Undelegate Interrupts for preventing DoS from enclaves

keystone-enclave / riscv-pk

Security monitor for Keystone Enclave (mirror of riscv-pk). Will be deprecated when openSBI port is ready

Other

36 stars 14 forks source link

Undelegate Interrupts for preventing DoS from enclaves #50

Closed dayeol closed 4 years ago

dayeol commented 5 years ago

All interrupts must trigger context switch to host as they should be handled by the host. The timer interrupt is the most critical in a sense that the enclave can DoS the machine by ignoring all the timer interrupts. We stick to a default-deny policy where the SM clears mideleg before entering an enclave.

ghost commented 5 years ago

My progress will be on this branch:

https://github.com/keystone-enclave/riscv-pk/tree/mideleg