[Pal/Linux-SGX] Sanitize VMID #2087

boryspoplawski · 2021-01-14T16:41:29Z

Description of the problem

Graphene uses host process PID as a VMID (Graphenes process internal id). Malicious host could put an unexpected value there e.g. to create collisisons.
We should sanitize the value or, more likely, just fully randomize it (would 64bit be enough?). If anybody knows a better solution, please post it here.

Reference:
https://github.com/oscarlab/graphene/blob/4c850181e2efa6754b7da4960fc41f416824e3b2/Pal/src/host/Linux-SGX/db_main.c#L293
Soon the time above will be removed leaving only pid.

The text was updated successfully, but these errors were encountered:

boryspoplawski · 2021-06-14T14:03:52Z

I think we can just use sequential values as there should be no need for randomization. The malicious host could know that value and it should not pose any security risks.

boryspoplawski mentioned this issue Jul 9, 2021

[LibOS] Make Graphene internal IDs managed by LibOS #2526

Merged

boryspoplawski closed this as completed in #2526 Jul 14, 2021

mkow mentioned this issue Sep 9, 2021

Known security issues gramineproject/gramine#8

Closed

11 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Pal/Linux-SGX] Sanitize VMID #2087

[Pal/Linux-SGX] Sanitize VMID #2087

boryspoplawski commented Jan 14, 2021 •

edited

Loading

boryspoplawski commented Jun 14, 2021

[Pal/Linux-SGX] Sanitize VMID #2087

[Pal/Linux-SGX] Sanitize VMID #2087

Comments

boryspoplawski commented Jan 14, 2021 • edited Loading

Description of the problem

boryspoplawski commented Jun 14, 2021

boryspoplawski commented Jan 14, 2021 •

edited

Loading