Currently, we are developing a system that operates by connecting to IoTHUB using AzureRTOS on RX65N. Since the system requires access via a proxy server, We are using NXD_MQTT_OVER_WEBSOCKET enabled. When the system is transmitting telemetry data, We are facing the problem of bus errors when TCP retransmissions occur for some reason. We used the debugger to track down where the bus error occurred and found _nx_tcp_socket_retransmit() uses nx_packet_prepend_ptr in packet_ptr, but it seems that the value is inappropriate for telemetry data, and that's why a bus error occurs. Upon further investigation of this case, The area for telemetry data is acquired with nx_azure_iot_publish_packet_get(), but the function used for acquisition there is nx_secure_tls_packet_allocate() and it seems that the area for web sockets is not considered. is. So, try nx_websocket_client_packet_allocate() for web socket After confirming the operation after modifying it to secure the area using it, it seems that it works well without a bus error even if a retransmission operation occurs. The following 3 items are requested for confirmation. (1) Has Microsoft confirmed any of the following problems? When sending telemetry data with NXD_MQTT_OVER_WEBSOCKET enabled, access to an invalid memory address occurs when TCP retransmission occurs for some reason. (2) Is the following a good solution for this problem? Change function used in nx_azure_iot_publish_packet_get() from nx_secure_tls_packet_allocate() to nx_websocket_client_packet_allocate() when NXD_MQTT_OVER_WEBSOCKET is enabled (attaching the file of the correction example) (3) Could you please consider confirming the reproduction of this issue at Microsoft and providing a countermeasure version? Best regards, --- Yoji Sato Grape Systems Inc.

Hello @yoji sato , could you please let me know whether the macro NX_DISABLE_IPV6 is defined in your system, thanks a lot. Update We have identified this as an issue and a fix will be rolled out on GitHub to address this by the end of the month. Work around Before the official patch is released, to remediate any business impact, you could try with the patch 0001-Fix-illegal-access-when-NXD_MQTT_OVER.txt . Since .patch extension is not allowed as an attachment, I changed it to .txt extension and you may change it back after downloading and apply the patch. In the future, the official fix can be accessed in Github by the end of this month, and the official release which includes this fix is planned in October this year. Fix The official fix can be accessed through Github in the commit on 30 June, 2023, through https://github.com/azure-rtos/netxduo/commit/b53390f94b6f7655059b6a3763c3a016ed61681

Illegal memory access occurs when resending telemetry data when NXD_MQTT_OVER_WEBSOCKET is enabled

Accepted answer

Haiqing Zhao 165 Reputation points Microsoft Employee

2023-06-08T01:52:48.9433333+00:00

Hello @yoji sato , could you please let me know whether the macro NX_DISABLE_IPV6 is defined in your system, thanks a lot.

Update

We have identified this as an issue and a fix will be rolled out on GitHub to address this by the end of the month.

Work around

Before the official patch is released, to remediate any business impact, you could try with the patch 0001-Fix-illegal-access-when-NXD_MQTT_OVER.txt. Since .patch extension is not allowed as an attachment, I changed it to .txt extension and you may change it back after downloading and apply the patch.

In the future, the official fix can be accessed in Github by the end of this month, and the official release which includes this fix is planned in October this year.

Fix

The official fix can be accessed through Github in the commit on 30 June, 2023, through https://github.com/azure-rtos/netxduo/commit/b53390f94b6f7655059b6a3763c3a016ed61681
Please sign in to rate this answer.

1 person found this answer helpful.
yoji sato 281 Reputation points

2023-06-08T03:08:39.0633333+00:00

Hello Haiqing Zhao.
Thank you for your reply and inquiry.

Our system defines "NX_DISABLE_IPV6".
(for the purpose of reducing memory capacity)

Best regards,

Haiqing Zhao 165 Reputation points Microsoft Employee

2023-06-12T07:24:19.2766667+00:00

Hi @yoji sato , great thanks for you and corresponding information provided. We have confirmed this issue, and will update the issue fix to Github by the end of this month.

yoji sato 281 Reputation points

2023-06-12T15:58:29.8766667+00:00

Hello, Zhao Haiqing.
Thank you for your reply.

We need a fix release this Wednesday once.
So we can't wait for the release at the end of this month.

Would it be possible for you to let us know as soon as possible whether the countermeasures we reported to you are effective or not?

And if it seems that there is a problem with that measure alone, please comment to that effect as well.

Best regards,

Yoji Sato
Grape Systems inc.

Haiqing Zhao 165 Reputation points Microsoft Employee

2023-06-13T07:25:51.2666667+00:00

Hello @yoji sato , so far we only have a beta version for the fix, you could try with the patch 0001-Fix-illegal-access-when-NXD_MQTT_OVER.txt. Since .patch extension is not allowed as an attachment, I changed it to .txt extension and you may change it back after downloading and apply the patch.

In the future, the official fix can be accessed in Github by the end of this month, and the official release which includes this fix is planned in October this year.

yoji sato 281 Reputation points

2023-06-13T08:06:25.36+00:00

Hello Haiqing Zhao

Thank you for your reply.
Also, thank you for providing the patch file information.

We understand that there are other parts that need to be modified in addition to the parts that we fixed.

Just in case, let me confirm.
Is it correct to assume that the countermeasures for this problem are only the patch information you provided, and that there is no need for anything else?

And thank you for the information about future release plans.
We will share it with our customers and consider how to deal with it.

Best regards,

Yoji Sato

Haiqing Zhao 165 Reputation points Microsoft Employee

2023-06-13T09:33:57.1566667+00:00

Hi @yoji sato , the patch contains enough information for this issue, and specific tests were introduced to guarantee the fix.

yoji sato 281 Reputation points

2023-06-13T12:42:33.1+00:00

Hello, Haiqing Zhao

Thank you for your reply.

I understand that the previous patch contains all the necessary fixes.

We will also apply the patch and try to work.

Once again, thank you very much for your prompt response.

Yoji Sato

Grape Systems Inc.

LeelaRajeshSayana-MSFT 13,966 Reputation points

2023-06-13T13:32:07.0366667+00:00

Hi @yoji sato , please let us know if you still encounter any issues after applying the patch upgrade. We would be glad to answer any further questions you may have.

I have updated the response provided to capture all the fix details. Greetings! If the fix helped, please do click Accept Answer and Yes for the answer provided. Doing so would help other community members with similar issue identify the solution. I highly appreciate your contribution to the community.

yoji sato 281 Reputation points

2023-06-29T01:14:02.47+00:00

Hello Leela Rajesh Sayana、
Thank you for following this matter.

We are currently working on another priority issue and have not yet been able to confirm using the patch you provided the other day.

We have also shared with our customers that the corresponding version will be uploaded to Git at the end of this month, and they have agreed that we will officially take measures after confirming the content.

We are very sorry, but please wait a little longer for this matter to be closed.

Best regards,
Yoji Sato
Grape Systems Inc.

Haiqing Zhao 165 Reputation points Microsoft Employee

2023-07-04T02:16:08.9+00:00

Hi @yoji sato ,

Just would like to let you know the official fix can be accessed through Github in the commit on 30 June, 2023, through https://github.com/azure-rtos/netxduo/commit/b53390f94b6f7655059b6a3763c3a016ed61681f.

Warm Regards,

Haiqing

LeelaRajeshSayana-MSFT 13,966 Reputation points

2023-07-07T13:37:39.88+00:00

Hi @yoji sato Greetings! I am following to see if you got a chance to review the above feedback. The fix for this issue has been rolled out on June 30th. I appreciate it if you can validate this and let us know if you have any further issues or concerns.

yoji sato 281 Reputation points

2023-07-07T19:14:36.6533333+00:00

Hello, Haiqing Zhao
Thank you for contacting us about the update.

Hello Leela Rajesh Sayana - MSFT
Thank you for following up on this matter.

I apologize for the delay in responding to this matter.

Please let me confirm one thing.

Multiple improvements have been made, and there seem to be a lot of fix files, but if I only want to fix our problem this time, can I just apply the patch you announced the other day?

(patch 0001-Fix-illegal-access-when-NXD_MQTT_OVER.txt)

Best regards,

Yoji Sato

yoji sato 281 Reputation points

2023-07-07T22:42:05.83+00:00

Hello, Haiqing Zhao

I have one more request.

In the new NetX, could you please let us know if there are any modifications that you would recommend applying?

Update on 30 Jun 2023. Expand to see details.

6cb10f01 Fix typo in NetXDuo Crypto

996dd14fc BSD functions overriding option

3b756c219 Fix mqtt interoperability issue when upgrade to ubuntu 20.04

01ca51021 Added support for skipping failed step

3e3a15e79 Add record length checking in nxe_secure_tls_session_send.

ec617d178 Fix demo_netx_secure_tls test link issue under nightly build

a934cb718 Fix pipeline libgcc issue in nx_secure_interoperability test

f08024578 Fix illegal access when NXD_MQTT_OVER_WEBSOCKET enabled

9798e2b89 Corrected the mDNS symbols check

456007dd1 Fixed multiple proxy update issue

cf0bf15b5 Add TLS sample demo_netx_secure_tls.c.

87ea505bf Add sha256 in driver preprocess command for ADU

7e1b9686a Add pnp check for ADU

-ef78d336d Improved the code to ignore null file urls.

Best regards,

Yoji Sato

Bo Chen 596 Reputation points Microsoft Employee

2023-07-12T02:52:31.3633333+00:00

Hi @yoji sato Yes, you can only apply the patch Haiqing made before, but I highly recommend you applying all changes from GitHub.

yoji sato 281 Reputation points

2023-07-12T22:28:30.88+00:00

Hello Bo Chen,
Thank you for your reply.

We are currently in pre-production testing and don't want to make unnecessary changes.
If possible, we would like to apply only the items that affect our system, so could you please provide detailed information on each item?

Best regards,
Yoji Sato

Bo Chen 596 Reputation points Microsoft Employee

2023-07-13T02:08:42.62+00:00

Hi @yoji sato Understood, you can only apply the update for MQTT over WebSocket despite other changes should not affect your system. Details below:

6cb10f01 Fix typo in NetXDuo Crypto [Bo]: Fixed the typo: addrsss -> address

996dd14fc BSD functions overriding option [Bo]: Support native API, new feature.

3b756c219 Fix mqtt interoperability issue when upgrade to ubuntu 20.04 [Bo]: Fix internal test pipeline, no real update on GitHub.

01ca51021 Added support for skipping failed step [Bo]: ADU (Device Update) new feature.

3e3a15e79 Add record length checking in nxe_secure_tls_session_send. [Bo] Add the check for plaintext length as the fragmentation is not supported currently. TLS improvement.

ec617d178 Fix demo_netx_secure_tls test link issue under nightly build [Bo]: Fix internal test pipeline, no real update on GitHub.

a934cb718 Fix pipeline libgcc issue in nx_secure_interoperability test [Bo]: Fix internal test pipeline, no real update on GitHub.

f08024578 Fix illegal access when NXD_MQTT_OVER_WEBSOCKET enabled [Bo]: Fix the MQTT over WebSocket issue for you,

9798e2b89 Corrected the mDNS symbols check [Bo]: Fix the compilation error for old IPv6 macro.

456007dd1 Fixed multiple proxy update issue [Bo]: ADU (Device Update) improvement.

cf0bf15b5 Add TLS sample demo_netx_secure_tls.c.

87ea505bf Add sha256 in driver preprocess command for ADU [Bo]: ADU (Device Update) new feature.

7e1b9686a Add pnp check for ADU [Bo]: ADU (Device Update) improvement.

-ef78d336d Improved the code to ignore null file urls. [Bo]: ADU (Device Update) improvement.

yoji sato 281 Reputation points

2023-07-13T04:11:31.21+00:00

Hello Bo Chen,
Thank you for your reply and information.

We have already referred to this information, can you provide more detailed information?

Best Regards,
Yoji Sato.

Bo Chen 596 Reputation points Microsoft Employee

2023-07-13T04:53:48.8266667+00:00

Could you see my comments start from [Bo]?

yoji sato 281 Reputation points

2023-07-13T05:18:33.6766667+00:00

Hello Bo Chen,
Thank you for your reply.

I'm sorry, but the way I made this request was inappropriate, so I'll write it again.

There is modified difference information as source code here, but there is no information that understands the intention and background of the modification.

So, if possible, could you please provide us with detailed information about what the problem was with each of them so that we can explain to the customer and determine if it affects our system?

Best regards,
Yoji Sato.

Bo Chen 596 Reputation points Microsoft Employee

2023-07-14T05:58:41.28+00:00

Hi @yoji sato Sorry. 1. I think I already shared the necessary information for each item to you, 2. You can check the code from GitHub, and 3. You can only apply the changes for MQTT over WebSocket if you worry about other changes.

yoji sato 281 Reputation points

2023-07-14T09:09:48.06+00:00

Hello Bo Chen,
Thank you for your reply.

We understand that the information you can provide is all that you have provided so far, and that we need to determine whether it is necessary to apply it based on the content. We will refer to them and consider how to deal with them.

Thank you again for your support.
And it's OK to close this case.

Yoji Sato.
Grape systems Inc.
Sign in to comment

Share via

Illegal memory access occurs when resending telemetry data when NXD_MQTT_OVER_WEBSOCKET is enabled

Best regards,

0 additional answers