Lucas Newman found and fixed a problem where libssh2_packet_read() could "lose"

bytes when it read data from the network that was an unaligned number of bytes compared to the blocksize.
2007-02-14 20:50:43 +00:00
parent 1ce26ef4a2
commit 7c115d350c
1 changed files with 15 additions and 0 deletions
--- a/src/transport.c
+++ b/src/transport.c
@@ -100,6 +100,11 @@ static libssh2pack_t decrypt(LIBSSH2_SESSION *session, unsigned char *source,
 {
        struct transportpacket *p = &session->packet;
        int blocksize = session->remote.crypt->blocksize;
+
+	/* if we get called with a len that isn't an even number of blocksizes
+	   we risk losing those extra bytes */
+	assert((len % blocksize) == 0);
+
        while(len >= blocksize) {
                if (session->remote.crypt->crypt(session, source,
                                                 &session->remote.crypt_abstract)) {
@@ -427,7 +432,17 @@ libssh2pack_t libssh2_packet_read(LIBSSH2_SESSION *session)
                                        p->data_num;
                        }
                        else {
+				int frac;
                                numdecrypt = numbytes;
+				frac = numdecrypt % blocksize;
+				if(frac) {
+					/* not an aligned amount of blocks,
+					   align it */
+					numdecrypt -= frac;
+					/* and make it no unencrypted data
+					   after it */
+					numbytes = 0;
+				}
                        }
                }
                else {