1. Forum
  2. DOVE-Net
  3. Synchronet Programming

  • src/ssh/TODO.md ssh-auth.c ssh-conn.c ssh-trans.c src/ssh/test/CMakeLi

    From Deuc¿@VERT to Git commit to main/sbbs/master on Wed Apr 1 16:21:57 2026
    https://gitlab.synchro.net/main/sbbs/-/commit/4fcdc81cdf4a3cd75b83d964
    Modified Files:
    src/ssh/TODO.md ssh-auth.c ssh-conn.c ssh-trans.c src/ssh/test/CMakeLists.txt test_auth.c
    Log Message:
    RULES.md audit fixes: input validation, type safety, arithmetic safety (items 163-169)

    - send_info_request: UINT32_MAX guards on string lengths (item 163)
    - Server KBI: reject num_responses > last_nprompts (item 164)
    - Client KBI: hard cap of 256 on num_prompts (item 165)
    - event_queue_push: SIZE_MAX/2 overflow guard (item 166)
    - send_to_slot: UINT8_MAX range check on payload_len (item 167)
    - stream_zc_cb, handle_channel_extended_data: inline cast to initializer (items 168-169)
    - 2 new tests: kbi_excess_responses, kbi_too_many_prompts

    Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
    ---
    þ Synchronet þ Vertrauen þ Home of Synchronet þ [vert/cvs/bbs].synchro.net