Skip to content

fix: address 3 critical security issues + ICMP conformance (fixes #15, #16, #17)#20

Open
SuperInstance wants to merge 1 commit intomainfrom
superz/security-conformance
Open

fix: address 3 critical security issues + ICMP conformance (fixes #15, #16, #17)#20
SuperInstance wants to merge 1 commit intomainfrom
superz/security-conformance

Conversation

@SuperInstance
Copy link
Copy Markdown
Owner

@SuperInstance SuperInstance commented Apr 12, 2026
edited by beta-devin-ai-integration bot
Loading

Summary

Fixes all 3 critical security vulnerabilities identified by the Expert Panel: Security & Trust (session 11), plus an ICMP conformance bug that caused test_icmp_eq to fail.

Security Fixes

#15: Zero bytecode verification before execution

  • Added verify_bytecode() static method to Interpreter class
  • Validates bytecode is non-empty and within 1 MB size limit before execution
  • Called automatically at the start of execute()

#16: CAP opcodes defined but never enforced

  • Added capabilities: set[int] to Interpreter instance
  • CAP_GRANT: Parses cap_id from data payload and adds to capability set
  • CAP_REQUIRE: Enforces capability check — raises VMA2AError if cap not held
  • CAP_REVOKE: Removes capability from set
  • CAP_REQUEST: Forwarded to handler (no auto-grant — handler decides)
  • Capabilities are cleared on reset()

#17: Trust engine accepts NaN — trust poisoning

  • Added math.isnan() guards on capability_match, behavior_signature, and latency_ms inputs
  • Raises ValueError if NaN detected
  • Clamps capability_match to [0.0, 1.0] range
  • Added NaN guard and clamping to check_trust() threshold parameter

Conformance Fix

ICMP instruction format

  • Fixed ICMP format from [ICMP][raw][rs1][rs2] (always writes R0) to [ICMP][cond][rd][rs2] (writes result to destination register)
  • Resolves test_icmp_eq failure (R1 was receiving value 5 instead of 1)

Test Results

Before: 2393 passed, 1 failed (test_icmp_eq)
After: 2509 passed, 0 failed

15 new security tests added covering all 3 issues.

Files Changed

  • src/flux/vm/interpreter.py: +51 -3 (bytecode verification, CAP enforcement, ICMP fix)
  • src/flux/a2a/trust.py: +32 -2 (NaN guards, value clamping)
  • tests/test_security.py: +213 -11 (15 new security tests)
Staging: Open in Devin

fix: address 3 critical security issues + ICMP conformance (fixes #15,
a35b909 
…#16, #17)

Security Fixes:
- #15: Add bytecode verification before execution (empty/oversized guard)
- #16: Enforce CAP_REQUIRE/CAP_GRANT/CAP_REVOKE opcodes with capability set
- #17: Reject NaN inputs in trust engine, clamp values to [0.0, 1.0]

Conformance Fix:
- Fix ICMP instruction format to [cond][rd][rs2], result goes to rd not R0

Tests:
- 15 new security tests (bytecode verification, CAP enforcement, NaN guards)
- All 2509 tests passing (was 2393 passed + 1 failed)
beta-devin-ai-integration[bot]
beta-devin-ai-integration bot reviewed Apr 12, 2026
View reviewed changes
Copy link
Copy Markdown

@beta-devin-ai-integration beta-devin-ai-integration bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

✅ Devin Review: No Issues Found

Devin Review analyzed this PR and found no potential bugs to report.

View in Devin Review to see 4 additional findings.

Staging: Open in Devin

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@beta-devin-ai-integration beta-devin-ai-integration[bot] beta-devin-ai-integration[bot] left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@SuperInstance