dendrobates-t-azureus/cache_side_channel/src/lib.rs

#![feature(specialization)]
#![feature(unsafe_block_in_unsafe_fn)]
#![deny(unsafe_op_in_unsafe_fn)]

use nix::sched::{sched_getaffinity, sched_setaffinity, CpuSet};
use nix::unistd::Pid;
use std::fmt::Debug;

pub mod table_side_channel;

#[derive(Debug, PartialEq, Eq, Clone, Copy)]
pub enum CacheStatus {
    Hit,
    Miss,
}

#[derive(Debug, PartialEq, Eq, Clone, Copy)]
pub enum ChannelFatalError {
    Oops,
}

#[derive(Debug)]
pub enum SideChannelError {
    NeedRecalibration,
    FatalError(ChannelFatalError),
    AddressNotReady(*const u8),
    AddressNotCalibrated(*const u8),
}

pub trait CoreSpec {
    fn main_core(&self) -> CpuSet;
    fn helper_core(&self) -> CpuSet;
}

pub fn restore_affinity(cpu_set: &CpuSet) {
    sched_setaffinity(Pid::from_raw(0), &cpu_set).unwrap();
}

#[must_use = "This result must be used to restore affinity"]
pub fn set_affinity(cpu_set: &CpuSet) -> CpuSet {
    let old = sched_getaffinity(Pid::from_raw(0)).unwrap();
    sched_setaffinity(Pid::from_raw(0), &cpu_set).unwrap();
    old
}

pub trait SingleAddrCacheSideChannel: CoreSpec + Debug {
    //type SingleChannelFatalError: Debug;
    /// # Safety
    ///
    /// addr must be a valid pointer to read.
    unsafe fn test_single(&mut self, addr: *const u8) -> Result<CacheStatus, SideChannelError>;
    /// # Safety
    ///
    /// addr must be a valid pointer to read.
    unsafe fn prepare_single(&mut self, addr: *const u8) -> Result<(), SideChannelError>;
    fn victim_single(&mut self, operation: &dyn Fn());
    /// # Safety
    ///
    /// addresses must contain only valid pointers to read.
    unsafe fn calibrate_single(
        &mut self,
        addresses: impl IntoIterator<Item = *const u8> + Clone,
    ) -> Result<(), ChannelFatalError>;
}

pub trait MultipleAddrCacheSideChannel: CoreSpec + Debug {
    const MAX_ADDR: u32;
    /// # Safety
    ///
    /// addresses must contain only valid pointers to read.
    unsafe fn test<'a, 'b, 'c>(
        &'a mut self,
        addresses: &'b mut (impl Iterator<Item = &'c *const u8> + Clone),
    ) -> Result<Vec<(*const u8, CacheStatus)>, SideChannelError>;

    /// # Safety
    ///
    /// addresses must contain only valid pointers to read.
    unsafe fn prepare<'a, 'b, 'c>(
        &'a mut self,
        addresses: &'b mut (impl Iterator<Item = &'c *const u8> + Clone),
    ) -> Result<(), SideChannelError>;
    fn victim(&mut self, operation: &dyn Fn());

    /// # Safety
    ///
    /// addresses must contain only valid pointers to read.
    unsafe fn calibrate(
        &mut self,
        addresses: impl IntoIterator<Item = *const u8> + Clone,
    ) -> Result<(), ChannelFatalError>;
}

impl<T: MultipleAddrCacheSideChannel> SingleAddrCacheSideChannel for T {
    unsafe fn test_single(&mut self, addr: *const u8) -> Result<CacheStatus, SideChannelError> {
        let addresses = vec![addr];
        unsafe { self.test(&mut addresses.iter()) }.map(|v| v[0].1)
    }

    unsafe fn prepare_single(&mut self, addr: *const u8) -> Result<(), SideChannelError> {
        let addresses = vec![addr];
        unsafe { self.prepare(&mut addresses.iter()) }
    }

    fn victim_single(&mut self, operation: &dyn Fn()) {
        self.victim(operation);
    }

    unsafe fn calibrate_single(
        &mut self,
        addresses: impl IntoIterator<Item = *const u8> + Clone,
    ) -> Result<(), ChannelFatalError> {
        unsafe { self.calibrate(addresses) }
    }
}

#[cfg(test)]
mod tests {
    #[test]
    fn it_works() {
        assert_eq!(2 + 2, 4);
    }
}
Major refactor that allows proper core selection - covert / side channel are currently back in a non functional state - two thread calibration however qorks and gets full experimental results 2020-10-22 14:38:41 +02:00			`#![feature(specialization)]`
			`#![feature(unsafe_block_in_unsafe_fn)]`
			`#![deny(unsafe_op_in_unsafe_fn)]`

Final update to AES Major update to covert channel benchmarking 2020-11-20 10:52:58 +01:00			`use nix::sched::{sched_getaffinity, sched_setaffinity, CpuSet};`
			`use nix::unistd::Pid;`
Major refactor that allows proper core selection - covert / side channel are currently back in a non functional state - two thread calibration however qorks and gets full experimental results 2020-10-22 14:38:41 +02:00			`use std::fmt::Debug;`

			`pub mod table_side_channel;`

			`#[derive(Debug, PartialEq, Eq, Clone, Copy)]`
			`pub enum CacheStatus {`
			`Hit,`
			`Miss,`
			`}`

			`#[derive(Debug, PartialEq, Eq, Clone, Copy)]`
			`pub enum ChannelFatalError {`
			`Oops,`
			`}`

Final update to AES Major update to covert channel benchmarking 2020-11-20 10:52:58 +01:00			`#[derive(Debug)]`
Major refactor that allows proper core selection - covert / side channel are currently back in a non functional state - two thread calibration however qorks and gets full experimental results 2020-10-22 14:38:41 +02:00			`pub enum SideChannelError {`
			`NeedRecalibration,`
			`FatalError(ChannelFatalError),`
			`AddressNotReady(*const u8),`
			`AddressNotCalibrated(*const u8),`
			`}`

Final update to AES Major update to covert channel benchmarking 2020-11-20 10:52:58 +01:00			`pub trait CoreSpec {`
			`fn main_core(&self) -> CpuSet;`
			`fn helper_core(&self) -> CpuSet;`
			`}`

			`pub fn restore_affinity(cpu_set: &CpuSet) {`
			`sched_setaffinity(Pid::from_raw(0), &cpu_set).unwrap();`
			`}`

			`#[must_use = "This result must be used to restore affinity"]`
			`pub fn set_affinity(cpu_set: &CpuSet) -> CpuSet {`
			`let old = sched_getaffinity(Pid::from_raw(0)).unwrap();`
			`sched_setaffinity(Pid::from_raw(0), &cpu_set).unwrap();`
			`old`
			`}`

			`pub trait SingleAddrCacheSideChannel: CoreSpec + Debug {`
Major refactor that allows proper core selection - covert / side channel are currently back in a non functional state - two thread calibration however qorks and gets full experimental results 2020-10-22 14:38:41 +02:00			`//type SingleChannelFatalError: Debug;`
			`/// # Safety`
			`///`
			`/// addr must be a valid pointer to read.`
			`unsafe fn test_single(&mut self, addr: *const u8) -> Result<CacheStatus, SideChannelError>;`
			`/// # Safety`
			`///`
			`/// addr must be a valid pointer to read.`
			`unsafe fn prepare_single(&mut self, addr: *const u8) -> Result<(), SideChannelError>;`
			`fn victim_single(&mut self, operation: &dyn Fn());`
			`/// # Safety`
			`///`
			`/// addresses must contain only valid pointers to read.`
			`unsafe fn calibrate_single(`
			`&mut self,`
			`addresses: impl IntoIterator<Item = *const u8> + Clone,`
			`) -> Result<(), ChannelFatalError>;`
			`}`

Final update to AES Major update to covert channel benchmarking 2020-11-20 10:52:58 +01:00			`pub trait MultipleAddrCacheSideChannel: CoreSpec + Debug {`
Major refactor that allows proper core selection - covert / side channel are currently back in a non functional state - two thread calibration however qorks and gets full experimental results 2020-10-22 14:38:41 +02:00			`const MAX_ADDR: u32;`
			`/// # Safety`
			`///`
			`/// addresses must contain only valid pointers to read.`
			`unsafe fn test<'a, 'b, 'c>(`
			`&'a mut self,`
			`addresses: &'b mut (impl Iterator<Item = &'c *const u8> + Clone),`
			`) -> Result<Vec<(*const u8, CacheStatus)>, SideChannelError>;`

			`/// # Safety`
			`///`
			`/// addresses must contain only valid pointers to read.`
			`unsafe fn prepare<'a, 'b, 'c>(`
			`&'a mut self,`
			`addresses: &'b mut (impl Iterator<Item = &'c *const u8> + Clone),`
			`) -> Result<(), SideChannelError>;`
			`fn victim(&mut self, operation: &dyn Fn());`

			`/// # Safety`
			`///`
			`/// addresses must contain only valid pointers to read.`
			`unsafe fn calibrate(`
			`&mut self,`
			`addresses: impl IntoIterator<Item = *const u8> + Clone,`
			`) -> Result<(), ChannelFatalError>;`
			`}`

			`impl<T: MultipleAddrCacheSideChannel> SingleAddrCacheSideChannel for T {`
			`unsafe fn test_single(&mut self, addr: *const u8) -> Result<CacheStatus, SideChannelError> {`
			`let addresses = vec![addr];`
			`unsafe { self.test(&mut addresses.iter()) }.map(\|v\| v[0].1)`
			`}`

			`unsafe fn prepare_single(&mut self, addr: *const u8) -> Result<(), SideChannelError> {`
			`let addresses = vec![addr];`
			`unsafe { self.prepare(&mut addresses.iter()) }`
			`}`

			`fn victim_single(&mut self, operation: &dyn Fn()) {`
			`self.victim(operation);`
			`}`

			`unsafe fn calibrate_single(`
			`&mut self,`
			`addresses: impl IntoIterator<Item = *const u8> + Clone,`
			`) -> Result<(), ChannelFatalError> {`
			`unsafe { self.calibrate(addresses) }`
			`}`
			`}`

			`#[cfg(test)]`
			`mod tests {`
			`#[test]`
			`fn it_works() {`
			`assert_eq!(2 + 2, 4);`
			`}`
			`}`