StackWarp

Repository purpose and structure: - This repo is presented as a proof-of-concept for a hardware/virtualization vulnerability dubbed “StackWarp” (CVE-2025-29943) affecting AMD Zen CPUs and SEV-SNP guests. The stated threat model is a malicious/compromised hypervisor with root privileges manipulating CPU MSRs to corrupt a guest VM’s stack pointer (RSP), enabling control-flow hijack and potential secret extraction. Key components: 1) Kernel-module PoC (file: exploit) - A Linux kernel module named stackwarp_exploit (DRIVER_NAME "stackwarp_exploit"). - Core behavior: - Checks CPU vendor is AMD and family range 0x17–0x1A (intended to represent Zen 1–Zen 5). - In a kernel thread, reads MSR 0xC00110FF, sets bit 58 (STACKWARP_ENABLE_BIT), sleeps ~1000ms, then logs that it “triggered” corruption (actual trigger is a placeholder), and finally clears the bit. - This is primarily demonstrative: it shows MSR toggling and the intended exploitation phases, but does not implement VMID discovery, precise SMT synchronization, or a real corruption primitive. 2) Configuration and build artifacts (config/*, scripts/*) - config/environment.yaml documents assumed environment (kernel 5.15+, required modules kvm/kvm_amd/msr, SEV-SNP enabled, MSR address 0xC00110FF, control bit 58, delays, safety checks). - config/makefile builds stackwarp_exploit.o into stackwarp_exploit.ko. - scripts/setup.sh installs build dependencies and QEMU, and clones https://github.com/qemu/kvmtool.git. - scripts/build.sh compiles the kernel module (requires root). - scripts/test.sh (truncated in provided content) checks /proc/cpuinfo for AMD vendor/model and heuristically matches “Zen 1..5” strings. 3) Payload and post-exploitation tooling (payload/*) - payload/shellcode/stackwarp_shellcode.asm: x86_64 shellcode intended to run after RSP corruption; reads SYSCFG and SEV_STATUS MSRs, dumps registers, and scans nearby memory for PEM RSA key markers. - payload/memory_analysis/memory_scanner.py: Python tool to scan memory dumps for sensitive patterns (private keys, etc.). - Additional key-extraction logic appears in truncated docs content (searching for RSA/AES keys in a memory_dump.bin). 4) Documentation and references (docs/*, references/*) - docs/methodology.md outlines phases: reconnaissance (CPU/SEV-SNP/VMID), configuration (MSR bit), execution (timing/trigger), exploitation (shellcode/exfiltration). - references/cve-2025-29943.md and other reference docs describe affected CPU lines and mitigations (microcode update, kernel patches, disabling SMT, restricting MSR access). Notable observables / fingerprintable targets: - Local system files: /proc/cpuinfo, /dev/cpu/*/msr, /sys/devices/system/cpu/smt/control. - MSR addresses: 0xC00110FF (control), 0xC0010010 (SYSCFG), 0xC0010130 (SEV_STATUS). - External network endpoint used by setup: https://github.com/qemu/kvmtool.git. Overall assessment: - The kernel module is a PoC-style scaffold demonstrating the claimed MSR toggle and workflow, but the actual exploitation steps (precise trigger, VM targeting, reliable corruption, and code execution chain) are not implemented in the provided C code. The repo includes more aggressive “payload” artifacts (shellcode and memory scanners) consistent with a hypothetical post-compromise demonstration, but they are not integrated into an end-to-end exploit chain here.