mirror of
https://github.com/m1ngsama/TNT.git
synced 2026-02-08 08:54:05 +00:00
m1ngsama
36464007e8
- Replace all strcpy() calls with strncpy() to prevent buffer overflows - Add buffer overflow checking in client_printf() vsnprintf result - Implement UTF-8 sequence validation to prevent malformed input - Add utf8_is_valid_sequence() function with complete validation - Enhance read_username() with UTF-8 boundary checks - Add UTF-8 validation for message input handling These changes address: - Buffer overflow vulnerabilities (lines 178, 423, 510) - Insufficient vsnprintf() error checking (line 106) - Missing UTF-8 sequence validation (lines 156-171) Fixes prevent: - Buffer overflow attacks - Overlong UTF-8 encoding exploits - Invalid UTF-8 surrogates injection
30 lines
890 B
C
30 lines
890 B
C
#ifndef UTF8_H
|
|
#define UTF8_H
|
|
|
|
#include "common.h"
|
|
|
|
/* UTF-8 character width calculation */
|
|
int utf8_char_width(uint32_t codepoint);
|
|
|
|
/* Get the number of bytes in a UTF-8 character from its first byte */
|
|
int utf8_byte_length(unsigned char first_byte);
|
|
|
|
/* Decode a UTF-8 character and return its codepoint */
|
|
uint32_t utf8_decode(const char *str, int *bytes_read);
|
|
|
|
/* Calculate display width of a UTF-8 string (considering CJK double-width) */
|
|
int utf8_string_width(const char *str);
|
|
|
|
/* Truncate string to fit within max_width display characters */
|
|
void utf8_truncate(char *str, int max_width);
|
|
|
|
/* Count the number of UTF-8 characters in a string */
|
|
int utf8_strlen(const char *str);
|
|
|
|
/* Remove last UTF-8 character from string */
|
|
void utf8_remove_last_char(char *str);
|
|
|
|
/* Validate a UTF-8 byte sequence */
|
|
bool utf8_is_valid_sequence(const char *bytes, int len);
|
|
|
|
#endif /* UTF8_H */
|