DL NAS Transport: Fix Message Type retrieval on too short message (!3446) · Merge requests · oai / openairinterface5G

The change addresses the SM message type retrieval for DL NAS Transport messages. The assumption of an offset 17 = 7 (MM Sec) + 3 (MM Plain) + 1 (IEI) + 2 (Len) + 4 (SM) is correct.

However, if the DL NAS Transport is received in a plain header, the lengths would not add up anymore. (This is not complying with the standard, so not allowed, but possible). The check for the length is necessary to not process arbitrary memory contents beyond the pdu_buffer.

Signed-off-by: Eduard Vlad eduard.vlad@rwth-aachen.de

DL NAS Transport: Fix Message Type retrieval on too short message

Merge request reports