Avoid reading past buffer when calling GETACL
[zen-stable.git] / drivers / staging / wlan-ng / p80211req.c
blob179194e7d2aaaff731b4675f1016b604cc9ecee0
1 /* src/p80211/p80211req.c
3 * Request/Indication/MacMgmt interface handling functions
5 * Copyright (C) 1999 AbsoluteValue Systems, Inc. All Rights Reserved.
6 * --------------------------------------------------------------------
8 * linux-wlan
10 * The contents of this file are subject to the Mozilla Public
11 * License Version 1.1 (the "License"); you may not use this file
12 * except in compliance with the License. You may obtain a copy of
13 * the License at http://www.mozilla.org/MPL/
15 * Software distributed under the License is distributed on an "AS
16 * IS" basis, WITHOUT WARRANTY OF ANY KIND, either express or
17 * implied. See the License for the specific language governing
18 * rights and limitations under the License.
20 * Alternatively, the contents of this file may be used under the
21 * terms of the GNU Public License version 2 (the "GPL"), in which
22 * case the provisions of the GPL are applicable instead of the
23 * above. If you wish to allow the use of your version of this file
24 * only under the terms of the GPL and not to allow others to use
25 * your version of this file under the MPL, indicate your decision
26 * by deleting the provisions above and replace them with the notice
27 * and other provisions required by the GPL. If you do not delete
28 * the provisions above, a recipient may use your version of this
29 * file under either the MPL or the GPL.
31 * --------------------------------------------------------------------
33 * Inquiries regarding the linux-wlan Open Source project can be
34 * made directly to:
36 * AbsoluteValue Systems Inc.
37 * info@linux-wlan.com
38 * http://www.linux-wlan.com
40 * --------------------------------------------------------------------
42 * Portions of the development of this software were funded by
43 * Intersil Corporation as part of PRISM(R) chipset product development.
45 * --------------------------------------------------------------------
47 * This file contains the functions, types, and macros to support the
48 * MLME request interface that's implemented via the device ioctls.
50 * --------------------------------------------------------------------
53 #include <linux/module.h>
54 #include <linux/kernel.h>
55 #include <linux/sched.h>
56 #include <linux/types.h>
57 #include <linux/skbuff.h>
58 #include <linux/wireless.h>
59 #include <linux/netdevice.h>
60 #include <linux/etherdevice.h>
61 #include <net/sock.h>
62 #include <linux/netlink.h>
64 #include "p80211types.h"
65 #include "p80211hdr.h"
66 #include "p80211mgmt.h"
67 #include "p80211conv.h"
68 #include "p80211msg.h"
69 #include "p80211netdev.h"
70 #include "p80211ioctl.h"
71 #include "p80211metadef.h"
72 #include "p80211metastruct.h"
73 #include "p80211req.h"
75 static void p80211req_handlemsg(wlandevice_t *wlandev, struct p80211msg *msg);
76 static int p80211req_mibset_mibget(wlandevice_t *wlandev,
77 struct p80211msg_dot11req_mibget *mib_msg,
78 int isget);
80 /*----------------------------------------------------------------
81 * p80211req_dorequest
83 * Handles an MLME reqest/confirm message.
85 * Arguments:
86 * wlandev WLAN device struct
87 * msgbuf Buffer containing a request message
89 * Returns:
90 * 0 on success, an errno otherwise
92 * Call context:
93 * Potentially blocks the caller, so it's a good idea to
94 * not call this function from an interrupt context.
95 ----------------------------------------------------------------*/
96 int p80211req_dorequest(wlandevice_t *wlandev, u8 *msgbuf)
98 int result = 0;
99 struct p80211msg *msg = (struct p80211msg *) msgbuf;
101 /* Check to make sure the MSD is running */
102 if (!((wlandev->msdstate == WLAN_MSD_HWPRESENT &&
103 msg->msgcode == DIDmsg_lnxreq_ifstate) ||
104 wlandev->msdstate == WLAN_MSD_RUNNING ||
105 wlandev->msdstate == WLAN_MSD_FWLOAD)) {
106 return -ENODEV;
109 /* Check Permissions */
110 if (!capable(CAP_NET_ADMIN) &&
111 (msg->msgcode != DIDmsg_dot11req_mibget)) {
112 printk(KERN_ERR
113 "%s: only dot11req_mibget allowed for non-root.\n",
114 wlandev->name);
115 return -EPERM;
118 /* Check for busy status */
119 if (test_and_set_bit(1, &(wlandev->request_pending)))
120 return -EBUSY;
122 /* Allow p80211 to look at msg and handle if desired. */
123 /* So far, all p80211 msgs are immediate, no waitq/timer necessary */
124 /* This may change. */
125 p80211req_handlemsg(wlandev, msg);
127 /* Pass it down to wlandev via wlandev->mlmerequest */
128 if (wlandev->mlmerequest != NULL)
129 wlandev->mlmerequest(wlandev, msg);
131 clear_bit(1, &(wlandev->request_pending));
132 return result; /* if result==0, msg->status still may contain an err */
135 /*----------------------------------------------------------------
136 * p80211req_handlemsg
138 * p80211 message handler. Primarily looks for messages that
139 * belong to p80211 and then dispatches the appropriate response.
140 * TODO: we don't do anything yet. Once the linuxMIB is better
141 * defined we'll need a get/set handler.
143 * Arguments:
144 * wlandev WLAN device struct
145 * msg message structure
147 * Returns:
148 * nothing (any results are set in the status field of the msg)
150 * Call context:
151 * Process thread
152 ----------------------------------------------------------------*/
153 static void p80211req_handlemsg(wlandevice_t *wlandev, struct p80211msg *msg)
155 switch (msg->msgcode) {
157 case DIDmsg_lnxreq_hostwep:{
158 struct p80211msg_lnxreq_hostwep *req =
159 (struct p80211msg_lnxreq_hostwep *) msg;
160 wlandev->hostwep &=
161 ~(HOSTWEP_DECRYPT | HOSTWEP_ENCRYPT);
162 if (req->decrypt.data == P80211ENUM_truth_true)
163 wlandev->hostwep |= HOSTWEP_DECRYPT;
164 if (req->encrypt.data == P80211ENUM_truth_true)
165 wlandev->hostwep |= HOSTWEP_ENCRYPT;
167 break;
169 case DIDmsg_dot11req_mibget:
170 case DIDmsg_dot11req_mibset:{
171 int isget = (msg->msgcode == DIDmsg_dot11req_mibget);
172 struct p80211msg_dot11req_mibget *mib_msg =
173 (struct p80211msg_dot11req_mibget *) msg;
174 p80211req_mibset_mibget(wlandev, mib_msg, isget);
176 default:
178 } /* switch msg->msgcode */
180 return;
183 static int p80211req_mibset_mibget(wlandevice_t *wlandev,
184 struct p80211msg_dot11req_mibget *mib_msg,
185 int isget)
187 p80211itemd_t *mibitem = (p80211itemd_t *) mib_msg->mibattribute.data;
188 p80211pstrd_t *pstr = (p80211pstrd_t *) mibitem->data;
189 u8 *key = mibitem->data + sizeof(p80211pstrd_t);
191 switch (mibitem->did) {
192 case DIDmib_dot11smt_dot11WEPDefaultKeysTable_dot11WEPDefaultKey0:{
193 if (!isget)
194 wep_change_key(wlandev, 0, key, pstr->len);
195 break;
197 case DIDmib_dot11smt_dot11WEPDefaultKeysTable_dot11WEPDefaultKey1:{
198 if (!isget)
199 wep_change_key(wlandev, 1, key, pstr->len);
200 break;
202 case DIDmib_dot11smt_dot11WEPDefaultKeysTable_dot11WEPDefaultKey2:{
203 if (!isget)
204 wep_change_key(wlandev, 2, key, pstr->len);
205 break;
207 case DIDmib_dot11smt_dot11WEPDefaultKeysTable_dot11WEPDefaultKey3:{
208 if (!isget)
209 wep_change_key(wlandev, 3, key, pstr->len);
210 break;
212 case DIDmib_dot11smt_dot11PrivacyTable_dot11WEPDefaultKeyID:{
213 u32 *data = (u32 *) mibitem->data;
215 if (isget) {
216 *data =
217 wlandev->hostwep & HOSTWEP_DEFAULTKEY_MASK;
218 } else {
219 wlandev->hostwep &= ~(HOSTWEP_DEFAULTKEY_MASK);
221 wlandev->hostwep |=
222 (*data & HOSTWEP_DEFAULTKEY_MASK);
224 break;
226 case DIDmib_dot11smt_dot11PrivacyTable_dot11PrivacyInvoked:{
227 u32 *data = (u32 *) mibitem->data;
229 if (isget) {
230 if (wlandev->hostwep & HOSTWEP_PRIVACYINVOKED)
231 *data = P80211ENUM_truth_true;
232 else
233 *data = P80211ENUM_truth_false;
234 } else {
235 wlandev->hostwep &= ~(HOSTWEP_PRIVACYINVOKED);
236 if (*data == P80211ENUM_truth_true)
237 wlandev->hostwep |=
238 HOSTWEP_PRIVACYINVOKED;
240 break;
242 case DIDmib_dot11smt_dot11PrivacyTable_dot11ExcludeUnencrypted:{
243 u32 *data = (u32 *) mibitem->data;
245 if (isget) {
246 if (wlandev->hostwep &
247 HOSTWEP_EXCLUDEUNENCRYPTED)
248 *data = P80211ENUM_truth_true;
249 else
250 *data = P80211ENUM_truth_false;
251 } else {
252 wlandev->hostwep &=
253 ~(HOSTWEP_EXCLUDEUNENCRYPTED);
254 if (*data == P80211ENUM_truth_true)
255 wlandev->hostwep |=
256 HOSTWEP_EXCLUDEUNENCRYPTED;
258 break;
260 default:
264 return 0;