lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Message-ID: <CAOU0Uxb86ETTt4RhZ-CRqAY+=ohErikeiyY3-d9tEzVZi-BwPw@mail.gmail.com>
Date: Tue, 17 Jun 2025 12:39:16 +0300
From: Данило Русин <rusindanilo@...il.com>
To: rafael@...nel.org
Cc: tglx@...utronix.de, mingo@...hat.com, bp@...en8.de, 
	dave.hansen@...ux.intel.com, hpa@...or.com, x86@...nel.org, 
	linux-pm@...r.kernel.org, linux-kernel@...r.kernel.org
Subject: [PATCH 0/1] x86/power: Enhanced hibernation support with integrity checking

>From 93c34aff2919db119b3eb13d4b87bea2c36bac13 Mon Sep 17 00:00:00 2001
From: VoltagedDebunked <rusindanilo@...il.com>
Date: Sun, 15 Jun 2025 20:33:37 +0300
Subject: [PATCH 0/1] x86/power: Enhanced hibernation support with
integrity checking

This patch enhances the x86 hibernation subsystem with improved reliability,
security, and hardware compatibility features.

PROBLEM:
The current hibernation implementation lacks robust integrity verification,
comprehensive hardware state preservation, and advanced error handling. This
can result in hibernation failures on modern systems and potential security
vulnerabilities from corrupted hibernation images.

SOLUTION:
This patch introduces several key enhancements:

- Cryptographic integrity verification using SHA-256 hashing to detect
hibernation image corruption or tampering
- Extended CPU state preservation including critical MSRs and APIC registers
for improved compatibility across diverse hardware configurations
- Hardware compatibility validation to prevent resume attempts on systems
with changed CPU features or configurations
- Enhanced error handling with retry mechanisms and comprehensive diagnostics
- Security hardening including code protection and tamper detection
- Detailed logging and monitoring capabilities for debugging and analysis

TESTING:
The enhanced hibernation implementation has been thoroughly tested:
- Successfully completed basic hibernation/resume cycles
- Passed stress testing with multiple hibernation cycles under I/O load
- Verified integrity checking correctly prevents corrupted image resume
- Confirmed compatibility detection across different hardware configurations
- Validated on x86_64 systems with various CPU and memory configurations

The implementation maintains full backward compatibility while providing
significant improvements in reliability and security over the existing
hibernation subsystem.

VoltagedDebunked (1):
x86/power: Enhanced hibernation support with integrity checking

arch/x86/power/hibernate.c | 700 ++++++++++++++++++++++++++++++++++++-
1 file changed, 689 insertions(+), 11 deletions(-)

--
2.49.0

Signed-off-by: VoltagedDebunked <rusindanilo@...il.com>

View attachment "0001-x86-power-Enhanced-hibernation-support-with-integrit.patch" of type "text/x-patch" (27256 bytes)

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ