Diffusion libgcrypt a4c561aab101

GCM: move look-up table to .data section and unshare between processes
Auditeda4c561aab101
Actions

Tags

None

Subscribers

Description

GCM: move look-up table to .data section and unshare between processes

* cipher/cipher-gcm.c (ATTR_ALIGNED_64): New.
(gcmR): Move to 'gcm_table' structure.
(gcm_table): New structure for look-up table with counters before and
after.
(gcmR): New macro.
(prefetch_table): Handle input with length not multiple of 256.
(do_prefetch_tables): Modify pre- and post-table counters to unshare
look-up table pages between processes.

GnuPG-bug-id: T4541
Signed-off-by: Jussi Kivilinna <jussi.kivilinna@iki.fi>

Details

Auditors

Provenance

Authored on May 31 2019, 4:27 PM

Parents

rCdaedbbb5541c: AES: move look-up tables to .data section and unshare between processes

Branches

Unknown

Tags

Unknown

Tasks

T4541: C implementation of AES is vulnerable to side-channel attacks

Event Timeline

jukivili added a task: T4541: C implementation of AES is vulnerable to side-channel attacks.Jun 6 2019, 6:28 PM

jukivili committed rCa4c561aab101: GCM: move look-up table to .data section and unshare between processes (authored by jukivili).Jun 5 2019, 9:09 PM

Good catch on using the counter to foil "smart" algorithms.

All concerns with this commit have now been addressed.Jun 6 2019, 6:37 PM

Changes (1)

Path

Size

cipher/

rCa4c561aab101

cipher/cipher-gcm.c

Loading...