Page MenuHomeFreeBSD
Differential D16935

rijndael (AES): Avoid leaking sensitive data on kernel stack
ClosedPublic
Actions

Authored by cem on Aug 29 2018, 4:28 AM.
Tags
None
Referenced Files
F109253264: D16935.diff
Sun, Feb 2, 3:58 PM
Unknown Object (File)
Sat, Jan 18, 5:09 PM
Unknown Object (File)
Tue, Jan 14, 5:51 PM
Unknown Object (File)
Mon, Jan 13, 5:44 PM
Unknown Object (File)
Nov 23 2024, 11:29 AM
Unknown Object (File)
Nov 17 2024, 11:21 PM
Unknown Object (File)
Nov 17 2024, 10:08 PM
Unknown Object (File)
Nov 17 2024, 9:15 PM
View All 40 Files
Subscribers
gordon
imp

Details

Reviewers
delphij
jmg
Group Reviewers
secteam
Commits
rS339787: rijndael (AES): Avoid leaking sensitive data on kernel stack
Summary

Noticed this investigating Fortuna. Remove useless duplicate stack copies
of sensitive contents when possible, or if not possible, be sure to zero
them out when we're finished.

Diff Detail

Lint
No Lint Coverage
Unit
No Test Coverage
Build Status
Buildable 19256
Build 18869: arc lint + arc unit

Event Timeline

cem created this revision.Aug 29 2018, 4:28 AM
Harbormaster completed remote builds in B19256: Diff 47424.Aug 29 2018, 4:28 AM
delphij added a comment.Aug 29 2018, 6:22 PM

Mostly LGTM.

sys/crypto/rijndael/rijndael-api-fst.c
448

Could you please change this to use some better name, e.g. something like 'cleanup' instead?

cem added inline comments.Aug 29 2018, 7:25 PM
sys/crypto/rijndael/rijndael-api-fst.c
448

I think 'out' is well understood:

$ cd sys
$ ag 'goto out;' | wc -l
    5333
$ ag 'goto cleanup;' | wc -l
     222

I can change it if you still prefer it, but I don't think "cleanup" is any better (or worse).

cem added a comment.Oct 20 2018, 7:48 PM

Ping -- do you still want a different label or is out ok? Thanks!

gordon accepted this revision as: secteam.Oct 24 2018, 6:04 PM
gordon added a subscriber: gordon.

Approved based on timeout from delphij.

This revision was not accepted when it landed; it landed in state Needs Review.Oct 26 2018, 8:53 PM
Closed by commit rS339787: rijndael (AES): Avoid leaking sensitive data on kernel stack (authored by cem). · Explain Why
This revision was automatically updated to reflect the committed changes.
Herald added a reviewer: jmg. · View Herald TranscriptOct 26 2018, 8:53 PM
Herald added a subscriber: imp. · View Herald Transcript

Revision Contents
Changeset List

PathSize
sys/
crypto/
rijndael/
31 lines

Diff 47424

View Options

sys/crypto/rijndael/rijndael-api-fst.c

Loading...