fix(search): prevent web_search output overflow and expose tavily secret template

Signed-off-by: Asklv <boironic@gmail.com>
2026-03-03 01:25:30 +08:00
parent 443cb97f59
commit 7edcd31f8a
2 changed files with 18 additions and 4 deletions
--- a/main/mimi_secrets.h.example
+++ b/main/mimi_secrets.h.example
@@ -33,3 +33,5 @@

 /* Brave Search API */
 #define MIMI_SECRET_SEARCH_KEY      ""
+/* Tavily Search API */
+#define MIMI_SECRET_TAVILY_KEY      ""
--- a/main/tools/tool_web_search.c
+++ b/main/tools/tool_web_search.c
@@ -139,19 +139,25 @@ static void format_results(cJSON *root, char *output, size_t output_size)
    cJSON *item;
    cJSON_ArrayForEach(item, results) {
        if (idx >= SEARCH_RESULT_COUNT) break;
+        if (off >= output_size - 1) break;

        cJSON *title = cJSON_GetObjectItem(item, "title");
        cJSON *url = cJSON_GetObjectItem(item, "url");
        cJSON *desc = cJSON_GetObjectItem(item, "description");

-        off += snprintf(output + off, output_size - off,
+        int written = snprintf(output + off, output_size - off,
            "%d. %s\n   %s\n   %s\n\n",
            idx + 1,
            (title && cJSON_IsString(title)) ? title->valuestring : "(no title)",
            (url && cJSON_IsString(url)) ? url->valuestring : "",
            (desc && cJSON_IsString(desc)) ? desc->valuestring : "");

-        if (off >= output_size - 1) break;
+        if (written < 0) break;
+        if ((size_t)written >= output_size - off) {
+            off = output_size - 1;
+            break;
+        }
+        off += (size_t)written;
        idx++;
    }
 }
@@ -169,19 +175,25 @@ static void format_tavily_results(cJSON *root, char *output, size_t output_size)
    cJSON *item;
    cJSON_ArrayForEach(item, results) {
        if (idx >= SEARCH_RESULT_COUNT) break;
+        if (off >= output_size - 1) break;

        cJSON *title = cJSON_GetObjectItem(item, "title");
        cJSON *url = cJSON_GetObjectItem(item, "url");
        cJSON *content = cJSON_GetObjectItem(item, "content");

-        off += snprintf(output + off, output_size - off,
+        int written = snprintf(output + off, output_size - off,
            "%d. %s\n   %s\n   %s\n\n",
            idx + 1,
            (title && cJSON_IsString(title)) ? title->valuestring : "(no title)",
            (url && cJSON_IsString(url)) ? url->valuestring : "",
            (content && cJSON_IsString(content)) ? content->valuestring : "");

-        if (off >= output_size - 1) break;
+        if (written < 0) break;
+        if ((size_t)written >= output_size - off) {
+            off = output_size - 1;
+            break;
+        }
+        off += (size_t)written;
        idx++;
    }
 }