tacet 0.4.2

Detect timing side channels in cryptographic code
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247

//! Preflight checks to validate measurement setup before analysis.
//!
//! This module provides diagnostic checks that help identify common issues
//! with timing measurement setups that could lead to false positives or
//! unreliable results.
//!
//! # Checks Performed
//!
//! - **Sanity Check**: Fixed-vs-Fixed comparison to detect broken harness
//! - **Autocorrelation**: Detects periodic interference patterns
//! - **Resolution**: Detects timer resolution issues
//! - **System**: Platform-specific checks (e.g., CPU governor on Linux)
//!
//! # Core vs Platform-specific Checks
//!
//! Most preflight checks are no_std compatible and live in `tacet-core`.
//! This module re-exports them and adds platform-specific checks:
//!
//! - **From core (no_std)**: sanity_check, autocorrelation_check, resolution_check,
//!   PreflightResult, PreflightWarnings, run_core_checks
//! - **Platform-specific (std)**: system_check, timer_sanity_check

// Re-export core preflight checks and types (no_std compatible)
pub use tacet_core::preflight::{
    autocorrelation_check, compute_acf, resolution_check, run_core_checks, sanity_check,
    AutocorrWarning, PreflightResult as CorePreflightResult,
    PreflightWarnings as CorePreflightWarnings, ResolutionWarning, SanityWarning,
};

// Platform-specific checks that require std
mod resolution;
mod system;

pub use resolution::timer_sanity_check;
pub use system::{system_check, SystemWarning};

use serde::{Deserialize, Serialize};

/// Result of running all preflight checks (including platform-specific).
///
/// This extends `tacet_core::preflight::PreflightResult` with platform-specific
/// system warnings that require std (e.g., reading /sys/devices on Linux).
#[derive(Debug, Clone, Default, Serialize, Deserialize)]
pub struct PreflightResult {
    /// All warnings collected from preflight checks.
    pub warnings: PreflightWarnings,

    /// Whether any critical warnings were found.
    pub has_critical: bool,

    /// Whether the measurement setup is considered valid.
    pub is_valid: bool,
}

impl PreflightResult {
    /// Create a new empty preflight result.
    pub fn new() -> Self {
        Self {
            warnings: PreflightWarnings::default(),
            has_critical: false,
            is_valid: true,
        }
    }

    /// Create from a core preflight result.
    pub fn from_core(core: CorePreflightResult) -> Self {
        Self {
            warnings: PreflightWarnings::from_core(core.warnings),
            has_critical: core.has_critical,
            is_valid: core.is_valid,
        }
    }

    /// Add a sanity warning.
    pub fn add_sanity_warning(&mut self, warning: SanityWarning) {
        if warning.is_result_undermining() {
            self.has_critical = true;
            self.is_valid = false;
        }
        self.warnings.sanity.push(warning);
    }

    /// Add an autocorrelation warning.
    pub fn add_autocorr_warning(&mut self, warning: AutocorrWarning) {
        self.warnings.autocorr.push(warning);
    }

    /// Add a system warning.
    pub fn add_system_warning(&mut self, warning: SystemWarning) {
        self.warnings.system.push(warning);
    }

    /// Add a resolution warning.
    pub fn add_resolution_warning(&mut self, warning: ResolutionWarning) {
        if warning.is_result_undermining() {
            self.has_critical = true;
            self.is_valid = false;
        }
        self.warnings.resolution.push(warning);
    }

    /// Check if there are any warnings.
    pub fn has_warnings(&self) -> bool {
        !self.warnings.sanity.is_empty()
            || !self.warnings.autocorr.is_empty()
            || !self.warnings.system.is_empty()
            || !self.warnings.resolution.is_empty()
    }
}

/// Collection of all warnings from preflight checks (including platform-specific).
///
/// This extends `tacet_core::preflight::PreflightWarnings` with platform-specific
/// system warnings.
#[derive(Debug, Clone, Default, Serialize, Deserialize)]
pub struct PreflightWarnings {
    /// Warnings from sanity check (Fixed-vs-Fixed).
    pub sanity: Vec<SanityWarning>,

    /// Warnings from autocorrelation check.
    pub autocorr: Vec<AutocorrWarning>,

    /// Warnings from system checks (platform-specific).
    pub system: Vec<SystemWarning>,

    /// Warnings from timer resolution check.
    pub resolution: Vec<ResolutionWarning>,
}

impl PreflightWarnings {
    /// Create an empty warnings collection.
    pub fn new() -> Self {
        Self::default()
    }

    /// Create from core warnings.
    pub fn from_core(core: CorePreflightWarnings) -> Self {
        Self {
            sanity: core.sanity,
            autocorr: core.autocorr,
            system: Vec::new(),
            resolution: core.resolution,
        }
    }

    /// Get total number of warnings.
    pub fn count(&self) -> usize {
        self.sanity.len() + self.autocorr.len() + self.system.len() + self.resolution.len()
    }

    /// Check if empty.
    pub fn is_empty(&self) -> bool {
        self.count() == 0
    }
}

/// Run all preflight checks and collect warnings.
///
/// This runs both the core no_std-compatible checks and platform-specific
/// system checks.
///
/// # Arguments
///
/// * `fixed_samples` - Timing samples from fixed input class (baseline)
/// * `random_samples` - Timing samples from random input class (sample)
/// * `timer_resolution_ns` - Timer resolution in nanoseconds
/// * `seed` - Seed for reproducible randomization in sanity check
///
/// # Returns
///
/// A `PreflightResult` containing all warnings and validity assessment.
pub fn run_all_checks(
    fixed_samples: &[f64],
    random_samples: &[f64],
    timer_resolution_ns: f64,
    seed: u64,
) -> PreflightResult {
    // Run core checks
    let core_result = run_core_checks(fixed_samples, random_samples, timer_resolution_ns, seed);
    let mut result = PreflightResult::from_core(core_result);

    // Run platform-specific system checks
    for warning in system_check() {
        result.add_system_warning(warning);
    }

    result
}

/// Run timer sanity check separately (requires timer access).
///
/// This checks that the timer is monotonic by taking consecutive timestamps.
/// Should be called early in measurement setup where the timer is available.
///
/// # Arguments
///
/// * `timer` - The timer to check
///
/// # Returns
///
/// A `PreflightResult` with just the timer sanity check result.
pub fn run_timer_sanity_check(timer: &crate::measurement::BoxedTimer) -> PreflightResult {
    let mut result = PreflightResult::new();

    if let Some(warning) = timer_sanity_check(timer) {
        result.add_resolution_warning(warning.to_resolution_warning());
    }

    result
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_preflight_result_default() {
        let result = PreflightResult::new();
        assert!(result.is_valid);
        assert!(!result.has_critical);
        assert!(!result.has_warnings());
    }

    #[test]
    fn test_warnings_count() {
        let mut warnings = PreflightWarnings::new();
        assert_eq!(warnings.count(), 0);
        assert!(warnings.is_empty());

        warnings.sanity.push(SanityWarning::BrokenHarness {
            variance_ratio: 7.5,
        });
        assert_eq!(warnings.count(), 1);
        assert!(!warnings.is_empty());
    }

    #[test]
    fn test_from_core() {
        let mut core = CorePreflightResult::new();
        core.has_critical = true;
        core.is_valid = false;

        let result = PreflightResult::from_core(core);
        assert!(result.has_critical);
        assert!(!result.is_valid);
    }
}