9 years ago · b6b5555bc8
--- a/net/wireless/mlme.c
+++ b/net/wireless/mlme.c
@@ -222,7 +222,7 @@ int cfg80211_mlme_auth(struct cfg80211_registered_device *rdev,
 
															 	ASSERT_WDEV_LOCK(wdev);
														
 
															 	if (auth_type == NL80211_AUTHTYPE_SHARED_KEY)
														
 
															-		if (!key || !key_len || key_idx < 0 || key_idx > 4)
														
 
															+		if (!key || !key_len || key_idx < 0 || key_idx > 3)
														
 
															 			return -EINVAL;
														
 
															 	if (wdev->current_bss &&
														
--- a/net/wireless/nl80211.c
+++ b/net/wireless/nl80211.c
@@ -7388,7 +7388,7 @@ static int nl80211_authenticate(struct sk_buff *skb, struct genl_info *info)
 
															 		    (key.p.cipher != WLAN_CIPHER_SUITE_WEP104 ||
														
 
															 		     key.p.key_len != WLAN_KEY_LEN_WEP104))
														
 
															 			return -EINVAL;
														
 
															-		if (key.idx > 4)
														
 
															+		if (key.idx > 3)
														
 
															 			return -EINVAL;
														
 
															 	} else {
														
 
															 		key.p.key_len = 0;