m1ngsama d745a8e1fe fix: address security vulnerabilities and design flaws from comprehensive audit ... Critical fixes: - C-1: Use atomic_bool for client->connected and redraw_pending to prevent data races between callback and main threads - C-2: Add reference counting for channel callbacks to prevent use-after-free when callbacks fire during client cleanup - C-3/M-7: Use ssh_channel_read_timeout (5s) for UTF-8 continuation bytes to prevent thread blocking and stream desynchronization High-severity fixes: - H-1: Replace non-thread-safe setenv/tzset with timegm() in parse_rfc3339_utc - H-2: Change room_get_message to return by value copy instead of interior pointer - H-3: Log warning when rate-limit table evicts active IP entry - H-4: Replace strcmp with constant-time comparison for access token validation - H-5: Check signature_state in auth_pubkey to reject unsigned key offers Medium/low fixes: - M-1: Replace all atoi() with strtol() for proper error detection - M-3: Move calloc outside rwlock in tui_render_screen to avoid blocking writers - M-8: Fix off-by-one in rate limit threshold (> to >=) - M-9: Trim partial UTF-8 sequences after snprintf truncation in message_format - L-1: Validate continuation byte mask (0xC0==0x80) in utf8_decode - D-3: Remove vestigial client_t.fd field - L-3: Remove unreachable pthread_attr_destroy after infinite loop		2026-04-15 10:13:17 +08:00
..
.gitkeep	Initial commit	2025-07-01 09:00:00 +08:00
chat_room.h	fix: address security vulnerabilities and design flaws from comprehensive audit	2026-04-15 10:13:17 +08:00
common.h	fix: address security vulnerabilities and design flaws from comprehensive audit	2026-04-15 10:13:17 +08:00
message.h	Initial commit	2025-07-01 09:00:00 +08:00
ssh_server.h	fix: address security vulnerabilities and design flaws from comprehensive audit	2026-04-15 10:13:17 +08:00
tui.h	Replace telnet with SSH and fix full-screen display	2025-11-24 16:48:14 +08:00
utf8.h	refactor: stabilize SSH runtime and add exec interface	2026-03-10 18:52:20 +08:00