Update IEEE802.11 Information Element
Add control check length into IE parsing function
This commit is contained in:
vemax78
parent
d2c01ad82a
commit
b4a95beb89
@ -81,7 +81,7 @@ static int ieee80211_ie_set_dsss(char* buffer, uint8_t channel) {
|
|||||||
ASSERT(buffer != NULL);
|
ASSERT(buffer != NULL);
|
||||||
|
|
||||||
iedsss->id = IEEE80211_IE_DSSS;
|
iedsss->id = IEEE80211_IE_DSSS;
|
||||||
iedsss->len = 1;
|
iedsss->len = IEEE80211_IE_DSSS_LENGTH;
|
||||||
iedsss->channel = channel;
|
iedsss->channel = channel;
|
||||||
|
|
||||||
return sizeof(struct ieee80211_ie_dsss);
|
return sizeof(struct ieee80211_ie_dsss);
|
||||||
@ -98,7 +98,7 @@ static int ieee80211_ie_set_erp(char* buffer, uint32_t mode) {
|
|||||||
}
|
}
|
||||||
|
|
||||||
ieerp->id = IEEE80211_IE_ERP;
|
ieerp->id = IEEE80211_IE_ERP;
|
||||||
ieerp->len = 1;
|
ieerp->len = IEEE80211_IE_ERP_LENGTH;
|
||||||
ieerp->params = 0; /* TODO */
|
ieerp->params = 0; /* TODO */
|
||||||
|
|
||||||
return sizeof(struct ieee80211_ie_erp);
|
return sizeof(struct ieee80211_ie_erp);
|
||||||
|
|||||||
@ -138,6 +138,13 @@ struct ieee80211_header_mgmt {
|
|||||||
__le16 capability;
|
__le16 capability;
|
||||||
uint8_t ie[0];
|
uint8_t ie[0];
|
||||||
} STRUCT_PACKED proberesponse;
|
} STRUCT_PACKED proberesponse;
|
||||||
|
|
||||||
|
struct {
|
||||||
|
__le16 auth_alg;
|
||||||
|
__le16 auth_transaction;
|
||||||
|
__le16 status_code;
|
||||||
|
uint8_t ie[0];
|
||||||
|
} STRUCT_PACKED authetication;
|
||||||
};
|
};
|
||||||
} STRUCT_PACKED;
|
} STRUCT_PACKED;
|
||||||
|
|
||||||
@ -159,6 +166,7 @@ struct ieee80211_ie_ssid {
|
|||||||
|
|
||||||
/* 802.11 Supported Rates information element */
|
/* 802.11 Supported Rates information element */
|
||||||
#define IEEE80211_IE_SUPPORTED_RATES 1
|
#define IEEE80211_IE_SUPPORTED_RATES 1
|
||||||
|
#define IEEE80211_IE_SUPPORTED_RATES_MIN_LENGTH 1
|
||||||
#define IEEE80211_IE_SUPPORTED_RATES_MAX_LENGTH 8
|
#define IEEE80211_IE_SUPPORTED_RATES_MAX_LENGTH 8
|
||||||
|
|
||||||
struct ieee80211_ie_supported_rates {
|
struct ieee80211_ie_supported_rates {
|
||||||
@ -169,6 +177,7 @@ struct ieee80211_ie_supported_rates {
|
|||||||
|
|
||||||
/* 802.11 DSSS information element */
|
/* 802.11 DSSS information element */
|
||||||
#define IEEE80211_IE_DSSS 3
|
#define IEEE80211_IE_DSSS 3
|
||||||
|
#define IEEE80211_IE_DSSS_LENGTH 1
|
||||||
|
|
||||||
struct ieee80211_ie_dsss {
|
struct ieee80211_ie_dsss {
|
||||||
uint8_t id;
|
uint8_t id;
|
||||||
@ -178,6 +187,7 @@ struct ieee80211_ie_dsss {
|
|||||||
|
|
||||||
/* 802.11 Country information element */
|
/* 802.11 Country information element */
|
||||||
#define IEEE80211_IE_COUNTRY 7
|
#define IEEE80211_IE_COUNTRY 7
|
||||||
|
#define IEEE80211_IE_COUNTRY_MIN_LENGTH 6
|
||||||
|
|
||||||
struct ieee80211_ie_country_channelgroup {
|
struct ieee80211_ie_country_channelgroup {
|
||||||
uint8_t firstchannel;
|
uint8_t firstchannel;
|
||||||
@ -192,8 +202,19 @@ struct ieee80211_ie_country {
|
|||||||
uint8_t channelgroup[0];
|
uint8_t channelgroup[0];
|
||||||
} STRUCT_PACKED;
|
} STRUCT_PACKED;
|
||||||
|
|
||||||
|
/* 802.11 Challenge text information element */
|
||||||
|
#define IEEE80211_IE_CHALLENGE_TEXT 16
|
||||||
|
#define IEEE80211_IE_CHALLENGE_TEXT_MIN_LENGTH 3
|
||||||
|
|
||||||
|
struct ieee80211_ie_challenge_text {
|
||||||
|
uint8_t id;
|
||||||
|
uint8_t len;
|
||||||
|
uint8_t challengetext[0];
|
||||||
|
} STRUCT_PACKED;
|
||||||
|
|
||||||
/* 802.11 ERP information element */
|
/* 802.11 ERP information element */
|
||||||
#define IEEE80211_IE_ERP 42
|
#define IEEE80211_IE_ERP 42
|
||||||
|
#define IEEE80211_IE_ERP_LENGTH 1
|
||||||
|
|
||||||
struct ieee80211_ie_erp {
|
struct ieee80211_ie_erp {
|
||||||
uint8_t id;
|
uint8_t id;
|
||||||
@ -203,6 +224,7 @@ struct ieee80211_ie_erp {
|
|||||||
|
|
||||||
/* 802.11 Extended Supported Rates information element */
|
/* 802.11 Extended Supported Rates information element */
|
||||||
#define IEEE80211_IE_EXTENDED_SUPPORTED_RATES 50
|
#define IEEE80211_IE_EXTENDED_SUPPORTED_RATES 50
|
||||||
|
#define IEEE80211_IE_EXTENDED_SUPPORTED_MIN_LENGTH 1
|
||||||
|
|
||||||
struct ieee80211_ie_extended_supported_rates {
|
struct ieee80211_ie_extended_supported_rates {
|
||||||
uint8_t id;
|
uint8_t id;
|
||||||
@ -236,7 +258,7 @@ struct ieee80211_ie_qos_capability {
|
|||||||
} STRUCT_PACKED;
|
} STRUCT_PACKED;
|
||||||
|
|
||||||
/* 802.11 Power Constraint information element */
|
/* 802.11 Power Constraint information element */
|
||||||
#define IEEE80211_IE_POWER_CONSTRAINT 52
|
#define IEEE80211_IE_POWER_CONSTRAINT 32
|
||||||
#define IEEE80211_IE_POWER_CONSTRAINT_LENGTH 1
|
#define IEEE80211_IE_POWER_CONSTRAINT_LENGTH 1
|
||||||
|
|
||||||
struct ieee80211_ie_power_constraint {
|
struct ieee80211_ie_power_constraint {
|
||||||
@ -260,6 +282,7 @@ struct ieee80211_ie_items {
|
|||||||
struct ieee80211_ie_supported_rates* supported_rates;
|
struct ieee80211_ie_supported_rates* supported_rates;
|
||||||
struct ieee80211_ie_dsss* dsss;
|
struct ieee80211_ie_dsss* dsss;
|
||||||
struct ieee80211_ie_country* country;
|
struct ieee80211_ie_country* country;
|
||||||
|
struct ieee80211_ie_challenge_text* challenge_text;
|
||||||
struct ieee80211_ie_erp* erp;
|
struct ieee80211_ie_erp* erp;
|
||||||
struct ieee80211_ie_extended_supported_rates* extended_supported_rates;
|
struct ieee80211_ie_extended_supported_rates* extended_supported_rates;
|
||||||
struct ieee80211_ie_edca_parameter_set* edca_parameter_set;
|
struct ieee80211_ie_edca_parameter_set* edca_parameter_set;
|
||||||
|
|||||||
@ -675,46 +675,91 @@ int wifi_retrieve_information_elements_position(struct ieee80211_ie_items* items
|
|||||||
/* Parsing Information Element */
|
/* Parsing Information Element */
|
||||||
switch (ie_id) {
|
switch (ie_id) {
|
||||||
case IEEE80211_IE_SSID: {
|
case IEEE80211_IE_SSID: {
|
||||||
|
if (ie_len > IEEE80211_IE_SSID_MAX_LENGTH) {
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
|
||||||
items->ssid = (struct ieee80211_ie_ssid*)data;
|
items->ssid = (struct ieee80211_ie_ssid*)data;
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
|
|
||||||
case IEEE80211_IE_SUPPORTED_RATES: {
|
case IEEE80211_IE_SUPPORTED_RATES: {
|
||||||
|
if ((ie_len < IEEE80211_IE_SUPPORTED_RATES_MIN_LENGTH) || (ie_len > IEEE80211_IE_SUPPORTED_RATES_MAX_LENGTH)) {
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
|
||||||
items->supported_rates = (struct ieee80211_ie_supported_rates*)data;
|
items->supported_rates = (struct ieee80211_ie_supported_rates*)data;
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
|
|
||||||
case IEEE80211_IE_DSSS: {
|
case IEEE80211_IE_DSSS: {
|
||||||
|
if (ie_len != IEEE80211_IE_DSSS_LENGTH) {
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
|
||||||
items->dsss = (struct ieee80211_ie_dsss*)data;
|
items->dsss = (struct ieee80211_ie_dsss*)data;
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
|
|
||||||
case IEEE80211_IE_COUNTRY: {
|
case IEEE80211_IE_COUNTRY: {
|
||||||
|
if (ie_len < IEEE80211_IE_COUNTRY_MIN_LENGTH) {
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
|
||||||
items->country = (struct ieee80211_ie_country*)data;
|
items->country = (struct ieee80211_ie_country*)data;
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
case IEEE80211_IE_CHALLENGE_TEXT: {
|
||||||
|
if (ie_len < IEEE80211_IE_CHALLENGE_TEXT_MIN_LENGTH) {
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
|
||||||
|
items->challenge_text = (struct ieee80211_ie_challenge_text*)data;
|
||||||
|
break;
|
||||||
|
}
|
||||||
|
|
||||||
case IEEE80211_IE_ERP: {
|
case IEEE80211_IE_ERP: {
|
||||||
|
if (ie_len != IEEE80211_IE_ERP_LENGTH) {
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
|
||||||
items->erp = (struct ieee80211_ie_erp*)data;
|
items->erp = (struct ieee80211_ie_erp*)data;
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
|
|
||||||
case IEEE80211_IE_EXTENDED_SUPPORTED_RATES: {
|
case IEEE80211_IE_EXTENDED_SUPPORTED_RATES: {
|
||||||
|
if (ie_len < IEEE80211_IE_EXTENDED_SUPPORTED_MIN_LENGTH) {
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
|
||||||
items->extended_supported_rates = (struct ieee80211_ie_extended_supported_rates*)data;
|
items->extended_supported_rates = (struct ieee80211_ie_extended_supported_rates*)data;
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
|
|
||||||
case IEEE80211_IE_EDCA_PARAMETER_SET: {
|
case IEEE80211_IE_EDCA_PARAMETER_SET: {
|
||||||
|
if (ie_len != IEEE80211_IE_EDCA_PARAMETER_SET_LENGTH) {
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
|
||||||
items->edca_parameter_set = (struct ieee80211_ie_edca_parameter_set*)data;
|
items->edca_parameter_set = (struct ieee80211_ie_edca_parameter_set*)data;
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
|
|
||||||
case IEEE80211_IE_QOS_CAPABILITY: {
|
case IEEE80211_IE_QOS_CAPABILITY: {
|
||||||
|
if (ie_len != IEEE80211_IE_QOS_CAPABILITY_LENGTH) {
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
|
||||||
items->qos_capability = (struct ieee80211_ie_qos_capability*)data;
|
items->qos_capability = (struct ieee80211_ie_qos_capability*)data;
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
|
|
||||||
case IEEE80211_IE_POWER_CONSTRAINT: {
|
case IEEE80211_IE_POWER_CONSTRAINT: {
|
||||||
|
if (ie_len != IEEE80211_IE_POWER_CONSTRAINT_LENGTH) {
|
||||||
|
return -1;
|
||||||
|
}
|
||||||
|
|
||||||
items->power_constraint = (struct ieee80211_ie_power_constraint*)data;
|
items->power_constraint = (struct ieee80211_ie_power_constraint*)data;
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user