Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

driver work #1320

Merged
merged 1 commit into from
Aug 7, 2022
Merged

driver work #1320

merged 1 commit into from
Aug 7, 2022

Conversation

jxy-s
Copy link
Member

@jxy-s jxy-s commented Jul 26, 2022

PR implements stricter requirements for making calls to the driver, hardens existing code, fixes SAL, contains mitigations against exploitation of the verified process, and expands the capabilities of the driver both around informing of system activity and exposing new functionality/information through the driver API.

The core of the changes here is the process state (defined in kphapi.h). Which we track in the driver and require a certain level of state for the connected client to have in order to be authorized to make a call into the driver (defined in comms_handlers.c).

@github-actions
Copy link

github-actions bot commented Jul 27, 2022
edited
Loading

CLA Assistant Lite bot All contributors have signed the CLA ✍️ ✅

@dmex dmex linked an issue Jul 27, 2022 that may be closed by this pull request
wrong cpu topology shown #1146
Closed
@dmex dmex removed a link to an issue Jul 27, 2022
wrong cpu topology shown #1146
Closed
@dmex dmex linked an issue Jul 27, 2022 that may be closed by this pull request
KPH [The Hardening] [Project Update] #774
Closed
This was linked to issues Jul 27, 2022
KphCaptureStackBackTraceThread may hang #764
Closed
Interfaces of \Device\ConDrv device objects are not shown #739
Closed
dmex
dmex previously requested changes Jul 27, 2022
View reviewed changes
KSystemInformer/KSystemInformer.vcxproj Show resolved Hide resolved
@jxy-s jxy-s force-pushed the driver-work branch 4 times, most recently from b545ec2 to 9ab21b2 Compare July 27, 2022 05:08
@ge0rdi

This comment was marked as resolved.

Sign in to view
@jxy-s

This comment was marked as resolved.

Sign in to view
@jxy-s jxy-s force-pushed the driver-work branch 2 times, most recently from b4693d6 to 307fb2c Compare July 28, 2022 00:55
@jxy-s

This comment was marked as resolved.

Sign in to view
ge0rdi
ge0rdi reviewed Jul 28, 2022
View reviewed changes
KSystemInformer/README.md Outdated Show resolved Hide resolved
@ge0rdi

This comment was marked as off-topic.

Sign in to view
@jxy-s jxy-s force-pushed the driver-work branch 2 times, most recently from d8da7d7 to 9997b67 Compare July 29, 2022 01:59
@jxy-s jxy-s requested a review from dmex July 29, 2022 04:13
@jxy-s jxy-s force-pushed the driver-work branch 3 times, most recently from 72e7087 to 115be13 Compare July 30, 2022 01:28
@jxy-s jxy-s dismissed dmex’s stale review July 30, 2022 01:29

conversation resolved

@ge0rdi ge0rdi mentioned this pull request Aug 3, 2022
Open
@jxy-s
Copy link
Member Author

jxy-s commented Aug 3, 2022

I plan to merge this PR this weekend. Please attend to reviews if you're interested in doing so.

@jxy-s jxy-s merged commit 27a4496 into winsiderss:master Aug 7, 2022
@jxy-s jxy-s deleted the driver-work branch August 7, 2022 03:49
@github-actions github-actions bot locked and limited conversation to collaborators Aug 7, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@ge0rdi ge0rdi ge0rdi left review comments

@ionescu007 ionescu007 Awaiting requested review from ionescu007

@yardenshafir yardenshafir Awaiting requested review from yardenshafir

@dmex dmex Awaiting requested review from dmex dmex is a code owner

Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
3 participants
@jxy-s @ge0rdi @dmex