Mercurial > dropbear
view fuzz-wrapfd.h @ 1885:5d8dbb6fdab7
Fix SSH_PUBKEYINFO, limit characters, add tests
We fix a bad_bufptr() failure from a previous commit. We now limit
the allowed characters to those that will definitely be safe
in a shell. Some scripts/programs may use arbitrary environment
variables without escaping correctly - that could be a problem
in a restricted environment.
The current allowed set is a-z A-Z 0-9 .,_-+@
This also adds a test for SSH_PUBKEYINFO, by default it only runs
under github actions (or "act -j build").
author | Matt Johnston <matt@ucc.asn.au> |
---|---|
date | Wed, 16 Mar 2022 17:17:23 +0800 |
parents | 685b47d8faf7 |
children |
line wrap: on
line source
#ifndef FUZZ_WRAPFD_H #define FUZZ_WRAPFD_H #include "includes.h" #include "buffer.h" enum wrapfd_mode { UNUSED = 0, COMMONBUF, // using the common buffer DUMMY, // reads return fixed output, of random length }; // buf is a common buffer read by all wrapped FDs. doesn't take ownership of buf void wrapfd_setup(buffer *buf); void wrapfd_setseed(uint32_t seed); int wrapfd_new_fuzzinput(void); int wrapfd_new_dummy(void); // called via #defines for read/write/select int wrapfd_read(int fd, void *out, size_t count); int wrapfd_write(int fd, const void* in, size_t count); int wrapfd_select(int nfds, fd_set *readfds, fd_set *writefds, fd_set *exceptfds, struct timeval *timeout); int wrapfd_close(int fd); int fuzz_kill(pid_t pid, int sig); #endif // FUZZ_WRAPFD_H