search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
nl80211: fix HT capability attribute validation
[linux-2.6/linux-acpi-2.6/ibm-acpi-2.6.git] / net / mac80211 / debugfs_sta.c
bloba01d2137fddca33f11bc89bda319c5d00937b98d
1 /*
2 * Copyright 2003-2005 Devicescape Software, Inc.
3 * Copyright (c) 2006 Jiri Benc <jbenc@suse.cz>
4 * Copyright 2007 Johannes Berg <johannes@sipsolutions.net>
5 *
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License version 2 as
8 * published by the Free Software Foundation.
9 */
10
11 #include <linux/debugfs.h>
12 #include <linux/ieee80211.h>
13 #include "ieee80211_i.h"
14 #include "debugfs.h"
15 #include "debugfs_sta.h"
16 #include "sta_info.h"
17
18 /* sta attributtes */
19
20 #define STA_READ(name, field, format_string) \
21 static ssize_t sta_ ##name## _read(struct file *file, \
22 char __user *userbuf, \
23 size_t count, loff_t *ppos) \
24 { \
25 struct sta_info *sta = file->private_data; \
26 return mac80211_format_buffer(userbuf, count, ppos, \
27 format_string, sta->field); \
28 }
29 #define STA_READ_D(name, field) STA_READ(name, field, "%d\n")
30 #define STA_READ_U(name, field) STA_READ(name, field, "%u\n")
31 #define STA_READ_S(name, field) STA_READ(name, field, "%s\n")
32
33 #define STA_OPS(name) \
34 static const struct file_operations sta_ ##name## _ops = { \
35 .read = sta_##name##_read, \
36 .open = mac80211_open_file_generic, \
37 .llseek = generic_file_llseek, \
38 }
39
40 #define STA_OPS_RW(name) \
41 static const struct file_operations sta_ ##name## _ops = { \
42 .read = sta_##name##_read, \
43 .write = sta_##name##_write, \
44 .open = mac80211_open_file_generic, \
45 .llseek = generic_file_llseek, \
46 }
47
48 #define STA_FILE(name, field, format) \
49 STA_READ_##format(name, field) \
50 STA_OPS(name)
51
52 STA_FILE(aid, sta.aid, D);
53 STA_FILE(dev, sdata->name, S);
54 STA_FILE(last_signal, last_signal, D);
55
56 static ssize_t sta_flags_read(struct file *file, char __user *userbuf,
57 size_t count, loff_t *ppos)
58 {
59 char buf[100];
60 struct sta_info *sta = file->private_data;
61 u32 staflags = get_sta_flags(sta);
62 int res = scnprintf(buf, sizeof(buf), "%s%s%s%s%s%s%s%s%s",
63 staflags & WLAN_STA_AUTH ? "AUTH\n" : "",
64 staflags & WLAN_STA_ASSOC ? "ASSOC\n" : "",
65 staflags & WLAN_STA_PS_STA ? "PS (sta)\n" : "",
66 staflags & WLAN_STA_PS_DRIVER ? "PS (driver)\n" : "",
67 staflags & WLAN_STA_AUTHORIZED ? "AUTHORIZED\n" : "",
68 staflags & WLAN_STA_SHORT_PREAMBLE ? "SHORT PREAMBLE\n" : "",
69 staflags & WLAN_STA_WME ? "WME\n" : "",
70 staflags & WLAN_STA_WDS ? "WDS\n" : "",
71 staflags & WLAN_STA_MFP ? "MFP\n" : "");
72 return simple_read_from_buffer(userbuf, count, ppos, buf, res);
73 }
74 STA_OPS(flags);
75
76 static ssize_t sta_num_ps_buf_frames_read(struct file *file,
77 char __user *userbuf,
78 size_t count, loff_t *ppos)
79 {
80 struct sta_info *sta = file->private_data;
81 return mac80211_format_buffer(userbuf, count, ppos, "%u\n",
82 skb_queue_len(&sta->ps_tx_buf));
83 }
84 STA_OPS(num_ps_buf_frames);
85
86 static ssize_t sta_inactive_ms_read(struct file *file, char __user *userbuf,
87 size_t count, loff_t *ppos)
88 {
89 struct sta_info *sta = file->private_data;
90 return mac80211_format_buffer(userbuf, count, ppos, "%d\n",
91 jiffies_to_msecs(jiffies - sta->last_rx));
92 }
93 STA_OPS(inactive_ms);
94
95
96 static ssize_t sta_connected_time_read(struct file *file, char __user *userbuf,
97 size_t count, loff_t *ppos)
98 {
99 struct sta_info *sta = file->private_data;
100 struct timespec uptime;
101 struct tm result;
102 long connected_time_secs;
103 char buf[100];
104 int res;
105 do_posix_clock_monotonic_gettime(&uptime);
106 connected_time_secs = uptime.tv_sec - sta->last_connected;
107 time_to_tm(connected_time_secs, 0, &result);
108 result.tm_year -= 70;
109 result.tm_mday -= 1;
110 res = scnprintf(buf, sizeof(buf),
111 "years - %ld\nmonths - %d\ndays - %d\nclock - %d:%d:%d\n\n",
112 result.tm_year, result.tm_mon, result.tm_mday,
113 result.tm_hour, result.tm_min, result.tm_sec);
114 return simple_read_from_buffer(userbuf, count, ppos, buf, res);
115 }
116 STA_OPS(connected_time);
117
118
119
120 static ssize_t sta_last_seq_ctrl_read(struct file *file, char __user *userbuf,
121 size_t count, loff_t *ppos)
122 {
123 char buf[15*NUM_RX_DATA_QUEUES], *p = buf;
124 int i;
125 struct sta_info *sta = file->private_data;
126 for (i = 0; i < NUM_RX_DATA_QUEUES; i++)
127 p += scnprintf(p, sizeof(buf)+buf-p, "%x ",
128 le16_to_cpu(sta->last_seq_ctrl[i]));
129 p += scnprintf(p, sizeof(buf)+buf-p, "\n");
130 return simple_read_from_buffer(userbuf, count, ppos, buf, p - buf);
131 }
132 STA_OPS(last_seq_ctrl);
133
134 static ssize_t sta_agg_status_read(struct file *file, char __user *userbuf,
135 size_t count, loff_t *ppos)
136 {
137 char buf[71 + STA_TID_NUM * 40], *p = buf;
138 int i;
139 struct sta_info *sta = file->private_data;
140 struct tid_ampdu_rx *tid_rx;
141 struct tid_ampdu_tx *tid_tx;
142
143 rcu_read_lock();
144
145 p += scnprintf(p, sizeof(buf) + buf - p, "next dialog_token: %#02x\n",
146 sta->ampdu_mlme.dialog_token_allocator + 1);
147 p += scnprintf(p, sizeof(buf) + buf - p,
148 "TID\t\tRX active\tDTKN\tSSN\t\tTX\tDTKN\tpending\n");
149
150 for (i = 0; i < STA_TID_NUM; i++) {
151 tid_rx = rcu_dereference(sta->ampdu_mlme.tid_rx[i]);
152 tid_tx = rcu_dereference(sta->ampdu_mlme.tid_tx[i]);
153
154 p += scnprintf(p, sizeof(buf) + buf - p, "%02d", i);
155 p += scnprintf(p, sizeof(buf) + buf - p, "\t\t%x", !!tid_rx);
156 p += scnprintf(p, sizeof(buf) + buf - p, "\t%#.2x",
157 tid_rx ? tid_rx->dialog_token : 0);
158 p += scnprintf(p, sizeof(buf) + buf - p, "\t%#.3x",
159 tid_rx ? tid_rx->ssn : 0);
160
161 p += scnprintf(p, sizeof(buf) + buf - p, "\t\t%x", !!tid_tx);
162 p += scnprintf(p, sizeof(buf) + buf - p, "\t%#.2x",
163 tid_tx ? tid_tx->dialog_token : 0);
164 p += scnprintf(p, sizeof(buf) + buf - p, "\t%03d",
165 tid_tx ? skb_queue_len(&tid_tx->pending) : 0);
166 p += scnprintf(p, sizeof(buf) + buf - p, "\n");
167 }
168 rcu_read_unlock();
169
170 return simple_read_from_buffer(userbuf, count, ppos, buf, p - buf);
171 }
172
173 static ssize_t sta_agg_status_write(struct file *file, const char __user *userbuf,
174 size_t count, loff_t *ppos)
175 {
176 char _buf[12], *buf = _buf;
177 struct sta_info *sta = file->private_data;
178 bool start, tx;
179 unsigned long tid;
180 int ret;
181
182 if (count > sizeof(_buf))
183 return -EINVAL;
184
185 if (copy_from_user(buf, userbuf, count))
186 return -EFAULT;
187
188 buf[sizeof(_buf) - 1] = '\0';
189
190 if (strncmp(buf, "tx ", 3) == 0) {
191 buf += 3;
192 tx = true;
193 } else if (strncmp(buf, "rx ", 3) == 0) {
194 buf += 3;
195 tx = false;
196 } else
197 return -EINVAL;
198
199 if (strncmp(buf, "start ", 6) == 0) {
200 buf += 6;
201 start = true;
202 if (!tx)
203 return -EINVAL;
204 } else if (strncmp(buf, "stop ", 5) == 0) {
205 buf += 5;
206 start = false;
207 } else
208 return -EINVAL;
209
210 tid = simple_strtoul(buf, NULL, 0);
211
212 if (tid >= STA_TID_NUM)
213 return -EINVAL;
214
215 if (tx) {
216 if (start)
217 ret = ieee80211_start_tx_ba_session(&sta->sta, tid, 5000);
218 else
219 ret = ieee80211_stop_tx_ba_session(&sta->sta, tid);
220 } else {
221 __ieee80211_stop_rx_ba_session(sta, tid, WLAN_BACK_RECIPIENT,
222 3, true);
223 ret = 0;
224 }
225
226 return ret ?: count;
227 }
228 STA_OPS_RW(agg_status);
229
230 static ssize_t sta_ht_capa_read(struct file *file, char __user *userbuf,
231 size_t count, loff_t *ppos)
232 {
233 #define PRINT_HT_CAP(_cond, _str) \
234 do { \
235 if (_cond) \
236 p += scnprintf(p, sizeof(buf)+buf-p, "\t" _str "\n"); \
237 } while (0)
238 char buf[512], *p = buf;
239 int i;
240 struct sta_info *sta = file->private_data;
241 struct ieee80211_sta_ht_cap *htc = &sta->sta.ht_cap;
242
243 p += scnprintf(p, sizeof(buf) + buf - p, "ht %ssupported\n",
244 htc->ht_supported ? "" : "not ");
245 if (htc->ht_supported) {
246 p += scnprintf(p, sizeof(buf)+buf-p, "cap: %#.4x\n", htc->cap);
247
248 PRINT_HT_CAP((htc->cap & BIT(0)), "RX LDPC");
249 PRINT_HT_CAP((htc->cap & BIT(1)), "HT20/HT40");
250 PRINT_HT_CAP(!(htc->cap & BIT(1)), "HT20");
251
252 PRINT_HT_CAP(((htc->cap >> 2) & 0x3) == 0, "Static SM Power Save");
253 PRINT_HT_CAP(((htc->cap >> 2) & 0x3) == 1, "Dynamic SM Power Save");
254 PRINT_HT_CAP(((htc->cap >> 2) & 0x3) == 3, "SM Power Save disabled");
255
256 PRINT_HT_CAP((htc->cap & BIT(4)), "RX Greenfield");
257 PRINT_HT_CAP((htc->cap & BIT(5)), "RX HT20 SGI");
258 PRINT_HT_CAP((htc->cap & BIT(6)), "RX HT40 SGI");
259 PRINT_HT_CAP((htc->cap & BIT(7)), "TX STBC");
260
261 PRINT_HT_CAP(((htc->cap >> 8) & 0x3) == 0, "No RX STBC");
262 PRINT_HT_CAP(((htc->cap >> 8) & 0x3) == 1, "RX STBC 1-stream");
263 PRINT_HT_CAP(((htc->cap >> 8) & 0x3) == 2, "RX STBC 2-streams");
264 PRINT_HT_CAP(((htc->cap >> 8) & 0x3) == 3, "RX STBC 3-streams");
265
266 PRINT_HT_CAP((htc->cap & BIT(10)), "HT Delayed Block Ack");
267
268 PRINT_HT_CAP((htc->cap & BIT(11)), "Max AMSDU length: "
269 "3839 bytes");
270 PRINT_HT_CAP(!(htc->cap & BIT(11)), "Max AMSDU length: "
271 "7935 bytes");
272
273 /*
274 * For beacons and probe response this would mean the BSS
275 * does or does not allow the usage of DSSS/CCK HT40.
276 * Otherwise it means the STA does or does not use
277 * DSSS/CCK HT40.
278 */
279 PRINT_HT_CAP((htc->cap & BIT(12)), "DSSS/CCK HT40");
280 PRINT_HT_CAP(!(htc->cap & BIT(12)), "No DSSS/CCK HT40");
281
282 /* BIT(13) is reserved */
283
284 PRINT_HT_CAP((htc->cap & BIT(14)), "40 MHz Intolerant");
285
286 PRINT_HT_CAP((htc->cap & BIT(15)), "L-SIG TXOP protection");
287
288 p += scnprintf(p, sizeof(buf)+buf-p, "ampdu factor/density: %d/%d\n",
289 htc->ampdu_factor, htc->ampdu_density);
290 p += scnprintf(p, sizeof(buf)+buf-p, "MCS mask:");
291
292 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++)
293 p += scnprintf(p, sizeof(buf)+buf-p, " %.2x",
294 htc->mcs.rx_mask[i]);
295 p += scnprintf(p, sizeof(buf)+buf-p, "\n");
296
297 /* If not set this is meaningless */
298 if (le16_to_cpu(htc->mcs.rx_highest)) {
299 p += scnprintf(p, sizeof(buf)+buf-p,
300 "MCS rx highest: %d Mbps\n",
301 le16_to_cpu(htc->mcs.rx_highest));
302 }
303
304 p += scnprintf(p, sizeof(buf)+buf-p, "MCS tx params: %x\n",
305 htc->mcs.tx_params);
306 }
307
308 return simple_read_from_buffer(userbuf, count, ppos, buf, p - buf);
309 }
310 STA_OPS(ht_capa);
311
312 #define DEBUGFS_ADD(name) \
313 debugfs_create_file(#name, 0400, \
314 sta->debugfs.dir, sta, &sta_ ##name## _ops);
315
316 #define DEBUGFS_ADD_COUNTER(name, field) \
317 if (sizeof(sta->field) == sizeof(u32)) \
318 debugfs_create_u32(#name, 0400, sta->debugfs.dir, \
319 (u32 *) &sta->field); \
320 else \
321 debugfs_create_u64(#name, 0400, sta->debugfs.dir, \
322 (u64 *) &sta->field);
323
324 void ieee80211_sta_debugfs_add(struct sta_info *sta)
325 {
326 struct dentry *stations_dir = sta->sdata->debugfs.subdir_stations;
327 u8 mac[3*ETH_ALEN];
328
329 sta->debugfs.add_has_run = true;
330
331 if (!stations_dir)
332 return;
333
334 snprintf(mac, sizeof(mac), "%pM", sta->sta.addr);
335
336 /*
337 * This might fail due to a race condition:
338 * When mac80211 unlinks a station, the debugfs entries
339 * remain, but it is already possible to link a new
340 * station with the same address which triggers adding
341 * it to debugfs; therefore, if the old station isn't
342 * destroyed quickly enough the old station's debugfs
343 * dir might still be around.
344 */
345 sta->debugfs.dir = debugfs_create_dir(mac, stations_dir);
346 if (!sta->debugfs.dir)
347 return;
348
349 DEBUGFS_ADD(flags);
350 DEBUGFS_ADD(num_ps_buf_frames);
351 DEBUGFS_ADD(inactive_ms);
352 DEBUGFS_ADD(connected_time);
353 DEBUGFS_ADD(last_seq_ctrl);
354 DEBUGFS_ADD(agg_status);
355 DEBUGFS_ADD(dev);
356 DEBUGFS_ADD(last_signal);
357 DEBUGFS_ADD(ht_capa);
358
359 DEBUGFS_ADD_COUNTER(rx_packets, rx_packets);
360 DEBUGFS_ADD_COUNTER(tx_packets, tx_packets);
361 DEBUGFS_ADD_COUNTER(rx_bytes, rx_bytes);
362 DEBUGFS_ADD_COUNTER(tx_bytes, tx_bytes);
363 DEBUGFS_ADD_COUNTER(rx_duplicates, num_duplicates);
364 DEBUGFS_ADD_COUNTER(rx_fragments, rx_fragments);
365 DEBUGFS_ADD_COUNTER(rx_dropped, rx_dropped);
366 DEBUGFS_ADD_COUNTER(tx_fragments, tx_fragments);
367 DEBUGFS_ADD_COUNTER(tx_filtered, tx_filtered_count);
368 DEBUGFS_ADD_COUNTER(tx_retry_failed, tx_retry_failed);
369 DEBUGFS_ADD_COUNTER(tx_retry_count, tx_retry_count);
370 DEBUGFS_ADD_COUNTER(wep_weak_iv_count, wep_weak_iv_count);
371 }
372
373 void ieee80211_sta_debugfs_remove(struct sta_info *sta)
374 {
375 debugfs_remove_recursive(sta->debugfs.dir);
376 sta->debugfs.dir = NULL;
377 }
Linux 2.6 ibm-acpi/thinkpad-acpi driver git tree