[deliverable/linux.git] / net / ieee80211 / softmac / ieee80211softmac_auth.c

/*
 * This file contains the softmac's authentication logic.
 *
 * Copyright (c) 2005, 2006 Johannes Berg <johannes@sipsolutions.net>
 *                          Joseph Jezak <josejx@gentoo.org>
 *                          Larry Finger <Larry.Finger@lwfinger.net>
 *                          Danny van Dyk <kugelfang@gentoo.org>
 *                          Michael Buesch <mbuesch@freenet.de>
 *
 * This program is free software; you can redistribute it and/or modify it
 * under the terms of version 2 of the GNU General Public License as
 * published by the Free Software Foundation.
 *
 * This program is distributed in the hope that it will be useful, but WITHOUT
 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
 * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for
 * more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301 USA
 *
 * The full GNU General Public License is included in this distribution in the
 * file called COPYING.
 */

#include "ieee80211softmac_priv.h"

static void ieee80211softmac_auth_queue(void *data);

/* Queues an auth request to the desired AP */
int
ieee80211softmac_auth_req(struct ieee80211softmac_device *mac, 
	struct ieee80211softmac_network *net)
{
	struct ieee80211softmac_auth_queue_item *auth;
	unsigned long flags;
	
	if (net->authenticating || net->authenticated)
		return 0;
	net->authenticating = 1;

	/* Add the network if it's not already added */
	ieee80211softmac_add_network(mac, net);

	dprintk(KERN_NOTICE PFX "Queueing Authentication Request to "MAC_FMT"\n", MAC_ARG(net->bssid));
	/* Queue the auth request */
	auth = (struct ieee80211softmac_auth_queue_item *)
		kmalloc(sizeof(struct ieee80211softmac_auth_queue_item), GFP_KERNEL);
	if(auth == NULL)
		return -ENOMEM;

	auth->net = net;
	auth->mac = mac;
	auth->retry = IEEE80211SOFTMAC_AUTH_RETRY_LIMIT;
	auth->state = IEEE80211SOFTMAC_AUTH_OPEN_REQUEST;
	INIT_WORK(&auth->work, &ieee80211softmac_auth_queue, (void *)auth);
	
	/* Lock (for list) */
	spin_lock_irqsave(&mac->lock, flags);

	/* add to list */
	list_add_tail(&auth->list, &mac->auth_queue);
	schedule_work(&auth->work);
	spin_unlock_irqrestore(&mac->lock, flags);
	
	return 0;
}


/* Sends an auth request to the desired AP and handles timeouts */
static void
ieee80211softmac_auth_queue(void *data)
{
	struct ieee80211softmac_device *mac;
	struct ieee80211softmac_auth_queue_item *auth;
	struct ieee80211softmac_network *net;
	unsigned long flags;

	auth = (struct ieee80211softmac_auth_queue_item *)data;
	net = auth->net;
	mac = auth->mac;

	if(auth->retry > 0) {
		/* Switch to correct channel for this network */
		mac->set_channel(mac->dev, net->channel);
		
		/* Lock and set flags */
		spin_lock_irqsave(&mac->lock, flags);
		if (unlikely(!mac->running)) {
			/* Prevent reschedule on workqueue flush */
			spin_unlock_irqrestore(&mac->lock, flags);
			return;
		}
		net->authenticated = 0;
		/* add a timeout call so we eventually give up waiting for an auth reply */
		schedule_delayed_work(&auth->work, IEEE80211SOFTMAC_AUTH_TIMEOUT);
		auth->retry--;
		spin_unlock_irqrestore(&mac->lock, flags);
		if (ieee80211softmac_send_mgt_frame(mac, auth->net, IEEE80211_STYPE_AUTH, auth->state))
			dprintk(KERN_NOTICE PFX "Sending Authentication Request to "MAC_FMT" failed (this shouldn't happen, wait for the timeout).\n", MAC_ARG(net->bssid));
		else
			dprintk(KERN_NOTICE PFX "Sent Authentication Request to "MAC_FMT".\n", MAC_ARG(net->bssid));
		return;
	}

	printkl(KERN_WARNING PFX "Authentication timed out with "MAC_FMT"\n", MAC_ARG(net->bssid));
	/* Remove this item from the queue */
	spin_lock_irqsave(&mac->lock, flags);
	net->authenticating = 0;
	ieee80211softmac_call_events_locked(mac, IEEE80211SOFTMAC_EVENT_AUTH_TIMEOUT, net);
	cancel_delayed_work(&auth->work); /* just to make sure... */
	list_del(&auth->list);
	spin_unlock_irqrestore(&mac->lock, flags);
	/* Free it */
	kfree(auth);
}

/* Sends a response to an auth challenge (for shared key auth). */
static void
ieee80211softmac_auth_challenge_response(void *_aq)
{
	struct ieee80211softmac_auth_queue_item *aq = _aq;

	/* Send our response */
	ieee80211softmac_send_mgt_frame(aq->mac, aq->net, IEEE80211_STYPE_AUTH, aq->state);
}

/* Handle the auth response from the AP
 * This should be registered with ieee80211 as handle_auth 
 */
int 
ieee80211softmac_auth_resp(struct net_device *dev, struct ieee80211_auth *auth)
{	

	struct list_head *list_ptr;
	struct ieee80211softmac_device *mac = ieee80211_priv(dev);
	struct ieee80211softmac_auth_queue_item *aq = NULL;
	struct ieee80211softmac_network *net = NULL;
	unsigned long flags;
	u8 * data;
	
	if (unlikely(!mac->running))
		return -ENODEV;

	/* Find correct auth queue item */
	spin_lock_irqsave(&mac->lock, flags);
	list_for_each(list_ptr, &mac->auth_queue) {
		aq = list_entry(list_ptr, struct ieee80211softmac_auth_queue_item, list);
		net = aq->net;
		if (!memcmp(net->bssid, auth->header.addr2, ETH_ALEN))
			break;
		else
			aq = NULL;
	}
	spin_unlock_irqrestore(&mac->lock, flags);
	
	/* Make sure that we've got an auth queue item for this request */
	if(aq == NULL)
	{
		dprintkl(KERN_DEBUG PFX "Authentication response received from "MAC_FMT" but no queue item exists.\n", MAC_ARG(auth->header.addr2));
		/* Error #? */
		return -1;
	}			
	
	/* Check for out of order authentication */
	if(!net->authenticating)
	{
		dprintkl(KERN_DEBUG PFX "Authentication response received from "MAC_FMT" but did not request authentication.\n",MAC_ARG(auth->header.addr2));
		return -1;
	}

	/* Parse the auth packet */
	switch(auth->algorithm) {
	case WLAN_AUTH_OPEN:
		/* Check the status code of the response */

		switch(auth->status) {
		case WLAN_STATUS_SUCCESS:
			/* Update the status to Authenticated */
			spin_lock_irqsave(&mac->lock, flags);
		        net->authenticating = 0;
			net->authenticated = 1;
			spin_unlock_irqrestore(&mac->lock, flags);
			
			/* Send event */
			printkl(KERN_NOTICE PFX "Open Authentication completed with "MAC_FMT"\n", MAC_ARG(net->bssid));
			ieee80211softmac_call_events(mac, IEEE80211SOFTMAC_EVENT_AUTHENTICATED, net);
			break;
		default:
			/* Lock and reset flags */
			spin_lock_irqsave(&mac->lock, flags);
			net->authenticated = 0;
			net->authenticating = 0;
			spin_unlock_irqrestore(&mac->lock, flags);
			
			printkl(KERN_NOTICE PFX "Open Authentication with "MAC_FMT" failed, error code: %i\n", 
				MAC_ARG(net->bssid), le16_to_cpup(&auth->status));
			/* Count the error? */
			break;
		}
		goto free_aq;
		break;
	case WLAN_AUTH_SHARED_KEY:
		/* Figure out where we are in the process */
		switch(auth->transaction) {
		case IEEE80211SOFTMAC_AUTH_SHARED_CHALLENGE:
			/* Check to make sure we have a challenge IE */
			data = (u8 *)auth->info_element;
			if (*data++ != MFIE_TYPE_CHALLENGE) {
				printkl(KERN_NOTICE PFX "Shared Key Authentication failed due to a missing challenge.\n");
				break;	
			}
			/* Save the challenge */
			spin_lock_irqsave(&mac->lock, flags);
			net->challenge_len = *data++; 	
			if (net->challenge_len > WLAN_AUTH_CHALLENGE_LEN)
				net->challenge_len = WLAN_AUTH_CHALLENGE_LEN;
			kfree(net->challenge);
			net->challenge = kmemdup(data, net->challenge_len,
						 GFP_ATOMIC);
			if (net->challenge == NULL) {
				printkl(KERN_NOTICE PFX "Shared Key "
					"Authentication failed due to "
					"memory shortage.\n");
				spin_unlock_irqrestore(&mac->lock, flags);
				break;
			}
			aq->state = IEEE80211SOFTMAC_AUTH_SHARED_RESPONSE; 

			/* We reuse the work struct from the auth request here.
			 * It is safe to do so as each one is per-request, and
			 * at this point (dealing with authentication response)
			 * we have obviously already sent the initial auth
			 * request. */
			cancel_delayed_work(&aq->work);
			INIT_WORK(&aq->work, &ieee80211softmac_auth_challenge_response, (void *)aq);
			schedule_work(&aq->work);
			spin_unlock_irqrestore(&mac->lock, flags);
			return 0;
		case IEEE80211SOFTMAC_AUTH_SHARED_PASS:
			kfree(net->challenge);
			net->challenge = NULL;
			net->challenge_len = 0;
			/* Check the status code of the response */
			switch(auth->status) {
			case WLAN_STATUS_SUCCESS:
				/* Update the status to Authenticated */	
				spin_lock_irqsave(&mac->lock, flags);
				net->authenticating = 0;
				net->authenticated = 1;
				spin_unlock_irqrestore(&mac->lock, flags);
				printkl(KERN_NOTICE PFX "Shared Key Authentication completed with "MAC_FMT"\n", 
					MAC_ARG(net->bssid));
				ieee80211softmac_call_events(mac, IEEE80211SOFTMAC_EVENT_AUTHENTICATED, net);
				break;
			default:
				printkl(KERN_NOTICE PFX "Shared Key Authentication with "MAC_FMT" failed, error code: %i\n", 
					MAC_ARG(net->bssid), le16_to_cpup(&auth->status));
				/* Lock and reset flags */
				spin_lock_irqsave(&mac->lock, flags);
 				net->authenticating = 0;
 				net->authenticated = 0;
				spin_unlock_irqrestore(&mac->lock, flags);
				/* Count the error? */
				break;
			}
			goto free_aq;
			break;
		default:
			printkl(KERN_WARNING PFX "Unhandled Authentication Step: %i\n", auth->transaction);
			break;
		}
		goto free_aq;
		break;
	default:
		/* ERROR */	
		goto free_aq;
		break;
	}
	return 0;
free_aq:
	/* Cancel the timeout */
	spin_lock_irqsave(&mac->lock, flags);
	cancel_delayed_work(&aq->work);
	/* Remove this item from the queue */
	list_del(&aq->list);
	spin_unlock_irqrestore(&mac->lock, flags);

	/* Free it */
	kfree(aq);
	return 0;
}

/*
 * Handle deauthorization
 */
static void
ieee80211softmac_deauth_from_net(struct ieee80211softmac_device *mac,
	struct ieee80211softmac_network *net)
{
	struct ieee80211softmac_auth_queue_item *aq = NULL;
	struct list_head *list_ptr;
	unsigned long flags;

	/* deauthentication implies disassociation */
	ieee80211softmac_disassoc(mac);

	/* Lock and reset status flags */
	spin_lock_irqsave(&mac->lock, flags);
	net->authenticating = 0;
	net->authenticated = 0;
	
	/* Find correct auth queue item, if it exists */
	list_for_each(list_ptr, &mac->auth_queue) {
		aq = list_entry(list_ptr, struct ieee80211softmac_auth_queue_item, list);
		if (!memcmp(net->bssid, aq->net->bssid, ETH_ALEN))
			break;
		else
			aq = NULL;
	}
	
	/* Cancel pending work */
	if(aq != NULL)
		/* Not entirely safe?  What about running work? */
		cancel_delayed_work(&aq->work);

	/* Free our network ref */
	ieee80211softmac_del_network_locked(mac, net);
	if(net->challenge != NULL)
		kfree(net->challenge);
	kfree(net);
	
	/* can't transmit data right now... */
	netif_carrier_off(mac->dev);
	spin_unlock_irqrestore(&mac->lock, flags);
}

/* 
 * Sends a deauth request to the desired AP
 */
int 
ieee80211softmac_deauth_req(struct ieee80211softmac_device *mac, 
	struct ieee80211softmac_network *net, int reason)
{
	int ret;
	
	/* Make sure the network is authenticated */
	if (!net->authenticated)
	{
		dprintkl(KERN_DEBUG PFX "Can't send deauthentication packet, network is not authenticated.\n");
		/* Error okay? */
		return -EPERM;
	}
	
	/* Send the de-auth packet */
	if((ret = ieee80211softmac_send_mgt_frame(mac, net, IEEE80211_STYPE_DEAUTH, reason)))
		return ret;
	
	ieee80211softmac_deauth_from_net(mac, net);
	return 0;
}
 
/*
 * This should be registered with ieee80211 as handle_deauth
 */
int 
ieee80211softmac_deauth_resp(struct net_device *dev, struct ieee80211_deauth *deauth)
{
	
	struct ieee80211softmac_network *net = NULL;
	struct ieee80211softmac_device *mac = ieee80211_priv(dev);
	
	if (unlikely(!mac->running))
		return -ENODEV;

	if (!deauth) {
		dprintk("deauth without deauth packet. eek!\n");
		return 0;
	}

	net = ieee80211softmac_get_network_by_bssid(mac, deauth->header.addr2);
	
	if (net == NULL) {
		dprintkl(KERN_DEBUG PFX "Received deauthentication packet from "MAC_FMT", but that network is unknown.\n",
			MAC_ARG(deauth->header.addr2));
		return 0;
	}

	/* Make sure the network is authenticated */
	if(!net->authenticated)
	{
		dprintkl(KERN_DEBUG PFX "Can't perform deauthentication, network is not authenticated.\n");
		/* Error okay? */
		return -EPERM;
	}

	ieee80211softmac_deauth_from_net(mac, net);

	/* let's try to re-associate */
	schedule_work(&mac->associnfo.work);
	return 0;
}
Commit	Line	Data
4855d25b JB	1	/*
	2	* This file contains the softmac's authentication logic.
	3	*
79859051 JB	4	* Copyright (c) 2005, 2006 Johannes Berg <johannes@sipsolutions.net>
	5	* Joseph Jezak <josejx@gentoo.org>
	6	* Larry Finger <Larry.Finger@lwfinger.net>
	7	* Danny van Dyk <kugelfang@gentoo.org>
	8	* Michael Buesch <mbuesch@freenet.de>
4855d25b JB	9	*
	10	* This program is free software; you can redistribute it and/or modify it
	11	* under the terms of version 2 of the GNU General Public License as
	12	* published by the Free Software Foundation.
	13	*
	14	* This program is distributed in the hope that it will be useful, but WITHOUT
	15	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
	16	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
	17	* more details.
	18	*
	19	* You should have received a copy of the GNU General Public License
	20	* along with this program; if not, write to the Free Software
	21	* Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
	22	*
	23	* The full GNU General Public License is included in this distribution in the
	24	* file called COPYING.
	25	*/
	26
370121e5 JB	27	#include "ieee80211softmac_priv.h"
	28
	29	static void ieee80211softmac_auth_queue(void *data);
	30
	31	/* Queues an auth request to the desired AP */
	32	int
	33	ieee80211softmac_auth_req(struct ieee80211softmac_device *mac,
	34	struct ieee80211softmac_network *net)
	35	{
	36	struct ieee80211softmac_auth_queue_item *auth;
	37	unsigned long flags;
	38
cb74c432	39	if (net->authenticating \|\| net->authenticated)
370121e5	40	return 0;
cb74c432	41	net->authenticating = 1;
370121e5 JB	42
	43	/* Add the network if it's not already added */
	44	ieee80211softmac_add_network(mac, net);
	45
	46	dprintk(KERN_NOTICE PFX "Queueing Authentication Request to "MAC_FMT"\n", MAC_ARG(net->bssid));
	47	/* Queue the auth request */
	48	auth = (struct ieee80211softmac_auth_queue_item *)
	49	kmalloc(sizeof(struct ieee80211softmac_auth_queue_item), GFP_KERNEL);
	50	if(auth == NULL)
	51	return -ENOMEM;
	52
	53	auth->net = net;
	54	auth->mac = mac;
	55	auth->retry = IEEE80211SOFTMAC_AUTH_RETRY_LIMIT;
	56	auth->state = IEEE80211SOFTMAC_AUTH_OPEN_REQUEST;
	57	INIT_WORK(&auth->work, &ieee80211softmac_auth_queue, (void *)auth);
	58
	59	/* Lock (for list) */
	60	spin_lock_irqsave(&mac->lock, flags);
	61
	62	/* add to list */
	63	list_add_tail(&auth->list, &mac->auth_queue);
5c4df6da	64	schedule_work(&auth->work);
370121e5 JB	65	spin_unlock_irqrestore(&mac->lock, flags);
	66
	67	return 0;
	68	}
	69
	70
	71	/* Sends an auth request to the desired AP and handles timeouts */
	72	static void
	73	ieee80211softmac_auth_queue(void *data)
	74	{
	75	struct ieee80211softmac_device *mac;
	76	struct ieee80211softmac_auth_queue_item *auth;
	77	struct ieee80211softmac_network *net;
	78	unsigned long flags;
	79
370121e5 JB	80	auth = (struct ieee80211softmac_auth_queue_item *)data;
	81	net = auth->net;
	82	mac = auth->mac;
	83
	84	if(auth->retry > 0) {
	85	/* Switch to correct channel for this network */
	86	mac->set_channel(mac->dev, net->channel);
	87
	88	/* Lock and set flags */
	89	spin_lock_irqsave(&mac->lock, flags);
d57336e3 DD	90	if (unlikely(!mac->running)) {
	91	/* Prevent reschedule on workqueue flush */
	92	spin_unlock_irqrestore(&mac->lock, flags);
	93	return;
	94	}
370121e5	95	net->authenticated = 0;
370121e5	96	/* add a timeout call so we eventually give up waiting for an auth reply */
5c4df6da	97	schedule_delayed_work(&auth->work, IEEE80211SOFTMAC_AUTH_TIMEOUT);
370121e5 JB	98	auth->retry--;
	99	spin_unlock_irqrestore(&mac->lock, flags);
	100	if (ieee80211softmac_send_mgt_frame(mac, auth->net, IEEE80211_STYPE_AUTH, auth->state))
	101	dprintk(KERN_NOTICE PFX "Sending Authentication Request to "MAC_FMT" failed (this shouldn't happen, wait for the timeout).\n", MAC_ARG(net->bssid));
	102	else
	103	dprintk(KERN_NOTICE PFX "Sent Authentication Request to "MAC_FMT".\n", MAC_ARG(net->bssid));
	104	return;
	105	}
	106
	107	printkl(KERN_WARNING PFX "Authentication timed out with "MAC_FMT"\n", MAC_ARG(net->bssid));
	108	/* Remove this item from the queue */
	109	spin_lock_irqsave(&mac->lock, flags);
76ea4c7f	110	net->authenticating = 0;
370121e5 JB	111	ieee80211softmac_call_events_locked(mac, IEEE80211SOFTMAC_EVENT_AUTH_TIMEOUT, net);
	112	cancel_delayed_work(&auth->work); /* just to make sure... */
	113	list_del(&auth->list);
	114	spin_unlock_irqrestore(&mac->lock, flags);
	115	/* Free it */
	116	kfree(auth);
	117	}
	118
345f6b8b DD	119	/* Sends a response to an auth challenge (for shared key auth). */
	120	static void
	121	ieee80211softmac_auth_challenge_response(void *_aq)
	122	{
	123	struct ieee80211softmac_auth_queue_item *aq = _aq;
	124
	125	/* Send our response */
	126	ieee80211softmac_send_mgt_frame(aq->mac, aq->net, IEEE80211_STYPE_AUTH, aq->state);
	127	}
	128
370121e5 JB	129	/* Handle the auth response from the AP
	130	* This should be registered with ieee80211 as handle_auth
	131	*/
	132	int
	133	ieee80211softmac_auth_resp(struct net_device dev, struct ieee80211_auth auth)
	134	{
	135
	136	struct list_head *list_ptr;
	137	struct ieee80211softmac_device *mac = ieee80211_priv(dev);
	138	struct ieee80211softmac_auth_queue_item *aq = NULL;
	139	struct ieee80211softmac_network *net = NULL;
	140	unsigned long flags;
	141	u8 * data;
	142
d57336e3 DD	143	if (unlikely(!mac->running))
	144	return -ENODEV;
	145
370121e5 JB	146	/* Find correct auth queue item */
	147	spin_lock_irqsave(&mac->lock, flags);
	148	list_for_each(list_ptr, &mac->auth_queue) {
	149	aq = list_entry(list_ptr, struct ieee80211softmac_auth_queue_item, list);
	150	net = aq->net;
	151	if (!memcmp(net->bssid, auth->header.addr2, ETH_ALEN))
	152	break;
	153	else
	154	aq = NULL;
	155	}
	156	spin_unlock_irqrestore(&mac->lock, flags);
	157
	158	/* Make sure that we've got an auth queue item for this request */
	159	if(aq == NULL)
	160	{
5398d590	161	dprintkl(KERN_DEBUG PFX "Authentication response received from "MAC_FMT" but no queue item exists.\n", MAC_ARG(auth->header.addr2));
370121e5 JB	162	/* Error #? */
	163	return -1;
	164	}
	165
	166	/* Check for out of order authentication */
	167	if(!net->authenticating)
	168	{
5398d590	169	dprintkl(KERN_DEBUG PFX "Authentication response received from "MAC_FMT" but did not request authentication.\n",MAC_ARG(auth->header.addr2));
370121e5 JB	170	return -1;
	171	}
	172
	173	/* Parse the auth packet */
	174	switch(auth->algorithm) {
	175	case WLAN_AUTH_OPEN:
	176	/* Check the status code of the response */
	177
	178	switch(auth->status) {
	179	case WLAN_STATUS_SUCCESS:
	180	/* Update the status to Authenticated */
	181	spin_lock_irqsave(&mac->lock, flags);
	182	net->authenticating = 0;
	183	net->authenticated = 1;
	184	spin_unlock_irqrestore(&mac->lock, flags);
	185
	186	/* Send event */
	187	printkl(KERN_NOTICE PFX "Open Authentication completed with "MAC_FMT"\n", MAC_ARG(net->bssid));
	188	ieee80211softmac_call_events(mac, IEEE80211SOFTMAC_EVENT_AUTHENTICATED, net);
	189	break;
	190	default:
	191	/* Lock and reset flags */
	192	spin_lock_irqsave(&mac->lock, flags);
	193	net->authenticated = 0;
	194	net->authenticating = 0;
	195	spin_unlock_irqrestore(&mac->lock, flags);
	196
	197	printkl(KERN_NOTICE PFX "Open Authentication with "MAC_FMT" failed, error code: %i\n",
	198	MAC_ARG(net->bssid), le16_to_cpup(&auth->status));
	199	/* Count the error? */
	200	break;
	201	}
	202	goto free_aq;
	203	break;
	204	case WLAN_AUTH_SHARED_KEY:
	205	/* Figure out where we are in the process */
	206	switch(auth->transaction) {
	207	case IEEE80211SOFTMAC_AUTH_SHARED_CHALLENGE:
	208	/* Check to make sure we have a challenge IE */
	209	data = (u8 *)auth->info_element;
345f6b8b	210	if (*data++ != MFIE_TYPE_CHALLENGE) {
370121e5 JB	211	printkl(KERN_NOTICE PFX "Shared Key Authentication failed due to a missing challenge.\n");
	212	break;
	213	}
	214	/* Save the challenge */
	215	spin_lock_irqsave(&mac->lock, flags);
	216	net->challenge_len = *data++;
345f6b8b	217	if (net->challenge_len > WLAN_AUTH_CHALLENGE_LEN)
370121e5	218	net->challenge_len = WLAN_AUTH_CHALLENGE_LEN;
571d6eee ACM	219	kfree(net->challenge);
	220	net->challenge = kmemdup(data, net->challenge_len,
	221	GFP_ATOMIC);
	222	if (net->challenge == NULL) {
	223	printkl(KERN_NOTICE PFX "Shared Key "
	224	"Authentication failed due to "
	225	"memory shortage.\n");
	226	spin_unlock_irqrestore(&mac->lock, flags);
	227	break;
	228	}
370121e5	229	aq->state = IEEE80211SOFTMAC_AUTH_SHARED_RESPONSE;
370121e5	230
345f6b8b DD	231	/* We reuse the work struct from the auth request here.
	232	* It is safe to do so as each one is per-request, and
	233	* at this point (dealing with authentication response)
	234	* we have obviously already sent the initial auth
	235	* request. */
	236	cancel_delayed_work(&aq->work);
	237	INIT_WORK(&aq->work, &ieee80211softmac_auth_challenge_response, (void *)aq);
	238	schedule_work(&aq->work);
	239	spin_unlock_irqrestore(&mac->lock, flags);
76ea4c7f	240	return 0;
370121e5	241	case IEEE80211SOFTMAC_AUTH_SHARED_PASS:
76ea4c7f DD	242	kfree(net->challenge);
	243	net->challenge = NULL;
	244	net->challenge_len = 0;
370121e5 JB	245	/* Check the status code of the response */
	246	switch(auth->status) {
	247	case WLAN_STATUS_SUCCESS:
	248	/* Update the status to Authenticated */
	249	spin_lock_irqsave(&mac->lock, flags);
	250	net->authenticating = 0;
	251	net->authenticated = 1;
	252	spin_unlock_irqrestore(&mac->lock, flags);
	253	printkl(KERN_NOTICE PFX "Shared Key Authentication completed with "MAC_FMT"\n",
	254	MAC_ARG(net->bssid));
76ea4c7f	255	ieee80211softmac_call_events(mac, IEEE80211SOFTMAC_EVENT_AUTHENTICATED, net);
370121e5 JB	256	break;
	257	default:
	258	printkl(KERN_NOTICE PFX "Shared Key Authentication with "MAC_FMT" failed, error code: %i\n",
	259	MAC_ARG(net->bssid), le16_to_cpup(&auth->status));
	260	/* Lock and reset flags */
	261	spin_lock_irqsave(&mac->lock, flags);
	262	net->authenticating = 0;
	263	net->authenticated = 0;
	264	spin_unlock_irqrestore(&mac->lock, flags);
	265	/* Count the error? */
	266	break;
	267	}
	268	goto free_aq;
	269	break;
	270	default:
	271	printkl(KERN_WARNING PFX "Unhandled Authentication Step: %i\n", auth->transaction);
	272	break;
	273	}
	274	goto free_aq;
	275	break;
	276	default:
	277	/* ERROR */
	278	goto free_aq;
	279	break;
	280	}
	281	return 0;
	282	free_aq:
	283	/* Cancel the timeout */
	284	spin_lock_irqsave(&mac->lock, flags);
	285	cancel_delayed_work(&aq->work);
	286	/* Remove this item from the queue */
	287	list_del(&aq->list);
	288	spin_unlock_irqrestore(&mac->lock, flags);
	289
	290	/* Free it */
	291	kfree(aq);
	292	return 0;
	293	}
	294
	295	/*
	296	* Handle deauthorization
	297	*/
714e1a51	298	static void
370121e5 JB	299	ieee80211softmac_deauth_from_net(struct ieee80211softmac_device *mac,
	300	struct ieee80211softmac_network *net)
	301	{
	302	struct ieee80211softmac_auth_queue_item *aq = NULL;
	303	struct list_head *list_ptr;
	304	unsigned long flags;
	305
6d92f83f DD	306	/* deauthentication implies disassociation */
	307	ieee80211softmac_disassoc(mac);
	308
370121e5 JB	309	/* Lock and reset status flags */
	310	spin_lock_irqsave(&mac->lock, flags);
	311	net->authenticating = 0;
	312	net->authenticated = 0;
	313
	314	/* Find correct auth queue item, if it exists */
	315	list_for_each(list_ptr, &mac->auth_queue) {
	316	aq = list_entry(list_ptr, struct ieee80211softmac_auth_queue_item, list);
	317	if (!memcmp(net->bssid, aq->net->bssid, ETH_ALEN))
	318	break;
	319	else
	320	aq = NULL;
	321	}
	322
	323	/* Cancel pending work */
	324	if(aq != NULL)
	325	/* Not entirely safe? What about running work? */
	326	cancel_delayed_work(&aq->work);
	327
	328	/* Free our network ref */
	329	ieee80211softmac_del_network_locked(mac, net);
	330	if(net->challenge != NULL)
	331	kfree(net->challenge);
	332	kfree(net);
	333
2dd50801 JB	334	/* can't transmit data right now... */
2dd50801 JB	335	netif_carrier_off(mac->dev);
370121e5 JB	336	spin_unlock_irqrestore(&mac->lock, flags);
	337	}
	338
	339	/*
	340	* Sends a deauth request to the desired AP
	341	*/
	342	int
	343	ieee80211softmac_deauth_req(struct ieee80211softmac_device *mac,
	344	struct ieee80211softmac_network *net, int reason)
	345	{
	346	int ret;
	347
370121e5 JB	348	/* Make sure the network is authenticated */
	349	if (!net->authenticated)
	350	{
5398d590	351	dprintkl(KERN_DEBUG PFX "Can't send deauthentication packet, network is not authenticated.\n");
370121e5 JB	352	/* Error okay? */
	353	return -EPERM;
	354	}
	355
	356	/* Send the de-auth packet */
	357	if((ret = ieee80211softmac_send_mgt_frame(mac, net, IEEE80211_STYPE_DEAUTH, reason)))
	358	return ret;
	359
	360	ieee80211softmac_deauth_from_net(mac, net);
	361	return 0;
	362	}
	363
	364	/*
	365	* This should be registered with ieee80211 as handle_deauth
	366	*/
	367	int
b10c991f	368	ieee80211softmac_deauth_resp(struct net_device dev, struct ieee80211_deauth deauth)
370121e5 JB	369	{
	370
	371	struct ieee80211softmac_network *net = NULL;
	372	struct ieee80211softmac_device *mac = ieee80211_priv(dev);
	373
d57336e3 DD	374	if (unlikely(!mac->running))
	375	return -ENODEV;
	376
b10c991f	377	if (!deauth) {
370121e5 JB	378	dprintk("deauth without deauth packet. eek!\n");
	379	return 0;
	380	}
	381
b10c991f	382	net = ieee80211softmac_get_network_by_bssid(mac, deauth->header.addr2);
370121e5 JB	383
370121e5 JB	384	if (net == NULL) {
5398d590	385	dprintkl(KERN_DEBUG PFX "Received deauthentication packet from "MAC_FMT", but that network is unknown.\n",
b10c991f	386	MAC_ARG(deauth->header.addr2));
370121e5 JB	387	return 0;
	388	}
	389
	390	/* Make sure the network is authenticated */
	391	if(!net->authenticated)
	392	{
5398d590	393	dprintkl(KERN_DEBUG PFX "Can't perform deauthentication, network is not authenticated.\n");
370121e5 JB	394	/* Error okay? */
	395	return -EPERM;
	396	}
	397
	398	ieee80211softmac_deauth_from_net(mac, net);
995c9926 DD	399
	400	/* let's try to re-associate */
	401	schedule_work(&mac->associnfo.work);
370121e5 JB	402	return 0;
370121e5 JB	403	}