FWinst

FWinst is an emulation context-aware filter to mitigate attacks against hypervisors' instruction emulators.

This patch is for Linux Kernel 6.6.8

Publications

Hardening Hypervisors against Vulnerabilities in Instruction Emulators
Kenta Ishiguro and Kenji Kono
In Proceedings of the 11th European Workshop on Systems Security (EuroSec '18), Apr. 2018
[PDF], [bibtex]
Instruction Filters for Mitigating Attacks on Instruction Emulation in Hypervisors
Kenta Ishiguro and Kenji Kono
In IEICE Transactions on Information and Systems Vol.E103-D No.7, Jul. 2020
[Page]