vmm: memory_manager: Mark guest memory mappings as non-dumpable

Including the guest RAM (or other mapped memory) in a coredump is not useful. See: #5014 Signed-off-by: Rob Bradford <robert.bradford@intel.com>
2024-07-07 10:15:45 +00:00 · 2022-12-15 15:42:19 +00:00 · 2022-12-15 15:42:19 +00:00 · 795f2a5558
commit 795f2a5558
parent 2b92a2778b
1 changed files with 14 additions and 0 deletions
--- a/vmm/src/memory_manager.rs
+++ b/vmm/src/memory_manager.rs
@ -1580,6 +1580,20 @@ impl MemoryManager {
            .create_user_memory_region(mem_region)
            .map_err(Error::CreateUserMemoryRegion)?;

+        // SAFETY: the address and size are valid since the
+        // mmap succeeded.
+        let ret = unsafe {
+            libc::madvise(
+                userspace_addr as *mut libc::c_void,
+                memory_size as libc::size_t,
+                libc::MADV_DONTDUMP,
+            )
+        };
+        if ret != 0 {
+            let e = io::Error::last_os_error();
+            warn!("Failed to mark mappin as MADV_DONTDUMP: {}", e);
+        }
+
        // Mark the pages as mergeable if explicitly asked for.
        if mergeable {
            // SAFETY: the address and size are valid since the