_HW_AP_LINK_PS is set), always process PS state
142 * changes before calling TX status events if ordering can be
145 if (test_sta_flag(sta, WLAN_STA_PS_STA) &&
146 skb_queue_len(&sta->tx_filtered[ac]) < STA_MAX_TX_BUFFER) {
147 skb_queue_tail(&sta->tx_filtered[ac], skb);
148 sta_info_recalc_tim(sta);
150 if (!timer_pending(&local->sta_cleanup))
151 mod_timer(&local->sta_cleanup,
152 round_jiffies(jiffies +
153 STA_INFO_CLEANUP_INTERVAL));
157 if (!test_sta_flag(sta, WLAN_STA_PS_STA) &&
158 !(info->flags & IEEE80211_TX_INTFL_RETRIED)) {
159 /* Software retry the packet once */
160 info->flags |= IEEE80211_TX_INTFL_RETRIED;
161 ieee80211_add_pending_skb(local, skb);
165 ps_dbg_ratelimited(sta->sdata,
166 "dropped TX filtered frame, queue_len=%d PS=%d @%lu\n",
167 skb_queue_len(&sta->tx_filtered[ac]),
168 !!test_sta_flag(sta, WLAN_STA_PS_STA), jiffies);
169 ieee80211_free_txskb(&local->hw, skb);
172 static void ieee80211_check_pending_bar(struct sta_info *sta, u8 *addr, u8 tid)
174 struct tid_ampdu_tx *tid_tx;
176 tid_tx = rcu_dereference(sta->ampdu_mlme.tid_tx[tid]);
177 if (!tid_tx || !tid_tx->bar_pending)
180 tid_tx->bar_pending = false;
181 ieee80211_send_bar(&sta->sdata->vif, addr, tid, tid_tx->failed_bar_ssn);
184 static void ieee80211_frame_acked(struct sta_info *sta, struct sk_buff *skb)
186 struct ieee80211_mgmt *mgmt = (void *) skb->data;
188 if (ieee80211_is_data_qos(mgmt->frame_control)) {
189 struct ieee80211_hdr *hdr = (void *) skb->data;
190 u8 *qc = ieee80211_get_qos_ctl(hdr);
191 u16 tid = qc[0] & 0xf;
193 ieee80211_check_pending_bar(sta, hdr->addr1, tid);
197 static void ieee80211_set_bar_pending(struct sta_info *sta, u8 tid, u16 ssn)
199 struct tid_ampdu_tx *tid_tx;
201 tid_tx = rcu_dereference(sta->ampdu_mlme.tid_tx[tid]);
205 tid_tx->failed_bar_ssn = ssn;
206 tid_tx->bar_pending = true;
209 static int ieee80211_tx_radiotap_len(struct ieee80211_tx_info *info,
210 struct ieee80211_tx_status *status)
212 struct ieee80211_rate_status *status_rate = NULL;
213 int len = sizeof(struct ieee80211_radiotap_header);
215 if (status && status->n_rates)
216 status_rate = &status->rates[status->n_rates - 1];
218 /* IEEE80211_RADIOTAP_RATE rate */
219 if (status_rate && !(status_rate->rate_idx.flags &
220 (RATE_INFO_FLAGS_MCS |
221 RATE_INFO_FLAGS_DMG |
222 RATE_INFO_FLAGS_EDMG |
223 RATE_INFO_FLAGS_VHT_MCS |
224 RATE_INFO_FLAGS_HE_MCS)))
226 else if (info->status.rates[0].idx >= 0 &&
227 !(info->status.rates[0].flags &
228 (IEEE80211_TX_RC_MCS | IEEE80211_TX_RC_VHT_MCS)))
231 /* IEEE80211_RADIOTAP_TX_FLAGS */
234 /* IEEE80211_RADIOTAP_DATA_RETRIES */
237 /* IEEE80211_RADIOTAP_MCS
238 * IEEE80211_RADIOTAP_VHT */
240 if (status_rate->rate_idx.flags & RATE_INFO_FLAGS_MCS)
242 else if (status_rate->rate_idx.flags & RATE_INFO_FLAGS_VHT_MCS)
243 len = ALIGN(len, 2) + 12;
244 else if (status_rate->rate_idx.flags & RATE_INFO_FLAGS_HE_MCS)
245 len = ALIGN(len, 2) + 12;
246 } else if (info->status.rates[0].idx >= 0) {
247 if (info->status.rates[0].flags & IEEE80211_TX_RC_MCS)
249 else if (info->status.rates[0].flags & IEEE80211_TX_RC_VHT_MCS)
250 len = ALIGN(len, 2) + 12;
257 ieee80211_add_tx_radiotap_header(struct ieee80211_local *local,
258 struct sk_buff *skb, int retry_count,
260 struct ieee80211_tx_status *status)
262 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(skb);
263 struct ieee80211_hdr *hdr = (struct ieee80211_hdr *) skb->data;
264 struct ieee80211_radiotap_header *rthdr;
265 struct ieee80211_rate_status *status_rate = NULL;
270 if (status && status->n_rates)
271 status_rate = &status->rates[status->n_rates - 1];
273 rthdr = skb_push(skb, rtap_len);
275 memset(rthdr, 0, rtap_len);
276 rthdr->it_len = cpu_to_le16(rtap_len);
278 cpu_to_le32(BIT(IEEE80211_RADIOTAP_TX_FLAGS) |
279 BIT(IEEE80211_RADIOTAP_DATA_RETRIES));
280 pos = (unsigned char *)(rthdr + 1);
283 * XXX: Once radiotap gets the bitmap reset thing the vendor
284 * extensions proposal contains, we can actually report
285 * the whole set of tries we did.
288 /* IEEE80211_RADIOTAP_RATE */
291 if (!(status_rate->rate_idx.flags &
292 (RATE_INFO_FLAGS_MCS |
293 RATE_INFO_FLAGS_DMG |
294 RATE_INFO_FLAGS_EDMG |
295 RATE_INFO_FLAGS_VHT_MCS |
296 RATE_INFO_FLAGS_HE_MCS)))
297 legacy_rate = status_rate->rate_idx.legacy;
298 } else if (info->status.rates[0].idx >= 0 &&
299 !(info->status.rates[0].flags & (IEEE80211_TX_RC_MCS |
300 IEEE80211_TX_RC_VHT_MCS))) {
301 struct ieee80211_supported_band *sband;
303 sband = local->hw.wiphy->bands[info->band];
305 sband->bitrates[info->status.rates[0].idx].bitrate;
309 rthdr->it_present |= cpu_to_le32(BIT(IEEE80211_RADIOTAP_RATE));
310 *pos = DIV_ROUND_UP(legacy_rate, 5);
311 /* padding for tx flags */
315 /* IEEE80211_RADIOTAP_TX_FLAGS */
317 if (!(info->flags & IEEE80211_TX_STAT_ACK) &&
318 !is_multicast_ether_addr(hdr->addr1))
319 txflags |= IEEE80211_RADIOTAP_F_TX_FAIL;
321 if (info->status.rates[0].flags & IEEE80211_TX_RC_USE_CTS_PROTECT)
322 txflags |= IEEE80211_RADIOTAP_F_TX_CTS;
323 if (info->status.rates[0].flags & IEEE80211_TX_RC_USE_RTS_CTS)
324 txflags |= IEEE80211_RADIOTAP_F_TX_RTS;
326 put_unaligned_le16(txflags, pos);
329 /* IEEE80211_RADIOTAP_DATA_RETRIES */
330 /* for now report the total retry_count */
334 if (status_rate && (status_rate->rate_idx.flags & RATE_INFO_FLAGS_MCS))
336 rthdr->it_present |= cpu_to_le32(BIT(IEEE80211_RADIOTAP_MCS));
337 pos[0] = IEEE80211_RADIOTAP_MCS_HAVE_MCS |
338 IEEE80211_RADIOTAP_MCS_HAVE_GI |
339 IEEE80211_RADIOTAP_MCS_HAVE_BW;
340 if (status_rate->rate_idx.flags & RATE_INFO_FLAGS_SHORT_GI)
341 pos[1] |= IEEE80211_RADIOTAP_MCS_SGI;
342 if (status_rate->rate_idx.bw == RATE_INFO_BW_40)
343 pos[1] |= IEEE80211_RADIOTAP_MCS_BW_40;
344 pos[2] = status_rate->rate_idx.mcs;
346 } else if (status_rate && (status_rate->rate_idx.flags &
347 RATE_INFO_FLAGS_VHT_MCS))
349 u16 known = local->hw.radiotap_vht_details &
350 (IEEE80211_RADIOTAP_VHT_KNOWN_GI |
351 IEEE80211_RADIOTAP_VHT_KNOWN_BANDWIDTH);
353 rthdr->it_present |= cpu_to_le32(BIT(IEEE80211_RADIOTAP_VHT));
355 /* required alignment from rthdr */
356 pos = (u8 *)rthdr + ALIGN(pos - (u8 *)rthdr, 2);
358 /* u16 known - IEEE80211_RADIOTAP_VHT_KNOWN_* */
359 put_unaligned_le16(known, pos);
362 /* u8 flags - IEEE80211_RADIOTAP_VHT_FLAG_* */
363 if (status_rate->rate_idx.flags & RATE_INFO_FLAGS_SHORT_GI)
364 *pos |= IEEE80211_RADIOTAP_VHT_FLAG_SGI;
368 switch (status_rate->rate_idx.bw) {
369 case RATE_INFO_BW_160:
372 case RATE_INFO_BW_80:
375 case RATE_INFO_BW_40:
385 *pos = (status_rate->rate_idx.mcs << 4) |
386 status_rate->rate_idx.nss;
393 /* u16 partial_aid */
395 } else if (status_rate && (status_rate->rate_idx.flags &
396 RATE_INFO_FLAGS_HE_MCS))
398 struct ieee80211_radiotap_he *he;
400 rthdr->it_present |= cpu_to_le32(BIT(IEEE80211_RADIOTAP_HE));
402 /* required alignment from rthdr */
403 pos = (u8 *)rthdr + ALIGN(pos - (u8 *)rthdr, 2);
404 he = (struct ieee80211_radiotap_he *)pos;
406 he->data1 = cpu_to_le16(IEEE80211_RADIOTAP_HE_DATA1_FORMAT_SU |
407 IEEE80211_RADIOTAP_HE_DATA1_DATA_MCS_KNOWN |
408 IEEE80211_RADIOTAP_HE_DATA1_DATA_DCM_KNOWN |
409 IEEE80211_RADIOTAP_HE_DATA1_BW_RU_ALLOC_KNOWN);
411 he->data2 = cpu_to_le16(IEEE80211_RADIOTAP_HE_DATA2_GI_KNOWN);
413 #define HE_PREP(f, val) le16_encode_bits(val, IEEE80211_RADIOTAP_HE_##f)
415 he->data6 |= HE_PREP(DATA6_NSTS, status_rate->rate_idx.nss);
417 #define CHECK_GI(s) \
418 BUILD_BUG_ON(IEEE80211_RADIOTAP_HE_DATA5_GI_##s != \
419 (int)NL80211_RATE_INFO_HE_GI_##s)
425 he->data3 |= HE_PREP(DATA3_DATA_MCS, status_rate->rate_idx.mcs);
426 he->data3 |= HE_PREP(DATA3_DATA_DCM, status_rate->rate_idx.he_dcm);
428 he->data5 |= HE_PREP(DATA5_GI, status_rate->rate_idx.he_gi);
430 switch (status_rate->rate_idx.bw) {
431 case RATE_INFO_BW_20:
432 he->data5 |= HE_PREP(DATA5_DATA_BW_RU_ALLOC,
433 IEEE80211_RADIOTAP_HE_DATA5_DATA_BW_RU_ALLOC_20MHZ);
435 case RATE_INFO_BW_40:
436 he->data5 |= HE_PREP(DATA5_DATA_BW_RU_ALLOC,
437 IEEE80211_RADIOTAP_HE_DATA5_DATA_BW_RU_ALLOC_40MHZ);
439 case RATE_INFO_BW_80:
440 he->data5 |= HE_PREP(DATA5_DATA_BW_RU_ALLOC,
441 IEEE80211_RADIOTAP_HE_DATA5_DATA_BW_RU_ALLOC_80MHZ);
443 case RATE_INFO_BW_160:
444 he->data5 |= HE_PREP(DATA5_DATA_BW_RU_ALLOC,
445 IEEE80211_RADIOTAP_HE_DATA5_DATA_BW_RU_ALLOC_160MHZ);
447 case RATE_INFO_BW_HE_RU:
448 #define CHECK_RU_ALLOC(s) \
449 BUILD_BUG_ON(IEEE80211_RADIOTAP_HE_DATA5_DATA_BW_RU_ALLOC_##s##T != \
450 NL80211_RATE_INFO_HE_RU_ALLOC_##s + 4)
458 CHECK_RU_ALLOC(2x996);
460 he->data5 |= HE_PREP(DATA5_DATA_BW_RU_ALLOC,
461 status_rate->rate_idx.he_ru_alloc + 4);
464 WARN_ONCE(1, "Invalid SU BW %d\n", status_rate->rate_idx.bw);
467 pos += sizeof(struct ieee80211_radiotap_he);
470 if (status_rate || info->status.rates[0].idx < 0)
473 /* IEEE80211_RADIOTAP_MCS
474 * IEEE80211_RADIOTAP_VHT */
475 if (info->status.rates[0].flags & IEEE80211_TX_RC_MCS) {
476 rthdr->it_present |= cpu_to_le32(BIT(IEEE80211_RADIOTAP_MCS));
477 pos[0] = IEEE80211_RADIOTAP_MCS_HAVE_MCS |
478 IEEE80211_RADIOTAP_MCS_HAVE_GI |
479 IEEE80211_RADIOTAP_MCS_HAVE_BW;
480 if (info->status.rates[0].flags & IEEE80211_TX_RC_SHORT_GI)
481 pos[1] |= IEEE80211_RADIOTAP_MCS_SGI;
482 if (info->status.rates[0].flags & IEEE80211_TX_RC_40_MHZ_WIDTH)
483 pos[1] |= IEEE80211_RADIOTAP_MCS_BW_40;
484 if (info->status.rates[0].flags & IEEE80211_TX_RC_GREEN_FIELD)
485 pos[1] |= IEEE80211_RADIOTAP_MCS_FMT_GF;
486 pos[2] = info->status.rates[0].idx;
488 } else if (info->status.rates[0].flags & IEEE80211_TX_RC_VHT_MCS) {
489 u16 known = local->hw.radiotap_vht_details &
490 (IEEE80211_RADIOTAP_VHT_KNOWN_GI |
491 IEEE80211_RADIOTAP_VHT_KNOWN_BANDWIDTH);
493 rthdr->it_present |= cpu_to_le32(BIT(IEEE80211_RADIOTAP_VHT));
495 /* required alignment from rthdr */
496 pos = (u8 *)rthdr + ALIGN(pos - (u8 *)rthdr, 2);
498 /* u16 known - IEEE80211_RADIOTAP_VHT_KNOWN_* */
499 put_unaligned_le16(known, pos);
502 /* u8 flags - IEEE80211_RADIOTAP_VHT_FLAG_* */
503 if (info->status.rates[0].flags & IEEE80211_TX_RC_SHORT_GI)
504 *pos |= IEEE80211_RADIOTAP_VHT_FLAG_SGI;
508 if (info->status.rates[0].flags & IEEE80211_TX_RC_40_MHZ_WIDTH)
510 else if (info->status.rates[0].flags & IEEE80211_TX_RC_80_MHZ_WIDTH)
512 else if (info->status.rates[0].flags & IEEE80211_TX_RC_160_MHZ_WIDTH)
514 else /* IEEE80211_TX_RC_{20_MHZ_WIDTH,FIXME:DUP_DATA} */
519 *pos = (ieee80211_rate_get_vht_mcs(&info->status.rates[0]) << 4) |
520 ieee80211_rate_get_vht_nss(&info->status.rates[0]);
527 /* u16 partial_aid */
533 * Handles the tx for TDLS teardown frames.
534 * If the frame wasn't ACKed by the peer - it will be re-sent through the AP
536 static void ieee80211_tdls_td_tx_handle(struct ieee80211_local *local,
537 struct ieee80211_sub_if_data *sdata,
538 struct sk_buff *skb, u32 flags)
540 struct sk_buff *teardown_skb;
541 struct sk_buff *orig_teardown_skb;
542 bool is_teardown = false;
544 /* Get the teardown data we need and free the lock */
545 spin_lock(&sdata->u.mgd.teardown_lock);
546 teardown_skb = sdata->u.mgd.teardown_skb;
547 orig_teardown_skb = sdata->u.mgd.orig_teardown_skb;
548 if ((skb == orig_teardown_skb) && teardown_skb) {
549 sdata->u.mgd.teardown_skb = NULL;
550 sdata->u.mgd.orig_teardown_skb = NULL;
553 spin_unlock(&sdata->u.mgd.teardown_lock);
556 /* This mechanism relies on being able to get ACKs */
557 WARN_ON(!ieee80211_hw_check(&local->hw, REPORTS_TX_ACK_STATUS));
559 /* Check if peer has ACKed */
560 if (flags & IEEE80211_TX_STAT_ACK) {
561 dev_kfree_skb_any(teardown_skb);
564 "TDLS Resending teardown through AP\n");
566 ieee80211_subif_start_xmit(teardown_skb, skb->dev);
571 static struct ieee80211_sub_if_data *
572 ieee80211_sdata_from_skb(struct ieee80211_local *local, struct sk_buff *skb)
574 struct ieee80211_sub_if_data *sdata;
577 list_for_each_entry_rcu(sdata, &local->interfaces, list) {
581 if (skb->dev == sdata->dev)
588 return rcu_dereference(local->p2p_sdata);
591 static void ieee80211_report_ack_skb(struct ieee80211_local *local,
592 struct sk_buff *orig_skb,
593 bool acked, bool dropped,
594 ktime_t ack_hwtstamp)
596 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(orig_skb);
600 spin_lock_irqsave(&local->ack_status_lock, flags);
601 skb = idr_remove(&local->ack_status_frames, info->status_data);
602 spin_unlock_irqrestore(&local->ack_status_lock, flags);
607 if (info->flags & IEEE80211_TX_INTFL_NL80211_FRAME_TX) {
608 u64 cookie = IEEE80211_SKB_CB(skb)->ack.cookie;
609 struct ieee80211_sub_if_data *sdata;
610 struct ieee80211_hdr *hdr = (void *)skb->data;
611 bool is_valid_ack_signal =
612 !!(info->status.flags & IEEE80211_TX_STATUS_ACK_SIGNAL_VALID);
613 struct cfg80211_tx_status status = {
620 if (ieee80211_is_timing_measurement(orig_skb) ||
621 ieee80211_is_ftm(orig_skb)) {
623 ktime_to_ns(skb_hwtstamps(orig_skb)->hwtstamp);
624 status.ack_tstamp = ktime_to_ns(ack_hwtstamp);
628 sdata = ieee80211_sdata_from_skb(local, skb);
630 if (skb->protocol == sdata->control_port_protocol ||
631 skb->protocol == cpu_to_be16(ETH_P_PREAUTH))
632 cfg80211_control_port_tx_status(&sdata->wdev,
638 else if (ieee80211_is_any_nullfunc(hdr->frame_control))
639 cfg80211_probe_status(sdata->dev, hdr->addr1,
641 info->status.ack_signal,
644 else if (ieee80211_is_mgmt(hdr->frame_control))
645 cfg80211_mgmt_tx_status_ext(&sdata->wdev,
649 pr_warn("Unknown status report in ack skb\n");
654 dev_kfree_skb_any(skb);
655 } else if (dropped) {
656 dev_kfree_skb_any(skb);
659 skb_complete_wifi_ack(skb, acked);
663 static void ieee80211_handle_smps_status(struct ieee80211_sub_if_data *sdata,
664 bool acked, u16 status_data)
666 u16 sub_data = u16_get_bits(status_data, IEEE80211_STATUS_SUBDATA_MASK);
667 enum ieee80211_smps_mode smps_mode = sub_data & 3;
668 int link_id = (sub_data >> 2);
669 struct ieee80211_link_data *link;
671 if (!sdata || !ieee80211_sdata_running(sdata))
677 if (sdata->vif.type != NL80211_IFTYPE_STATION)
680 if (WARN(link_id >= ARRAY_SIZE(sdata->link),
681 "bad SMPS status link: %d\n", link_id))
684 link = rcu_dereference(sdata->link[link_id]);
689 * This update looks racy, but isn't, the only other place
690 * updating this variable is in managed mode before assoc,
691 * and we have to be associated to have a status from the
692 * action frame TX, since we cannot send it while we're not
695 link->smps_mode = smps_mode;
696 wiphy_work_queue(sdata->local->hw.wiphy, &link->u.mgd.recalc_smps);
699 static void ieee80211_report_used_skb(struct ieee80211_local *local,
700 struct sk_buff *skb, bool dropped,
701 ktime_t ack_hwtstamp)
703 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(skb);
704 u16 tx_time_est = ieee80211_info_get_tx_time_est(info);
705 struct ieee80211_hdr *hdr = (void *)skb->data;
706 bool acked = info->flags & IEEE80211_TX_STAT_ACK;
712 struct sta_info *sta;
716 sta = sta_info_get_by_addrs(local, hdr->addr1, hdr->addr2);
717 ieee80211_sta_update_pending_airtime(local, sta,
718 skb_get_queue_mapping(skb),
724 if (info->flags & IEEE80211_TX_INTFL_MLME_CONN_TX) {
725 struct ieee80211_sub_if_data *sdata;
729 sdata = ieee80211_sdata_from_skb(local, skb);
733 } else if (!dropped) {
734 /* Check to see if packet is a TDLS teardown packet */
735 if (ieee80211_is_data(hdr->frame_control) &&
736 (ieee80211_get_tdls_action(skb) ==
737 WLAN_TDLS_TEARDOWN)) {
738 ieee80211_tdls_td_tx_handle(local, sdata, skb,
740 } else if (ieee80211_s1g_is_twt_setup(skb)) {
742 struct sk_buff *qskb;
744 qskb = skb_clone(skb, GFP_ATOMIC);
746 skb_queue_tail(&sdata->status_queue,
748 wiphy_work_queue(local->hw.wiphy,
753 ieee80211_mgd_conn_tx_status(sdata,
760 } else if (info->status_data_idr) {
761 ieee80211_report_ack_skb(local, skb, acked, dropped,
763 } else if (info->status_data) {
764 struct ieee80211_sub_if_data *sdata;
768 sdata = ieee80211_sdata_from_skb(local, skb);
770 switch (u16_get_bits(info->status_data,
771 IEEE80211_STATUS_TYPE_MASK)) {
772 case IEEE80211_STATUS_TYPE_SMPS:
773 ieee80211_handle_smps_status(sdata, acked,
780 if (!dropped && skb->destructor) {
781 skb->wifi_acked_valid = 1;
782 skb->wifi_acked = acked;
785 ieee80211_led_tx(local);
787 if (skb_has_frag_list(skb)) {
788 kfree_skb_list(skb_shinfo(skb)->frag_list);
789 skb_shinfo(skb)->frag_list = NULL;
794 * Use a static threshold for now, best value to be determined
796 * Should it depend on:
797 * - on # of retransmissions
798 * - current throughput (higher value for higher tpt)?
800 #define STA_LOST_PKT_THRESHOLD 50
801 #define STA_LOST_PKT_TIME HZ /* 1 sec since last ACK */
802 #define STA_LOST_TDLS_PKT_TIME (10*HZ) /* 10secs since last ACK */
804 static void ieee80211_lost_packet(struct sta_info *sta,
805 struct ieee80211_tx_info *info)
807 unsigned long pkt_time = STA_LOST_PKT_TIME;
808 unsigned int pkt_thr = STA_LOST_PKT_THRESHOLD;
810 /* If driver relies on its own algorithm for station kickout, skip
811 * mac80211 packet loss mechanism.
813 if (ieee80211_hw_check(&sta->local->hw, REPORTS_LOW_ACK))
816 /* This packet was aggregated but doesn't carry status info */
817 if ((info->flags & IEEE80211_TX_CTL_AMPDU) &&
818 !(info->flags & IEEE80211_TX_STAT_AMPDU))
821 sta->deflink.status_stats.lost_packets++;
823 pkt_time = STA_LOST_TDLS_PKT_TIME;
824 pkt_thr = STA_LOST_PKT_THRESHOLD;
828 * If we're in TDLS mode, make sure that all STA_LOST_PKT_THRESHOLD
829 * of the last packets were lost, and that no ACK was received in the
830 * last STA_LOST_TDLS_PKT_TIME ms, before triggering the CQM packet-loss
832 * For non-TDLS, use STA_LOST_PKT_THRESHOLD and STA_LOST_PKT_TIME
834 if (sta->deflink.status_stats.lost_packets < pkt_thr ||
835 !time_after(jiffies, sta->deflink.status_stats.last_pkt_time + pkt_time))
838 cfg80211_cqm_pktloss_notify(sta->sdata->dev, sta->sta.addr,
839 sta->deflink.status_stats.lost_packets,
841 sta->deflink.status_stats.lost_packets = 0;
844 static int ieee80211_tx_get_rates(struct ieee80211_hw *hw,
845 struct ieee80211_tx_info *info,
851 for (i = 0; i < IEEE80211_TX_MAX_RATES; i++) {
852 if ((info->flags & IEEE80211_TX_CTL_AMPDU) &&
853 !(info->flags & IEEE80211_TX_STAT_AMPDU)) {
854 /* just the first aggr frame carry status info */
855 info->status.rates[i].idx = -1;
856 info->status.rates[i].count = 0;
858 } else if (info->status.rates[i].idx < 0) {
860 } else if (i >= hw->max_report_rates) {
861 /* the HW cannot have attempted that rate */
862 info->status.rates[i].idx = -1;
863 info->status.rates[i].count = 0;
867 count += info->status.rates[i].count;
873 *retry_count = count;
877 void ieee80211_tx_monitor(struct ieee80211_local *local, struct sk_buff *skb,
878 int retry_count, bool send_to_cooked,
879 struct ieee80211_tx_status *status)
881 struct sk_buff *skb2;
882 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(skb);
883 struct ieee80211_sub_if_data *sdata;
884 struct net_device *prev_dev = NULL;
887 /* send frame to monitor interfaces now */
888 rtap_len = ieee80211_tx_radiotap_len(info, status);
889 if (WARN_ON_ONCE(skb_headroom(skb) < rtap_len)) {
890 pr_err("ieee80211_tx_status: headroom too small\n");
894 ieee80211_add_tx_radiotap_header(local, skb, retry_count,
897 /* XXX: is this sufficient for BPF? */
898 skb_reset_mac_header(skb);
899 skb->ip_summed = CHECKSUM_UNNECESSARY;
900 skb->pkt_type = PACKET_OTHERHOST;
901 skb->protocol = htons(ETH_P_802_2);
902 memset(skb->cb, 0, sizeof(skb->cb));
905 list_for_each_entry_rcu(sdata, &local->interfaces, list) {
906 if (sdata->vif.type == NL80211_IFTYPE_MONITOR) {
907 if (!ieee80211_sdata_running(sdata))
910 if ((sdata->u.mntr.flags & MONITOR_FLAG_COOK_FRAMES) &&
915 skb2 = skb_clone(skb, GFP_ATOMIC);
917 skb2->dev = prev_dev;
922 prev_dev = sdata->dev;
934 static void __ieee80211_tx_status(struct ieee80211_hw *hw,
935 struct ieee80211_tx_status *status,
936 int rates_idx, int retry_count)
938 struct sk_buff *skb = status->skb;
939 struct ieee80211_hdr *hdr = (struct ieee80211_hdr *) skb->data;
940 struct ieee80211_local *local = hw_to_local(hw);
941 struct ieee80211_tx_info *info = status->info;
942 struct sta_info *sta;
947 struct ieee80211_bar *bar;
948 int tid = IEEE80211_NUM_TIDS;
950 fc = hdr->frame_control;
953 sta = container_of(status->sta, struct sta_info, sta);
955 if (info->flags & IEEE80211_TX_STATUS_EOSP)
956 clear_sta_flag(sta, WLAN_STA_SP);
958 acked = !!(info->flags & IEEE80211_TX_STAT_ACK);
959 noack_success = !!(info->flags &
960 IEEE80211_TX_STAT_NOACK_TRANSMITTED);
962 /* mesh Peer Service Period support */
963 if (ieee80211_vif_is_mesh(&sta->sdata->vif) &&
964 ieee80211_is_data_qos(fc))
965 ieee80211_mpsp_trigger_process(
966 ieee80211_get_qos_ctl(hdr), sta, true, acked);
968 if (ieee80211_hw_check(&local->hw, HAS_RATE_CONTROL) &&
969 (ieee80211_is_data(hdr->frame_control)) &&
971 sta->deflink.tx_stats.last_rate =
972 info->status.rates[rates_idx];
974 if ((info->flags & IEEE80211_TX_STAT_AMPDU_NO_BACK) &&
975 (ieee80211_is_data_qos(fc))) {
979 qc = ieee80211_get_qos_ctl(hdr);
981 ssn = ((le16_to_cpu(hdr->seq_ctrl) + 0x10)
982 & IEEE80211_SCTL_SEQ);
983 ieee80211_send_bar(&sta->sdata->vif, hdr->addr1,
985 } else if (ieee80211_is_data_qos(fc)) {
986 u8 *qc = ieee80211_get_qos_ctl(hdr);
991 if (!acked && ieee80211_is_back_req(fc)) {
995 * BAR failed, store the last SSN and retry sending
996 * the BAR when the next unicast transmission on the
999 bar = (struct ieee80211_bar *) skb->data;
1000 control = le16_to_cpu(bar->control);
1001 if (!(control & IEEE80211_BAR_CTRL_MULTI_TID)) {
1002 u16 ssn = le16_to_cpu(bar->start_seq_num);
1005 IEEE80211_BAR_CTRL_TID_INFO_MASK) >>
1006 IEEE80211_BAR_CTRL_TID_INFO_SHIFT;
1008 ieee80211_set_bar_pending(sta, tid, ssn);
1012 if (info->flags & IEEE80211_TX_STAT_TX_FILTERED) {
1013 ieee80211_handle_filtered_frame(local, sta, skb);
1015 } else if (ieee80211_is_data_present(fc)) {
1016 if (!acked && !noack_success)
1017 sta->deflink.status_stats.msdu_failed[tid]++;
1019 sta->deflink.status_stats.msdu_retries[tid] +=
1023 if (!(info->flags & IEEE80211_TX_CTL_INJECTED) && acked)
1024 ieee80211_frame_acked(sta, skb);
1029 * Fragments are passed to low-level drivers as separate skbs, so these
1030 * are actually fragments, not frames. Update frame counters only for
1031 * the first fragment of the frame. */
1032 if ((info->flags & IEEE80211_TX_STAT_ACK) ||
1033 (info->flags & IEEE80211_TX_STAT_NOACK_TRANSMITTED)) {
1034 if (ieee80211_is_first_frag(hdr->seq_ctrl)) {
1035 I802_DEBUG_INC(local->dot11TransmittedFrameCount);
1036 if (is_multicast_ether_addr(ieee80211_get_DA(hdr)))
1037 I802_DEBUG_INC(local->dot11MulticastTransmittedFrameCount);
1038 if (retry_count > 0)
1039 I802_DEBUG_INC(local->dot11RetryCount);
1040 if (retry_count > 1)
1041 I802_DEBUG_INC(local->dot11MultipleRetryCount);
1044 /* This counter shall be incremented for an acknowledged MPDU
1045 * with an individual address in the address 1 field or an MPDU
1046 * with a multicast address in the address 1 field of type Data
1048 if (!is_multicast_ether_addr(hdr->addr1) ||
1049 ieee80211_is_data(fc) ||
1050 ieee80211_is_mgmt(fc))
1051 I802_DEBUG_INC(local->dot11TransmittedFragmentCount);
1053 if (ieee80211_is_first_frag(hdr->seq_ctrl))
1054 I802_DEBUG_INC(local->dot11FailedCount);
1057 if (ieee80211_is_any_nullfunc(fc) &&
1058 ieee80211_has_pm(fc) &&
1059 ieee80211_hw_check(&local->hw, REPORTS_TX_ACK_STATUS) &&
1060 !(info->flags & IEEE80211_TX_CTL_INJECTED) &&
1061 local->ps_sdata && !(local->scanning)) {
1062 if (info->flags & IEEE80211_TX_STAT_ACK)
1063 local->ps_sdata->u.mgd.flags |=
1064 IEEE80211_STA_NULLFUNC_ACKED;
1065 mod_timer(&local->dynamic_ps_timer,
1066 jiffies + msecs_to_jiffies(10));
1069 ieee80211_report_used_skb(local, skb, false, status->ack_hwtstamp);
1071 /* this was a transmitted frame, but now we want to reuse it */
1074 /* Need to make a copy before skb->cb gets cleared */
1075 send_to_cooked = !!(info->flags & IEEE80211_TX_CTL_INJECTED) ||
1076 !(ieee80211_is_data(fc));
1079 * This is a bit racy but we can avoid a lot of work
1082 if (!local->monitors && (!send_to_cooked || !local->cooked_mntrs)) {
1083 if (status->free_list)
1084 list_add_tail(&skb->list, status->free_list);
1090 /* send to monitor interfaces */
1091 ieee80211_tx_monitor(local, skb, retry_count,
1092 send_to_cooked, status);
1095 void ieee80211_tx_status_skb(struct ieee80211_hw *hw, struct sk_buff *skb)
1097 struct ieee80211_hdr *hdr = (struct ieee80211_hdr *) skb->data;
1098 struct ieee80211_local *local = hw_to_local(hw);
1099 struct ieee80211_tx_status status = {
1101 .info = IEEE80211_SKB_CB(skb),
1103 struct sta_info *sta;
1107 sta = sta_info_get_by_addrs(local, hdr->addr1, hdr->addr2);
1109 status.sta = &sta->sta;
1111 ieee80211_tx_status_ext(hw, &status);
1114 EXPORT_SYMBOL(ieee80211_tx_status_skb);
1116 void ieee80211_tx_status_ext(struct ieee80211_hw *hw,
1117 struct ieee80211_tx_status *status)
1119 struct ieee80211_local *local = hw_to_local(hw);
1120 struct ieee80211_tx_info *info = status->info;
1121 struct ieee80211_sta *pubsta = status->sta;
1122 struct sk_buff *skb = status->skb;
1123 struct sta_info *sta = NULL;
1124 int rates_idx, retry_count;
1125 bool acked, noack_success, ack_signal_valid;
1129 sta = container_of(pubsta, struct sta_info, sta);
1131 if (status->n_rates)
1132 sta->deflink.tx_stats.last_rate_info =
1133 status->rates[status->n_rates - 1].rate_idx;
1136 if (skb && (tx_time_est =
1137 ieee80211_info_get_tx_time_est(IEEE80211_SKB_CB(skb))) > 0) {
1138 /* Do this here to avoid the expensive lookup of the sta
1139 * in ieee80211_report_used_skb().
1141 ieee80211_sta_update_pending_airtime(local, sta,
1142 skb_get_queue_mapping(skb),
1145 ieee80211_info_set_tx_time_est(IEEE80211_SKB_CB(skb), 0);
1151 rates_idx = ieee80211_tx_get_rates(hw, info, &retry_count);
1153 acked = !!(info->flags & IEEE80211_TX_STAT_ACK);
1154 noack_success = !!(info->flags & IEEE80211_TX_STAT_NOACK_TRANSMITTED);
1156 !!(info->status.flags & IEEE80211_TX_STATUS_ACK_SIGNAL_VALID);
1159 struct ieee80211_sub_if_data *sdata = sta->sdata;
1161 if (!acked && !noack_success)
1162 sta->deflink.status_stats.retry_failed++;
1163 sta->deflink.status_stats.retry_count += retry_count;
1165 if (ieee80211_hw_check(&local->hw, REPORTS_TX_ACK_STATUS)) {
1166 if (sdata->vif.type == NL80211_IFTYPE_STATION &&
1167 skb && !(info->flags & IEEE80211_TX_CTL_HW_80211_ENCAP))
1168 ieee80211_sta_tx_notify(sdata, (void *) skb->data,
1169 acked, info->status.tx_time);
1172 sta->deflink.status_stats.last_ack = jiffies;
1174 if (sta->deflink.status_stats.lost_packets)
1175 sta->deflink.status_stats.lost_packets = 0;
1177 /* Track when last packet was ACKed */
1178 sta->deflink.status_stats.last_pkt_time = jiffies;
1180 /* Reset connection monitor */
1181 if (sdata->vif.type == NL80211_IFTYPE_STATION &&
1182 unlikely(sdata->u.mgd.probe_send_count > 0))
1183 sdata->u.mgd.probe_send_count = 0;
1185 if (ack_signal_valid) {
1186 sta->deflink.status_stats.last_ack_signal =
1187 (s8)info->status.ack_signal;
1188 sta->deflink.status_stats.ack_signal_filled = true;
1189 ewma_avg_signal_add(&sta->deflink.status_stats.avg_ack_signal,
1190 -info->status.ack_signal);
1192 } else if (test_sta_flag(sta, WLAN_STA_PS_STA)) {
1194 * The STA is in power save mode, so assume
1195 * that this TX packet failed because of that.
1198 ieee80211_handle_filtered_frame(local, sta, skb);
1200 } else if (noack_success) {
1201 /* nothing to do here, do not account as lost */
1203 ieee80211_lost_packet(sta, info);
1207 rate_control_tx_status(local, status);
1208 if (ieee80211_vif_is_mesh(&sta->sdata->vif))
1209 ieee80211s_update_metric(local, sta, status);
1212 if (skb && !(info->flags & IEEE80211_TX_CTL_HW_80211_ENCAP))
1213 return __ieee80211_tx_status(hw, status, rates_idx,
1216 if (acked || noack_success) {
1217 I802_DEBUG_INC(local->dot11TransmittedFrameCount);
1219 I802_DEBUG_INC(local->dot11MulticastTransmittedFrameCount);
1220 if (retry_count > 0)
1221 I802_DEBUG_INC(local->dot11RetryCount);
1222 if (retry_count > 1)
1223 I802_DEBUG_INC(local->dot11MultipleRetryCount);
1225 I802_DEBUG_INC(local->dot11FailedCount);
1232 ieee80211_report_used_skb(local, skb, false, status->ack_hwtstamp);
1233 if (status->free_list)
1234 list_add_tail(&skb->list, status->free_list);
1238 EXPORT_SYMBOL(ieee80211_tx_status_ext);
1240 void ieee80211_tx_rate_update(struct ieee80211_hw *hw,
1241 struct ieee80211_sta *pubsta,
1242 struct ieee80211_tx_info *info)
1244 struct ieee80211_local *local = hw_to_local(hw);
1245 struct sta_info *sta = container_of(pubsta, struct sta_info, sta);
1246 struct ieee80211_tx_status status = {
1251 rate_control_tx_status(local, &status);
1253 if (ieee80211_hw_check(&local->hw, HAS_RATE_CONTROL))
1254 sta->deflink.tx_stats.last_rate = info->status.rates[0];
1256 EXPORT_SYMBOL(ieee80211_tx_rate_update);
1258 void ieee80211_report_low_ack(struct ieee80211_sta *pubsta, u32 num_packets)
1260 struct sta_info *sta = container_of(pubsta, struct sta_info, sta);
1261 cfg80211_cqm_pktloss_notify(sta->sdata->dev, sta->sta.addr,
1262 num_packets, GFP_ATOMIC);
1264 EXPORT_SYMBOL(ieee80211_report_low_ack);
1266 void ieee80211_free_txskb(struct ieee80211_hw *hw, struct sk_buff *skb)
1268 struct ieee80211_local *local = hw_to_local(hw);
1269 ktime_t kt = ktime_set(0, 0);
1271 ieee80211_report_used_skb(local, skb, true, kt);
1272 dev_kfree_skb_any(skb);
1274 EXPORT_SYMBOL(ieee80211_free_txskb);
1276 void ieee80211_purge_tx_queue(struct ieee80211_hw *hw,
1277 struct sk_buff_head *skbs)
1279 struct sk_buff *skb;
1281 while ((skb = __skb_dequeue(skbs)))
1282 ieee80211_free_txskb(hw, skb);
projects / linux-2.6-microblaze.git / blob