Pandora Sourcecodes - pandora-kernel.git/commit

author	Lorenzo Bianconi <lorenzo.bianconi83@gmail.com>
	Fri, 10 Aug 2012 09:00:24 +0000 (11:00 +0200)
committer	Ben Hutchings <ben@decadent.org.uk>
	Wed, 12 Sep 2012 02:37:00 +0000 (03:37 +0100)
commit	5e1bf138823dfadd94a6270112d5882d3e4c13d4
tree	d61ebda7cea4ab1f02049767e87df08a8e0d7132	tree \| snapshot
parent	b8596528cc5c15b4a5da85065cbbc87a9e4da64b	commit \| diff

ath9k: fix decrypt_error initialization in ath_rx_tasklet()

commit e1352fde5682ab1bdd2a9e5d75c22d1fe210ef77 upstream.

ath_rx_tasklet() calls ath9k_rx_skb_preprocess() and ath9k_rx_skb_postprocess()
in a loop over the received frames. The decrypt_error flag is
initialized to false
just outside ath_rx_tasklet() loop. ath9k_rx_accept(), called by
ath9k_rx_skb_preprocess(),
only sets decrypt_error to true and never to false.
Then ath_rx_tasklet() calls ath9k_rx_skb_postprocess() and passes
decrypt_error to it.
So, after a decryption error, in ath9k_rx_skb_postprocess(), we can
have a leftover value
from another processed frame. In that case, the frame will not be marked with
RX_FLAG_DECRYPTED even if it is decrypted correctly.
When using CCMP encryption this issue can lead to connection stuck
because of CCMP
PN corruption and a waste of CPU time since mac80211 tries to decrypt an already
deciphered frame with ieee80211_aes_ccm_decrypt.
Fix the issue initializing decrypt_error flag at the begging of the
ath_rx_tasklet() loop.

Signed-off-by: Lorenzo Bianconi <lorenzo.bianconi83@gmail.com>
Signed-off-by: John W. Linville <linville@tuxdriver.com>
Signed-off-by: Ben Hutchings <ben@decadent.org.uk>