From c5e3f60a02446e771f3b390df2ebe5d875a308e5 Mon Sep 17 00:00:00 2001
From: fushuchang <fushuchang2@huawei.com>
Date: Fri, 22 Dec 2023 11:12:03 +0800
Subject: [PATCH] add hichain ontransmit buffer len check

Signed-off-by: fushuchang <fushuchang2@huawei.com>
---
 core/authentication/src/auth_hichain.c | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/core/authentication/src/auth_hichain.c b/core/authentication/src/auth_hichain.c
index f7b362e033..fc40deb58d 100644
--- a/core/authentication/src/auth_hichain.c
+++ b/core/authentication/src/auth_hichain.c
@@ -27,6 +27,7 @@
 #define GROUPID_BUF_LEN 65
 #define RETRY_TIMES 16
 #define RETRY_MILLSECONDS 500
+#define ONTRANSMIT_MAX_DATA_BUFFER_LEN 5120 /* 5 × 1024 */
 
 typedef struct {
     char groupId[GROUPID_BUF_LEN];
@@ -72,6 +73,10 @@ static bool OnTransmit(int64_t authSeq, const uint8_t *data, uint32_t len)
 {
     SoftBusLog(SOFTBUS_LOG_AUTH, SOFTBUS_LOG_INFO,
         "hichain OnTransmit: authSeq=%" PRId64 ", len=%u.", authSeq, len);
+    if (len > ONTRANSMIT_MAX_DATA_BUFFER_LEN) {
+        SoftBusLog(SOFTBUS_LOG_AUTH, SOFTBUS_LOG_ERROR, "data len is invalid, len=%u", len);
+        return false;
+    }
     if (AuthSessionPostAuthData(authSeq, data, len) != SOFTBUS_OK) {
         SoftBusLog(SOFTBUS_LOG_AUTH, SOFTBUS_LOG_ERROR, "hichain OnTransmit fail: authSeq=%" PRId64, authSeq);
         return false;
-- 
Gitee