Hi Everyone, I'd like to simplify AES's implementation by removing Td table caching and compressed tables.
Td caching was added around 2006. Compressed tables are the code associated with the aliased table at https://github.com/weidai11/cryptopp/blob/master/rijndael.cpp#L1079 . Compressed tables were in effect by default on IA32 for about a decade. They are used by default when unaligned access is in effect. For ARM, MIPS, PPC (and friends), they are not in effect. As of 5.6.4, we use aligned data access so they are no longer in effect by default. Most IA32 code uses AES-NI nowadays. About all Td caching does nowadays is complicate the implementation. It was the reason we caught Issue 302 (https://github.com/weidai11/cryptopp/issues/302). To be clear, I screwed up the cut-over from alloca which led to the CVE, so Td caching only played a small part in the chain of failures. Counter mode caching added around 2009 will still be in effect. That remediation should apply to both aligned and unaligned access. Any objections? Jeff -- -- You received this message because you are subscribed to the "Crypto++ Users" Google Group. To unsubscribe, send an email to cryptopp-users-unsubscr...@googlegroups.com. More information about Crypto++ and this group is available at http://www.cryptopp.com. --- You received this message because you are subscribed to the Google Groups "Crypto++ Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to cryptopp-users+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
