Jonathan Hui 3d731aae2f [coap] fix null-pointer dereference on Block2 invalid requests (#13079) ...

This commit fixes a deterministic null-pointer dereference in
CoapBase::ProcessBlock2Request when receiving a Block2 request
with block number greater than 0 without a preceding active
blockwise transfer.

Previously, when mLastResponse was null, the option copying logic
would unconditionally attempt to initialize the iterator with a
dereferenced mLastResponse pointer (iterator.Init(*mLastResponse)),
causing a segmentation fault crash.

This fix inserts a VerifyOrExit check on mLastResponse inside
ProcessBlock2Request. If mLastResponse is null, it returns the
kErrorNoFrameReceived error code. In ProcessBlockwiseRequest, this
is mapped to a 4.08 Request Entity Incomplete response, matching the
spec-compliant error handling behavior of Block1.

An automated reproduction and verification test case has also been
added to tests/nexus/test_coap_block.cpp.

2026-05-07 07:31:04 -07:00

..

fuzz

[nexus] add gRPC support and live demo (#12898)

2026-04-16 22:05:19 -05:00

gtest

[dataset] add API otDatasetIsValid support (#12757)

2026-03-26 17:26:03 -05:00

nexus

[coap] fix null-pointer dereference on Block2 invalid requests (#13079)

2026-05-07 07:31:04 -07:00

scripts

[tcat] implement rate limitation for TCAT TLVs 0x10, 0x11 and 0x12 and remove TLV 0x14 (#12211)

2026-05-04 07:10:19 -07:00

toranj

[logging] introduce log level override feature (#12903)

2026-04-17 13:23:14 -05:00

unit

[mac] enforce KEK validation for Key ID Mode 0 frames (#13056)

2026-05-06 14:51:38 -07:00

CMakeLists.txt

[nexus] add gRPC support and live demo (#12898)

2026-04-16 22:05:19 -05:00