aboutsummaryrefslogtreecommitdiffstats
path: root/package/kernel/mac80211/patches/subsys
Commit message (Collapse)AuthorAgeFilesLines
* mac80211, mt76: add fixes for recently discovered security issuesFelix Fietkau2023-03-305-0/+359
| | | | | | | Fixes CVE-2022-47522 Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry picked from commit d54c91bd9ab3c54ee06923eafbd67047816a37e4)
* mac80211: Update to version 5.10.168-1Hauke Mehrtens2023-02-181-7/+7
| | | | | | | This update mac80211 to version 5.10.168-1. This includes multiple bugfixes. Some of these bugfixes are fixing security relevant bugs. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* mac80211: Update to version 5.10.157Hauke Mehrtens2022-12-038-23/+23
| | | | Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* mac80211: Update to version 5.10.149-1Hauke Mehrtens2022-10-2317-124/+72
| | | | | | | | This updates mac80211 to version 5.10.149-1 which is based on kernel 5.10.149. The removed patches were applied upstream. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* mac80211: backport security fix and disable MBSSID supportFelix Fietkau2022-10-132-0/+96
| | | | | | | | | Fixes: CVE-2022-41674 Fixes: CVE-2022-42719 Fixes: CVE-2022-42720 Fixes: CVE-2022-42721 Fixes: CVE-2022-42722 Signed-off-by: Felix Fietkau <nbd@nbd.name>
* mac80211: Update to version 5.10.110-1Hauke Mehrtens2022-04-1116-207/+56
| | | | | | | | | | | This updates mac80211 to version 5.10.110-1 which is based on kernel 5.10.110. The removed patches were applied upstream. This new release contains many fixes which were merged into the upstream Linux kernel. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* mac80211: optimize airtime fairness code to reduce cpu usageFelix Fietkau2021-12-211-0/+60
| | | | | Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit 87def9efd8cee66da3bd3961671e580282427c2e)
* mac80211: Update toversion 5.10.85Hauke Mehrtens2021-12-1420-69/+43
| | | | | | | | | The following patches were backported from upstream before and are not needed any more: package/kernel/mac80211/patches/ath/980-ath10k-fix-max-antenna-gain-unit.patch package/kernel/mac80211/patches/subsys/307-mac80211-do-not-access-the-IV-when-it-was-stripped.patch Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* mac80211: fix tx aggregation locking issueFelix Fietkau2021-12-021-0/+79
| | | | | Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit a1a71a71999001502fa86136dbf8925da8341098)
* mac80211: fix queue assignment of aggregation start requestsFelix Fietkau2021-12-021-0/+28
| | | | | Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit 15d8c7aa74c202c530dbd53e53b00e418f0b64f4)
* mac80211: backport fix for dealing with stripped IV on rxFelix Fietkau2021-11-263-11/+37
| | | | | | | This fixes potental rx drop issues Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit 68189835ac81779f9cf21060dca0c54dcdb0c0a6)
* mac80211: add a fix for kernel warnings when forwarding packets in mesh modeFelix Fietkau2021-11-243-11/+73
| | | | | Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit d439c7d85a05c3548e5566bec292292a4f6b7ef5)
* mac80211: fix regression in SSN handling of addba txFelix Fietkau2021-11-242-2/+46
| | | | | | | | | Some drivers that do their own sequence number allocation (e.g. ath9k, mwlwifi) rely on being able to modify params->ssn on starting tx ampdu sessions. This was broken by a change that modified it to use sta->tid_seq[tid] instead. Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit ddd977fcc5838eb6bfb6cb9dad99dfe09a8ff67e)
* mac80211: fix crash in drivers relying on mac80211 retransmitting packets ↵Felix Fietkau2021-11-231-0/+35
| | | | | | | | | for powersave clients This showed up primarily on rt2x00 Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit d1ea575baa1b53bb477a020974afcec1b1193edc)
* mac80211: backport a few trivial patchesFelix Fietkau2021-11-233-0/+457
| | | | | | | | | No functional changes, just some renames to make it easier to keep mt76 in sync with upstream Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit e62c5504701c7a665c9cf89ddbcb062f5ade6e37) (cherry-picked from commit a889dcd3f21e50dc3e7f827ff0e486020562a6f8)
* mac80211: backport AP mode TWT supportFelix Fietkau2021-11-233-1/+689
| | | | | | | | Required for an upcoming mt76 update Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit 978e822db354daf974811f2717c6013fa3eb8079) (cherry-picked from commit af9d31aacc286786a8765a44c2000d2eba02e61c)
* mac80211: backport support for BSS color changesFelix Fietkau2021-11-233-16/+1025
| | | | | | | | | This is needed for an upcoming mt76 update also sync iw nl80211 with kernel backports Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit 2bfac61483db32f8bd1f5b38702b39f206256265) (cherry-picked from commit 36019ed5893cd11c86a7dbedca1c6a055654a3c0)
* mac80211: add missing change for encap offload on devices with sw rate controlFelix Fietkau2021-11-232-18/+51
| | | | | | Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit 0f6887972adc48449a1f5efaa143fa3f740a8c36) (cherry-picked from commit 6f2044c2d74dd0ae2cee3b25b2ac084513c0536a)
* mac80211: backport SAR power limit supportFelix Fietkau2021-11-233-6/+455
| | | | | | | Needed for an upcoming mt76 update Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit 890bf06cef20015e2cec0274c87a9a2232691b6b)
* mac80211: merge the virtual time based airtime schedulerFelix Fietkau2021-11-234-3/+1430
| | | | | | | Improves airtime fairness, especially for devices with larger firmware buffers Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit a5888ad6b33840d913438ce664c0e7da7e7f53e6)
* mac80211: Update to backports-5.10.68Hauke Mehrtens2021-09-2218-112/+61
| | | | | | | | | | | | | | | | | | Refresh all patches. The removed patches were integrated upstream. This contains fixes for CVE-2020-3702 1. These patches (ath, ath9k, mac80211) were included in kernel versions since 4.14.245 and 4.19.205. They fix security vulnerability CVE-2020-3702 [1] similar to KrØØk, which was found by ESET [2]. Thank you Josef Schlehofer for reporting this problem. [1] https://nvd.nist.gov/vuln/detail/CVE-2020-3702 [2] https://www.welivesecurity.com/2020/08/06/beyond-kr00k-even-more-wifi-chips-vulnerable-eavesdropping/ Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* mac80211: backport fix for nl80211 control port tx (fixes FS#3857)Felix Fietkau2021-06-307-17/+133
| | | | | Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit de499573006ab4f32ded9fd66a62ec5e0c183e8a)
* mac80211: add support for 802.3 encap offload with software rate controlFelix Fietkau2021-06-301-0/+119
| | | | | Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit f2c6d892cacb5d884bdd638bc7574c1ee98514a5)
* mac80211: improve rate control performanceFelix Fietkau2021-06-304-1/+353
| | | | | | | | | | | | Call rate control handler after intermediate queueuing Includes follow-up fixes Signed-off-by: Felix Fietkau <nbd@nbd.name> cherry-picked from commits: - 7dd8829ef915f1c5fc728be8f8360c61ddaadf1b - a603e82dd342680d584c4eb5f1b222e056379890 - 8bb4437c01ca35a5ac67e391630a1b24cb52dbb7
* mac80211: fix an issue with wds links on 802.11ax devicesFelix Fietkau2021-06-191-0/+51
| | | | | Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit 89c9ccc3b241d8f07c22a1c271211322c4703f7b)
* mac80211: fix minstrel sample time checkFelix Fietkau2021-06-171-0/+23
| | | | | | | | We need to skip sampling if the next sample time is after jiffies, not before. This patch fixes an issue where in some cases only very little sampling (or none at all) is performed, leading to really bad data rates Signed-off-by: Felix Fietkau <nbd@nbd.name>
* mac80211: sync nl80211.h with upstream and backport a WPA3 related commitFelix Fietkau2021-06-174-31/+380
| | | | | | | Fixes compatibility issues with the latest hostapd update Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit 91abeebd3bd29a98de516e49260d61165096009a)
* mac80211: Update to backports-5.10.42Hauke Mehrtens2021-06-0617-1009/+47
| | | | | | | | | | | | | The removed patches were integrated upstream. The brcmf_driver_work workqueue was removed in brcmfmac with kernel 5.10.42, the asynchronous call was covered to a synchronous call. There is no need to wait any more. This part was removed manually from this patch: brcm/860-brcmfmac-register-wiphy-s-during-module_init.patch Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de> (cherry picked from commit 04a260911ca0f10a0e37c487c220e1aae3623dda)
* mac80211: backport upstream fixes for FragAttacksFelix Fietkau2021-05-1611-1/+963
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | From the patch series description: Several security issues in the 802.11 implementations were found by Mathy Vanhoef (New York University Abu Dhabi), who has published all the details at https://papers.mathyvanhoef.com/usenix2021.pdf Specifically, the following CVEs were assigned: * CVE-2020-24586 - Fragmentation cache not cleared on reconnection * CVE-2020-24587 - Reassembling fragments encrypted under different keys * CVE-2020-24588 - Accepting non-SPP A-MSDU frames, which leads to payload being parsed as an L2 frame under an A-MSDU bit toggling attack * CVE-2020-26139 - Forwarding EAPOL from unauthenticated sender * CVE-2020-26140 - Accepting plaintext data frames in protected networks * CVE-2020-26141 - Not verifying TKIP MIC of fragmented frames * CVE-2020-26142 - Processing fragmented frames as full frames * CVE-2020-26143 - Accepting fragmented plaintext frames in protected networks * CVE-2020-26144 - Always accepting unencrypted A-MSDU frames that start with RFC1042 header with EAPOL ethertype * CVE-2020-26145 - Accepting plaintext broadcast fragments as full frames * CVE-2020-26146 - Reassembling encrypted fragments with non-consecutive packet numbers * CVE-2020-26147 - Reassembling mixed encrypted/plaintext fragments In general, the scope of these attacks is that they may allow an attacker to * inject L2 frames that they can more or less control (depending on the vulnerability and attack method) into an otherwise protected network; * exfiltrate (some) network data under certain conditions, this is specific to the fragmentation issues. A subset of these issues is known to apply to the Linux IEEE 802.11 implementation (mac80211). Where it is affected, the attached patches fix the issues, even if not all of them reference the exact CVE IDs. In addition, driver and/or firmware updates may be necessary, as well as potentially more fixes to mac80211, depending on how drivers are using it. Specifically, for Intel devices, firmware needs to be updated to the most recently released versions (which was done without any reference to the security issues) to address some of the vulnerabilities. To have a single set of patches, I'm also including patches for the ath10k and ath11k drivers here. We currently don't have information about how other drivers are, if at all, affected. Signed-off-by: Felix Fietkau <nbd@nbd.name>
* mac80211: Update to version 5.10.34-1Hauke Mehrtens2021-05-048-116/+25
| | | | | | | The removed patches were applied upstream and are not needed anymore. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de> (cherry picked from commit 17ac9849d3ff687c8c14d63e46f3e205adc22a3e)
* mac80211: minstrel_ht: fix issue in calculating success probabilityFelix Fietkau2021-04-281-0/+21
| | | | | | | | Missing braces in a macro were leading to badly working rates sometimes getting a success probabilty of 1.0 Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit 12cb52bd0665da33cb5dc64697f1751a8b33fb05)
* mac80211: add client mode connection monitor fixFelix Fietkau2021-04-111-0/+31
| | | | | Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit dfdb28c24aa60cf057ec45cbc11ab48ba2655f53)
* mac80211: support rx timestamps for HE ratesFelix Fietkau2021-04-111-0/+134
| | | | | Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit 7d8e14e44f76e18d1696565569ec50ccdce963b3)
* mac80211: merge a few pending tx related fixesFelix Fietkau2021-04-043-0/+142
| | | | | | | Improve performance and fix potential mgmt tx hangs/warnings Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit 571aedbc6cbb7a9bfc96bcad543a39d158925cbc)
* mac80211: backport upstream patches for driver disconnectFelix Fietkau2021-04-045-13/+585
| | | | | | | Needed for an mt76 update Signed-off-by: Felix Fietkau <nbd@nbd.name> (cherry-picked from commit 5dc501507222b38d731b89c3311d8253b73dd0e7)
* mac80211: Update to version 5.10.16-1Hauke Mehrtens2021-02-157-168/+2
| | | | | | The removed patches were applied upstream. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* mac80211: Refresh patches againHauke Mehrtens2021-02-155-34/+38
| | | | | | | A wrong quilt configuration was used last time. Fixes: ed1e234d87fc ("mac80211: refresh patches") Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* mac80211: fix a regression in processing rx statsFelix Fietkau2021-02-141-0/+28
| | | | | | | A logic error caused rx rate update to be missed for any driver not using fast-rx Signed-off-by: Felix Fietkau <nbd@nbd.name>
* mac80211: refresh patchesFelix Fietkau2021-02-143-16/+16
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* mac80211: add minstrel performance improvementsFelix Fietkau2021-02-142-0/+181
| | | | | | Reduce fluctuations in rate selection / statistics Signed-off-by: Felix Fietkau <nbd@nbd.name>
* mac80211: add decapsulation offload supportFelix Fietkau2021-02-143-2/+593
| | | | | | | On hardware that supports this, this will improve performance by passing 802.3 frames from the hardware to the stack Signed-off-by: Felix Fietkau <nbd@nbd.name>
* mac80211: fix a corner case in encapsulation offload supportFelix Fietkau2021-02-141-0/+53
| | | | | | Fix encryption key selection with WEP Signed-off-by: Felix Fietkau <nbd@nbd.name>
* mac80211: add fq performace improvementsFelix Fietkau2021-02-144-1/+554
| | | | | | Improves performance under load Signed-off-by: Felix Fietkau <nbd@nbd.name>
* mac80211: Update to version 5.10-rc6-1Hauke Mehrtens2021-02-1424-3133/+25
| | | | | | | | | The removed patches were applied upstream. This adapts ath10k-ct and mt76 to changed APIs. nl80211.h in iw is updated to match the version from backports. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* mac80211: Update to version 5.9.12-1Hauke Mehrtens2021-02-1440-1418/+145
| | | | | | | | | | | The removed patches were applied upstream. Remove the 300-mac80211-optimize-skb-resizing.patch. This patch was not applied upstream, but it conflicts with upstream changes and needs bigger changes. It was applied with Felix to remove this patch for now. It should be reworked and then send upstream later. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* mac80211: fix station rate table updates on assocFelix Fietkau2021-02-011-0/+38
| | | | | | | | If the driver uses .sta_add, station entries are only uploaded after the sta is in assoc state. Fix early station rate table updates by deferring them until the sta has been uploaded Signed-off-by: Felix Fietkau <nbd@nbd.name>
* mac80211: fix an uninitialized variable warningFelix Fietkau2021-01-265-48/+51
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* mac80211: minstrel_ht: fix regression in the max_prob_rate fixFelix Fietkau2021-01-261-0/+23
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* mac80211: remove accidentally duplicated line in minstrel_ht patchFelix Fietkau2021-01-261-2/+1
| | | | Signed-off-by: Felix Fietkau <nbd@nbd.name>
* mac80211: add significant minstrel_ht performance improvementsFelix Fietkau2021-01-256-0/+1670
| | | | | | Completely redesign the rate sampling approach Signed-off-by: Felix Fietkau <nbd@nbd.name>
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-16 23:14:25 +0000