Fixes for zero length packet bug, buffer overflow in parseInt(), added end() method #757

davruet · 2017-10-22T02:39:47Z

Previously, ArduinoOTA would stop receiving any packets if the port received a zero-length UDP packet, commonly sent by network scanners like nmap. Fixed to flush() after every call to parsePacket(), even if read length is 0.

Additionally, added length checking to fix a potential buffer overflow in parseInt().

Finally, added an end() method that stops the OTA listener and releases resources.

…ro-length UDP packet, commonly sent by network scanners like nmap. Fixed to flush() after every call to parsePacket(), even if read length is 0. Additionally, added length checking to fix a potential buffer overflow in parseInt(). Finally, added an end() method that stops the OTA listener and releases resources.

everslick · 2017-10-23T18:23:21Z

MDNS.end(); should be wrapped in if(_mdnsEnabled){ IMHO.

me-no-dev · 2017-10-25T10:13:10Z

@davruet please see @everslick comment :)

davruet · 2017-10-25T16:32:06Z

Got it - added it!

me-no-dev · 2017-10-30T09:44:23Z

merged :)

…d end() method (espressif#757) * ArduinoOTA would stop receiving any packets if the port received a zero-length UDP packet, commonly sent by network scanners like nmap. Fixed to flush() after every call to parsePacket(), even if read length is 0. Additionally, added length checking to fix a potential buffer overflow in parseInt(). Finally, added an end() method that stops the OTA listener and releases resources. * Only end MDNS in end() if mdns mode is enabled.

Only end MDNS in end() if mdns mode is enabled.

9ac449a

me-no-dev merged commit 126674c into espressif:master Oct 30, 2017

koskee mentioned this pull request Nov 8, 2017

ESP32 reboots periodically Edzelf/ESP32-Radio#49

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Fixes for zero length packet bug, buffer overflow in parseInt(), added end() method #757

Fixes for zero length packet bug, buffer overflow in parseInt(), added end() method #757

davruet commented Oct 22, 2017

everslick commented Oct 23, 2017

me-no-dev commented Oct 25, 2017

davruet commented Oct 25, 2017

me-no-dev commented Oct 30, 2017

Fixes for zero length packet bug, buffer overflow in parseInt(), added end() method #757

Fixes for zero length packet bug, buffer overflow in parseInt(), added end() method #757

Conversation

davruet commented Oct 22, 2017

everslick commented Oct 23, 2017

me-no-dev commented Oct 25, 2017

davruet commented Oct 25, 2017

me-no-dev commented Oct 30, 2017