examples/nanocoap_server: fix a buffer overflow bug

2024-12-29 04:50:03 +01:00 · 2021-04-26 05:52:03 -04:00 · 2021-04-26 05:52:03 -04:00 · 68ccf36754
commit 68ccf36754
parent fed2c8e87e
1 changed files with 10 additions and 5 deletions
--- a/examples/nanocoap_server/coap_handler.c
+++ b/examples/nanocoap_server/coap_handler.c
@ -97,11 +97,16 @@ static ssize_t _riot_value_handler(coap_pkt_t *pkt, uint8_t *buf, size_t len, vo
    case COAP_PUT:
    case COAP_POST:
    {
-        /* convert the payload to an integer and update the internal value */
-        char payload[16] = { 0 };
-        memcpy(payload, (char*)pkt->payload, pkt->payload_len);
-        internal_value = strtol(payload, NULL, 10);
-        code = COAP_CODE_CHANGED;
+        if (pkt->payload_len < 16) {
+            /* convert the payload to an integer and update the internal value */
+            char payload[16] = { 0 };
+            memcpy(payload, (char*)pkt->payload, pkt->payload_len);
+            internal_value = strtol(payload, NULL, 10);
+            code = COAP_CODE_CHANGED;
+        }
+        else {
+            code = COAP_CODE_REQUEST_ENTITY_TOO_LARGE;
+        }
    }
    }