mirror of
https://github.com/projectacrn/acrn-hypervisor.git
synced 2025-08-18 08:11:07 +00:00
8ef2eedba4
When a platform reboots or shuts down, the contents of RAM are not immediately lost but begins to decay. During this period, there is a short timeframe during which an attacker can turn the platform back on to boot into a program that dumps the contents of memory (e.g., cold boot attacks). Encryption keys and other secrets can be easily compromised through this method. We already erasing the guest memory data when the guest is shut down normally. However, if the guest is shut down abnormally, the contents of RAM may still there. This patch mitigate this kind reset attack for a DM launched VM by erasing the guest memory data by the guest has been created. Tracked-On: #6061 Signed-off-by: Li Fei1 <fei1.li@intel.com> |
||
|---|---|---|
| .. | ||
| console.c | ||
| gc.c | ||
| hugetlb.c | ||
| inout.c | ||
| main.c | ||
| mem.c | ||
| mevent.c | ||
| monitor.c | ||
| mptbl.c | ||
| pm_vuart.c | ||
| pm.c | ||
| post.c | ||
| sw_load_bzimage.c | ||
| sw_load_common.c | ||
| sw_load_elf.c | ||
| sw_load_ovmf.c | ||
| sw_load_vsbl.c | ||
| timer.c | ||
| vmmapi.c | ||
| vrpmb.c | ||