qcacld-2.0 to qcacld-3.0 propagation
Free the memory for channel list once the scanStatus is NOT
eCSR_SCAN_SUCCESS in WLANSAP_PreStartBssAcsScanCallback.
Change-Id: Id2d7fe5d7df8c032d50f02880deedb2ed1ac79fd
CRs-Fixed: 2059751
Map the input target time to host time, and
time stamp netbuf with this host time.
Change-Id: I1fb298615267bb11c4f21cabe670fd4c3a12a759
CRs-Fixed: 2057693
To map target time to host time, implement a timer
to capture TSF and host time periodically.
The timer will be started when connection state of
sta/p2p_gc being changed from not associated to
associated; and stopped when from associated to
not associated.
Change-Id: I697080b95f01f173beddc038ab9ad89ee394354b
CRs-Fixed: 2057693
1. Failed to get TSF if issuing cap_tsf more
than 1 time continuously, due to the TSF
value will be reset by the following 'cap_tsf'
command, however, these 'cap_tsf' won't be
excuted actually, because 'get_tsf' was not
received after last successful 'cap_tsf'.
To fix it, do TSF reset only if 'cap_tsf'
will be actually excuted.
2. Add flag 'cap_tsf_flag' to make sure cap_tsf
being executed serially.
3. Add flag 'tsf_ready_flag' to indicate whether
TSF feature has been initialized successfully.
Add 'TSF_NOT_READY' in 'hdd_tsf_get_state' to
indicate this state.
Propagated from qcacld-2.0
Change-Id: Ib768e3d7f0b33a75e8bd838d4ed1c0b84e3aa13d
CRs-Fixed: 2057693
The AC values used by htt and txrx module are mismatch. Assertion
is also added to confirm that the values are matching.
The change is also to sync with CLD2.0.
Change-Id: I011a6f2b78a6954863c99f9d3875b2c88d2b78b1
CRs-Fixed: 2065390
Add initialization for mapping from TIDs including extension TIDs
to category table.
The change is also to sync with CLD2.0.
Change-Id: Ie79e5420cc22f4cb3e34ceeb020f3fde8f170d4d
CRs-Fixed: 2065379
After VDEV_START set WMI_VDEV_PARAM_PROTECTION_MODE param to no
protection: IEEE80211_PROT_NONE. Currently NAN spec and firmware
implementation does not have a mechanism to identify when protection
is needed.
Change-Id: I5906097f44d2059e26e440d2435568ef661160bc
CRs-Fixed: 2033348
In case remain on channel response is pending when wlan unloads, this
memory will leak. Free gpLimRemainOnChanReq memory when lim_cleanup is
called to avoid leak.
Change-Id: Ibf47bbc4b7eb5ce9509998cd40d0c3ce54e4da62
CRs-Fixed: 2051164
In roam sync propagation, initialise pe_session NSS to vdev_nss, which
will then later be updated as per ASSOC response frame received from
firmware. This allows roaming from 1x1 to 2x2.
Change-Id: I5260425c7bfdfaa09bac908ea7d8a89d5caa3f69
CRs-Fixed: 2058560
When operating in an 802.11b mode, CCK TX FIR Override forces a 2x2
radio configuration into 1x for Tx and 2x for Rx (ie 1x2) for
regulatory compliance reasons. Add gEnableCckTxFirOverride to allow
this firmware feature to be enabled/disabled via ini configuration.
Change-Id: I359fc908fa27113e2500a28c343cf90dea518212
CRs-Fixed: 2062111
Add the following rules when HT client is associating with SAP,
1.2G-AS platform: SAP associates with HT (11n) clients as 2x1 in 2G
and 2X2 in 5G.
2.Non-2G-AS platform: SAP associates with HT (11n) clients as 2X2
in 2G and 5G and async DBS scan is disabled.
3.5G-AS platform: SAP associates with HT (11n) clients as 2X2 in 2G
and 5G and async DBS scan is disabled.
Change-Id: Ia472e786cf3ffcb420aa8142a543b56f508c6b4a
CRs-Fixed: 2063482
Even if vht operation or Opmode IE is present in beacon, HT info IE is used to
detect the channel width and set to firmware and then again vht operation or
opmode IE is used to detect and set new channel width to firmware.
So if vht operation or Opmode IE are present, use them to detect and set
new channel width.
Change-Id: Ibbb5a2c55a5f79536fe269e0b6c0f5ff2c369309
CRs-Fixed: 2067727
Propagatin from qcacld-2.0 to qcacld-3.0
Length of the MAC address is not checked which may cause out of bound
read issue.
To resolve this add a check for MAC address length.
CRs-Fixed: 2063980
Change-Id: I58454b84c28b157cef35984d612a9bc6fdd9ec56
Add host support for detecting SOC power collapse failures in FW and
communicating the same to framework.
Change-Id: Icee39c896802c4d7136e0b8ef442a33feeb4799c
CRs-Fixed: 1112979
In some cases kernel incorrectly forwards the address change request
down to the driver even when interface is down. Driver tries to get
the session pointer from mac context and ends up crashing due to NULL
pointer dereference.
Ignore address change requests when interface is down.
CRs-Fixed: 2060889
Change-Id: I2b572c517b335856cdf2ae04433b4a48a9598572
For TF sdio chip with platform driver, ramdump is
configured in platform driver. Driver can get the
virtual memory, but it can't call ioremap again.
If there is a platform driver, ramdump should be
allocated in platform driver, and if there is no
platform driver, ramdump should be allocated in
driver.
CRs-Fixed: 2066529
Change-Id: Ia2a32a4895f354e365522a30bbfac949ccb7a391
Do not change channel BW if channel is 0 in HT info, As this will
cause invalid channel and phymode sent to firmware and result into
crash.
Change-Id: Ia629314b9ced299afa5d89092d0a9fc5c7cb6b4c
CRs-Fixed: 2065143
Convert the boolean variables used for tracking okc_enable into
separate bit flags for OKC and PMK caching. Firmware will also
add support for bitwise enablement of OKC and PMK caching in 802.11i
configuration part of RSO command.
CRs-Fixed: 2004963
Change-Id: Ib2fcdc6318adb488eca5cf47b2b59541020e6009
An incorrect IE length can overflow the remaining length variable
and make IE parsing logic perform a buffer over-read.
Check on IE length to avoid buffer over-read.
Change-Id: I20ef6a0136c7a5b602ad15a2fb725f20807b81d0
CRs-Fixed: 2052804
WPA RSN IE is copied from source without a check on the given IE length.
A malicious IE length can cause buffer overflow.
Add maximum bound check on WPA RSN IE length.
Change-Id: Id159d307e8f9c1de720d4553a7c29f23cbd28571
CRs-Fixed: 2052791
qcacld-2.0 to qcacld-3.0 propagation
By setting the corresponding parameters: reorder timeout and window size
to FW, the host will deliver information about aggregation of the packets
on RX to upper layer.
Change-Id: I404d56d8d9ca3e90f8d1dee28abd80d784924901
CRs-fixed: 1078111
During .set_phy_params operation, retry value for short retry
is incorrectly fed to the long retry parameter.
Only feed retry value for long retry into the long retry parameter.
Change-Id: I3e8838b9b0c21d3cbaafa3a1785dd3f793b5b372
CRs-Fixed: 2062561
Few LFR3 related code checks are not protected which creates the
compilation issue on some of the platform.
Fix the compilation issue by moving LFR3 related code checks to
WLAN_FEATURE_ROAM_OFFLOAD macro.
CRs-Fixed: 2055018
Change-Id: I1ca4000c3bb15e33c2fc85f9117aa4f1ca2aeed4
Currently driver calculates dot11mode in CSR for LFR-2.0, saves in
global variable pFTPreAuthReq of PE context and later uses that in
lim. But for LFR-3.0, pFTPreAuthReq of PE context is NULL which
can result in NULL pointer access. Add a check for pFTPreAuthReq
to fix this issue.
Change-Id: Ia5cfbca912f9870b9ec7b33a015f4925022f448a
CRs-Fixed: 2055018
Currently in function ol_copy_ramdump dynamically allocated memory
is not freed before return in error condition. In this change free
memory before return.
Change-Id: Ie75d69a1716c3598e0123064a6ee522076748f7d
CRs-Fixed: 2044460
Add INI config option to enable orphaning of Tx packets.
Default is to disable orphaning.
Change-Id: Ib855d7ebf56fd3def1a2674091a188e8ecd729f2
CRs-Fixed: 2064079
Host send self nss capability in start Vdev and thus firmware
start SMPS frames during DBS even if peer is 1x1 capable.
To fix set NSS for STA as intersection of self and AP.
Change-Id: I38eeade0456f65f27b335f4ee14db0472507feb0
CRs-Fixed: 2056290
Fix memory leak due to WMA_SET_LINK_STATE. There are potential memory leak
on lim_set_link_state() failure and vdev target request message cleanup.
Change-Id: I873693f9d51f3702e01aec0d9df5c218bdb70f05
CRs-Fixed: 2051977
Fix the return data type in __wlan_hdd_cfg80211_ll_stats_get from
unsigned long to int type.
Change-Id: Ia51056adbf09fe6a2cb0d33337b4d9107c4f146d
CRs-Fixed: 2051378
Change the return status type as the expected value could
be either a negative or Zero based on failure or success
respectively in the routine wlan_hdd_ll_stats_get()
Change-Id: Ieaff1928f081fe28060b2c40f7e546c51d03a7bc
CRs-Fixed: 2036663
Add support to read link layer stats via debugfs. This change set
will issue get_req and store the received stats response is debugfs
entry.
Change-Id: If3af9f0a37283583ff011e35c7275a329a6e175d
CRs-Fixed: 2018087
Add support to parse and store additional link layer stats
included as part of radio stats and interface stats.
Change-Id: Idbefa508f5e79221c3d7598e6b120454b56e2423
CRs-Fixed: 2018087
Currently runtime suspend context deinit is done after hif close which
leads to memory leak. In this change deinitialize the runtime suspend
context before hif close.
Change-Id: Idc99f77b09a25a53e10b4e92391060670bb9bb7e
CRs-Fixed: 2065219
Currently IPA WDI TX and RX pipes are set up when the interface is
up but during interface down there is no disconnect of the IPA WDI
pipes. So again when interface up after interface down IPA driver
returns error that endpoints are already have allocated. As a result
the TX and RX WDI pipe handle values will be zero which is invalid.
In this change disconnect WDI pipes at interface down instead of
during wlan exit or ssr deinit.
Change-Id: I1fb7520467f1b5a6c43bab3b16b002fa0f534d75
CRs-fixed: 2033329
If tx frame is ICMP packet, disable bmps for N seconds to avoid
latency of waking up from bmps.
Change-Id: I91f7748bfca81524637e0e4cc39ace5abf53f7dc
CRs-Fixed: 2044602
Add INI "gper_min_rssi_threshold_for_roam" to configure the minimum
RSSI required for AP candidate to roam in PER based roaming.
Change-Id: I5549c44d2dffb20e92923d3b62e08b94b7a87c9d
CRs-Fixed: 2048414
Move bssDescription to the end of tSirSmeJoinReq since bssDescription
has ieFields at its end which would be corrupted if we dont keep it
at the end of bssDescription. This results in not detecting the IE's
properly after assoc response processing, not setting wpa_rsn flag
in PEER_ASSOC_CMD to fw. The subsequent LFR3 roam if happens in fw
fails because of this.
Keep bssDescription at the end of tSirSmeJoinReq struct and other
structs where bssDescription is used.
Change-Id: I7096f7da0a475b0c63078f3c77fba240a41dfb00
CRs-Fixed: 2058223
With I57f6319cecdf10e08047b510321b885c3cd711b5, adding IE's to
assoc request is modified to honour the spec.i.e. additional IE's
from HDD is not directly appended at the end of the association
request frame. parser code checks if the additional IE is defined
for assoc request frame parser and fills it accordingly as per the
IE order spec mandates. OSEN IE is not defined in assoc request
frame parser which leads to not adding the same to assoc request.
Add OSEN IE to assoc request frame parser.
Change-Id: I3b6e10128bfa2c63cc8d98e9727b99c496cb5b2c
CRs-Fixed: 2056201
Reject connection in csr_roam_connect(), if the BSS entry selected
from the driver cached scan results, has a channel which is not OK for
Do_Not_Break_Stream.
Change-Id: Icf725361382bff7dad80138cfc1b51bafa548afa
CRs-Fixed: 2064380
Currently QCA_WLAN_VENDOR_ATTR_CONFIG_FINE_TIME_MEASUREMENT is not
properly represented in the wlan_hdd_wifi_config_policy table, so add
a proper initializer.
Change-Id: I95ba66337c30cae67b23c9942b9360522ad60df0
CRs-Fixed: 2061978
Send fw log mode when wlan interface is up as this info will get
lost when wlan fw is unloaded.
CRs-Fixed: 2057979
Change-Id: Ie609ef15aaa242bdf98f37b6aa04b8fbf7c38be8
As IPA requires total byte counts of Tx comp ring for
ipa_connect_wdi_pipe, fix to pass the total byte counts of the ring.
Change-Id: I6150115ad2fdf3635ac7a84f592e4545f6dc934a
CRs-Fixed: 1114930
In function rrm_process_beacon_report_req, add bound check before
writing to channel list which is of fixed size.
Change-Id: I3c80974bba84a96f7b85e4ce62bbb01c23b4babf
CRs-Fixed: 2060138
Currently elem_len is not checked against WPS_OUI_TYPE_SIZE
before it uses the buffer for memcmp, this may cause the buffer
overread.
To fix this add the proper comparision logic before the API uses
the buffer.
Change-Id: I9ba63543a529fb88932500be39045fcc19509863
CRs-Fixed: 2061159
Scan results obtained through wext interface is
incomplete due to limitation on number of bytes
passed through wext interface.
Wext scan command is replaced with NL scan.
Remove code references related to wext scan
command support.
Change-Id: I05ccc13d1b658e62b19a389e6a480707b5c446b9
CRs-Fixed: 2063667
Use CDP API in sme_open_session() instead of ol_txrx API.
Using ol_txrx API will lead to unexpected behavior.
Change-Id: I7012fd1904c730fb1074c262cb096d0cd8c20362
CRs-Fixed: 2064278
While start_modules is in progress, wlan_hdd_validate_context
returns error from inform bss. This results in not forwarding
the frames to the upper layer as well as log flooding.
Don't return error from inform bss if start_modules is in progress.
Change-Id: I7837ef2566eaf3f0b7387e118ff2c46e6b617670
CRs-Fixed: 2037694
Use macro CONFIG_HL_SUPPORT to do conditional compilation in
wlan_hdd_main.h, it can distinguish HL target from other target
so that it will use different wlan target defaut config.
Change-Id: Ia33cd336de34c17b73909b671c83e304def3d74b
CRs-Fixed: 2063356
There are currently three issues which can result in a buffer overread
when processing PNO vendor commands:
1) __wlan_hdd_cfg80211_set_passpoint_list() specifies the wrong policy
when invoking nla_parse().
2) hdd_extscan_passpoint_fill_network_list() does not specify a policy
when invoking nla_parse().
3) __wlan_hdd_cfg80211_set_epno_list() specifies a policy but not all
of the attributes that are parsed are present in the policy.
To prevent buffer overread:
1) Update __wlan_hdd_cfg80211_set_passpoint_list() and
hdd_extscan_passpoint_fill_network_list() to use the policy
wlan_hdd_pno_config_policy.
2) Update wlan_hdd_pno_config_policy to contain all the fixed-length
attributes needed by __wlan_hdd_cfg80211_set_passpoint_list(),
hdd_extscan_passpoint_fill_network_list(), and
__wlan_hdd_cfg80211_set_epno_list().
Change-Id: I4a20e77ce87967ae78323b83a2aa9085fed2647f
CRs-Fixed: 2054770
While freeing ROC request nodes from the linked list a spinlock is
acquired. But it is not released if the API to remove node returns
failure. This will end up in a deadlock.
Release spinlock before returning from error.
Change-Id: I30281cc358b4827e59325554859c3dcffe6292b0
CRs-Fixed: 2042713
ipa_uc_rx_ring_elem_t structure is platform specific and current
definition cannot be used on 32-bit ARM platform where IPA 3.5
is attached. Add IPA 3.5 and 32-bit ARM compatible structure to
avoid IPA crash when data traffic is running
Change-Id: Ia5c141c9405675a64f59ba4c09f1ffd911158c9b
CRs-Fixed: 2046905
Add changes to correct vendor attribute to support external
ACS as defined in qca-vendor-copy.h
Change-Id: Ia09638f59aeea4d87bbd6d4f9ab03210a213a132
CRs-Fixed: 2049157
In case roaming was in progress when hdd_disconnect was called, avoid
defer disconnect as that will call hdd api in mcthread which waits on
event for about 5 seconds thus blocking everything. Also defer disconnect
makes supplicant and driver state go out of sync. Rather wait in hdd
for roaming to complete and then issue disconnect keeping state simple
and clean
Change-Id: I1b971226187892f32eb493047c13353bb0d1c867
CRs-Fixed: 2042394
When IEEE80211_PRIVACY is defined, cfg80211_get_bss should be called with
IEEE80211_BSS_TYPE_ESS as ieee80211_bss_type and IEEE80211_PRIVACY_ANY as
ieee80211_privacy
Change-Id: I28154ab45a7143f485824d6884c630315d47d0c7
CRs-Fixed: 2063345
Currently there is no ini parameter to disable the scanning if
the device is already connected.
Add ini parameter to support this feature.
Change-Id: I0f57be99ea335823c30a058d166b126d787e4461
CRs-Fixed: 2054521
If pe queue contain management frame and set key cmd is sent as low
priority the set key may timeout.
Thus to fix this post set key with high priority to lim,
so that it can be processed in priority.
Change-Id: I31e346da6662ab56f268f94260ed0f169b8f182b
CRs-Fixed: 2056378
If CSA Wide BW IE is present the sec channel offset is always set to
csa_params->sec_chan_offset which is always 0 and thus for next CSA the
BW will always be set to 20 MHz.
To fix this set proper sec channel offset if CSA Wide BW IE is present.
Change-Id: I813b04683cbce3f4f933562c23511de92ce4bcef
CRs-Fixed: 2062475
In case user space disconnects, directly send ROAM_SCAN_OFFLOAD_STOP to FW
to avoid delays in queues.
Change-Id: Ia6e458617818da5ad2e956cd30a203652949db21
CRs-Fixed: 2035160
Beacons with NULL IE's are triggering crash
in framework.
Add condition check in WMA to drop beacons
with NULL IE.
Change-Id: Ie28cd513713668334a77a2e8f5f345d79f68fcb5
CRs-Fixed: 2047525
Beacons from NAN devices triggering crash in framework.
Don't update the NL with the NAN device beacons.
Drop NAN device beacons in WMA before processed by PE.
Change-Id: I754591459d7a02848454d506b85847b1993aac53
CRs-Fixed: 2047525
Vdev restart cmd is sent in vdev stop response handler during the
hidden ssid restart process. Lim sends beacon template cmd after it
sends the hidden ssid restart cmd so beacon template is sent to FW
after the vdev stop cmd and before the vdev restart cmd as vdev
restart is sent during vdev stop response handler.
Send the beacon template after vdev restart is successful during
the hidden ssid restart process.
Change-Id: Ia75bde4ce8c564133e2b2a7bd4011089e52808e7
CRs-Fixed: 2039224
If CSA offload is enabled, FW send the CSA offload event for
the channel switch, so ignore the CSA IE check in beacon and
probe response frame processing.
Change-Id: I3f0d204317a4d26dc503c350307f4c144bf8672d
CRs-Fixed: 2060145
Host should keep the wake lock from the time it sends set hw mode request to FW
till it receives the set hw mode response. This will avoid any fatal
crash condition.
Change-Id: I6ab1020811100be1adbb70b90a06285dc8bed88c
CRs-Fixed: 2060010
Increase packet header bytes to 256, HL1.0 target offload features on
iHelium FW requires header bytes to be increased from 64 to 256bytes.
And round up the HTT_RX_BUF_SIZE to CACHE_LINE_SZ.
Change-Id: Iec45f5747956d0797411f76c2fec1368a13e7d6d
CRs-Fixed: 1039073
During p2p find one or more remain on channel requests are queued
for execution. Memory leak is observed if module exit happens before
roc cancel is called.
Free the memory allocated in the ROC request queue nodes during exit.
Change-Id: I10d77266652f497f556a0a26b617856d81e982a7
CRs-fixed: 2032162
A psoc object is being created in hdd_wlan_startup, but not freed in
case of an error. Free any allocated psoc object in hdd_wlan_startup
as part of the existing error handling.
Change-Id: I6292188c4b92198ea157f6e2f1519b89fc991ad5
CRs-Fixed: 2059166
Add audit comment in cfg80211_conditional_chan_switch to express the intent
why policy table is not used in this API.
Change-Id: Ia2e7dd4d92283794ce389d6c202d4a69338d89bd
CRs-Fixed: 2056564
Currently attributes are not validated in __wlan_hdd_cfg80211_do_acs,
this can lead to a buffer overread.
To resolve this issue, Define an nla_policy and validate the
attributes.
CRs-Fixed: 2054685
Change-Id: Ic1bd5abbef09407f925625b709f10cf9cb7c3d7f
Check if a IE has been encountered more than max possible for that IE
while parsing a frame.
Change-Id: I1054c7df18780469849be55fc4343f09ac502a49
CRs-Fixed: 2058261
WMI beacon template wmi cmd is converged in WMI layer.
Use converged beacon template WMI cmd and legacy cmd
is removed.
Change-Id: Ia76ec059489d9faa7b5420a8eb88c89ffe0807dc
CRs-Fixed: 2038284
Some of the TDLS functions have info level logs and it
causes kernel log buffer overeflow and triggers
WD bite.
Reduce the log level from info to debug.
Change-Id: I2878a617f4e06eea6c3aaafd218e0cbbdd999070
CRs-Fixed: 2043718
If the driver recovery is in progress, unmap events may not come
from firmware. Ignore the peer_unmap timeout in such case.
CRs-Fixed: 2033452
Change-Id: I284c57530a477953247ad325dfaddff72767aecf
Peer may get deleted between the time peer_unmap_timer fires and
the handler gets executed in mc thread context, causing memory
access error. Use qdf_timer_sync_cancel() to wait for the handler
to finish its job before freeing the peer object.
CRs-Fixed: 2026393
Change-Id: Ie60b5c300be529d529f7e836adc0e3be917fe2e8
Initialize peer_unmap_timer during peer attach instead of at the
time of peer detach. Then ol_txrx_unref_delete can destroy
the timer without peer detach getting called earlier.
CRs-Fixed: 2014183
Change-Id: Icebec27d5562350871a89b5cf71ae99f096feee8
Add a timeout handler that fires off 6000 ms after peer detach
operation is initiated. Used for debugging the scenario of missing
peer unmap events after deleting a STA type peer.
CRs-Fixed: 1109867
Change-Id: Iad18f374ba3c1458c5214befd1d5c1517a7bdedf
RX wake lock is only required for:
1) Unicast data packets
2) Local ARP data packet
Fix logic in hdd_is_arp_local() such that RX wake lock is only
acquired for above 2 data packet types.
Change-Id: I38899ed19f3481396663ba316abab0965e2cec56
CRs-Fixed: 2044288
Currently in __wlan_hdd_cfg80211_p2p_lo_start() there are multiple
issues with the incoming cfg80211 vendor command handling:
1) A policy is not supplied when invoking nla_parse() which prevents
basic sanity of the incoming attribute stream.
2) The length of attribute QCA_WLAN_VENDOR_ATTR_P2P_LISTEN_OFFLOAD_DEVICE_TYPES
is not properly validated.
3) The length of attribute QCA_WLAN_VENDOR_ATTR_P2P_LISTEN_OFFLOAD_VENDOR_IE
is not properly validated.
To address these issues:
1) Create an appropriate nla_policy and specify this policy when
invoking nla_parse().
2) Validate the length of QCA_WLAN_VENDOR_ATTR_P2P_LISTEN_OFFLOAD_DEVICE_TYPES
properly to prevent potential over read.
3) Validate the length of QCA_WLAN_VENDOR_ATTR_P2P_LISTEN_OFFLOAD_VENDOR_IE
properly to prevent potential over read.
Change-Id: I0a76dad8cccc6158f7ef3da293a6462acd839bfb
CRs-Fixed: 2054755
Current driver sends association response when it receives reassociation
request which creates the IoT issue.
Fix the sub type.
Change-Id: Id86966794cf45e4596473fb68e9b400489bc7041
CRs-Fixed: 2014103
The HIF portion of Unit-Test suspend has been refactored. Update HDD to
use the updated Unit-Test Suspend APIs.
Change-Id: Id10f6f5811e836844980b929f2747b1238bcf95d
CRs-Fixed: 2055332
Make sure to decrement sap context ref count in wlansap_roam_callback
for failure case also, else this will prevent freeing sap context memory
in during driver unload in wlansap_close().
Change-Id: I07bd8a254196e2fc38018b738b20a9f6746d6b92
CRs-Fixed: 2012433
In case HT peer rates are malformed and MCS 0-7 are not supported
set them forcefuly because as per spec, a 11n connection must support
MCS 0-7
Change-Id: If599c1478b9d3231da589576ef5ba9236b58ce4c
CRs-Fixed: 2059506
There is a buffer overflow while using sscanf.
To resolve this, use sscanf according to buffer length.
Change-Id: Ida2444b42ef6b73ea6f55735166df941158a6e50
CRs-Fixed: 2059779
In LIM, move functionality to find session for a given MAC address in
separate function so that this code can be reused by other functions
if needed.
In HDD, remove logic added to find adaptor for a given MAC, instead use
existing function hdd_get_adapter_by_macaddr.
Change-Id: I989f09ffcbee3a717c22c267a01dafd1b404da64
CRs-Fixed: 2004223
Do not advertise MU beamformee capability in SAP, P2P GO and IBSS
operating modes.
Change-Id: Iee6ecaaddef374c9954c5144107bcce9da48c001
CRs-Fixed: 2048653
Mutex is not released properly in the loop when the TDLS
peer is not found in the function wlan_hdd_tdls_disable_
offchan_and_teardown_links(), that can cause crash.
This change releases the mutex properly in the function
wlan_hdd_tdls_disable_offchan_and_teardown_links() when
TDLS peer is not found, and going for the next loop.
Change-Id: Ia226c71e91e0e5995dd86557e0135508f32d8bef
CRs-Fixed: 2058784
As part of driver init, the version string gets printed. To help in
debugging, also print a timestamp from when the driver was compiled.
Change-Id: Icf064af6a0d84434d239b54603092bf2276df596
CRs-Fixed: 2059303
Currently IPA stats command request gets scheduled at every
100ms and posts message to WMA queue which can cause MC
thread to prioritize these request messages over other
messages in pe queue. This can cause delayed processing of
association related messages in pe queue in noisy environement.
To avoid this serialize IPA stats cmd to lower priority SME queue.
Change-Id: I1f8257b869dacd65a61e52e34f001ee24c108c4a
CRs-Fixed: 2040579
Hold a short wake lock when a connection attempt is made to help ensure
the device does not power collapse in the middle.
Change-Id: Ia9e20df5481340224fa4c272b58152eec27790a9
CRs-Fixed: 2053126
__wlan_hdd_cfg80211_txpower_scale_decr_db() calls nla_parse without
specifying a policy. Specify an nla policy with the expected attribute
information when calling nla_parse in
__wlan_hdd_cfg80211_txpower_scale_decr_db().
Change-Id: I219190726ccb19cb8849177888bca859da1c76db
CRs-Fixed: 2054752
qcacld-2.0 to qcacld-3.0 propagation
Fix the regression issue introduced by
commit 329c3375edfcf5c434ed57fdec5dd27229611d8a.
The supported rates are populated by hostapd per the pre-defined
hw_mode in conf file.
Obviously the supported rates won't update althought cross-band
switching from 2G to 5G, then the sap will reject any sta who
intends to join the bss.
The Fix now is to populate the intersection of rates generated by
hostapd and driver itself.
Change-Id: Ica336398865a8b5e16297e4555dbb7de5e79567e
CRs-fixed: 1109564
