1828c91f7SThomas Gleixner // SPDX-License-Identifier: GPL-2.0-only
2277b024eSKalle Valo /*
3932183aaSGanapathi Bhat * NXP Wireless LAN device driver: station RX data handling
4277b024eSKalle Valo *
5932183aaSGanapathi Bhat * Copyright 2011-2020 NXP
6277b024eSKalle Valo */
7277b024eSKalle Valo
8277b024eSKalle Valo #include <uapi/linux/ipv6.h>
9277b024eSKalle Valo #include <net/ndisc.h>
10277b024eSKalle Valo #include "decl.h"
11277b024eSKalle Valo #include "ioctl.h"
12277b024eSKalle Valo #include "util.h"
13277b024eSKalle Valo #include "fw.h"
14277b024eSKalle Valo #include "main.h"
15277b024eSKalle Valo #include "11n_aggr.h"
16277b024eSKalle Valo #include "11n_rxreorder.h"
17277b024eSKalle Valo
18277b024eSKalle Valo /* This function checks if a frame is IPv4 ARP or IPv6 Neighbour advertisement
19277b024eSKalle Valo * frame. If frame has both source and destination mac address as same, this
20277b024eSKalle Valo * function drops such gratuitous frames.
21277b024eSKalle Valo */
22277b024eSKalle Valo static bool
mwifiex_discard_gratuitous_arp(struct mwifiex_private * priv,struct sk_buff * skb)23277b024eSKalle Valo mwifiex_discard_gratuitous_arp(struct mwifiex_private *priv,
24277b024eSKalle Valo struct sk_buff *skb)
25277b024eSKalle Valo {
26277b024eSKalle Valo const struct mwifiex_arp_eth_header *arp;
27277b024eSKalle Valo struct ethhdr *eth;
28277b024eSKalle Valo struct ipv6hdr *ipv6;
29277b024eSKalle Valo struct icmp6hdr *icmpv6;
30277b024eSKalle Valo
31277b024eSKalle Valo eth = (struct ethhdr *)skb->data;
32277b024eSKalle Valo switch (ntohs(eth->h_proto)) {
33277b024eSKalle Valo case ETH_P_ARP:
34277b024eSKalle Valo arp = (void *)(skb->data + sizeof(struct ethhdr));
35277b024eSKalle Valo if (arp->hdr.ar_op == htons(ARPOP_REPLY) ||
36277b024eSKalle Valo arp->hdr.ar_op == htons(ARPOP_REQUEST)) {
37277b024eSKalle Valo if (!memcmp(arp->ar_sip, arp->ar_tip, 4))
38277b024eSKalle Valo return true;
39277b024eSKalle Valo }
40277b024eSKalle Valo break;
41277b024eSKalle Valo case ETH_P_IPV6:
42277b024eSKalle Valo ipv6 = (void *)(skb->data + sizeof(struct ethhdr));
43277b024eSKalle Valo icmpv6 = (void *)(skb->data + sizeof(struct ethhdr) +
44277b024eSKalle Valo sizeof(struct ipv6hdr));
45277b024eSKalle Valo if (NDISC_NEIGHBOUR_ADVERTISEMENT == icmpv6->icmp6_type) {
46277b024eSKalle Valo if (!memcmp(&ipv6->saddr, &ipv6->daddr,
47277b024eSKalle Valo sizeof(struct in6_addr)))
48277b024eSKalle Valo return true;
49277b024eSKalle Valo }
50277b024eSKalle Valo break;
51277b024eSKalle Valo default:
52277b024eSKalle Valo break;
53277b024eSKalle Valo }
54277b024eSKalle Valo
55277b024eSKalle Valo return false;
56277b024eSKalle Valo }
57277b024eSKalle Valo
58277b024eSKalle Valo /*
59277b024eSKalle Valo * This function processes the received packet and forwards it
60277b024eSKalle Valo * to kernel/upper layer.
61277b024eSKalle Valo *
62277b024eSKalle Valo * This function parses through the received packet and determines
63277b024eSKalle Valo * if it is a debug packet or normal packet.
64277b024eSKalle Valo *
65277b024eSKalle Valo * For non-debug packets, the function chops off unnecessary leading
66277b024eSKalle Valo * header bytes, reconstructs the packet as an ethernet frame or
67277b024eSKalle Valo * 802.2/llc/snap frame as required, and sends it to kernel/upper layer.
68277b024eSKalle Valo *
69277b024eSKalle Valo * The completion callback is called after processing in complete.
70277b024eSKalle Valo */
mwifiex_process_rx_packet(struct mwifiex_private * priv,struct sk_buff * skb)71277b024eSKalle Valo int mwifiex_process_rx_packet(struct mwifiex_private *priv,
72277b024eSKalle Valo struct sk_buff *skb)
73277b024eSKalle Valo {
74277b024eSKalle Valo int ret;
75277b024eSKalle Valo struct rx_packet_hdr *rx_pkt_hdr;
76277b024eSKalle Valo struct rxpd *local_rx_pd;
77277b024eSKalle Valo int hdr_chop;
78277b024eSKalle Valo struct ethhdr *eth;
79277b024eSKalle Valo u16 rx_pkt_off, rx_pkt_len;
80277b024eSKalle Valo u8 *offset;
81277b024eSKalle Valo u8 adj_rx_rate = 0;
82277b024eSKalle Valo
83277b024eSKalle Valo local_rx_pd = (struct rxpd *) (skb->data);
84277b024eSKalle Valo
85277b024eSKalle Valo rx_pkt_off = le16_to_cpu(local_rx_pd->rx_pkt_offset);
86277b024eSKalle Valo rx_pkt_len = le16_to_cpu(local_rx_pd->rx_pkt_length);
87277b024eSKalle Valo rx_pkt_hdr = (void *)local_rx_pd + rx_pkt_off;
88277b024eSKalle Valo
89*aef7a030SPin-yen Lin if (sizeof(rx_pkt_hdr->eth803_hdr) + sizeof(rfc1042_header) +
90*aef7a030SPin-yen Lin rx_pkt_off > skb->len) {
9111958528SPolaris Pi mwifiex_dbg(priv->adapter, ERROR,
9211958528SPolaris Pi "wrong rx packet offset: len=%d, rx_pkt_off=%d\n",
9311958528SPolaris Pi skb->len, rx_pkt_off);
9411958528SPolaris Pi priv->stats.rx_dropped++;
9511958528SPolaris Pi dev_kfree_skb_any(skb);
962785851cSPolaris Pi return -1;
9711958528SPolaris Pi }
9811958528SPolaris Pi
99*aef7a030SPin-yen Lin if (sizeof(*rx_pkt_hdr) + rx_pkt_off <= skb->len &&
100*aef7a030SPin-yen Lin ((!memcmp(&rx_pkt_hdr->rfc1042_hdr, bridge_tunnel_header,
101277b024eSKalle Valo sizeof(bridge_tunnel_header))) ||
102277b024eSKalle Valo (!memcmp(&rx_pkt_hdr->rfc1042_hdr, rfc1042_header,
103277b024eSKalle Valo sizeof(rfc1042_header)) &&
104277b024eSKalle Valo ntohs(rx_pkt_hdr->rfc1042_hdr.snap_type) != ETH_P_AARP &&
105*aef7a030SPin-yen Lin ntohs(rx_pkt_hdr->rfc1042_hdr.snap_type) != ETH_P_IPX))) {
106277b024eSKalle Valo /*
107277b024eSKalle Valo * Replace the 803 header and rfc1042 header (llc/snap) with an
108277b024eSKalle Valo * EthernetII header, keep the src/dst and snap_type
109277b024eSKalle Valo * (ethertype).
110277b024eSKalle Valo * The firmware only passes up SNAP frames converting
111277b024eSKalle Valo * all RX Data from 802.11 to 802.2/LLC/SNAP frames.
112277b024eSKalle Valo * To create the Ethernet II, just move the src, dst address
113277b024eSKalle Valo * right before the snap_type.
114277b024eSKalle Valo */
115277b024eSKalle Valo eth = (struct ethhdr *)
116277b024eSKalle Valo ((u8 *) &rx_pkt_hdr->eth803_hdr
117277b024eSKalle Valo + sizeof(rx_pkt_hdr->eth803_hdr) +
118277b024eSKalle Valo sizeof(rx_pkt_hdr->rfc1042_hdr)
119277b024eSKalle Valo - sizeof(rx_pkt_hdr->eth803_hdr.h_dest)
120277b024eSKalle Valo - sizeof(rx_pkt_hdr->eth803_hdr.h_source)
121277b024eSKalle Valo - sizeof(rx_pkt_hdr->rfc1042_hdr.snap_type));
122277b024eSKalle Valo
123277b024eSKalle Valo memcpy(eth->h_source, rx_pkt_hdr->eth803_hdr.h_source,
124277b024eSKalle Valo sizeof(eth->h_source));
125277b024eSKalle Valo memcpy(eth->h_dest, rx_pkt_hdr->eth803_hdr.h_dest,
126277b024eSKalle Valo sizeof(eth->h_dest));
127277b024eSKalle Valo
128277b024eSKalle Valo /* Chop off the rxpd + the excess memory from the 802.2/llc/snap
129277b024eSKalle Valo header that was removed. */
130277b024eSKalle Valo hdr_chop = (u8 *) eth - (u8 *) local_rx_pd;
131277b024eSKalle Valo } else {
132277b024eSKalle Valo /* Chop off the rxpd */
133277b024eSKalle Valo hdr_chop = (u8 *) &rx_pkt_hdr->eth803_hdr -
134277b024eSKalle Valo (u8 *) local_rx_pd;
135277b024eSKalle Valo }
136277b024eSKalle Valo
137277b024eSKalle Valo /* Chop off the leading header bytes so the it points to the start of
138277b024eSKalle Valo either the reconstructed EthII frame or the 802.2/llc/snap frame */
139277b024eSKalle Valo skb_pull(skb, hdr_chop);
140277b024eSKalle Valo
141277b024eSKalle Valo if (priv->hs2_enabled &&
142277b024eSKalle Valo mwifiex_discard_gratuitous_arp(priv, skb)) {
143277b024eSKalle Valo mwifiex_dbg(priv->adapter, INFO, "Bypassed Gratuitous ARP\n");
144277b024eSKalle Valo dev_kfree_skb_any(skb);
145277b024eSKalle Valo return 0;
146277b024eSKalle Valo }
147277b024eSKalle Valo
148277b024eSKalle Valo if (ISSUPP_TDLS_ENABLED(priv->adapter->fw_cap_info) &&
149277b024eSKalle Valo ntohs(rx_pkt_hdr->eth803_hdr.h_proto) == ETH_P_TDLS) {
150277b024eSKalle Valo offset = (u8 *)local_rx_pd + rx_pkt_off;
151277b024eSKalle Valo mwifiex_process_tdls_action_frame(priv, offset, rx_pkt_len);
152277b024eSKalle Valo }
153277b024eSKalle Valo
154ed0b2b06SBrian Norris /* Only stash RX bitrate for unicast packets. */
155ed0b2b06SBrian Norris if (likely(!is_multicast_ether_addr(rx_pkt_hdr->eth803_hdr.h_dest))) {
156277b024eSKalle Valo priv->rxpd_rate = local_rx_pd->rx_rate;
157277b024eSKalle Valo priv->rxpd_htinfo = local_rx_pd->ht_info;
158ed0b2b06SBrian Norris }
159277b024eSKalle Valo
160277b024eSKalle Valo if (GET_BSS_ROLE(priv) == MWIFIEX_BSS_ROLE_STA ||
161277b024eSKalle Valo GET_BSS_ROLE(priv) == MWIFIEX_BSS_ROLE_UAP) {
162ed0b2b06SBrian Norris adj_rx_rate = mwifiex_adjust_data_rate(priv,
163ed0b2b06SBrian Norris local_rx_pd->rx_rate,
164ed0b2b06SBrian Norris local_rx_pd->ht_info);
165277b024eSKalle Valo mwifiex_hist_data_add(priv, adj_rx_rate, local_rx_pd->snr,
166277b024eSKalle Valo local_rx_pd->nf);
167277b024eSKalle Valo }
168277b024eSKalle Valo
169277b024eSKalle Valo ret = mwifiex_recv_packet(priv, skb);
170277b024eSKalle Valo if (ret == -1)
171277b024eSKalle Valo mwifiex_dbg(priv->adapter, ERROR,
172277b024eSKalle Valo "recv packet failed\n");
173277b024eSKalle Valo
174277b024eSKalle Valo return ret;
175277b024eSKalle Valo }
176277b024eSKalle Valo
177277b024eSKalle Valo /*
178277b024eSKalle Valo * This function processes the received buffer.
179277b024eSKalle Valo *
180277b024eSKalle Valo * The function looks into the RxPD and performs sanity tests on the
181277b024eSKalle Valo * received buffer to ensure its a valid packet, before processing it
182277b024eSKalle Valo * further. If the packet is determined to be aggregated, it is
183277b024eSKalle Valo * de-aggregated accordingly. Non-unicast packets are sent directly to
184277b024eSKalle Valo * the kernel/upper layers. Unicast packets are handed over to the
185277b024eSKalle Valo * Rx reordering routine if 11n is enabled.
186277b024eSKalle Valo *
187277b024eSKalle Valo * The completion callback is called after processing in complete.
188277b024eSKalle Valo */
mwifiex_process_sta_rx_packet(struct mwifiex_private * priv,struct sk_buff * skb)189277b024eSKalle Valo int mwifiex_process_sta_rx_packet(struct mwifiex_private *priv,
190277b024eSKalle Valo struct sk_buff *skb)
191277b024eSKalle Valo {
192277b024eSKalle Valo struct mwifiex_adapter *adapter = priv->adapter;
193277b024eSKalle Valo int ret = 0;
194277b024eSKalle Valo struct rxpd *local_rx_pd;
195277b024eSKalle Valo struct rx_packet_hdr *rx_pkt_hdr;
196277b024eSKalle Valo u8 ta[ETH_ALEN];
197277b024eSKalle Valo u16 rx_pkt_type, rx_pkt_offset, rx_pkt_length, seq_num;
198277b024eSKalle Valo struct mwifiex_sta_node *sta_ptr;
199277b024eSKalle Valo
200277b024eSKalle Valo local_rx_pd = (struct rxpd *) (skb->data);
201277b024eSKalle Valo rx_pkt_type = le16_to_cpu(local_rx_pd->rx_pkt_type);
202277b024eSKalle Valo rx_pkt_offset = le16_to_cpu(local_rx_pd->rx_pkt_offset);
203277b024eSKalle Valo rx_pkt_length = le16_to_cpu(local_rx_pd->rx_pkt_length);
204277b024eSKalle Valo seq_num = le16_to_cpu(local_rx_pd->seq_num);
205277b024eSKalle Valo
206277b024eSKalle Valo rx_pkt_hdr = (void *)local_rx_pd + rx_pkt_offset;
207277b024eSKalle Valo
20811958528SPolaris Pi if ((rx_pkt_offset + rx_pkt_length) > skb->len ||
20911958528SPolaris Pi sizeof(rx_pkt_hdr->eth803_hdr) + rx_pkt_offset > skb->len) {
210277b024eSKalle Valo mwifiex_dbg(adapter, ERROR,
211277b024eSKalle Valo "wrong rx packet: len=%d, rx_pkt_offset=%d, rx_pkt_length=%d\n",
212277b024eSKalle Valo skb->len, rx_pkt_offset, rx_pkt_length);
213277b024eSKalle Valo priv->stats.rx_dropped++;
214277b024eSKalle Valo dev_kfree_skb_any(skb);
215277b024eSKalle Valo return ret;
216277b024eSKalle Valo }
217277b024eSKalle Valo
218277b024eSKalle Valo if (rx_pkt_type == PKT_TYPE_MGMT) {
219277b024eSKalle Valo ret = mwifiex_process_mgmt_packet(priv, skb);
220277b024eSKalle Valo if (ret)
221bd642acfSAmitkumar Karwar mwifiex_dbg(adapter, DATA, "Rx of mgmt packet failed");
222277b024eSKalle Valo dev_kfree_skb_any(skb);
223277b024eSKalle Valo return ret;
224277b024eSKalle Valo }
225277b024eSKalle Valo
226277b024eSKalle Valo /*
227277b024eSKalle Valo * If the packet is not an unicast packet then send the packet
228277b024eSKalle Valo * directly to os. Don't pass thru rx reordering
229277b024eSKalle Valo */
230277b024eSKalle Valo if ((!IS_11N_ENABLED(priv) &&
231277b024eSKalle Valo !(ISSUPP_TDLS_ENABLED(priv->adapter->fw_cap_info) &&
232277b024eSKalle Valo !(local_rx_pd->flags & MWIFIEX_RXPD_FLAGS_TDLS_PACKET))) ||
233277b024eSKalle Valo !ether_addr_equal_unaligned(priv->curr_addr, rx_pkt_hdr->eth803_hdr.h_dest)) {
234277b024eSKalle Valo mwifiex_process_rx_packet(priv, skb);
235277b024eSKalle Valo return ret;
236277b024eSKalle Valo }
237277b024eSKalle Valo
238277b024eSKalle Valo if (mwifiex_queuing_ra_based(priv) ||
239277b024eSKalle Valo (ISSUPP_TDLS_ENABLED(priv->adapter->fw_cap_info) &&
240277b024eSKalle Valo local_rx_pd->flags & MWIFIEX_RXPD_FLAGS_TDLS_PACKET)) {
241277b024eSKalle Valo memcpy(ta, rx_pkt_hdr->eth803_hdr.h_source, ETH_ALEN);
242277b024eSKalle Valo if (local_rx_pd->flags & MWIFIEX_RXPD_FLAGS_TDLS_PACKET &&
243277b024eSKalle Valo local_rx_pd->priority < MAX_NUM_TID) {
244277b024eSKalle Valo sta_ptr = mwifiex_get_sta_entry(priv, ta);
245277b024eSKalle Valo if (sta_ptr)
246277b024eSKalle Valo sta_ptr->rx_seq[local_rx_pd->priority] =
247277b024eSKalle Valo le16_to_cpu(local_rx_pd->seq_num);
248277b024eSKalle Valo mwifiex_auto_tdls_update_peer_signal(priv, ta,
249277b024eSKalle Valo local_rx_pd->snr,
250277b024eSKalle Valo local_rx_pd->nf);
251277b024eSKalle Valo }
252277b024eSKalle Valo } else {
2532cd2b424SDan Carpenter if (rx_pkt_type != PKT_TYPE_BAR &&
2542cd2b424SDan Carpenter local_rx_pd->priority < MAX_NUM_TID)
255277b024eSKalle Valo priv->rx_seq[local_rx_pd->priority] = seq_num;
256277b024eSKalle Valo memcpy(ta, priv->curr_bss_params.bss_descriptor.mac_address,
257277b024eSKalle Valo ETH_ALEN);
258277b024eSKalle Valo }
259277b024eSKalle Valo
260277b024eSKalle Valo /* Reorder and send to OS */
261277b024eSKalle Valo ret = mwifiex_11n_rx_reorder_pkt(priv, seq_num, local_rx_pd->priority,
262277b024eSKalle Valo ta, (u8) rx_pkt_type, skb);
263277b024eSKalle Valo
264277b024eSKalle Valo if (ret || (rx_pkt_type == PKT_TYPE_BAR))
265277b024eSKalle Valo dev_kfree_skb_any(skb);
266277b024eSKalle Valo
267277b024eSKalle Valo if (ret)
268277b024eSKalle Valo priv->stats.rx_dropped++;
269277b024eSKalle Valo
270277b024eSKalle Valo return ret;
271277b024eSKalle Valo }
272