This folder contains all the SpectreBHI PoCs in our Peek-a-Walk paper. SpectreBHI is the first case study in our Peek-a-Walk paper that showcases expanded attacker capabitilies of the SpectreBHI threat model with our new, powerful, PWSC.
- Run
makein the root repo directory to create apwsc.astatic library inbin. This is used by our Spectre PoCs - Just simply run
makeon this folder!
Note: You may need to run ./poc-common/install_dependencies.sh to install the necessary dependencies first.
Follow the instructions here (Inspectre Gadget kernel instructions for Linux 6.6 rc4).
To configure the kernel to simulate Intel LAM you can manually apply the patch from SLAM here. Do not follow the instructions as the kernel version don't match. You need to manually apply lam.patch.
!!!!!! Important: If you running these PoCs for the first time you will need to run sudo ./setup.sh this ensures cgroup operations are available.
!!!!!! Important: There are several PoCs, in order to build and run these PoCs you need to run sudo ./run.sh.
This will call the main (main.c) to run the coded PoC.
To change which PoC runs, modify main.c to use the correct PoC (for ease all PoCs are commented out).
Our Dilithium PoC (doesn't require Intel LAM / kernel modifications) is contained in attacker.c with the Dilithium victim in victim.c.
The full list of PoCs in main.c is as follows,
- In
main.c,pwsc_test(): leaking 8 bytes using the PWC order oracle from the kernel. - In
main.c,leak_etc_shadow(): Leaking /etc/shadow. Requires Intel LAM to be added to the kernel and requires inputting the physmap address /etc/shadow. - In
main.c,leak_ascii(): Leaking ASCII strings from a victim process. Requires Intel LAM to be added to the kernel and requires inputting the physmap address of the ASCII string. A victim is provided and can be started by runningsudo ./victim_physmap. - In
main.c,test_leak_u64(): This will add a 8 byte secret in the kernel and leak it with theleak_u64()function. - In
main.c,paper_stats(): This generates the stats used in Table 2 of our paper. It leaks a set of interesting kernel bytes with Intel LAM enabled.
Our Dilithium PoC is not in main.c but in dilithium_poc and does not require Intel LAM to be enabled. The following subsection describes our Dilithium PoC more.
To run the Dilithium PoC, first go to root_dir/tools and follow the README.md instructions to insert the kernel_mem_scanner.ko kernel module. This is not required to run the PoC but will help ensure that you don't run LWE forever as it checks to make sure all the leaked coefficients are correct. After inserting the kernel module run the following,
Terminal 1
cd dilithium_poc/src/./victim
Terminal 2
cd dilithium_poc/src/sudo ./attacker <PID of victim> <address of y>Both<PID of victim>and<address of y>are printed to stdout byvictim.
After the attacker process collects enough hints in do the following,
Terminal 3
cd dilithium_poc/python dilithium_lattice_reduction.pywhich should run LWE to extract the secret key from the leaked coefficients.
poc-commoncolliding_bhb.*flush_and_reload.*snippet.Stargets.h: these are files needed for SpectreBHB. Refer to Inspectre Gadget for more details here.pwsc_spectre_bhi.*: contains is the static library that houses all the SpectreBHB + PWSC leakage functions.main.c: is our simple test code to run functions inpwsc_spectre_bhivictim_physmap.c: is the victim process where ASCII strings are leaked fromdilithium_poc: houses all the dilithium PoC codedilithium_lattice_reduction.py: the LWE code that takes leaked nonce coefficients to extract the Dilithium secret keysrc/victim.c: The Dilithium victimattacker.c: The Dilithium attacker