wil6210: fix race conditions in p2p listen and search Fix 2 race conditions found during test runs of P2P discovery: 1. Because wil_p2p_cancel_listen was not protected, user space could start a new P2P listen/search before wmi_stop_discovery completed. This caused a crash in the firmware. 2. In P2P listen, when listen timer expires and user space calls cancel_remain_on_channel at the same time, code could send the cfg80211_remain_on_channel_expired notification twice. Added protections with wil->mutex to several places that call wmi_stop_discovery. Signed-off-by: Lior David <qca_liord@qca.qualcomm.com> Signed-off-by: Maya Erez <qca_merez@qca.qualcomm.com> Signed-off-by: Kalle Valo <kvalo@qca.qualcomm.com>

commit: 280ab987ef21d1c196acb3af4663a99f94d9da00 [log] [tgz]
author: Lior David <qca_liord@qca.qualcomm.com> Tue Mar 01 19:18:14 2016 +0200
committer: Kalle Valo <kvalo@qca.qualcomm.com> Mon Mar 07 11:43:20 2016 +0200
tree: b853e200d91f4acaab7d09b00aa2b628da86aaa2
parent: 4332cac17b5c0cb80d8b99fda33a0faad3238b0e [diff] [blame]
diff --git a/drivers/net/wireless/ath/wil6210/main.c b/drivers/net/wireless/ath/wil6210/main.c
index e09e9bb..05a4ae7 100644
--- a/drivers/net/wireless/ath/wil6210/main.c
+++ b/drivers/net/wireless/ath/wil6210/main.c

@@ -984,7 +984,7 @@
 	}
 	wil_enable_irq(wil);
 
-	wil_p2p_stop_discovery(wil);
+	(void)wil_p2p_stop_discovery(wil);
 
 	if (wil->scan_request) {
 		wil_dbg_misc(wil, "Abort scan_request 0x%p\n",
commit	280ab987ef21d1c196acb3af4663a99f94d9da00	[log] [tgz]
author	Lior David <qca_liord@qca.qualcomm.com>	Tue Mar 01 19:18:14 2016 +0200
committer	Kalle Valo <kvalo@qca.qualcomm.com>	Mon Mar 07 11:43:20 2016 +0200
tree	b853e200d91f4acaab7d09b00aa2b628da86aaa2
parent	4332cac17b5c0cb80d8b99fda33a0faad3238b0e [diff] [blame]