4 Commits

Author	SHA1	Message	Date
Warren	d94cb2df4c	Fix code quality: trailing whitespace, unused imports, clippy warnings ... - Fix trailing whitespace in kex.rs and s3.rs - Add missing KexProposal import in kex_complete.rs - Auto-fix clippy warnings across all crates - All 153 tests pass	2026-06-19 05:21:38 +08:00
Warren	963513ef0b	Add Security Audit Phase 9: comprehensive SSH security tests ... - auth_security: password brute force, public key, user status, home dir - crypto_security: AES-CTR, HMAC-SHA256, Curve25519, Ed25519 - file_access_security: path traversal, absolute path, symlink attack - channel_security: window limits, request validation - 18 new security tests, all pass (153 total)	2026-06-19 01:37:59 +08:00
Warren	68472e0fb7	Fix all remaining test failures ... - archive::metadata: add failed_files to test_extract_result - archive::tests: use TempDir for validate_extraction_path test - provider::sqlite: fix db path using CARGO_MANIFEST_DIR/../data/auth.sqlite - ssh_server::cipher: use AES-128 key (16 bytes) in test - ssh_server::kex_complete: set kexinit payloads in test - ssh_server::rsync_handler: fix file list flags (use 1, not 0) - ssh_server::sftp_handler: expect SSH_FXP_VERSION at byte 4 (after length prefix) All 135 tests now pass	2026-06-19 00:48:53 +08:00
Warren	f90e4f496c	VFS/DataProvider/Config refactoring + SSH public key authentication ... Phase 1-6 of refactoring plan: - VFS abstraction (VfsBackend trait + LocalFs + OpenFlags builder) - DataProvider trait (SqliteProvider + PgProvider, SFTPGo-compatible) - Config refactoring (AppConfig unified sections, env overrides) - SSH handlers (sftp/scp/rsync) migrated to VFS + DataProvider - SSH public key authentication (Ed25519 signature verification) - SSH stderr → CHANNEL_EXTENDED_DATA support - Web auth uses DataProvider instead of direct SQL - User home directory from provider (per-user isolation) - PostgreSQL auth provider for SFTPGo compatibility	2026-06-18 23:35:18 +08:00