CoAP.Net icon indicating copy to clipboard operation
CoAP.Net copied to clipboard

Published 20 hours ago verified publisher icon NZSmartie

Check for invalid formatting during deserialisation

Open NZSmartie opened this issue 8 years ago • 0 comments

Message.Deserialise(...) assumes a non-mutated, perfectly formatted message is provided. If invalid data is provided, it will still try to parse the data and possibly have a fatal failure.

The CoAP specification clearly states multiple scenarios that need to be checked and reject or ignore the message.

NZSmartie avatar Feb 18 '17 11:02 NZSmartie