SSH: Replace assertion by exception.

We used Q_ASSERT to verify packet validity even for incoming packets, which means a malicious host could crash QtCreator by sending invalid data. Change-Id: Ie2b674d40273d987d91387f41748fbe085c63ed8 Reviewed-by: hjk <qthjk@ovi.com>
2012-06-15 14:01:51 +02:00
parent 0d20c5b796
commit b2f6c7223d
2 changed files with 3 additions and 1 deletions
--- a/src/libs/ssh/sshincomingpacket.cpp
+++ b/src/libs/ssh/sshincomingpacket.cpp
@@ -90,6 +90,9 @@ void SshIncomingPacket::consumeData(QByteArray &newData)
            return;
    }

+    if (4 + length() + macLength() < currentDataSize())
+        throw SSH_SERVER_EXCEPTION(SSH_DISCONNECT_PROTOCOL_ERROR, "Server sent invalid packet.");
+
    const int bytesToTake
        = qMin<quint32>(length() + 4 + macLength() - currentDataSize(),
              newData.size());
--- a/src/libs/ssh/sshpacket.cpp
+++ b/src/libs/ssh/sshpacket.cpp
@@ -70,7 +70,6 @@ bool AbstractSshPacket::isComplete() const
 {
    if (currentDataSize() < minPacketSize())
        return false;
-    Q_ASSERT(4 + length() + macLength() >= currentDataSize());
    return 4 + length() + macLength() == currentDataSize();
 }