crypto: x86/poly1305 - Clear key material from stack in SSE2 variant

1-block SSE2 variant of poly1305 stores variables s1..s4 containing key material on the stack. This commit adds missing zeroing of the stack memory. Benchmarks show negligible performance hit (tested on i7-3770). Signed-off-by: N Tommi Hirvola <tommi@hirvola.fi> Signed-off-by: N Herbert Xu <herbert@gondor.apana.org.au>

crypto: x86/poly1305 - Clear key material from stack in SSE2 variant
1-block SSE2 variant of poly1305 stores variables s1..s4 containing key material on the stack. This commit adds missing zeroing of the stack memory. Benchmarks show negligible performance hit (tested on i7-3770). Signed-off-by: N Tommi Hirvola <tommi@hirvola.fi> Signed-off-by: N Herbert Xu <herbert@gondor.apana.org.au>
7748168c · Tommi Hirvola · Herbert Xu · 30724445 · 7748168c
隐藏空白更改
内联并排

Showing with 4 addition and 0 deletion

arch/x86/crypto/poly1305-sse2-x86_64.S arch/x86/crypto/poly1305-sse2-x86_64.S +4 -0

未找到文件。
--- a/arch/x86/crypto/poly1305-sse2-x86_64.S
+++ b/arch/x86/crypto/poly1305-sse2-x86_64.S
@@ -272,6 +272,10 @@ ENTRY(poly1305_block_sse2)
 	dec		%rcx
 	jnz		.Ldoblock
+	# Zeroing of key material
+	mov		%rcx,0x00(%rsp)
+	mov		%rcx,0x08(%rsp)
 	add		$0x10,%rsp
 	pop		%r12
 	pop		%rbx