|
From: | Alexandre IOOSS |
Subject: | Re: [RFC PATCH 0/1] QEMU TCG plugin interface extensions |
Date: | Sat, 21 Aug 2021 12:42:44 +0200 |
User-agent: | Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.13.0 |
On 8/21/21 11:45 AM, Florian Hauschild wrote:
Hi all, I extended the plugin interface with additional functionalities. I wrote the extensions for fault injection/exploration reasearch using QEMU. The additional functionalities for a plugin are: * Read and write guest memory * Read and write guest registers * Allow plugin to force QEMU into single step mode * Flush TB cache from plugin
If something is added to read a register from a plugin, then execlog plugin could print the operands value of each instruction. This would definitely be helpful for side-channel analysis: the Hamming weight (sum of bits) of the last operand roughly models the power consumption side-channel leakage.
If I recall correctly, there are some concerns about allowing to access registers inside plugins. Past threads about reading/writing registers:
https://lists.gnu.org/archive/html/qemu-devel/2020-03/msg08741.html https://lists.gnu.org/archive/html/qemu-devel/2021-04/msg04588.html Thanks, -- Alexandre
OpenPGP_signature
Description: OpenPGP digital signature
[Prev in Thread] | Current Thread | [Next in Thread] |