m1ngsama/TNT
1
0
Fork 0
mirror of https://oauth2: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@github.com/m1ngsama/TNT.git synced 2026-05-10 19:00:57 +08:00
Code Issues Projects Releases Packages Wiki Activity Actions

Compare commits

base: m1ngsama:6781aff538806e18a97a59b1d5a58a43e3814906
Branches Tags
m1ngsama:main
m1ngsama:feat/mentions-idle-duration
m1ngsama:feat/tui-visual-improvements
m1ngsama:docs/update-help-and-docs
m1ngsama:fix/tui-width-guard-and-hardening
m1ngsama:fix/stability-crashes
...
compare: m1ngsama:629812a2d8d5dc3c79a363522185080cc8a95cfd
Branches Tags
m1ngsama:main
m1ngsama:feat/mentions-idle-duration
m1ngsama:feat/tui-visual-improvements
m1ngsama:docs/update-help-and-docs
m1ngsama:fix/tui-width-guard-and-hardening
m1ngsama:fix/stability-crashes

2 commits
6781aff538 ... 629812a2d8

Author SHA1 Message Date
m1ngsama
629812a2d8 fix: correct pubkey auth response, strncpy warning, and NUL byte validation 
- auth_pubkey: return SSH_AUTH_SUCCESS for key offers instead of
  SSH_AUTH_PARTIAL, which incorrectly signals partial authentication
- command history: replace strncpy with snprintf to eliminate
  -Wstringop-truncation warning on GCC
- utf8_is_valid_sequence: reject NUL byte (0x00) in single-byte
  validation to prevent C string truncation attacks

Closes #34
 2026-04-19 18:27:50 +08:00
m1ngsama
e319c7aa42 fix: remove committed test binaries and add them to .gitignore 
macOS-compiled test binaries were tracked by git, causing CI failures
on Linux where they're executed as shell scripts instead of ELF binaries.
 2026-04-19 18:27:34 +08:00
5 changed files with 11 additions and 8 deletions
Show stats Expand all files Collapse all files

3
.gitignore vendored
View file

@ -8,3 +8,6 @@ host_key.pub
.DS_Store
test.log
*.dSYM/
tests/unit/test_utf8
tests/unit/test_message
tests/unit/test_chat_room

12
src/ssh_server.c
View file

@ -1109,9 +1109,8 @@ static void execute_command(client_t *client) {
(max_hist - 1) * sizeof(client->command_history[0]));
client->command_history_count = max_hist - 1;
}
strncpy(client->command_history[client->command_history_count],
cmd, sizeof(client->command_history[0]) - 1);
client->command_history[client->command_history_count][sizeof(client->command_history[0]) - 1] = '\0';
snprintf(client->command_history[client->command_history_count],
sizeof(client->command_history[0]), "%s", cmd);
client->command_history_count++;
client->command_history_pos = client->command_history_count;
}
@ -1740,10 +1739,11 @@ static int auth_pubkey(ssh_session session, const char *user,
return SSH_AUTH_DENIED;
}
/* Only accept after the signature has been verified by libssh.
* SSH_PUBLICKEY_STATE_NONE is just a key offer no proof of possession. */
/* SSH_PUBLICKEY_STATE_NONE = key offer (no signature yet).
* Return SUCCESS to tell libssh "I accept this key, verify the signature."
* SSH_PUBLICKEY_STATE_VALID = signature verified by libssh. */
if (signature_state != SSH_PUBLICKEY_STATE_VALID) {
return SSH_AUTH_PARTIAL;
return SSH_AUTH_SUCCESS;
}
ctx->auth_success = true;

4
src/utf8.c
View file

@ -193,9 +193,9 @@ bool utf8_is_valid_sequence(const char *bytes, int len) {
uint32_t codepoint = 0;
switch (len) {
case 1:
/* 0xxxxxxx - valid range: 0x00-0x7F */
/* 0xxxxxxx - valid range: 0x01-0x7F (reject NUL) */
codepoint = b[0];
if (codepoint > 0x7F) return false;
if (codepoint == 0 || codepoint > 0x7F) return false;
break;
case 2:
/* 110xxxxx 10xxxxxx - valid range: 0x80-0x7FF */

BIN
tests/unit/test_message
View file

Binary file not shown.

BIN
tests/unit/test_utf8
View file

Binary file not shown.