]> Projects (at) Tadryanom (dot) Me - AdrOS.git/commit
projects / AdrOS.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 33d3e4a) | patch
security: A07 complete, Round 3.1 initrd/LZ4/TAR validation (A05)
authorTulio A M Mendes <[email protected]>
Mon, 25 May 2026 18:11:07 +0000 (15:11 -0300)
committerTulio A M Mendes <[email protected]>
Wed, 3 Jun 2026 04:02:35 +0000 (01:02 -0300)
commitc0f37ea653ffe64452b1ce38be33279797fdc02d
tree0575e3138d86d3c028552da6e0670a8a2fdb0d69tree | snapshot
parent33d3e4a9616bf8854350febbb29fd85ee72bf4c9commit | diff
security: A07 complete, Round 3.1 initrd/LZ4/TAR validation (A05)

- A07: vfs_check_permission moved to fs.c, vfs_check_parent_permission now validates real permissions
- A05: initrd parser validation:
  - Minimum size checks for magic (4 bytes), LZ4 frame header (10 bytes), LZ4B header (12 bytes)
  - Update size variable after decompression to reflect decompressed size
  - TAR file size limit (256MB max)
  - Removed overly strict buffer overflow check that rejected valid TAR

Tests: 119/119 PASS (smoke test, SMP=4)
include/fs.h diff | blob | blame | history
src/drivers/initrd.c diff | blob | blame | history
src/kernel/fs.c diff | blob | blame | history
src/kernel/syscall.c diff | blob | blame | history
AdrOS - A Unix-like Operating System for hobby/academic study.