Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Constant-Time bin2hex() implementation #909

Closed
wants to merge 6,270 commits into from
Closed

Constant-Time bin2hex() implementation #909

wants to merge 6,270 commits into from

Conversation

sarciszewski
Copy link
Contributor

Contant time bin2hex() implementation, taken from jedisct1/libsodium@814df1e

@laruence
Copy link
Member

hmm... did you ever try to make after your fix?

 hex[i * 2U] = (char) (87 + b + (((b - 10) >> 31) & -39));

where is hex's definition?

and since hexconvtab not used anymore, the definition of it should also be removed.

thanks

@sarciszewski
Copy link
Contributor Author

How does this look now? :)

@nikic
Copy link
Member

nikic commented Nov 22, 2014

Can you provide information as to how this performs compared to the previous implementation? I'm not fully convinced that PHP has need for a constant time bin2hex implementation.

@sarciszewski
Copy link
Contributor Author

I'm not fully convinced that PHP has need for a constant time bin2hex implementation.

Do PHP developers use bin2hex() (or base64_encode()) on cryptographic secrets for the purpose of storing in configuration files (.ini, .json, .yaml, or .conf.php)? If so, then PHP has a need for constant time implementations of these functions.

http://tonyarcieri.com/cream-the-scary-ssl-attack-youve-probably-never-heard-of
http://cr.yp.to/antiforgery/cachetiming-20050414.pdf

(Spoiler: Yes, we do use these features to encode cryptographic secrets. So I would argue that they are a good enhancement to include in PHP 7)

@smalyshev
Copy link
Contributor

I think this needs some discussion on internals. If we worry about such things just replacing random functions is not enough - you should be sure all functions that handle your secret are constant-time, including the engine primitives, etc. I'm not sure just having one function does anything. But maybe I'm missing something here.

@sarciszewski
Copy link
Contributor Author

If we worry about such things just replacing random functions is not enough - you should be sure all functions that handle your secret are constant-time, including the engine primitives, etc.

This is just a start. I'd love to discuss it with "internals", but my only exposure to PHP's core dev is through github.

@laruence
Copy link
Member

@sarciszewski you can drop a mail to internals at lists.php.net :)

@nikic
Copy link
Member

nikic commented Nov 29, 2014

@sarciszewski It must be added to the function entry list: https://github.com/sarciszewski/php-src/blob/patch-1/ext/standard/basic_functions.c#L2664.

@sarciszewski
Copy link
Contributor Author

Ah, thank you.

laruence and others added 20 commits January 13, 2015 23:39
@laruence
Update NEWS
a698a3f
@dstogov
Optimized str_[i]replace to aviod reallocations and repeatable conver…
ade7a41 
…sions to lowercase
@laruence
Faster sorting algo
2193de0
@weltling
fixed zend_hash_init() when the lzcnt instruction isn't supported
8e3764e
@weltling
cleanup
d5b5ad7
@dstogov
Ipmrove strtr() by maintaining a set of characters that may start a m…
588e803 
…atched pattern and avoid zend_hash_find() calls for other paterns.
@dstogov
Improve "instanceof". Interfaces of the left operand should be checke…
2325758 
…d only if the right operand is interafce itself.
@dstogov
Avoid string reallocation in strtr()
e0155d5
@dstogov
Fixed typo
90c20b4
@rdlowrey
Merge branch 'PHP-5.6'
c7c6230 
* PHP-5.6:
  Update NEWS
  Fixed bug #55618 (use case-insensitive cert name matching)
@smalyshev
Fix bug #68817: Null pointer deference
7f95aa4
@smalyshev
Fix bug #68816 - pointer to local outside of scope
8d26c53
@laruence
Merge branch 'zend_sort' of https://github.com/laruence/php-src
8a0bc38
@laruence
Optimize array_unique to save some comparation calls
b57dc41
@laruence
Fixed tests on 32-bits
e61f444
@laruence
Fixed missed test
2823c9d
@laruence
We could do more....
11f615b
@weltling
fix "unknown void * size" err
cdfafd3
@weltling
don't return value in the void function
706b7c6
@weltling
optimize offset computation
1af91d9
dstogov and others added 26 commits January 28, 2015 06:56
@dstogov
Merge branch 'typed_returns' of github.com:morrisonlevi/php-src into …
638d0cb 
…test

* 'typed_returns' of github.com:morrisonlevi/php-src:
  Implement return types
Forgot to apply important peace of patch
4d747b1
Remove legacy code
e71099b
@laruence
Fixed #68868 (Segfault in clean_non_persistent_constants() in SugarCR…
a0cf025 
…M 6.5.20)
@mapopa
fbird_close if connection_id omitted, the last opened link is assumed…
b9868f2 
… , so it was already closed
@mapopa
Merge branch 'master' of https://git.php.net/push/php-src
be29cb1 
* 'master' of https://git.php.net/push/php-src:
  Fixed #68868 (Segfault in clean_non_persistent_constants() in SugarCRM 6.5.20)
@weltling
fix unportable dereferencing
4d16937
@laruence
Merge branch 'master' of https://git.php.net/repository/php-src
659395e
@laruence
Merge branch 'PHP-5.6'
b775163 
Conflicts:
	ext/phar/phar_object.c
@smalyshev
add imap
14d6de9
@nikic
Remove support for hex number from is_numeric_string
d133e68
Merge branch 'PHP-5.6'
14d68d3 
* PHP-5.6:
  Fixed Bug #68941 mod_files.sh is a bash-script
Merge branch 'master' into master-rfc-session-lock4
f90f610 
Conflicts:
	UPGRADING
Cleanup session id files after test
7a97eaf
Merge branch 'pull-request/1016'
e727d64 
* pull-request/1016:
Implement RFC: Introduce session_start() options
@laruence
Fixed annoying warnings
a1d9cea
@laruence
The argument must be not changed in session_start
4da7e4d
Use proper type
70b2d2e
@laruence
ppid must be IS_STRING
14396a3
@laruence
Merge branch 'master' of https://git.php.net/repository/php-src
18c647c
@laruence
reorder the branches
d96eb4b
Merge branch 'PHP-5.6'
07a5dfc 
* PHP-5.6:
  Use bash rather than sh
Remove excessive macros
7f52978
@laruence
Fixed valgrind issue in mb_ereg_replace_variation1.phpt
2505aea
@sarciszewski
Constant-Time bin2hex() implementation
603c450
@sarciszewski
Merge branch 'patch-1' of https://github.com/sarciszewski/php-src int…
3d4a87b 
…o patch-1
@sarciszewski
Copy link
Contributor Author

Ugh, this got messy. Time to start over.

@sarciszewski sarciszewski deleted the patch-1 branch January 29, 2015 23:17
@sarciszewski sarciszewski mentioned this pull request Jan 29, 2015
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
Feature
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet