From 652e989d238fff2ade0de5a33a0e307e233c06e0 Mon Sep 17 00:00:00 2001
From: Mounir IDRASSI <mounir.idrassi@idrix.fr>
Date: Wed, 9 Jan 2019 00:25:06 +0100
Subject: Windows Security: Add new entry point in driver that allows emergency
 clearing of all encryption keys from memory. This entry point requires
 administrative privileges and it will caused BSDO when system encryption is
 active. It can be useful for example to applications that monitors physical
 access to the machine and which need to erase sensitive key material from RAM
 when unauthorized access is detected.

---
 src/Driver/EncryptedIoQueue.h | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'src/Driver/EncryptedIoQueue.h')

diff --git a/src/Driver/EncryptedIoQueue.h b/src/Driver/EncryptedIoQueue.h
index c4a105e8..58efbc96 100644
--- a/src/Driver/EncryptedIoQueue.h
+++ b/src/Driver/EncryptedIoQueue.h
@@ -44,7 +44,7 @@ typedef struct
 	KMUTEX BufferPoolMutex;
 	EncryptedIoQueueBuffer *FirstPoolBuffer;
 
-	CRYPTO_INFO *CryptoInfo;
+	volatile CRYPTO_INFO *CryptoInfo;
 
 	// File-handle-based IO
 	HANDLE HostFileHandle;
@@ -119,6 +119,8 @@ typedef struct
 
  	byte*  SecRegionData;
  	SIZE_T SecRegionSize;
+
+	volatile BOOL ThreadBlockReadWrite;
 }  EncryptedIoQueue;
 
 
-- 
cgit v1.2.3