]> Projects (at) Tadryanom (dot) Me - AdrOS.git/commit
projects / AdrOS.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6a14844) | patch
security: A07 complete, Round 3.1 initrd/LZ4/TAR validation (A05)
authorTulio A M Mendes <[email protected]>
Mon, 25 May 2026 18:11:07 +0000 (15:11 -0300)
committerTulio A M Mendes <[email protected]>
Mon, 25 May 2026 18:11:07 +0000 (15:11 -0300)
commit6e6eceb3fb298e71196cf94980e4f15bbf6887da
treedcb8e3c4f64415c7d34776659570c2388ebfeca2tree | snapshot
parent6a14844209aba15617a9e61dd253b483b060c4e4commit | diff
security: A07 complete, Round 3.1 initrd/LZ4/TAR validation (A05)

- A07: vfs_check_permission moved to fs.c, vfs_check_parent_permission now validates real permissions
- A05: initrd parser validation:
  - Minimum size checks for magic (4 bytes), LZ4 frame header (10 bytes), LZ4B header (12 bytes)
  - Update size variable after decompression to reflect decompressed size
  - TAR file size limit (256MB max)
  - Removed overly strict buffer overflow check that rejected valid TAR

Tests: 119/119 PASS (smoke test, SMP=4)
include/fs.h diff | blob | blame | history
src/drivers/initrd.c diff | blob | blame | history
src/kernel/fs.c diff | blob | blame | history
src/kernel/syscall.c diff | blob | blame | history
AdrOS - A Unix-like Operating System for hobby/academic study.