github/acrn-hypervisor
1
0
Fork 0
mirror of https://github.com/projectacrn/acrn-hypervisor.git synced 2025-06-17 03:07:27 +00:00
Code Issues Projects Releases Wiki Activity

HV: clear memory region used by UOS before it exit

Browse Source 
this patch fixes such an information leaking issue:
   in case that after a UOS is destroyed, its memroy
   will be reclaimed and maybe re-allocated for a new UOS,
   then the previous UOS sensitive data in memory may
   be leaked to the new UOS.

Signed-off-by: Yonghua Huang <yonghua.huang@intel.com>
Acked-by: Eddie Dong <eddie.dong@intel.com>
This commit is contained in:
Yonghua Huang 2018-07-25 20:43:07 +08:00 committed by lijinxia
parent a2fe964de8
commit cf7a94071b
1 changed files with 14 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
devicemodel/core/vmmapi.c
View File

@ -339,6 +339,20 @@ vm_setup_memory(struct vmctx *ctx, size_t memsize)
void void
vm_unsetup_memory(struct vmctx *ctx) vm_unsetup_memory(struct vmctx *ctx)
{ {
/*
* For security reason, clean the VM's memory region
* to avoid secret information leaking in below case:
* After a UOS is destroyed, the memory will be reclaimed,
* then if the new UOS starts, that memory region may be
* allocated the new UOS, the previous UOS sensitive data
* may be leaked to the new UOS if the memory is not cleared.
*
*/
bzero((void *)ctx->baseaddr, ctx->lowmem);
if (ctx->highmem > 0) {
bzero((void *)(ctx->baseaddr + 4 * GB), ctx->highmem);
}
hugetlb_unsetup_memory(ctx); hugetlb_unsetup_memory(ctx);
} }