From c9f8433356b4ed9c8cf0033ad1cc3ecc8c59915d Mon Sep 17 00:00:00 2001
From: aozhiwei <aozhiwei@kingsome.cn>
Date: Thu, 21 Sep 2023 15:24:07 +0800
Subject: [PATCH] 1

---
 webapp/controller/BattleController.class.php | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/webapp/controller/BattleController.class.php b/webapp/controller/BattleController.class.php
index badfbb73..2189676c 100644
--- a/webapp/controller/BattleController.class.php
+++ b/webapp/controller/BattleController.class.php
@@ -335,6 +335,10 @@ class BattleController extends BaseAuthedController {
             error_log($rawData);
             $sign = strstr($rawData, '|', true);
             $customData = strstr($rawData, '|');
+            if (md5($customData . HALL_KEY) != $sign) {
+                myself()->_rspErr(1, 'sign error');
+                return;
+            }
         }
 
         $data = array(