* Re: [PATCH 1/4] dpp: handle sending a frame after ROC ends
@ 2022-04-15 17:18 Denis Kenzior
0 siblings, 0 replies; 2+ messages in thread
From: Denis Kenzior @ 2022-04-15 17:18 UTC (permalink / raw)
To: iwd
[-- Attachment #1: Type: text/plain, Size: 980 bytes --]
Hi James,
On 4/15/22 11:59, James Prestwood wrote:
> There is a potential corner case of an offchannel frame callback
> being called after ROC has ended.
>
> This could happen in theory if a received frame is queued right as
> the ROC session expires. If the ROC cancel event makes it to user
> space before the frame IWD will schedule another ROC then receive
> the frame. This doesn't prevent IWD from sending out another
> frame since OFFCHANNEL_TX_OK is used, but it will prevent IWD from
> receiving a response frame since no dwell duration is used with DPP.
>
> To handle this an roc_started bool was added to the dpp_sm which
> tracks the ROC state. If dpp_send_frame is called when roc_started
> is false the frame will be saved and sent out once the ROC session
> is started again.
> ---
> src/dpp.c | 67 +++++++++++++++++++++++++++++++++++++++++++++++++++++++
> 1 file changed, 67 insertions(+)
>
All applied, thanks.
Regards,
-Denis
^ permalink raw reply [flat|nested] 2+ messages in thread
* [PATCH 1/4] dpp: handle sending a frame after ROC ends
@ 2022-04-15 16:59 James Prestwood
0 siblings, 0 replies; 2+ messages in thread
From: James Prestwood @ 2022-04-15 16:59 UTC (permalink / raw)
To: iwd
[-- Attachment #1: Type: text/plain, Size: 3955 bytes --]
There is a potential corner case of an offchannel frame callback
being called after ROC has ended.
This could happen in theory if a received frame is queued right as
the ROC session expires. If the ROC cancel event makes it to user
space before the frame IWD will schedule another ROC then receive
the frame. This doesn't prevent IWD from sending out another
frame since OFFCHANNEL_TX_OK is used, but it will prevent IWD from
receiving a response frame since no dwell duration is used with DPP.
To handle this an roc_started bool was added to the dpp_sm which
tracks the ROC state. If dpp_send_frame is called when roc_started
is false the frame will be saved and sent out once the ROC session
is started again.
---
src/dpp.c | 67 +++++++++++++++++++++++++++++++++++++++++++++++++++++++
1 file changed, 67 insertions(+)
diff --git a/src/dpp.c b/src/dpp.c
index 1719a89d..e817ca5a 100644
--- a/src/dpp.c
+++ b/src/dpp.c
@@ -138,12 +138,39 @@ struct dpp_sm {
uint32_t connect_scan_id;
uint64_t frame_cookie;
uint8_t frame_retry;
+ void *frame_pending;
+ size_t frame_size;
struct l_dbus_message *pending;
bool mcast_support : 1;
+ bool roc_started : 1;
};
+static void *dpp_serialize_iovec(struct iovec *iov, size_t iov_len,
+ size_t *out_len)
+{
+ unsigned int i;
+ size_t size = 0;
+ uint8_t *ret;
+
+ for (i = 0; i < iov_len; i++)
+ size += iov[i].iov_len;
+
+ ret = l_malloc(size);
+ size = 0;
+
+ for (i = 0; i < iov_len; i++) {
+ memcpy(ret + size, iov[i].iov_base, iov[i].iov_len);
+ size += iov[i].iov_len;
+ }
+
+ if (out_len)
+ *out_len = size;
+
+ return ret;
+}
+
static void dpp_free_auth_data(struct dpp_sm *dpp)
{
if (dpp->own_proto_public) {
@@ -209,6 +236,11 @@ static void dpp_reset(struct dpp_sm *dpp)
dpp->peer_asn1 = NULL;
}
+ if (dpp->frame_pending) {
+ l_free(dpp->frame_pending);
+ dpp->frame_pending = NULL;
+ }
+
dpp->state = DPP_STATE_NOTHING;
dpp->new_freq = 0;
dpp->frame_retry = 0;
@@ -267,6 +299,19 @@ static void dpp_send_frame(struct dpp_sm *dpp,
{
struct l_genl_msg *msg;
+ /*
+ * A received frame could potentially come in after the ROC session has
+ * ended. In this case the frame needs to be stored until ROC is started
+ * and sent at that time. The offchannel_id is also checked since
+ * this is not applicable when DPP is in a responder role waiting
+ * on the currently connected channel i.e. offchannel is never used.
+ */
+ if (!dpp->roc_started && dpp->offchannel_id) {
+ dpp->frame_pending = dpp_serialize_iovec(iov, iov_len,
+ &dpp->frame_size);
+ return;
+ }
+
msg = l_genl_msg_new_sized(NL80211_CMD_FRAME, 512);
l_genl_msg_append_attr(msg, NL80211_ATTR_WDEV, 8, &dpp->wdev_id);
l_genl_msg_append_attr(msg, NL80211_ATTR_WIPHY_FREQ, 4, &freq);
@@ -281,6 +326,20 @@ static void dpp_send_frame(struct dpp_sm *dpp,
}
}
+static void dpp_frame_retry(struct dpp_sm *dpp)
+{
+ struct iovec iov;
+
+ iov.iov_base = dpp->frame_pending;
+ iov.iov_len = dpp->frame_size;
+
+ dpp_send_frame(dpp, &iov, 1, dpp->current_freq);
+
+ l_free(dpp->frame_pending);
+ dpp->frame_pending = NULL;
+}
+
+
static size_t dpp_build_header(const uint8_t *src, const uint8_t *dest,
enum dpp_frame_type type,
uint8_t buf[static 32])
@@ -1360,6 +1419,13 @@ static void dpp_roc_started(void *user_data)
* the authenticate response now.
*/
+ dpp->roc_started = true;
+
+ if (dpp->frame_pending) {
+ dpp_frame_retry(dpp);
+ return;
+ }
+
switch (dpp->state) {
case DPP_STATE_PRESENCE:
if (dpp->role == DPP_CAPABILITY_CONFIGURATOR)
@@ -1409,6 +1475,7 @@ static void dpp_presence_timeout(int error, void *user_data)
struct dpp_sm *dpp = user_data;
dpp->offchannel_id = 0;
+ dpp->roc_started = false;
/*
* If cancelled this is likely due to netdev going down or from Stop().
--
2.34.1
^ permalink raw reply related [flat|nested] 2+ messages in thread
end of thread, other threads:[~2022-04-15 17:18 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2022-04-15 17:18 [PATCH 1/4] dpp: handle sending a frame after ROC ends Denis Kenzior
-- strict thread matches above, loose matches on Subject: below --
2022-04-15 16:59 James Prestwood
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.