kamkow1/Limine
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

smp: Validate MADT entry size before accessing type-specific fields

Browse Source
This commit is contained in:
Mintsuki
2026-01-12 12:15:03 +01:00
parent f92bec0534
commit aef2a4b9fd
1 changed files with 12 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
common/sys/smp.c
View File

@@ -159,6 +159,9 @@ struct limine_mp_info *init_smp(size_t *cpu_count,
switch (*madt_ptr) {
case 0: {
// Processor local xAPIC
if (*(madt_ptr + 1) < sizeof(struct madt_lapic))
continue;
struct madt_lapic *lapic = (void *)madt_ptr;
// Check if we can actually try to start the AP
@@ -172,6 +175,9 @@ struct limine_mp_info *init_smp(size_t *cpu_count,
if (!x2apic)
continue;
if (*(madt_ptr + 1) < sizeof(struct madt_x2apic))
continue;
struct madt_x2apic *x2lapic = (void *)madt_ptr;
// Check if we can actually try to start the AP
@@ -203,6 +209,9 @@ struct limine_mp_info *init_smp(size_t *cpu_count,
switch (*madt_ptr) {
case 0: {
// Processor local xAPIC
if (*(madt_ptr + 1) < sizeof(struct madt_lapic))
continue;
struct madt_lapic *lapic = (void *)madt_ptr;
// Check if we can actually try to start the AP
@@ -240,6 +249,9 @@ struct limine_mp_info *init_smp(size_t *cpu_count,
if (!x2apic)
continue;
if (*(madt_ptr + 1) < sizeof(struct madt_x2apic))
continue;
struct madt_x2apic *x2lapic = (void *)madt_ptr;
// Check if we can actually try to start the AP