Projects (at) Tadryanom (dot) Me

author	Tulio A M Mendes <[email protected]>
	Mon, 25 May 2026 00:53:58 +0000 (21:53 -0300)
committer	Tulio A M Mendes <[email protected]>
	Wed, 3 Jun 2026 04:02:35 +0000 (01:02 -0300)
commit	1c4f4e42b668627b30e186836ce745eb266f0c58
tree	a0ee9d751865a688e5bcb446dc130a27c5f05273	tree \| snapshot
parent	731dd860f9ef410584a6b2b9eb99431d8bdf343f	commit \| diff

security: critical kernel memory isolation and W^X fixes (Round 1)

K01: mmap MAP_FIXED end address validation - prevent user from mapping
     across kernel boundary or overflow
K02: mprotect range kernel boundary check - reject ranges crossing into
     kernel space before permissive stack fallback
K03: shm_at address validation - check alignment and kernel boundary for
     user-supplied shmaddr, use vmm_find_free_area for auto-assigned
A01: NX flag preservation in COW - vmm_as_clone_user_cow and
     vmm_handle_cow_fault now preserve X86_PTE_NX to maintain W^X
     protection across fork and page fault resolution

Tests: 116/116 QEMU, 142/142 battery, 111/111 host, cppcheck clean

docs/FIX_PLAN.md	[new file with mode: 0644]	blob
src/arch/x86/vmm.c		diff \| blob \| blame \| history
src/kernel/shm.c		diff \| blob \| blame \| history
src/kernel/syscall.c		diff \| blob \| blame \| history