BUG in AWS/aws_mqtt.c when receiving a long message

Ask the Community
Close
Ask the Community
nav search Icon
論壇 gray-arrow gray-arrow
資源 gray-arrow gray-arrow
關於 gray-arrow gray-arrow
nav-user Account

Tip / Sign in to post questions, reply, level up, and achieve exciting badges. Know more

cross mob

BUG in AWS/aws_mqtt.c when receiving a long message

EyLa_3227556
Level 3
Level 3
10 replies posted 5 replies posted 10 questions asked
‎Aug 12, 2020 07:14 AM
‎Aug 12, 2020 07:14 AM

Hello,

There's a bug in aws_mqtt.c (WICED 6.4) when receiving a long messages on a subscribed topic (e.g. AWS CreateKeysAndCertificate provisioning message response)

In such case the message is broken into chunks that are being transferred on several calls to mqtt_connection_event_cb(...).

The topic is carried in the first chunk and need to be stored in an allocated memory, not just being pointed at (as its pointing to temporary object).

Attached is a screen cap of the change required (on the right pane)

NOTE - There is still unhandled vulnerability if the topic name itself is very long and crosses a chunk boundary !

Cypress/Infineon - please handle this vulnerability !!!

Keep safe.

2020-08-12 17_10_50-.png

Labels
0 Likes
Subscribe
1 Reply

Re: BUG in AWS/aws_mqtt.c when receiving a long message

RaktimR_11
Moderator
Moderator
Moderator
500 replies posted 250 replies posted 100 replies posted
‎Aug 13, 2020 06:12 AM
‎Aug 13, 2020 06:12 AM

Thanks for bringing this to our notice. We will review this bug and get back to you if we have any further feasibility query.

0 Likes