projects / deliverable / linux.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
mac80211: fix mesh_add_rsn_ie IE finding loop
[deliverable/linux.git] / net / mac80211 / mesh_hwmp.c
CommitLineData
050ac52c 1/*
264d9b7d 2 * Copyright (c) 2008, 2009 open80211s Ltd.
050ac52c
LCC		 3 * Author: Luis Carlos Cobo <luisca@cozybit.com>
4 *
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License version 2 as
7 * published by the Free Software Foundation.
8 */
9
5a0e3ad6 10#include <linux/slab.h>
888d04df 11#include <linux/etherdevice.h>
d26ad377 12#include <asm/unaligned.h>
2cca397f 13#include "wme.h"
050ac52c
LCC		 14#include "mesh.h"
15
050ac52c
LCC		 16#define TEST_FRAME_LEN 8192
17#define MAX_METRIC 0xffffffff
18#define ARITH_SHIFT 8
19
050ac52c
LCC		 20#define MAX_PREQ_QUEUE_LEN 64
21
22/* Destination only */
23#define MP_F_DO 0x1
24/* Reply and forward */
25#define MP_F_RF 0x2
d611f062
RP		 26/* Unknown Sequence Number */
27#define MP_F_USN 0x01
28/* Reason code Present */
29#define MP_F_RCODE 0x02
050ac52c 30
90a5e169
RP		 31static void mesh_queue_preq(struct mesh_path *, u8);
32
4a3cb702 33static inline u32 u32_field_get(const u8 *preq_elem, int offset, bool ae)
a00de5d0
LCC		 34{
35 if (ae)
36 offset += 6;
ae7245cb 37 return get_unaligned_le32(preq_elem + offset);
a00de5d0
LCC		 38}
39
aee6499c 40static inline u16 u16_field_get(const u8 *preq_elem, int offset, bool ae)
d611f062
RP		 41{
42 if (ae)
43 offset += 6;
44 return get_unaligned_le16(preq_elem + offset);
45}
46
050ac52c 47/* HWMP IE processing macros */
a00de5d0
LCC		 48#define AE_F (1<<6)
49#define AE_F_SET(x) (*x & AE_F)
50#define PREQ_IE_FLAGS(x) (*(x))
51#define PREQ_IE_HOPCOUNT(x) (*(x + 1))
52#define PREQ_IE_TTL(x) (*(x + 2))
53#define PREQ_IE_PREQ_ID(x) u32_field_get(x, 3, 0)
54#define PREQ_IE_ORIG_ADDR(x) (x + 7)
497888cf
PC		 55#define PREQ_IE_ORIG_SN(x) u32_field_get(x, 13, 0)
56#define PREQ_IE_LIFETIME(x) u32_field_get(x, 17, AE_F_SET(x))
57#define PREQ_IE_METRIC(x) u32_field_get(x, 21, AE_F_SET(x))
d19b3bf6
RP		 58#define PREQ_IE_TARGET_F(x) (*(AE_F_SET(x) ? x + 32 : x + 26))
59#define PREQ_IE_TARGET_ADDR(x) (AE_F_SET(x) ? x + 33 : x + 27)
497888cf 60#define PREQ_IE_TARGET_SN(x) u32_field_get(x, 33, AE_F_SET(x))
a00de5d0
LCC		 61
62
63#define PREP_IE_FLAGS(x) PREQ_IE_FLAGS(x)
64#define PREP_IE_HOPCOUNT(x) PREQ_IE_HOPCOUNT(x)
65#define PREP_IE_TTL(x) PREQ_IE_TTL(x)
25d49e4d
TP		 66#define PREP_IE_ORIG_ADDR(x) (AE_F_SET(x) ? x + 27 : x + 21)
67#define PREP_IE_ORIG_SN(x) u32_field_get(x, 27, AE_F_SET(x))
497888cf
PC		 68#define PREP_IE_LIFETIME(x) u32_field_get(x, 13, AE_F_SET(x))
69#define PREP_IE_METRIC(x) u32_field_get(x, 17, AE_F_SET(x))
25d49e4d
TP		 70#define PREP_IE_TARGET_ADDR(x) (x + 3)
71#define PREP_IE_TARGET_SN(x) u32_field_get(x, 9, 0)
a00de5d0 72
d611f062 73#define PERR_IE_TTL(x) (*(x))
d19b3bf6
RP		 74#define PERR_IE_TARGET_FLAGS(x) (*(x + 2))
75#define PERR_IE_TARGET_ADDR(x) (x + 3)
497888cf
PC		 76#define PERR_IE_TARGET_SN(x) u32_field_get(x, 9, 0)
77#define PERR_IE_TARGET_RCODE(x) u16_field_get(x, 13, 0)
050ac52c 78
050ac52c 79#define MSEC_TO_TU(x) (x*1000/1024)
d2a079fd
CYY		 80#define SN_GT(x, y) ((s32)(y - x) < 0)
81#define SN_LT(x, y) ((s32)(x - y) < 0)
050ac52c
LCC		 82
83#define net_traversal_jiffies(s) \
472dbc45 84 msecs_to_jiffies(s->u.mesh.mshcfg.dot11MeshHWMPnetDiameterTraversalTime)
050ac52c 85#define default_lifetime(s) \
472dbc45 86 MSEC_TO_TU(s->u.mesh.mshcfg.dot11MeshHWMPactivePathTimeout)
050ac52c 87#define min_preq_int_jiff(s) \
472dbc45
JB		 88 (msecs_to_jiffies(s->u.mesh.mshcfg.dot11MeshHWMPpreqMinInterval))
89#define max_preq_retries(s) (s->u.mesh.mshcfg.dot11MeshHWMPmaxPREQretries)
050ac52c 90#define disc_timeout_jiff(s) \
472dbc45 91 msecs_to_jiffies(sdata->u.mesh.mshcfg.min_discovery_timeout)
728b19e5
CYY		 92#define root_path_confirmation_jiffies(s) \
93 msecs_to_jiffies(sdata->u.mesh.mshcfg.dot11MeshHWMPconfirmationInterval)
050ac52c
LCC		 94
95enum mpath_frame_type {
96 MPATH_PREQ = 0,
97 MPATH_PREP,
90a5e169
RP		 98 MPATH_PERR,
99 MPATH_RANN
050ac52c
LCC		 100};
101
15ff6365
JB		 102static const u8 broadcast_addr[ETH_ALEN] = {0xff, 0xff, 0xff, 0xff, 0xff, 0xff};
103
050ac52c 104static int mesh_path_sel_frame_tx(enum mpath_frame_type action, u8 flags,
f63f8421 105 const u8 *orig_addr, u32 orig_sn,
4a3cb702 106 u8 target_flags, const u8 *target,
f63f8421 107 u32 target_sn, const u8 *da,
4a3cb702 108 u8 hop_count, u8 ttl,
f63f8421 109 u32 lifetime, u32 metric, u32 preq_id,
4a3cb702 110 struct ieee80211_sub_if_data *sdata)
050ac52c 111{
f698d856 112 struct ieee80211_local *local = sdata->local;
3b69a9c5 113 struct sk_buff *skb;
050ac52c 114 struct ieee80211_mgmt *mgmt;
3b69a9c5
TP		 115 u8 *pos, ie_len;
116 int hdr_len = offsetof(struct ieee80211_mgmt, u.action.u.mesh_action) +
117 sizeof(mgmt->u.action.u.mesh_action);
050ac52c 118
65e8b0cc 119 skb = dev_alloc_skb(local->tx_headroom +
3b69a9c5
TP		 120 hdr_len +
121 2 + 37); /* max HWMP IE */
050ac52c
LCC		 122 if (!skb)
123 return -1;
65e8b0cc 124 skb_reserve(skb, local->tx_headroom);
3b69a9c5
TP		 125 mgmt = (struct ieee80211_mgmt *) skb_put(skb, hdr_len);
126 memset(mgmt, 0, hdr_len);
e7827a70
HH		 127 mgmt->frame_control = cpu_to_le16(IEEE80211_FTYPE_MGMT |
128 IEEE80211_STYPE_ACTION);
050ac52c
LCC		 129
130 memcpy(mgmt->da, da, ETH_ALEN);
47846c9b 131 memcpy(mgmt->sa, sdata->vif.addr, ETH_ALEN);
90a5e169 132 /* BSSID == SA */
47846c9b 133 memcpy(mgmt->bssid, sdata->vif.addr, ETH_ALEN);
25d49e4d
TP		 134 mgmt->u.action.category = WLAN_CATEGORY_MESH_ACTION;
135 mgmt->u.action.u.mesh_action.action_code =
136 WLAN_MESH_ACTION_HWMP_PATH_SELECTION;
050ac52c
LCC		 137
138 switch (action) {
139 case MPATH_PREQ:
bdcbd8e0 140 mhwmp_dbg(sdata, "sending PREQ to %pM\n", target);
050ac52c
LCC		 141 ie_len = 37;
142 pos = skb_put(skb, 2 + ie_len);
143 *pos++ = WLAN_EID_PREQ;
144 break;
145 case MPATH_PREP:
0f71651f 146 mhwmp_dbg(sdata, "sending PREP to %pM\n", orig_addr);
050ac52c
LCC		 147 ie_len = 31;
148 pos = skb_put(skb, 2 + ie_len);
149 *pos++ = WLAN_EID_PREP;
150 break;
90a5e169 151 case MPATH_RANN:
bdcbd8e0 152 mhwmp_dbg(sdata, "sending RANN from %pM\n", orig_addr);
90a5e169
RP		 153 ie_len = sizeof(struct ieee80211_rann_ie);
154 pos = skb_put(skb, 2 + ie_len);
155 *pos++ = WLAN_EID_RANN;
156 break;
050ac52c 157 default:
812714d7 158 kfree_skb(skb);
050ac52c
LCC		 159 return -ENOTSUPP;
160 break;
161 }
162 *pos++ = ie_len;
163 *pos++ = flags;
164 *pos++ = hop_count;
165 *pos++ = ttl;
25d49e4d
TP		 166 if (action == MPATH_PREP) {
167 memcpy(pos, target, ETH_ALEN);
168 pos += ETH_ALEN;
f63f8421 169 put_unaligned_le32(target_sn, pos);
050ac52c 170 pos += 4;
25d49e4d
TP		 171 } else {
172 if (action == MPATH_PREQ) {
f63f8421 173 put_unaligned_le32(preq_id, pos);
25d49e4d
TP		 174 pos += 4;
175 }
176 memcpy(pos, orig_addr, ETH_ALEN);
177 pos += ETH_ALEN;
f63f8421 178 put_unaligned_le32(orig_sn, pos);
90a5e169
RP		 179 pos += 4;
180 }
f63f8421 181 put_unaligned_le32(lifetime, pos); /* interval for RANN */
25d49e4d 182 pos += 4;
f63f8421 183 put_unaligned_le32(metric, pos);
050ac52c
LCC		 184 pos += 4;
185 if (action == MPATH_PREQ) {
25d49e4d 186 *pos++ = 1; /* destination count */
d19b3bf6 187 *pos++ = target_flags;
d19b3bf6 188 memcpy(pos, target, ETH_ALEN);
90a5e169 189 pos += ETH_ALEN;
f63f8421 190 put_unaligned_le32(target_sn, pos);
25d49e4d
TP		 191 pos += 4;
192 } else if (action == MPATH_PREP) {
193 memcpy(pos, orig_addr, ETH_ALEN);
194 pos += ETH_ALEN;
f63f8421 195 put_unaligned_le32(orig_sn, pos);
25d49e4d 196 pos += 4;
90a5e169 197 }
050ac52c 198
62ae67be 199 ieee80211_tx_skb(sdata, skb);
050ac52c
LCC		 200 return 0;
201}
202
2cca397f
JC		 203
204/* Headroom is not adjusted. Caller should ensure that skb has sufficient
205 * headroom in case the frame is encrypted. */
206static void prepare_frame_for_deferred_tx(struct ieee80211_sub_if_data *sdata,
207 struct sk_buff *skb)
208{
2cca397f 209 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(skb);
3f52b7e3 210 struct ieee80211_hdr *hdr = (struct ieee80211_hdr *) skb->data;
2cca397f
JC		 211
212 skb_set_mac_header(skb, 0);
213 skb_set_network_header(skb, 0);
214 skb_set_transport_header(skb, 0);
215
216 /* Send all internal mgmt frames on VO. Accordingly set TID to 7. */
217 skb_set_queue_mapping(skb, IEEE80211_AC_VO);
218 skb->priority = 7;
219
220 info->control.vif = &sdata->vif;
9cbbffe2 221 info->flags |= IEEE80211_TX_INTFL_NEED_TXPROCESSING;
2154c81c 222 ieee80211_set_qos_hdr(sdata, skb);
3f52b7e3 223 ieee80211_mps_set_frame_flags(sdata, NULL, hdr);
2cca397f
JC		 224}
225
050ac52c 226/**
75ea719c 227 * mesh_path_error_tx - Sends a PERR mesh management frame
050ac52c 228 *
75ea719c 229 * @ttl: allowed remaining hops
d19b3bf6
RP		 230 * @target: broken destination
231 * @target_sn: SN of the broken destination
232 * @target_rcode: reason code for this PERR
050ac52c 233 * @ra: node this frame is addressed to
75ea719c 234 * @sdata: local mesh subif
2cca397f
JC		 235 *
236 * Note: This function may be called with driver locks taken that the driver
237 * also acquires in the TX path. To avoid a deadlock we don't transmit the
238 * frame directly but add it to the pending queue instead.
050ac52c 239 */
bf7cd94d 240int mesh_path_error_tx(struct ieee80211_sub_if_data *sdata,
f63f8421
CYY		 241 u8 ttl, const u8 *target, u32 target_sn,
242 u16 target_rcode, const u8 *ra)
050ac52c 243{
f698d856 244 struct ieee80211_local *local = sdata->local;
3b69a9c5 245 struct sk_buff *skb;
dca7e943 246 struct ieee80211_if_mesh *ifmsh = &sdata->u.mesh;
050ac52c 247 struct ieee80211_mgmt *mgmt;
3b69a9c5
TP		 248 u8 *pos, ie_len;
249 int hdr_len = offsetof(struct ieee80211_mgmt, u.action.u.mesh_action) +
250 sizeof(mgmt->u.action.u.mesh_action);
050ac52c 251
dca7e943
TP		 252 if (time_before(jiffies, ifmsh->next_perr))
253 return -EAGAIN;
254
65e8b0cc 255 skb = dev_alloc_skb(local->tx_headroom +
2475b1cc 256 sdata->encrypt_headroom +
8680451f 257 IEEE80211_ENCRYPT_TAILROOM +
3b69a9c5
TP		 258 hdr_len +
259 2 + 15 /* PERR IE */);
050ac52c
LCC		 260 if (!skb)
261 return -1;
2475b1cc 262 skb_reserve(skb, local->tx_headroom + sdata->encrypt_headroom);
3b69a9c5
TP		 263 mgmt = (struct ieee80211_mgmt *) skb_put(skb, hdr_len);
264 memset(mgmt, 0, hdr_len);
e7827a70
HH		 265 mgmt->frame_control = cpu_to_le16(IEEE80211_FTYPE_MGMT |
266 IEEE80211_STYPE_ACTION);
050ac52c
LCC		 267
268 memcpy(mgmt->da, ra, ETH_ALEN);
47846c9b 269 memcpy(mgmt->sa, sdata->vif.addr, ETH_ALEN);
25d49e4d
TP		 270 /* BSSID == SA */
271 memcpy(mgmt->bssid, sdata->vif.addr, ETH_ALEN);
272 mgmt->u.action.category = WLAN_CATEGORY_MESH_ACTION;
273 mgmt->u.action.u.mesh_action.action_code =
274 WLAN_MESH_ACTION_HWMP_PATH_SELECTION;
d611f062 275 ie_len = 15;
050ac52c
LCC		 276 pos = skb_put(skb, 2 + ie_len);
277 *pos++ = WLAN_EID_PERR;
278 *pos++ = ie_len;
d611f062 279 /* ttl */
45904f21 280 *pos++ = ttl;
050ac52c
LCC		 281 /* number of destinations */
282 *pos++ = 1;
d611f062
RP		 283 /*
284 * flags bit, bit 1 is unset if we know the sequence number and
285 * bit 2 is set if we have a reason code
286 */
287 *pos = 0;
d19b3bf6 288 if (!target_sn)
d611f062 289 *pos |= MP_F_USN;
d19b3bf6 290 if (target_rcode)
d611f062
RP		 291 *pos |= MP_F_RCODE;
292 pos++;
d19b3bf6 293 memcpy(pos, target, ETH_ALEN);
050ac52c 294 pos += ETH_ALEN;
f63f8421 295 put_unaligned_le32(target_sn, pos);
d611f062 296 pos += 4;
f63f8421 297 put_unaligned_le16(target_rcode, pos);
050ac52c 298
2cca397f
JC		 299 /* see note in function header */
300 prepare_frame_for_deferred_tx(sdata, skb);
dca7e943
TP		 301 ifmsh->next_perr = TU_TO_EXP_TIME(
302 ifmsh->mshcfg.dot11MeshHWMPperrMinInterval);
2cca397f 303 ieee80211_add_pending_skb(local, skb);
050ac52c
LCC		 304 return 0;
305}
306
bfc32e6a 307void ieee80211s_update_metric(struct ieee80211_local *local,
35b3fe1c 308 struct sta_info *sta, struct sk_buff *skb)
bfc32e6a
JC		 309{
310 struct ieee80211_tx_info *txinfo = IEEE80211_SKB_CB(skb);
311 struct ieee80211_hdr *hdr = (struct ieee80211_hdr *) skb->data;
312 int failed;
313
314 if (!ieee80211_is_data(hdr->frame_control))
315 return;
316
317 failed = !(txinfo->flags & IEEE80211_TX_STAT_ACK);
318
319 /* moving average, scaled to 100 */
35b3fe1c
JC		 320 sta->fail_avg = ((80 * sta->fail_avg + 5) / 100 + 20 * failed);
321 if (sta->fail_avg > 95)
322 mesh_plink_broken(sta);
bfc32e6a
JC		 323}
324
050ac52c
LCC		 325static u32 airtime_link_metric_get(struct ieee80211_local *local,
326 struct sta_info *sta)
327{
6b62bf32 328 struct rate_info rinfo;
050ac52c
LCC		 329 /* This should be adjusted for each device */
330 int device_constant = 1 << ARITH_SHIFT;
331 int test_frame_len = TEST_FRAME_LEN << ARITH_SHIFT;
332 int s_unit = 1 << ARITH_SHIFT;
333 int rate, err;
334 u32 tx_time, estimated_retx;
335 u64 result;
336
050ac52c
LCC		 337 if (sta->fail_avg >= 100)
338 return MAX_METRIC;
e6a9854b 339
6b62bf32
TP		 340 sta_set_rate_info_tx(sta, &sta->last_tx_rate, &rinfo);
341 rate = cfg80211_calculate_bitrate(&rinfo);
342 if (WARN_ON(!rate))
e6a9854b
JB		 343 return MAX_METRIC;
344
050ac52c
LCC		 345 err = (sta->fail_avg << ARITH_SHIFT) / 100;
346
347 /* bitrate is in units of 100 Kbps, while we need rate in units of
348 * 1Mbps. This will be corrected on tx_time computation.
349 */
050ac52c
LCC		 350 tx_time = (device_constant + 10 * test_frame_len / rate);
351 estimated_retx = ((1 << (2 * ARITH_SHIFT)) / (s_unit - err));
352 result = (tx_time * estimated_retx) >> (2 * ARITH_SHIFT) ;
353 return (u32)result;
354}
355
356/**
357 * hwmp_route_info_get - Update routing info to originator and transmitter
358 *
f698d856 359 * @sdata: local mesh subif
050ac52c
LCC		 360 * @mgmt: mesh management frame
361 * @hwmp_ie: hwmp information element (PREP or PREQ)
75ea719c 362 * @action: type of hwmp ie
050ac52c
LCC		 363 *
364 * This function updates the path routing information to the originator and the
f99288d1 365 * transmitter of a HWMP PREQ or PREP frame.
050ac52c
LCC		 366 *
367 * Returns: metric to frame originator or 0 if the frame should not be further
368 * processed
369 *
370 * Notes: this function is the only place (besides user-provided info) where
371 * path routing information is updated.
372 */
f698d856 373static u32 hwmp_route_info_get(struct ieee80211_sub_if_data *sdata,
4a3cb702
JB		 374 struct ieee80211_mgmt *mgmt,
375 const u8 *hwmp_ie, enum mpath_frame_type action)
050ac52c 376{
f698d856 377 struct ieee80211_local *local = sdata->local;
050ac52c
LCC		 378 struct mesh_path *mpath;
379 struct sta_info *sta;
380 bool fresh_info;
4a3cb702 381 const u8 *orig_addr, *ta;
d19b3bf6 382 u32 orig_sn, orig_metric;
050ac52c
LCC		 383 unsigned long orig_lifetime, exp_time;
384 u32 last_hop_metric, new_metric;
385 bool process = true;
050ac52c
LCC		 386
387 rcu_read_lock();
abe60632 388 sta = sta_info_get(sdata, mgmt->sa);
dc0b0f7d
JB		 389 if (!sta) {
390 rcu_read_unlock();
050ac52c 391 return 0;
dc0b0f7d 392 }
050ac52c
LCC		 393
394 last_hop_metric = airtime_link_metric_get(local, sta);
395 /* Update and check originator routing info */
396 fresh_info = true;
397
398 switch (action) {
399 case MPATH_PREQ:
400 orig_addr = PREQ_IE_ORIG_ADDR(hwmp_ie);
d19b3bf6 401 orig_sn = PREQ_IE_ORIG_SN(hwmp_ie);
050ac52c
LCC		 402 orig_lifetime = PREQ_IE_LIFETIME(hwmp_ie);
403 orig_metric = PREQ_IE_METRIC(hwmp_ie);
404 break;
405 case MPATH_PREP:
3c26f1f6
TP		 406 /* Originator here refers to the MP that was the target in the
407 * Path Request. We divert from the nomenclature in the draft
050ac52c
LCC		 408 * so that we can easily use a single function to gather path
409 * information from both PREQ and PREP frames.
410 */
3c26f1f6
TP		 411 orig_addr = PREP_IE_TARGET_ADDR(hwmp_ie);
412 orig_sn = PREP_IE_TARGET_SN(hwmp_ie);
050ac52c
LCC		 413 orig_lifetime = PREP_IE_LIFETIME(hwmp_ie);
414 orig_metric = PREP_IE_METRIC(hwmp_ie);
415 break;
416 default:
dc0b0f7d 417 rcu_read_unlock();
050ac52c
LCC		 418 return 0;
419 }
420 new_metric = orig_metric + last_hop_metric;
421 if (new_metric < orig_metric)
422 new_metric = MAX_METRIC;
423 exp_time = TU_TO_EXP_TIME(orig_lifetime);
424
b203ca39 425 if (ether_addr_equal(orig_addr, sdata->vif.addr)) {
050ac52c
LCC		 426 /* This MP is the originator, we are not interested in this
427 * frame, except for updating transmitter's path info.
428 */
429 process = false;
430 fresh_info = false;
431 } else {
bf7cd94d 432 mpath = mesh_path_lookup(sdata, orig_addr);
050ac52c
LCC		 433 if (mpath) {
434 spin_lock_bh(&mpath->state_lock);
435 if (mpath->flags & MESH_PATH_FIXED)
436 fresh_info = false;
437 else if ((mpath->flags & MESH_PATH_ACTIVE) &&
d19b3bf6
RP		 438 (mpath->flags & MESH_PATH_SN_VALID)) {
439 if (SN_GT(mpath->sn, orig_sn) ||
440 (mpath->sn == orig_sn &&
533866b1 441 new_metric >= mpath->metric)) {
050ac52c
LCC		 442 process = false;
443 fresh_info = false;
444 }
445 }
446 } else {
ae76eef0
BC		 447 mpath = mesh_path_add(sdata, orig_addr);
448 if (IS_ERR(mpath)) {
050ac52c 449 rcu_read_unlock();
050ac52c
LCC		 450 return 0;
451 }
452 spin_lock_bh(&mpath->state_lock);
453 }
454
455 if (fresh_info) {
456 mesh_path_assign_nexthop(mpath, sta);
d19b3bf6 457 mpath->flags |= MESH_PATH_SN_VALID;
050ac52c 458 mpath->metric = new_metric;
d19b3bf6 459 mpath->sn = orig_sn;
050ac52c
LCC		 460 mpath->exp_time = time_after(mpath->exp_time, exp_time)
461 ? mpath->exp_time : exp_time;
462 mesh_path_activate(mpath);
463 spin_unlock_bh(&mpath->state_lock);
464 mesh_path_tx_pending(mpath);
465 /* draft says preq_id should be saved to, but there does
466 * not seem to be any use for it, skipping by now
467 */
468 } else
469 spin_unlock_bh(&mpath->state_lock);
470 }
471
472 /* Update and check transmitter routing info */
473 ta = mgmt->sa;
b203ca39 474 if (ether_addr_equal(orig_addr, ta))
050ac52c
LCC		 475 fresh_info = false;
476 else {
477 fresh_info = true;
478
bf7cd94d 479 mpath = mesh_path_lookup(sdata, ta);
050ac52c
LCC		 480 if (mpath) {
481 spin_lock_bh(&mpath->state_lock);
482 if ((mpath->flags & MESH_PATH_FIXED) ||
483 ((mpath->flags & MESH_PATH_ACTIVE) &&
484 (last_hop_metric > mpath->metric)))
485 fresh_info = false;
486 } else {
ae76eef0
BC		 487 mpath = mesh_path_add(sdata, ta);
488 if (IS_ERR(mpath)) {
050ac52c 489 rcu_read_unlock();
050ac52c
LCC		 490 return 0;
491 }
492 spin_lock_bh(&mpath->state_lock);
493 }
494
495 if (fresh_info) {
496 mesh_path_assign_nexthop(mpath, sta);
050ac52c
LCC		 497 mpath->metric = last_hop_metric;
498 mpath->exp_time = time_after(mpath->exp_time, exp_time)
499 ? mpath->exp_time : exp_time;
500 mesh_path_activate(mpath);
501 spin_unlock_bh(&mpath->state_lock);
502 mesh_path_tx_pending(mpath);
503 } else
504 spin_unlock_bh(&mpath->state_lock);
505 }
506
050ac52c
LCC		 507 rcu_read_unlock();
508
509 return process ? new_metric : 0;
510}
511
f698d856 512static void hwmp_preq_frame_process(struct ieee80211_sub_if_data *sdata,
050ac52c 513 struct ieee80211_mgmt *mgmt,
4a3cb702 514 const u8 *preq_elem, u32 metric)
57ef5ddb 515{
472dbc45 516 struct ieee80211_if_mesh *ifmsh = &sdata->u.mesh;
3d045a54 517 struct mesh_path *mpath = NULL;
4a3cb702 518 const u8 *target_addr, *orig_addr;
3d045a54 519 const u8 *da;
3fbf4b71
CYY		 520 u8 target_flags, ttl, flags;
521 u32 orig_sn, target_sn, lifetime, orig_metric;
050ac52c
LCC		 522 bool reply = false;
523 bool forward = true;
3fbf4b71 524 bool root_is_gate;
050ac52c 525
d19b3bf6
RP		 526 /* Update target SN, if present */
527 target_addr = PREQ_IE_TARGET_ADDR(preq_elem);
050ac52c 528 orig_addr = PREQ_IE_ORIG_ADDR(preq_elem);
d19b3bf6
RP		 529 target_sn = PREQ_IE_TARGET_SN(preq_elem);
530 orig_sn = PREQ_IE_ORIG_SN(preq_elem);
531 target_flags = PREQ_IE_TARGET_F(preq_elem);
3fbf4b71
CYY		 532 orig_metric = metric;
533 /* Proactive PREQ gate announcements */
534 flags = PREQ_IE_FLAGS(preq_elem);
535 root_is_gate = !!(flags & RANN_FLAG_IS_GATE);
050ac52c 536
bdcbd8e0 537 mhwmp_dbg(sdata, "received PREQ from %pM\n", orig_addr);
27db2e42 538
b203ca39 539 if (ether_addr_equal(target_addr, sdata->vif.addr)) {
bdcbd8e0 540 mhwmp_dbg(sdata, "PREQ is for us\n");
050ac52c
LCC		 541 forward = false;
542 reply = true;
543 metric = 0;
d19b3bf6 544 if (time_after(jiffies, ifmsh->last_sn_update +
050ac52c 545 net_traversal_jiffies(sdata)) ||
d19b3bf6
RP		 546 time_before(jiffies, ifmsh->last_sn_update)) {
547 target_sn = ++ifmsh->sn;
548 ifmsh->last_sn_update = jiffies;
050ac52c 549 }
3fbf4b71
CYY		 550 } else if (is_broadcast_ether_addr(target_addr) &&
551 (target_flags & IEEE80211_PREQ_TO_FLAG)) {
552 rcu_read_lock();
bf7cd94d 553 mpath = mesh_path_lookup(sdata, orig_addr);
3fbf4b71
CYY		 554 if (mpath) {
555 if (flags & IEEE80211_PREQ_PROACTIVE_PREP_FLAG) {
556 reply = true;
557 target_addr = sdata->vif.addr;
558 target_sn = ++ifmsh->sn;
559 metric = 0;
560 ifmsh->last_sn_update = jiffies;
561 }
562 if (root_is_gate)
563 mesh_path_add_gate(mpath);
564 }
565 rcu_read_unlock();
050ac52c
LCC		 566 } else {
567 rcu_read_lock();
bf7cd94d 568 mpath = mesh_path_lookup(sdata, target_addr);
050ac52c 569 if (mpath) {
d19b3bf6
RP		 570 if ((!(mpath->flags & MESH_PATH_SN_VALID)) ||
571 SN_LT(mpath->sn, target_sn)) {
572 mpath->sn = target_sn;
573 mpath->flags |= MESH_PATH_SN_VALID;
574 } else if ((!(target_flags & MP_F_DO)) &&
050ac52c
LCC		 575 (mpath->flags & MESH_PATH_ACTIVE)) {
576 reply = true;
577 metric = mpath->metric;
d19b3bf6
RP		 578 target_sn = mpath->sn;
579 if (target_flags & MP_F_RF)
580 target_flags |= MP_F_DO;
050ac52c
LCC		 581 else
582 forward = false;
583 }
584 }
585 rcu_read_unlock();
586 }
587
588 if (reply) {
589 lifetime = PREQ_IE_LIFETIME(preq_elem);
45904f21 590 ttl = ifmsh->mshcfg.element_ttl;
27db2e42 591 if (ttl != 0) {
bdcbd8e0 592 mhwmp_dbg(sdata, "replying to the PREQ\n");
3c26f1f6 593 mesh_path_sel_frame_tx(MPATH_PREP, 0, orig_addr,
f63f8421
CYY		 594 orig_sn, 0, target_addr,
595 target_sn, mgmt->sa, 0, ttl,
596 lifetime, metric, 0, sdata);
3fbf4b71 597 } else {
472dbc45 598 ifmsh->mshstats.dropped_frames_ttl++;
3fbf4b71 599 }
050ac52c
LCC		 600 }
601
94f90656 602 if (forward && ifmsh->mshcfg.dot11MeshForwarding) {
050ac52c 603 u32 preq_id;
3fbf4b71 604 u8 hopcount;
050ac52c
LCC		 605
606 ttl = PREQ_IE_TTL(preq_elem);
607 lifetime = PREQ_IE_LIFETIME(preq_elem);
608 if (ttl <= 1) {
472dbc45 609 ifmsh->mshstats.dropped_frames_ttl++;
050ac52c
LCC		 610 return;
611 }
bdcbd8e0 612 mhwmp_dbg(sdata, "forwarding the PREQ from %pM\n", orig_addr);
050ac52c 613 --ttl;
050ac52c
LCC		 614 preq_id = PREQ_IE_PREQ_ID(preq_elem);
615 hopcount = PREQ_IE_HOPCOUNT(preq_elem) + 1;
3d045a54
CYY		 616 da = (mpath && mpath->is_root) ?
617 mpath->rann_snd_addr : broadcast_addr;
3fbf4b71
CYY		 618
619 if (flags & IEEE80211_PREQ_PROACTIVE_PREP_FLAG) {
620 target_addr = PREQ_IE_TARGET_ADDR(preq_elem);
621 target_sn = PREQ_IE_TARGET_SN(preq_elem);
622 metric = orig_metric;
623 }
624
050ac52c 625 mesh_path_sel_frame_tx(MPATH_PREQ, flags, orig_addr,
f63f8421
CYY		 626 orig_sn, target_flags, target_addr,
627 target_sn, da, hopcount, ttl, lifetime,
628 metric, preq_id, sdata);
7d4e15b1
CYY		 629 if (!is_multicast_ether_addr(da))
630 ifmsh->mshstats.fwded_unicast++;
631 else
632 ifmsh->mshstats.fwded_mcast++;
472dbc45 633 ifmsh->mshstats.fwded_frames++;
050ac52c
LCC		 634 }
635}
636
637
40b275b6
JB		 638static inline struct sta_info *
639next_hop_deref_protected(struct mesh_path *mpath)
640{
641 return rcu_dereference_protected(mpath->next_hop,
642 lockdep_is_held(&mpath->state_lock));
643}
644
645
f698d856 646static void hwmp_prep_frame_process(struct ieee80211_sub_if_data *sdata,
050ac52c 647 struct ieee80211_mgmt *mgmt,
4a3cb702 648 const u8 *prep_elem, u32 metric)
050ac52c 649{
d665508b 650 struct ieee80211_if_mesh *ifmsh = &sdata->u.mesh;
050ac52c 651 struct mesh_path *mpath;
4a3cb702 652 const u8 *target_addr, *orig_addr;
050ac52c
LCC		 653 u8 ttl, hopcount, flags;
654 u8 next_hop[ETH_ALEN];
d19b3bf6 655 u32 target_sn, orig_sn, lifetime;
050ac52c 656
bdcbd8e0 657 mhwmp_dbg(sdata, "received PREP from %pM\n",
0f71651f 658 PREP_IE_TARGET_ADDR(prep_elem));
dbb81c42 659
3c26f1f6 660 orig_addr = PREP_IE_ORIG_ADDR(prep_elem);
b203ca39 661 if (ether_addr_equal(orig_addr, sdata->vif.addr))
050ac52c
LCC		 662 /* destination, no forwarding required */
663 return;
664
d665508b
CYY		 665 if (!ifmsh->mshcfg.dot11MeshForwarding)
666 return;
667
050ac52c
LCC		 668 ttl = PREP_IE_TTL(prep_elem);
669 if (ttl <= 1) {
472dbc45 670 sdata->u.mesh.mshstats.dropped_frames_ttl++;
050ac52c
LCC		 671 return;
672 }
673
674 rcu_read_lock();
bf7cd94d 675 mpath = mesh_path_lookup(sdata, orig_addr);
050ac52c
LCC		 676 if (mpath)
677 spin_lock_bh(&mpath->state_lock);
678 else
679 goto fail;
680 if (!(mpath->flags & MESH_PATH_ACTIVE)) {
681 spin_unlock_bh(&mpath->state_lock);
682 goto fail;
683 }
40b275b6 684 memcpy(next_hop, next_hop_deref_protected(mpath)->sta.addr, ETH_ALEN);
050ac52c
LCC		 685 spin_unlock_bh(&mpath->state_lock);
686 --ttl;
687 flags = PREP_IE_FLAGS(prep_elem);
688 lifetime = PREP_IE_LIFETIME(prep_elem);
689 hopcount = PREP_IE_HOPCOUNT(prep_elem) + 1;
3c26f1f6 690 target_addr = PREP_IE_TARGET_ADDR(prep_elem);
d19b3bf6
RP		 691 target_sn = PREP_IE_TARGET_SN(prep_elem);
692 orig_sn = PREP_IE_ORIG_SN(prep_elem);
050ac52c 693
f63f8421
CYY		 694 mesh_path_sel_frame_tx(MPATH_PREP, flags, orig_addr, orig_sn, 0,
695 target_addr, target_sn, next_hop, hopcount,
696 ttl, lifetime, metric, 0, sdata);
050ac52c 697 rcu_read_unlock();
c8a61a7d
DW		 698
699 sdata->u.mesh.mshstats.fwded_unicast++;
472dbc45 700 sdata->u.mesh.mshstats.fwded_frames++;
050ac52c
LCC		 701 return;
702
703fail:
704 rcu_read_unlock();
472dbc45 705 sdata->u.mesh.mshstats.dropped_frames_no_route++;
050ac52c
LCC		 706}
707
f698d856 708static void hwmp_perr_frame_process(struct ieee80211_sub_if_data *sdata,
4a3cb702
JB		 709 struct ieee80211_mgmt *mgmt,
710 const u8 *perr_elem)
050ac52c 711{
d611f062 712 struct ieee80211_if_mesh *ifmsh = &sdata->u.mesh;
050ac52c 713 struct mesh_path *mpath;
d611f062 714 u8 ttl;
4a3cb702 715 const u8 *ta, *target_addr;
d19b3bf6
RP		 716 u32 target_sn;
717 u16 target_rcode;
050ac52c
LCC		 718
719 ta = mgmt->sa;
d611f062
RP		 720 ttl = PERR_IE_TTL(perr_elem);
721 if (ttl <= 1) {
722 ifmsh->mshstats.dropped_frames_ttl++;
723 return;
724 }
725 ttl--;
d19b3bf6
RP		 726 target_addr = PERR_IE_TARGET_ADDR(perr_elem);
727 target_sn = PERR_IE_TARGET_SN(perr_elem);
728 target_rcode = PERR_IE_TARGET_RCODE(perr_elem);
d611f062 729
050ac52c 730 rcu_read_lock();
bf7cd94d 731 mpath = mesh_path_lookup(sdata, target_addr);
050ac52c 732 if (mpath) {
888d04df
FF		 733 struct sta_info *sta;
734
050ac52c 735 spin_lock_bh(&mpath->state_lock);
888d04df 736 sta = next_hop_deref_protected(mpath);
050ac52c 737 if (mpath->flags & MESH_PATH_ACTIVE &&
b203ca39 738 ether_addr_equal(ta, sta->sta.addr) &&
d19b3bf6
RP		 739 (!(mpath->flags & MESH_PATH_SN_VALID) ||
740 SN_GT(target_sn, mpath->sn))) {
050ac52c 741 mpath->flags &= ~MESH_PATH_ACTIVE;
d19b3bf6 742 mpath->sn = target_sn;
050ac52c 743 spin_unlock_bh(&mpath->state_lock);
d665508b
CYY		 744 if (!ifmsh->mshcfg.dot11MeshForwarding)
745 goto endperr;
bf7cd94d 746 mesh_path_error_tx(sdata, ttl, target_addr,
f63f8421 747 target_sn, target_rcode,
bf7cd94d 748 broadcast_addr);
050ac52c
LCC		 749 } else
750 spin_unlock_bh(&mpath->state_lock);
751 }
d665508b 752endperr:
050ac52c
LCC		 753 rcu_read_unlock();
754}
755
90a5e169 756static void hwmp_rann_frame_process(struct ieee80211_sub_if_data *sdata,
4a3cb702
JB		 757 struct ieee80211_mgmt *mgmt,
758 const struct ieee80211_rann_ie *rann)
90a5e169
RP		 759{
760 struct ieee80211_if_mesh *ifmsh = &sdata->u.mesh;
d2a079fd
CYY		 761 struct ieee80211_local *local = sdata->local;
762 struct sta_info *sta;
90a5e169 763 struct mesh_path *mpath;
90a5e169 764 u8 ttl, flags, hopcount;
4a3cb702 765 const u8 *orig_addr;
d2a079fd 766 u32 orig_sn, metric, metric_txsta, interval;
5ee68e5b 767 bool root_is_gate;
90a5e169 768
90a5e169 769 ttl = rann->rann_ttl;
90a5e169 770 flags = rann->rann_flags;
5ee68e5b 771 root_is_gate = !!(flags & RANN_FLAG_IS_GATE);
90a5e169 772 orig_addr = rann->rann_addr;
292c41ac 773 orig_sn = le32_to_cpu(rann->rann_seq);
d2a079fd 774 interval = le32_to_cpu(rann->rann_interval);
90a5e169 775 hopcount = rann->rann_hopcount;
a6a58b4f 776 hopcount++;
292c41ac 777 metric = le32_to_cpu(rann->rann_metric);
5ee68e5b
JC		 778
779 /* Ignore our own RANNs */
b203ca39 780 if (ether_addr_equal(orig_addr, sdata->vif.addr))
5ee68e5b
JC		 781 return;
782
bdcbd8e0
JB		 783 mhwmp_dbg(sdata,
784 "received RANN from %pM via neighbour %pM (is_gate=%d)\n",
785 orig_addr, mgmt->sa, root_is_gate);
90a5e169
RP		 786
787 rcu_read_lock();
d2a079fd
CYY		 788 sta = sta_info_get(sdata, mgmt->sa);
789 if (!sta) {
790 rcu_read_unlock();
791 return;
792 }
793
794 metric_txsta = airtime_link_metric_get(local, sta);
795
bf7cd94d 796 mpath = mesh_path_lookup(sdata, orig_addr);
90a5e169 797 if (!mpath) {
ae76eef0
BC		 798 mpath = mesh_path_add(sdata, orig_addr);
799 if (IS_ERR(mpath)) {
90a5e169
RP		 800 rcu_read_unlock();
801 sdata->u.mesh.mshstats.dropped_frames_no_route++;
802 return;
803 }
90a5e169 804 }
5ee68e5b 805
7ebfa469
CYY		 806 if (!(SN_LT(mpath->sn, orig_sn)) &&
807 !(mpath->sn == orig_sn && metric < mpath->rann_metric)) {
808 rcu_read_unlock();
809 return;
810 }
811
5ee68e5b 812 if ((!(mpath->flags & (MESH_PATH_ACTIVE | MESH_PATH_RESOLVING)) ||
728b19e5
CYY		 813 (time_after(jiffies, mpath->last_preq_to_root +
814 root_path_confirmation_jiffies(sdata)) ||
815 time_before(jiffies, mpath->last_preq_to_root))) &&
7ebfa469 816 !(mpath->flags & MESH_PATH_FIXED) && (ttl != 0)) {
bdcbd8e0
JB		 817 mhwmp_dbg(sdata,
818 "time to refresh root mpath %pM\n",
819 orig_addr);
5ee68e5b 820 mesh_queue_preq(mpath, PREQ_Q_F_START | PREQ_Q_F_REFRESH);
728b19e5 821 mpath->last_preq_to_root = jiffies;
5ee68e5b
JC		 822 }
823
7ebfa469
CYY		 824 mpath->sn = orig_sn;
825 mpath->rann_metric = metric + metric_txsta;
826 mpath->is_root = true;
827 /* Recording RANNs sender address to send individually
828 * addressed PREQs destined for root mesh STA */
829 memcpy(mpath->rann_snd_addr, mgmt->sa, ETH_ALEN);
830
831 if (root_is_gate)
832 mesh_path_add_gate(mpath);
833
834 if (ttl <= 1) {
835 ifmsh->mshstats.dropped_frames_ttl++;
836 rcu_read_unlock();
837 return;
838 }
839 ttl--;
840
841 if (ifmsh->mshcfg.dot11MeshForwarding) {
90a5e169 842 mesh_path_sel_frame_tx(MPATH_RANN, flags, orig_addr,
f63f8421
CYY		 843 orig_sn, 0, NULL, 0, broadcast_addr,
844 hopcount, ttl, interval,
845 metric + metric_txsta, 0, sdata);
90a5e169 846 }
3d045a54 847
90a5e169
RP		 848 rcu_read_unlock();
849}
050ac52c
LCC		 850
851
f698d856 852void mesh_rx_path_sel_frame(struct ieee80211_sub_if_data *sdata,
bf7cd94d 853 struct ieee80211_mgmt *mgmt, size_t len)
050ac52c
LCC		 854{
855 struct ieee802_11_elems elems;
856 size_t baselen;
857 u32 last_hop_metric;
97091317 858 struct sta_info *sta;
050ac52c 859
9c80d3dc
JB		 860 /* need action_code */
861 if (len < IEEE80211_MIN_ACTION_SIZE + 1)
862 return;
863
97091317
JC		 864 rcu_read_lock();
865 sta = sta_info_get(sdata, mgmt->sa);
866 if (!sta || sta->plink_state != NL80211_PLINK_ESTAB) {
867 rcu_read_unlock();
868 return;
869 }
870 rcu_read_unlock();
871
050ac52c
LCC		 872 baselen = (u8 *) mgmt->u.action.u.mesh_action.variable - (u8 *) mgmt;
873 ieee802_11_parse_elems(mgmt->u.action.u.mesh_action.variable,
b2e506bf 874 len - baselen, false, &elems);
050ac52c 875
dbb81c42
RP		 876 if (elems.preq) {
877 if (elems.preq_len != 37)
050ac52c
LCC		 878 /* Right now we support just 1 destination and no AE */
879 return;
dbb81c42
RP		 880 last_hop_metric = hwmp_route_info_get(sdata, mgmt, elems.preq,
881 MPATH_PREQ);
882 if (last_hop_metric)
883 hwmp_preq_frame_process(sdata, mgmt, elems.preq,
884 last_hop_metric);
885 }
886 if (elems.prep) {
887 if (elems.prep_len != 31)
050ac52c
LCC		 888 /* Right now we support no AE */
889 return;
dbb81c42
RP		 890 last_hop_metric = hwmp_route_info_get(sdata, mgmt, elems.prep,
891 MPATH_PREP);
892 if (last_hop_metric)
893 hwmp_prep_frame_process(sdata, mgmt, elems.prep,
894 last_hop_metric);
895 }
896 if (elems.perr) {
d611f062 897 if (elems.perr_len != 15)
050ac52c
LCC		 898 /* Right now we support only one destination per PERR */
899 return;
f698d856 900 hwmp_perr_frame_process(sdata, mgmt, elems.perr);
050ac52c 901 }
90a5e169
RP		 902 if (elems.rann)
903 hwmp_rann_frame_process(sdata, mgmt, elems.rann);
050ac52c
LCC		 904}
905
906/**
907 * mesh_queue_preq - queue a PREQ to a given destination
908 *
909 * @mpath: mesh path to discover
910 * @flags: special attributes of the PREQ to be sent
911 *
912 * Locking: the function must be called from within a rcu read lock block.
913 *
914 */
915static void mesh_queue_preq(struct mesh_path *mpath, u8 flags)
916{
f698d856 917 struct ieee80211_sub_if_data *sdata = mpath->sdata;
472dbc45 918 struct ieee80211_if_mesh *ifmsh = &sdata->u.mesh;
050ac52c
LCC		 919 struct mesh_preq_queue *preq_node;
920
59615b5f 921 preq_node = kmalloc(sizeof(struct mesh_preq_queue), GFP_ATOMIC);
050ac52c 922 if (!preq_node) {
bdcbd8e0 923 mhwmp_dbg(sdata, "could not allocate PREQ node\n");
050ac52c
LCC		 924 return;
925 }
926
987dafad 927 spin_lock_bh(&ifmsh->mesh_preq_queue_lock);
472dbc45 928 if (ifmsh->preq_queue_len == MAX_PREQ_QUEUE_LEN) {
987dafad 929 spin_unlock_bh(&ifmsh->mesh_preq_queue_lock);
050ac52c
LCC		 930 kfree(preq_node);
931 if (printk_ratelimit())
bdcbd8e0 932 mhwmp_dbg(sdata, "PREQ node queue full\n");
050ac52c
LCC		 933 return;
934 }
935
f2dc7989 936 spin_lock(&mpath->state_lock);
f3011cf9 937 if (mpath->flags & MESH_PATH_REQ_QUEUED) {
f2dc7989 938 spin_unlock(&mpath->state_lock);
f3011cf9 939 spin_unlock_bh(&ifmsh->mesh_preq_queue_lock);
88d53465 940 kfree(preq_node);
f3011cf9
JC		 941 return;
942 }
943
050ac52c
LCC		 944 memcpy(preq_node->dst, mpath->dst, ETH_ALEN);
945 preq_node->flags = flags;
946
f3011cf9 947 mpath->flags |= MESH_PATH_REQ_QUEUED;
f2dc7989 948 spin_unlock(&mpath->state_lock);
f3011cf9 949
472dbc45
JB		 950 list_add_tail(&preq_node->list, &ifmsh->preq_queue.list);
951 ++ifmsh->preq_queue_len;
987dafad 952 spin_unlock_bh(&ifmsh->mesh_preq_queue_lock);
050ac52c 953
472dbc45 954 if (time_after(jiffies, ifmsh->last_preq + min_preq_int_jiff(sdata)))
64592c8f 955 ieee80211_queue_work(&sdata->local->hw, &sdata->work);
050ac52c 956
472dbc45 957 else if (time_before(jiffies, ifmsh->last_preq)) {
050ac52c
LCC		 958 /* avoid long wait if did not send preqs for a long time
959 * and jiffies wrapped around
960 */
472dbc45 961 ifmsh->last_preq = jiffies - min_preq_int_jiff(sdata) - 1;
64592c8f 962 ieee80211_queue_work(&sdata->local->hw, &sdata->work);
050ac52c 963 } else
472dbc45 964 mod_timer(&ifmsh->mesh_path_timer, ifmsh->last_preq +
050ac52c
LCC		 965 min_preq_int_jiff(sdata));
966}
967
968/**
969 * mesh_path_start_discovery - launch a path discovery from the PREQ queue
970 *
f698d856 971 * @sdata: local mesh subif
050ac52c 972 */
f698d856 973void mesh_path_start_discovery(struct ieee80211_sub_if_data *sdata)
050ac52c 974{
472dbc45 975 struct ieee80211_if_mesh *ifmsh = &sdata->u.mesh;
050ac52c
LCC		 976 struct mesh_preq_queue *preq_node;
977 struct mesh_path *mpath;
d19b3bf6 978 u8 ttl, target_flags;
3d045a54 979 const u8 *da;
050ac52c
LCC		 980 u32 lifetime;
981
a43816df 982 spin_lock_bh(&ifmsh->mesh_preq_queue_lock);
472dbc45
JB		 983 if (!ifmsh->preq_queue_len ||
984 time_before(jiffies, ifmsh->last_preq +
050ac52c 985 min_preq_int_jiff(sdata))) {
a43816df 986 spin_unlock_bh(&ifmsh->mesh_preq_queue_lock);
050ac52c
LCC		 987 return;
988 }
989
472dbc45 990 preq_node = list_first_entry(&ifmsh->preq_queue.list,
050ac52c
LCC		 991 struct mesh_preq_queue, list);
992 list_del(&preq_node->list);
472dbc45 993 --ifmsh->preq_queue_len;
a43816df 994 spin_unlock_bh(&ifmsh->mesh_preq_queue_lock);
050ac52c
LCC		 995
996 rcu_read_lock();
bf7cd94d 997 mpath = mesh_path_lookup(sdata, preq_node->dst);
050ac52c
LCC		 998 if (!mpath)
999 goto enddiscovery;
1000
1001 spin_lock_bh(&mpath->state_lock);
f3011cf9 1002 mpath->flags &= ~MESH_PATH_REQ_QUEUED;
050ac52c
LCC		 1003 if (preq_node->flags & PREQ_Q_F_START) {
1004 if (mpath->flags & MESH_PATH_RESOLVING) {
1005 spin_unlock_bh(&mpath->state_lock);
1006 goto enddiscovery;
1007 } else {
1008 mpath->flags &= ~MESH_PATH_RESOLVED;
1009 mpath->flags |= MESH_PATH_RESOLVING;
1010 mpath->discovery_retries = 0;
1011 mpath->discovery_timeout = disc_timeout_jiff(sdata);
1012 }
1013 } else if (!(mpath->flags & MESH_PATH_RESOLVING) ||
1014 mpath->flags & MESH_PATH_RESOLVED) {
1015 mpath->flags &= ~MESH_PATH_RESOLVING;
1016 spin_unlock_bh(&mpath->state_lock);
1017 goto enddiscovery;
1018 }
1019
472dbc45 1020 ifmsh->last_preq = jiffies;
050ac52c 1021
d19b3bf6 1022 if (time_after(jiffies, ifmsh->last_sn_update +
050ac52c 1023 net_traversal_jiffies(sdata)) ||
d19b3bf6
RP		 1024 time_before(jiffies, ifmsh->last_sn_update)) {
1025 ++ifmsh->sn;
1026 sdata->u.mesh.last_sn_update = jiffies;
050ac52c
LCC		 1027 }
1028 lifetime = default_lifetime(sdata);
45904f21 1029 ttl = sdata->u.mesh.mshcfg.element_ttl;
050ac52c 1030 if (ttl == 0) {
472dbc45 1031 sdata->u.mesh.mshstats.dropped_frames_ttl++;
050ac52c
LCC		 1032 spin_unlock_bh(&mpath->state_lock);
1033 goto enddiscovery;
1034 }
1035
1036 if (preq_node->flags & PREQ_Q_F_REFRESH)
d19b3bf6 1037 target_flags = MP_F_DO;
050ac52c 1038 else
d19b3bf6 1039 target_flags = MP_F_RF;
050ac52c
LCC		 1040
1041 spin_unlock_bh(&mpath->state_lock);
3d045a54 1042 da = (mpath->is_root) ? mpath->rann_snd_addr : broadcast_addr;
f63f8421
CYY		 1043 mesh_path_sel_frame_tx(MPATH_PREQ, 0, sdata->vif.addr, ifmsh->sn,
1044 target_flags, mpath->dst, mpath->sn, da, 0,
1045 ttl, lifetime, 0, ifmsh->preq_id++, sdata);
050ac52c
LCC		 1046 mod_timer(&mpath->timer, jiffies + mpath->discovery_timeout);
1047
1048enddiscovery:
1049 rcu_read_unlock();
1050 kfree(preq_node);
1051}
1052
2c53040f
BH		 1053/**
1054 * mesh_nexthop_resolve - lookup next hop; conditionally start path discovery
050ac52c 1055 *
e32f85f7 1056 * @skb: 802.11 frame to be sent
f698d856 1057 * @sdata: network subif the frame will be sent through
050ac52c 1058 *
2c53040f
BH		 1059 * Lookup next hop for given skb and start path discovery if no
1060 * forwarding information is found.
1061 *
0cfda851
TP		 1062 * Returns: 0 if the next hop was found and -ENOENT if the frame was queued.
1063 * skb is freeed here if no mpath could be allocated.
050ac52c 1064 */
bf7cd94d
JB		 1065int mesh_nexthop_resolve(struct ieee80211_sub_if_data *sdata,
1066 struct sk_buff *skb)
050ac52c 1067{
e32f85f7 1068 struct ieee80211_hdr *hdr = (struct ieee80211_hdr *) skb->data;
0cfda851
TP		 1069 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(skb);
1070 struct mesh_path *mpath;
1071 struct sk_buff *skb_to_free = NULL;
d19b3bf6 1072 u8 *target_addr = hdr->addr3;
050ac52c
LCC		 1073 int err = 0;
1074
3f52b7e3
MP		 1075 /* Nulls are only sent to peers for PS and should be pre-addressed */
1076 if (ieee80211_is_qos_nullfunc(hdr->frame_control))
1077 return 0;
1078
050ac52c 1079 rcu_read_lock();
bf7cd94d 1080 err = mesh_nexthop_lookup(sdata, skb);
0cfda851
TP		 1081 if (!err)
1082 goto endlookup;
050ac52c 1083
0cfda851 1084 /* no nexthop found, start resolving */
bf7cd94d 1085 mpath = mesh_path_lookup(sdata, target_addr);
050ac52c 1086 if (!mpath) {
ae76eef0
BC		 1087 mpath = mesh_path_add(sdata, target_addr);
1088 if (IS_ERR(mpath)) {
bf7cd94d 1089 mesh_path_discard_frame(sdata, skb);
ae76eef0 1090 err = PTR_ERR(mpath);
050ac52c
LCC		 1091 goto endlookup;
1092 }
1093 }
1094
0cfda851
TP		 1095 if (!(mpath->flags & MESH_PATH_RESOLVING))
1096 mesh_queue_preq(mpath, PREQ_Q_F_START);
1097
1098 if (skb_queue_len(&mpath->frame_queue) >= MESH_FRAME_QUEUE_LEN)
1099 skb_to_free = skb_dequeue(&mpath->frame_queue);
1100
1101 info->flags |= IEEE80211_TX_INTFL_NEED_TXPROCESSING;
1102 ieee80211_set_qos_hdr(sdata, skb);
1103 skb_queue_tail(&mpath->frame_queue, skb);
1104 err = -ENOENT;
1105 if (skb_to_free)
bf7cd94d 1106 mesh_path_discard_frame(sdata, skb_to_free);
0cfda851
TP		 1107
1108endlookup:
1109 rcu_read_unlock();
1110 return err;
1111}
bf7cd94d 1112
0cfda851
TP		 1113/**
1114 * mesh_nexthop_lookup - put the appropriate next hop on a mesh frame. Calling
1115 * this function is considered "using" the associated mpath, so preempt a path
1116 * refresh if this mpath expires soon.
1117 *
1118 * @skb: 802.11 frame to be sent
1119 * @sdata: network subif the frame will be sent through
1120 *
1121 * Returns: 0 if the next hop was found. Nonzero otherwise.
1122 */
bf7cd94d
JB		 1123int mesh_nexthop_lookup(struct ieee80211_sub_if_data *sdata,
1124 struct sk_buff *skb)
0cfda851
TP		 1125{
1126 struct mesh_path *mpath;
1127 struct sta_info *next_hop;
1128 struct ieee80211_hdr *hdr = (struct ieee80211_hdr *) skb->data;
1129 u8 *target_addr = hdr->addr3;
1130 int err = -ENOENT;
050ac52c 1131
0cfda851 1132 rcu_read_lock();
bf7cd94d 1133 mpath = mesh_path_lookup(sdata, target_addr);
0cfda851
TP		 1134
1135 if (!mpath || !(mpath->flags & MESH_PATH_ACTIVE))
1136 goto endlookup;
1137
1138 if (time_after(jiffies,
1139 mpath->exp_time -
1140 msecs_to_jiffies(sdata->u.mesh.mshcfg.path_refresh_time)) &&
b203ca39 1141 ether_addr_equal(sdata->vif.addr, hdr->addr4) &&
0cfda851
TP		 1142 !(mpath->flags & MESH_PATH_RESOLVING) &&
1143 !(mpath->flags & MESH_PATH_FIXED))
1144 mesh_queue_preq(mpath, PREQ_Q_F_START | PREQ_Q_F_REFRESH);
050ac52c 1145
0cfda851
TP		 1146 next_hop = rcu_dereference(mpath->next_hop);
1147 if (next_hop) {
1148 memcpy(hdr->addr1, next_hop->sta.addr, ETH_ALEN);
1149 memcpy(hdr->addr2, sdata->vif.addr, ETH_ALEN);
3f52b7e3 1150 ieee80211_mps_set_frame_flags(sdata, next_hop, hdr);
0cfda851 1151 err = 0;
050ac52c
LCC		 1152 }
1153
1154endlookup:
1155 rcu_read_unlock();
1156 return err;
1157}
1158
1159void mesh_path_timer(unsigned long data)
1160{
dea4096b
JB		 1161 struct mesh_path *mpath = (void *) data;
1162 struct ieee80211_sub_if_data *sdata = mpath->sdata;
5ee68e5b 1163 int ret;
5bb644a0 1164
dea4096b 1165 if (sdata->local->quiescing)
5bb644a0 1166 return;
5bb644a0
JB		 1167
1168 spin_lock_bh(&mpath->state_lock);
cfa22c71 1169 if (mpath->flags & MESH_PATH_RESOLVED ||
5ee68e5b 1170 (!(mpath->flags & MESH_PATH_RESOLVING))) {
050ac52c 1171 mpath->flags &= ~(MESH_PATH_RESOLVING | MESH_PATH_RESOLVED);
5ee68e5b
JC		 1172 spin_unlock_bh(&mpath->state_lock);
1173 } else if (mpath->discovery_retries < max_preq_retries(sdata)) {
050ac52c
LCC		 1174 ++mpath->discovery_retries;
1175 mpath->discovery_timeout *= 2;
f3011cf9 1176 mpath->flags &= ~MESH_PATH_REQ_QUEUED;
5ee68e5b 1177 spin_unlock_bh(&mpath->state_lock);
050ac52c
LCC		 1178 mesh_queue_preq(mpath, 0);
1179 } else {
1180 mpath->flags = 0;
1181 mpath->exp_time = jiffies;
5ee68e5b
JC		 1182 spin_unlock_bh(&mpath->state_lock);
1183 if (!mpath->is_gate && mesh_gate_num(sdata) > 0) {
1184 ret = mesh_path_send_to_gates(mpath);
1185 if (ret)
bdcbd8e0 1186 mhwmp_dbg(sdata, "no gate was reachable\n");
5ee68e5b
JC		 1187 } else
1188 mesh_path_flush_pending(mpath);
050ac52c 1189 }
050ac52c 1190}
e304bfd3 1191
bf7cd94d 1192void mesh_path_tx_root_frame(struct ieee80211_sub_if_data *sdata)
e304bfd3
RP		 1193{
1194 struct ieee80211_if_mesh *ifmsh = &sdata->u.mesh;
0507e159 1195 u32 interval = ifmsh->mshcfg.dot11MeshHWMPRannInterval;
a69cc44f 1196 u8 flags, target_flags = 0;
e304bfd3 1197
16dd7267
JC		 1198 flags = (ifmsh->mshcfg.dot11MeshGateAnnouncementProtocol)
1199 ? RANN_FLAG_IS_GATE : 0;
a69cc44f
CYY		 1200
1201 switch (ifmsh->mshcfg.dot11MeshHWMPRootMode) {
1202 case IEEE80211_PROACTIVE_RANN:
1203 mesh_path_sel_frame_tx(MPATH_RANN, flags, sdata->vif.addr,
f63f8421
CYY		 1204 ++ifmsh->sn, 0, NULL, 0, broadcast_addr,
1205 0, ifmsh->mshcfg.element_ttl,
1206 interval, 0, 0, sdata);
a69cc44f
CYY		 1207 break;
1208 case IEEE80211_PROACTIVE_PREQ_WITH_PREP:
1209 flags |= IEEE80211_PREQ_PROACTIVE_PREP_FLAG;
1210 case IEEE80211_PROACTIVE_PREQ_NO_PREP:
1211 interval = ifmsh->mshcfg.dot11MeshHWMPactivePathToRootTimeout;
1212 target_flags |= IEEE80211_PREQ_TO_FLAG |
1213 IEEE80211_PREQ_USN_FLAG;
1214 mesh_path_sel_frame_tx(MPATH_PREQ, flags, sdata->vif.addr,
f63f8421
CYY		 1215 ++ifmsh->sn, target_flags,
1216 (u8 *) broadcast_addr, 0, broadcast_addr,
1217 0, ifmsh->mshcfg.element_ttl, interval,
1218 0, ifmsh->preq_id++, sdata);
a69cc44f
CYY		 1219 break;
1220 default:
bdcbd8e0 1221 mhwmp_dbg(sdata, "Proactive mechanism not supported\n");
a69cc44f
CYY		 1222 return;
1223 }
e304bfd3 1224}
Linux kernel - Deliverables
This page took 0.501737 seconds and 5 git commands to generate.