diff options
| author | Louis Burda <quent.burda@gmail.com> | 2023-02-03 11:59:43 -0600 |
|---|---|---|
| committer | Louis Burda <quent.burda@gmail.com> | 2023-02-03 11:59:43 -0600 |
| commit | 1715c9d6e1aa977b407081fb3164edbf1534fb5c (patch) | |
| tree | 1802d90d850164f2387098c238214641b75e86e9 /README | |
| parent | 0c825583fc20f1b91c56e1aaf450d6a753d24658 (diff) | |
| download | cachepc-1715c9d6e1aa977b407081fb3164edbf1534fb5c.tar.gz cachepc-1715c9d6e1aa977b407081fb3164edbf1534fb5c.zip | |
Properly implement target gfn stepping
Diffstat (limited to 'README')
| -rw-r--r-- | README | 23 |
1 files changed, 15 insertions, 8 deletions
@@ -22,24 +22,31 @@ test/kvm-eviction: Demonstrate that the cache set of a memory access instruction can be inferred in non-SEV / SEV / SEV-ES / SEV-SNP -enabled vms respectively. +test/kvm-pagestep: + Demonstrate that a SEV-SNP enabled vm can be quickly single-stepped + and analyzed by tracking a single page at a time. This type + of tracking creates a page-wise profile of the guests execution, + which can be used to infer what the guest is doing and when to begin + fine-grained single-stepping. + test/kvm-step: Demonstrate that SEV-SNP enabled vms can be single-stepped using local APIC timers to interrupt the guest and increment the interrupt interval while observing the RIP+RFLAGS ciphertext in the VMSA for changes to detect that a single instruction has been executed. -test/kvm-pagestep: - Demonstrate that a SEV-SNP enabled vm can be quickly single-stepped - and analyzed by tracking a single page at a time. This type - of tracking creates a page-wise profile of the guests execution, - which can be used to infer what the guest is doing and to begin - fine-grained single-stepping. +test/kvm-targetstep: + Demonstrate that a combination of page- and singlestepping allows + for fine-grained control of when to single-step. In this case a vmmcall + by the guest alerts the host to when the guest is on a critical page. + The host sets the currently executed gfn as the target and begins + single-stepping only on that page. test/qemu-pagestep: Replicate result from kvm-pagestep on a qemu-based vm running debian. -test/qemu-eviction: - Replicate result from kvm-eviction on a qemu-based vm running debian +test/qemu-targetstep: + Replicate result from kvm-targetstep on a qemu-based vm running debian using a specially crafted guest program to signal when measurement should take place to infer the accessed set. |