qcacld-2.0: Add sanity check to limit mgmt frames data len

Currently the mpdu_data_len in Rx pkt meta is not checked for upper bound in wma_form_rx_packet. Add sanity check to drop the packet if mpdu_data_len is greater than 2000 bytes. Also add upper bound check for frame_len in lim_process_auth_frame function. Change-Id: Id8d80f892c18d044896224c22b21f667ee30eb6b CRs-Fixed: 2133040
author: gaurank kathpalia <gkathpal@codeaurora.org> 2017-10-26 17:13:30 +0530
committer: Gerrit - the friendly Code Review server <code-review@localhost> 2017-11-20 22:53:12 -0800
commit: 983aa556e48083bf9aad62bdecf085300f485424 (patch)
tree: ab3919da1a7ba47442d33800a31f263058289cb1
parent: e9fd4d5b3e1ff8613987533f3c5993d231ba1f60 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/CORE/MAC/src/pe/lim/limProcessAuthFrame.c b/CORE/MAC/src/pe/lim/limProcessAuthFrame.c
index 57fde689ef8b..3a88aa4bbc90 100644
--- a/CORE/MAC/src/pe/lim/limProcessAuthFrame.c
+++ b/CORE/MAC/src/pe/lim/limProcessAuthFrame.c
@@ -291,7 +291,7 @@ limProcessAuthFrame(tpAniSirGlobal pMac, tANI_U8 *pRxPacketInfo, tpPESession pse
         }
 
         if ((frameLen < LIM_ENCR_AUTH_BODY_LEN_SAP) ||
-            (frameLen > LIM_ENCR_AUTH_BODY_LEN_SAP))
+            (frameLen > LIM_ENCR_AUTH_BODY_LEN))
         {
             // Log error
             limLog(pMac, LOGE,
author	gaurank kathpalia <gkathpal@codeaurora.org>	2017-10-26 17:13:30 +0530
committer	Gerrit - the friendly Code Review server <code-review@localhost>	2017-11-20 22:53:12 -0800
commit	983aa556e48083bf9aad62bdecf085300f485424 (patch)
tree	ab3919da1a7ba47442d33800a31f263058289cb1
parent	e9fd4d5b3e1ff8613987533f3c5993d231ba1f60 (diff)