Commit cf147085 authored Apr 26, 2017 by Emmanuel Grumbach Committed by Johannes Berg Apr 26, 2017

mac80211: don't parse encrypted management frames in ieee80211_frame_acked



ieee80211_frame_acked is called when a frame is acked by
the peer. In case this is a management frame, we check
if this an SMPS frame, in which case we can update our
antenna configuration.

When we parse the management frame we look at the category
in case it is an action frame. That byte sits after the IV
in case the frame was encrypted. This means that if the
frame was encrypted, we basically look at the IV instead
of looking at the category. It is then theorically
possible that we think that an SMPS action frame was acked
where really we had another frame that was encrypted.

Since the only management frame whose ack needs to be
tracked is the SMPS action frame, and that frame is not
a robust management frame, it will never be encrypted.
The easiest way to fix this problem is then to not look
at frames that were encrypted.

Signed-off-by: Emmanuel Grumbach <emmanuel.grumbach@intel.com>
Signed-off-by: Luca Coelho <luciano.coelho@intel.com>
Signed-off-by: Johannes Berg <johannes.berg@intel.com>

parent f6601e17

net/mac80211/status.c

+1 −0

Original line number	Diff line number	Diff line
		@@ -200,6 +200,7 @@ static void ieee80211_frame_acked(struct sta_info sta, struct sk_buff skb)
		}

		if (ieee80211_is_action(mgmt->frame_control) &&
		!ieee80211_has_protected(mgmt->frame_control) &&
		mgmt->u.action.category == WLAN_CATEGORY_HT &&
		mgmt->u.action.u.ht_smps.action == WLAN_HT_ACTION_SMPS &&
		ieee80211_sdata_running(sdata)) {

Admin message