diff options
Diffstat (limited to 'src/crypto/aes/const.go')
-rw-r--r-- | src/crypto/aes/const.go | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/src/crypto/aes/const.go b/src/crypto/aes/const.go index aee73a7c52..cbac5ff0ea 100644 --- a/src/crypto/aes/const.go +++ b/src/crypto/aes/const.go @@ -4,6 +4,13 @@ // Package aes implements AES encryption (formerly Rijndael), as defined in // U.S. Federal Information Processing Standards Publication 197. +// +// The AES operations in this package are not implemented using constant-time algorithms. +// An exception is when running on systems with enabled hardware support for AES +// that makes these operations constant-time. Examples include amd64 systems using AES-NI +// extensions and s390x systems using Message-Security-Assist extensions. +// On such systems, when the result of NewCipher is passed to cipher.NewGCM, +// the GHASH operation used by GCM is also constant-time. package aes // This file contains AES constants - 8720 bytes of initialized data. |