Groups | Search | Server Info | Login | Register
Groups > comp.compilers > #3584
| From | John R Levine <johnl@taugh.com> |
|---|---|
| Newsgroups | comp.compilers |
| Subject | Crypto friendly optimization? |
| Date | 2024-08-24 17:14 -0400 |
| Organization | Compilers Central |
| Message-ID | <24-08-003@comp.compilers> (permalink) |
On a cryptography list people were complaining that compiler optimizers mess up their cryptographic code and make it insecure. They try to write code that runs in constant time, or that erases all the temporary storage, but the compilers say oh, that's dead code, or oh, I can make this faster with a few branches and the erases go away and the constatnt time isn't. This 2018 paper from Cambridge discusses changes they made to Clang/LLVM so they could tell the compiler what they wanted it to do. Has there been other work on this topic? https://on.ft.com/3MjWez0 R's, John
Back to comp.compilers | Previous | Next — Next in thread | Find similar
Crypto friendly optimization? John R Levine <johnl@taugh.com> - 2024-08-24 17:14 -0400
Re: Crypto friendly optimization? Keith Thompson <Keith.S.Thompson+u@gmail.com> - 2024-08-24 16:33 -0700
Re: Crypto friendly optimization? Keith Thompson <Keith.S.Thompson+u@gmail.com> - 2024-08-24 20:55 -0700
Re: Crypto friendly optimization? anton@mips.complang.tuwien.ac.at - 2024-08-25 16:06 +0000
Re: Crypto friendly optimization? David Brown <david.brown@hesbynett.no> - 2024-08-25 21:12 +0200
Re: Crypto friendly optimization? Philipp Klaus Krause <pkk@spth.de> - 2025-04-05 19:50 +0200
Re: Crypto friendly optimization? Ian Lance Taylor <ianlancetaylor@gmail.com> - 2024-08-24 20:14 -0700
Re: Crypto friendly optimization? David Brown <david.brown@hesbynett.no> - 2024-08-25 12:32 +0200
csiph-web