Skip to content

wsssh
wsssh
Switch branch/tag
History Find file
  • Stefy Lanza (nextime / spora )'s avatar
    Critical security fix: Prevent wssshd server crashes from malformed packets · 37eeaf1e
    Stefy Lanza (nextime / spora ) authored 
    - Added comprehensive bounds checking to all WebSocket message parsing
- Validate JSON structure (braces) before processing to prevent crashes
- Added length limits and bounds validation for all parameter extractions:
  * client_id: max 64 chars
  * password: max 256 chars
  * request_id: max 64 chars
  * enc/service/version: max 32 chars each
- Prevent buffer overflows that could corrupt heap metadata
- Ensure all string operations stay within allocated buffer bounds
- Server now logs errors and continues running instead of crashing on malformed packets
- Critical defense against DoS attacks via malformed WebSocket messages
    37eeaf1e
Name
Last commit
 Last update
..
Makefile Loading commit data...
assets.c Loading commit data...
assets.h Loading commit data...
assets.o Loading commit data...
config.c Loading commit data...
config.h Loading commit data...
config.o Loading commit data...
json.h Loading commit data...
main.c Loading commit data...
main.o Loading commit data...
ssl.c Loading commit data...
ssl.h Loading commit data...
ssl.o Loading commit data...
terminal.c Loading commit data...
terminal.h Loading commit data...
terminal.o Loading commit data...
test.conf Loading commit data...
test2.conf Loading commit data...
tunnel.c Loading commit data...
tunnel.h Loading commit data...
tunnel.o Loading commit data...
web.c Loading commit data...
web.h Loading commit data...
web.o Loading commit data...
websocket.c Loading commit data...
websocket.h Loading commit data...
websocket.o Loading commit data...
websocket_protocol.c Loading commit data...
websocket_protocol.h Loading commit data...
websocket_protocol.o Loading commit data...
wssshd Loading commit data...