Part Number: CC2538
Other Parts Discussed in Thread: Z-STACK
Hi,
I'm a PhD student and currently learning Z-Stack implementation. Recently, I find some ZCL API calls could be crashed with random data. I'm using Z-Stack 3.0.1 and CC2538 and IAR Workbench for debugging. The project I'm using is the sample project GenericApp.
First, I use some fuzzing tool to generate ZCL command message based on its specification, including some random data in its payload. The ZCL header is exactly follow the spec. And for attribute value, I use some random data. The I verify them in CC2538. The functions I found problems are zclParseInWrite and zcl_HandleExternal.
I've attached more details including my source codes, log files and sniff data. I suppose Z-Stack could handle random payload/malformed data, like returning error codes, since attacker may manipulate the packet. Could you please help me verify if something wrong with the API calls?
Thank you so much!