Matryoshka Trap: Recursive MMIO Flaws Lead to VM Escape

Presented at CanSecWest 2022, May 20, 2022, 3:30 p.m. (60 minutes)

When a hypervisor handles MMIO VM-exit to do DMA transfers, another MMIO handler might be called later if the destination overlaps with its MMIO region. This kind of bug can damage the virtual device’s state machine even crash the hypervisor. However, little effort has been spent to study whether they are critical security issues – Are they exploitable? In this talk, we will present our security research on QEMU/KVM, a hypervisor widely used in cloud computing, and analyze the root cause and common consequences of recursive MMIO, thus disclosing a new attack surface. Interestingly, we found Oracle VirtualBox is also affected. To facilitate the hunting and exploiting process, we use CodeQL to find flaws and exploit primitives automatically. We will explain the CodeQL queries and some vulnerabilities we found. Additionally, we will share the details of our exploit development on a recursive MMIO vulnerability (CVE-2021-3929), and demonstrate a VM escape in the end. Furthermore, we find that recursions can happen between different devices, which brings more possibilities to exploit the hypervisor. As far as we know, this is the first public guest-to-host exploit by constructing recursive MMIO chains. Finally, we will give some thoughts about mitigations and the lessons we’ve learned.

Presenters:

• Gaoning Pan - Zhejiang University
  Gaoning Pan ([**@hades24495092**](https://twitter.com/hades24495092)) is a Ph.D. student at Zhejiang University, China, under the supervision of Chunming Wu. He is a member of the AAA CTF Team. His research focuses on System Security, especially Virtualization Security. He has reported several vulnerabilities in QEMU and Oracle VirtualBox, which were confirmed and credited in multiple advisories. Along this thread, he has presented his work in top-tier academic conferences ACM CCS 2021 and Black Hat Asia 2021.
• Qiuhao Li - Harbin Institute of Technology
  Qiuhao Li ([**@QiuhaoLi**](https://twitter.com/qiuhaoli)) is a graduate student at Harbin Institute of Technology, supervised by professor Hui He. His main research areas are cloud security and fuzzing. He has reported multiple vulnerabilities to QEMU, Oracle VirtualBox, and Parallels Desktop.

Links:

• https://cansecwest2022.sched.com/event/ztIN/matryoshka-trap-recursive-mmio-flaws-lead-to-vm-escape

Similar Presentations:

• DeepSec 2016 „Ten“ / Malicious Hypervisor Threat - Phase Two: How to Catch the Hypervisor
• DeepSec 2020 „The Masquerade“ / Exploiting Interfaces of Secure Encrypted Virtual Machines
• Black Hat Asia 2020 Virtual / 3d Red Pill: A Guest-to-Host Escape on QEMU/KVM Virtio Device