| /* |
| ************************************************************************* |
| * Ralink Tech Inc. |
| * 5F., No.36, Taiyuan St., Jhubei City, |
| * Hsinchu County 302, |
| * Taiwan, R.O.C. |
| * |
| * (c) Copyright 2002-2007, Ralink Technology, Inc. |
| * |
| * This program is free software; you can redistribute it and/or modify * |
| * it under the terms of the GNU General Public License as published by * |
| * the Free Software Foundation; either version 2 of the License, or * |
| * (at your option) any later version. * |
| * * |
| * This program is distributed in the hope that it will be useful, * |
| * but WITHOUT ANY WARRANTY; without even the implied warranty of * |
| * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * |
| * GNU General Public License for more details. * |
| * * |
| * You should have received a copy of the GNU General Public License * |
| * along with this program; if not, write to the * |
| * Free Software Foundation, Inc., * |
| * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. * |
| * * |
| ************************************************************************* |
| |
| Module Name: |
| sanity.c |
| |
| Abstract: |
| |
| Revision History: |
| Who When What |
| -------- ---------- ---------------------------------------------- |
| John Chang 2004-09-01 add WMM support |
| */ |
| |
| #include "../rt_config.h" |
| |
| |
| extern UCHAR CISCO_OUI[]; |
| |
| extern UCHAR WPA_OUI[]; |
| extern UCHAR RSN_OUI[]; |
| extern UCHAR WME_INFO_ELEM[]; |
| extern UCHAR WME_PARM_ELEM[]; |
| extern UCHAR Ccx2QosInfo[]; |
| extern UCHAR RALINK_OUI[]; |
| extern UCHAR BROADCOM_OUI[]; |
| |
| /* |
| ========================================================================== |
| Description: |
| MLME message sanity check |
| Return: |
| TRUE if all parameters are OK, FALSE otherwise |
| ========================================================================== |
| */ |
| BOOLEAN MlmeStartReqSanity( |
| IN PRTMP_ADAPTER pAd, |
| IN VOID *Msg, |
| IN ULONG MsgLen, |
| OUT CHAR Ssid[], |
| OUT UCHAR *pSsidLen) |
| { |
| MLME_START_REQ_STRUCT *Info; |
| |
| Info = (MLME_START_REQ_STRUCT *)(Msg); |
| |
| if (Info->SsidLen > MAX_LEN_OF_SSID) |
| { |
| DBGPRINT(RT_DEBUG_TRACE, ("MlmeStartReqSanity fail - wrong SSID length\n")); |
| return FALSE; |
| } |
| |
| *pSsidLen = Info->SsidLen; |
| NdisMoveMemory(Ssid, Info->Ssid, *pSsidLen); |
| |
| return TRUE; |
| } |
| |
| /* |
| ========================================================================== |
| Description: |
| MLME message sanity check |
| Return: |
| TRUE if all parameters are OK, FALSE otherwise |
| |
| IRQL = DISPATCH_LEVEL |
| |
| ========================================================================== |
| */ |
| BOOLEAN PeerAssocRspSanity( |
| IN PRTMP_ADAPTER pAd, |
| IN VOID *pMsg, |
| IN ULONG MsgLen, |
| OUT PUCHAR pAddr2, |
| OUT USHORT *pCapabilityInfo, |
| OUT USHORT *pStatus, |
| OUT USHORT *pAid, |
| OUT UCHAR SupRate[], |
| OUT UCHAR *pSupRateLen, |
| OUT UCHAR ExtRate[], |
| OUT UCHAR *pExtRateLen, |
| OUT HT_CAPABILITY_IE *pHtCapability, |
| OUT ADD_HT_INFO_IE *pAddHtInfo, // AP might use this additional ht info IE |
| OUT UCHAR *pHtCapabilityLen, |
| OUT UCHAR *pAddHtInfoLen, |
| OUT UCHAR *pNewExtChannelOffset, |
| OUT PEDCA_PARM pEdcaParm, |
| OUT UCHAR *pCkipFlag) |
| { |
| CHAR IeType, *Ptr; |
| PFRAME_802_11 pFrame = (PFRAME_802_11)pMsg; |
| PEID_STRUCT pEid; |
| ULONG Length = 0; |
| |
| *pNewExtChannelOffset = 0xff; |
| *pHtCapabilityLen = 0; |
| *pAddHtInfoLen = 0; |
| COPY_MAC_ADDR(pAddr2, pFrame->Hdr.Addr2); |
| Ptr = (PCHAR)pFrame->Octet; |
| Length += LENGTH_802_11; |
| |
| NdisMoveMemory(pCapabilityInfo, &pFrame->Octet[0], 2); |
| Length += 2; |
| NdisMoveMemory(pStatus, &pFrame->Octet[2], 2); |
| Length += 2; |
| *pCkipFlag = 0; |
| *pExtRateLen = 0; |
| pEdcaParm->bValid = FALSE; |
| |
| if (*pStatus != MLME_SUCCESS) |
| return TRUE; |
| |
| NdisMoveMemory(pAid, &pFrame->Octet[4], 2); |
| Length += 2; |
| |
| // Aid already swaped byte order in RTMPFrameEndianChange() for big endian platform |
| *pAid = (*pAid) & 0x3fff; // AID is low 14-bit |
| |
| // -- get supported rates from payload and advance the pointer |
| IeType = pFrame->Octet[6]; |
| *pSupRateLen = pFrame->Octet[7]; |
| if ((IeType != IE_SUPP_RATES) || (*pSupRateLen > MAX_LEN_OF_SUPPORTED_RATES)) |
| { |
| DBGPRINT(RT_DEBUG_TRACE, ("PeerAssocRspSanity fail - wrong SupportedRates IE\n")); |
| return FALSE; |
| } |
| else |
| NdisMoveMemory(SupRate, &pFrame->Octet[8], *pSupRateLen); |
| |
| |
| Length = Length + 2 + *pSupRateLen; |
| |
| // many AP implement proprietary IEs in non-standard order, we'd better |
| // tolerate mis-ordered IEs to get best compatibility |
| pEid = (PEID_STRUCT) &pFrame->Octet[8 + (*pSupRateLen)]; |
| |
| // get variable fields from payload and advance the pointer |
| while ((Length + 2 + pEid->Len) <= MsgLen) |
| { |
| switch (pEid->Eid) |
| { |
| case IE_EXT_SUPP_RATES: |
| if (pEid->Len <= MAX_LEN_OF_SUPPORTED_RATES) |
| { |
| NdisMoveMemory(ExtRate, pEid->Octet, pEid->Len); |
| *pExtRateLen = pEid->Len; |
| } |
| break; |
| |
| case IE_HT_CAP: |
| case IE_HT_CAP2: |
| if (pEid->Len >= SIZE_HT_CAP_IE) //Note: allow extension.!! |
| { |
| NdisMoveMemory(pHtCapability, pEid->Octet, SIZE_HT_CAP_IE); |
| |
| *(USHORT *)(&pHtCapability->HtCapInfo) = cpu2le16(*(USHORT *)(&pHtCapability->HtCapInfo)); |
| *(USHORT *)(&pHtCapability->ExtHtCapInfo) = cpu2le16(*(USHORT *)(&pHtCapability->ExtHtCapInfo)); |
| |
| *pHtCapabilityLen = SIZE_HT_CAP_IE; |
| } |
| else |
| { |
| DBGPRINT(RT_DEBUG_WARN, ("PeerAssocRspSanity - wrong IE_HT_CAP. \n")); |
| } |
| |
| break; |
| #ifdef DOT11_N_SUPPORT |
| case IE_ADD_HT: |
| case IE_ADD_HT2: |
| if (pEid->Len >= sizeof(ADD_HT_INFO_IE)) |
| { |
| // This IE allows extension, but we can ignore extra bytes beyond our knowledge , so only |
| // copy first sizeof(ADD_HT_INFO_IE) |
| NdisMoveMemory(pAddHtInfo, pEid->Octet, sizeof(ADD_HT_INFO_IE)); |
| |
| *(USHORT *)(&pAddHtInfo->AddHtInfo2) = cpu2le16(*(USHORT *)(&pAddHtInfo->AddHtInfo2)); |
| *(USHORT *)(&pAddHtInfo->AddHtInfo3) = cpu2le16(*(USHORT *)(&pAddHtInfo->AddHtInfo3)); |
| |
| *pAddHtInfoLen = SIZE_ADD_HT_INFO_IE; |
| } |
| else |
| { |
| DBGPRINT(RT_DEBUG_WARN, ("PeerAssocRspSanity - wrong IE_ADD_HT. \n")); |
| } |
| |
| break; |
| case IE_SECONDARY_CH_OFFSET: |
| if (pEid->Len == 1) |
| { |
| *pNewExtChannelOffset = pEid->Octet[0]; |
| } |
| else |
| { |
| DBGPRINT(RT_DEBUG_WARN, ("PeerAssocRspSanity - wrong IE_SECONDARY_CH_OFFSET. \n")); |
| } |
| #endif // DOT11_N_SUPPORT // |
| break; |
| |
| case IE_VENDOR_SPECIFIC: |
| // handle WME PARAMTER ELEMENT |
| if (NdisEqualMemory(pEid->Octet, WME_PARM_ELEM, 6) && (pEid->Len == 24)) |
| { |
| PUCHAR ptr; |
| int i; |
| |
| // parsing EDCA parameters |
| pEdcaParm->bValid = TRUE; |
| pEdcaParm->bQAck = FALSE; // pEid->Octet[0] & 0x10; |
| pEdcaParm->bQueueRequest = FALSE; // pEid->Octet[0] & 0x20; |
| pEdcaParm->bTxopRequest = FALSE; // pEid->Octet[0] & 0x40; |
| //pEdcaParm->bMoreDataAck = FALSE; // pEid->Octet[0] & 0x80; |
| pEdcaParm->EdcaUpdateCount = pEid->Octet[6] & 0x0f; |
| pEdcaParm->bAPSDCapable = (pEid->Octet[6] & 0x80) ? 1 : 0; |
| ptr = (PUCHAR)&pEid->Octet[8]; |
| for (i=0; i<4; i++) |
| { |
| UCHAR aci = (*ptr & 0x60) >> 5; // b5~6 is AC INDEX |
| pEdcaParm->bACM[aci] = (((*ptr) & 0x10) == 0x10); // b5 is ACM |
| pEdcaParm->Aifsn[aci] = (*ptr) & 0x0f; // b0~3 is AIFSN |
| pEdcaParm->Cwmin[aci] = *(ptr+1) & 0x0f; // b0~4 is Cwmin |
| pEdcaParm->Cwmax[aci] = *(ptr+1) >> 4; // b5~8 is Cwmax |
| pEdcaParm->Txop[aci] = *(ptr+2) + 256 * (*(ptr+3)); // in unit of 32-us |
| ptr += 4; // point to next AC |
| } |
| } |
| break; |
| default: |
| DBGPRINT(RT_DEBUG_TRACE, ("PeerAssocRspSanity - ignore unrecognized EID = %d\n", pEid->Eid)); |
| break; |
| } |
| |
| Length = Length + 2 + pEid->Len; |
| pEid = (PEID_STRUCT)((UCHAR*)pEid + 2 + pEid->Len); |
| } |
| |
| |
| return TRUE; |
| } |
| |
| /* |
| ========================================================================== |
| Description: |
| MLME message sanity check |
| Return: |
| TRUE if all parameters are OK, FALSE otherwise |
| |
| IRQL = DISPATCH_LEVEL |
| |
| ========================================================================== |
| */ |
| BOOLEAN PeerProbeReqSanity( |
| IN PRTMP_ADAPTER pAd, |
| IN VOID *Msg, |
| IN ULONG MsgLen, |
| OUT PUCHAR pAddr2, |
| OUT CHAR Ssid[], |
| OUT UCHAR *pSsidLen) |
| { |
| UCHAR Idx; |
| UCHAR RateLen; |
| CHAR IeType; |
| PFRAME_802_11 pFrame = (PFRAME_802_11)Msg; |
| |
| COPY_MAC_ADDR(pAddr2, pFrame->Hdr.Addr2); |
| |
| if ((pFrame->Octet[0] != IE_SSID) || (pFrame->Octet[1] > MAX_LEN_OF_SSID)) |
| { |
| DBGPRINT(RT_DEBUG_TRACE, ("PeerProbeReqSanity fail - wrong SSID IE(Type=%d,Len=%d)\n",pFrame->Octet[0],pFrame->Octet[1])); |
| return FALSE; |
| } |
| |
| *pSsidLen = pFrame->Octet[1]; |
| NdisMoveMemory(Ssid, &pFrame->Octet[2], *pSsidLen); |
| |
| Idx = *pSsidLen + 2; |
| |
| // -- get supported rates from payload and advance the pointer |
| IeType = pFrame->Octet[Idx]; |
| RateLen = pFrame->Octet[Idx + 1]; |
| if (IeType != IE_SUPP_RATES) |
| { |
| DBGPRINT(RT_DEBUG_TRACE, ("PeerProbeReqSanity fail - wrong SupportRates IE(Type=%d,Len=%d)\n",pFrame->Octet[Idx],pFrame->Octet[Idx+1])); |
| return FALSE; |
| } |
| else |
| { |
| if ((pAd->CommonCfg.PhyMode == PHY_11G) && (RateLen < 8)) |
| return (FALSE); |
| } |
| |
| return TRUE; |
| } |
| |
| /* |
| ========================================================================== |
| Description: |
| |
| IRQL = DISPATCH_LEVEL |
| |
| ========================================================================== |
| */ |
| BOOLEAN GetTimBit( |
| IN CHAR *Ptr, |
| IN USHORT Aid, |
| OUT UCHAR *TimLen, |
| OUT UCHAR *BcastFlag, |
| OUT UCHAR *DtimCount, |
| OUT UCHAR *DtimPeriod, |
| OUT UCHAR *MessageToMe) |
| { |
| UCHAR BitCntl, N1, N2, MyByte, MyBit; |
| CHAR *IdxPtr; |
| |
| IdxPtr = Ptr; |
| |
| IdxPtr ++; |
| *TimLen = *IdxPtr; |
| |
| // get DTIM Count from TIM element |
| IdxPtr ++; |
| *DtimCount = *IdxPtr; |
| |
| // get DTIM Period from TIM element |
| IdxPtr++; |
| *DtimPeriod = *IdxPtr; |
| |
| // get Bitmap Control from TIM element |
| IdxPtr++; |
| BitCntl = *IdxPtr; |
| |
| if ((*DtimCount == 0) && (BitCntl & 0x01)) |
| *BcastFlag = TRUE; |
| else |
| *BcastFlag = FALSE; |
| |
| // Parse Partial Virtual Bitmap from TIM element |
| N1 = BitCntl & 0xfe; // N1 is the first bitmap byte# |
| N2 = *TimLen - 4 + N1; // N2 is the last bitmap byte# |
| |
| if ((Aid < (N1 << 3)) || (Aid >= ((N2 + 1) << 3))) |
| *MessageToMe = FALSE; |
| else |
| { |
| MyByte = (Aid >> 3) - N1; // my byte position in the bitmap byte-stream |
| MyBit = Aid % 16 - ((MyByte & 0x01)? 8:0); |
| |
| IdxPtr += (MyByte + 1); |
| |
| //if (*IdxPtr) |
| // DBGPRINT(RT_DEBUG_WARN, ("TIM bitmap = 0x%02x\n", *IdxPtr)); |
| |
| if (*IdxPtr & (0x01 << MyBit)) |
| *MessageToMe = TRUE; |
| else |
| *MessageToMe = FALSE; |
| } |
| |
| return TRUE; |
| } |