Parsing of too long strings (> 127 characters) was buggy because of a wrong
cast on the length bytes. To fix the bug, we rely on mqtt_read_2byte_int()
function. This way, the string length is properly decoded.
This patch should partely fix the issue #1310. It must be backported to 2.4.
feature ignore_unknown_macro
server s1 {
- # MQTT 3.1.1 CONNECT packet (id: test_sub)
- recv 22
+ # MQTT 3.1.1 CONNECT packet (id: test_subaaaaaa... [len = 200])
+ recv 215
sendhex "20020000"
close
client c1_311_1 -connect ${h1_fe1_sock} {
# Valid MQTT 3.1.1 CONNECT packet (id: test_sub)
- sendhex "101400044d5154540402003c0008746573745f737562"
+ sendhex "10d40100044d5154540402003c00c8746573745f737562616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161"
recv 4
expect_close
} -run
*/
static inline struct ist mqtt_read_string(struct ist parser, struct ist *str)
{
- uint16_t len;
+ uint16_t len = 0;
/* read and compute the string length */
if (istlen(parser) <= 2)
goto error;
- len = ((uint16_t)*istptr(parser) << 8) + (uint16_t)*(istptr(parser) + 1);
- parser = istadv(parser, 2);
- if (istlen(parser) < len)
+ parser = mqtt_read_2byte_int(parser, &len);
+ if (!isttest(parser) || istlen(parser) < len)
goto error;
if (str) {
projects / thirdparty / haproxy.git / commitdiff
