[IOT-994] Fixing crash for parsing arbitrary UTF-8 payload

author Markus Jung <markus.jung@samsung.com>

Mon, 11 Apr 2016 09:23:33 +0000 (18:23 +0900)

committer Habib Virji <habib.virji@samsung.com>

Tue, 19 Apr 2016 15:53:39 +0000 (15:53 +0000)
author Markus Jung <markus.jung@samsung.com>
Mon, 11 Apr 2016 09:23:33 +0000 (18:23 +0900)
committer Habib Virji <habib.virji@samsung.com>
Tue, 19 Apr 2016 15:53:39 +0000 (15:53 +0000)
diff --git a/resource/csdk/stack/src/ocpayloadparse.c b/resource/csdk/stack/src/ocpayloadparse.c

index f731823..b4e053c 100755 (executable)
--- a/resource/csdk/stack/src/ocpayloadparse.c
+++ b/resource/csdk/stack/src/ocpayloadparse.c
@@ -969,6 +969,11 @@ static OCStackResult OCParseRepPayload(OCPayload **outPayload, CborValue *root)
          CborValue curVal;
          ret = OC_STACK_MALFORMED_RESPONSE;
  
+        // temporary fix to check for malformed cbor payload
+        if (!cbor_value_is_map(&rootMap) && !cbor_value_is_array(&rootMap)){
+            goto exit;
+        }
+
          if (cbor_value_is_map(&rootMap))
          {
              err = cbor_value_map_find_value(&rootMap, OC_RSRVD_HREF, &curVal);
@@ -979,6 +984,7 @@ static OCStackResult OCParseRepPayload(OCPayload **outPayload, CborValue *root)
                  VERIFY_CBOR_SUCCESS(TAG, err, "Failed to find uri");
              }
          }
+
          // Resource types
          if (cbor_value_is_map(&rootMap))
          {
@@ -1004,6 +1010,7 @@ static OCStackResult OCParseRepPayload(OCPayload **outPayload, CborValue *root)
              err = OCParseSingleRepPayload(&temp, &rootMap, true);
              VERIFY_CBOR_SUCCESS(TAG, err, "Failed to parse single rep payload");
          }
+
          if(rootPayload == NULL)
          {
              rootPayload = temp;
author	Markus Jung <markus.jung@samsung.com>
	Mon, 11 Apr 2016 09:23:33 +0000 (18:23 +0900)
committer	Habib Virji <habib.virji@samsung.com>
	Tue, 19 Apr 2016 15:53:39 +0000 (15:53 +0000)