toeplitz.c revision 1.4
1 1.1 jmcneill /* $OpenBSD: toeplitz.c,v 1.9 2020/09/01 19:18:26 tb Exp $ */ 2 1.1 jmcneill 3 1.1 jmcneill /* 4 1.1 jmcneill * Copyright (c) 2009 The DragonFly Project. All rights reserved. 5 1.1 jmcneill * 6 1.1 jmcneill * This code is derived from software contributed to The DragonFly Project 7 1.1 jmcneill * by Sepherosa Ziehau <sepherosa (at) gmail.com> 8 1.1 jmcneill * 9 1.1 jmcneill * Redistribution and use in source and binary forms, with or without 10 1.1 jmcneill * modification, are permitted provided that the following conditions 11 1.1 jmcneill * are met: 12 1.1 jmcneill * 13 1.1 jmcneill * 1. Redistributions of source code must retain the above copyright 14 1.1 jmcneill * notice, this list of conditions and the following disclaimer. 15 1.1 jmcneill * 2. Redistributions in binary form must reproduce the above copyright 16 1.1 jmcneill * notice, this list of conditions and the following disclaimer in 17 1.1 jmcneill * the documentation and/or other materials provided with the 18 1.1 jmcneill * distribution. 19 1.1 jmcneill * 3. Neither the name of The DragonFly Project nor the names of its 20 1.1 jmcneill * contributors may be used to endorse or promote products derived 21 1.1 jmcneill * from this software without specific, prior written permission. 22 1.1 jmcneill * 23 1.1 jmcneill * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS 24 1.1 jmcneill * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT 25 1.1 jmcneill * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS 26 1.1 jmcneill * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE 27 1.1 jmcneill * COPYRIGHT HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, 28 1.1 jmcneill * INCIDENTAL, SPECIAL, EXEMPLARY OR CONSEQUENTIAL DAMAGES (INCLUDING, 29 1.1 jmcneill * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; 30 1.1 jmcneill * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED 31 1.1 jmcneill * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, 32 1.1 jmcneill * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT 33 1.1 jmcneill * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 34 1.1 jmcneill * SUCH DAMAGE. 35 1.1 jmcneill */ 36 1.1 jmcneill 37 1.1 jmcneill /* 38 1.1 jmcneill * Copyright (c) 2019 David Gwynne <dlg (at) openbsd.org> 39 1.1 jmcneill * Copyright (c) 2020 Theo Buehler <tb (at) openbsd.org> 40 1.1 jmcneill * 41 1.1 jmcneill * Permission to use, copy, modify, and distribute this software for any 42 1.1 jmcneill * purpose with or without fee is hereby granted, provided that the above 43 1.1 jmcneill * copyright notice and this permission notice appear in all copies. 44 1.1 jmcneill * 45 1.1 jmcneill * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES 46 1.1 jmcneill * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF 47 1.1 jmcneill * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR 48 1.1 jmcneill * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES 49 1.1 jmcneill * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN 50 1.1 jmcneill * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF 51 1.1 jmcneill * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. 52 1.1 jmcneill */ 53 1.1 jmcneill 54 1.4 knakahar /*- 55 1.4 knakahar * Copyright (c) 2019 Ryo Shimizu <ryo (at) nerv.org> 56 1.4 knakahar * All rights reserved. 57 1.4 knakahar * 58 1.4 knakahar * Redistribution and use in source and binary forms, with or without 59 1.4 knakahar * modification, are permitted provided that the following conditions 60 1.4 knakahar * are met: 61 1.4 knakahar * 1. Redistributions of source code must retain the above copyright 62 1.4 knakahar * notice, this list of conditions and the following disclaimer. 63 1.4 knakahar * 2. Redistributions in binary form must reproduce the above copyright 64 1.4 knakahar * notice, this list of conditions and the following disclaimer in the 65 1.4 knakahar * documentation and/or other materials provided with the distribution. 66 1.4 knakahar * 67 1.4 knakahar * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS 68 1.4 knakahar * OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED 69 1.4 knakahar * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 70 1.4 knakahar * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, 71 1.4 knakahar * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES 72 1.4 knakahar * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR 73 1.4 knakahar * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 74 1.4 knakahar * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, 75 1.4 knakahar * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING 76 1.4 knakahar * IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE 77 1.4 knakahar * POSSIBILITY OF SUCH DAMAGE. 78 1.4 knakahar */ 79 1.4 knakahar 80 1.1 jmcneill #include <sys/param.h> 81 1.1 jmcneill #include <sys/systm.h> 82 1.1 jmcneill #include <sys/kernel.h> 83 1.1 jmcneill #include <sys/sysctl.h> 84 1.1 jmcneill #include <sys/cprng.h> 85 1.1 jmcneill 86 1.1 jmcneill #include <netinet/in.h> 87 1.1 jmcneill 88 1.1 jmcneill #include <net/toeplitz.h> 89 1.1 jmcneill 90 1.1 jmcneill /* 91 1.1 jmcneill * symmetric toeplitz 92 1.1 jmcneill */ 93 1.1 jmcneill 94 1.1 jmcneill static stoeplitz_key stoeplitz_keyseed = STOEPLITZ_KEYSEED; 95 1.1 jmcneill static struct stoeplitz_cache stoeplitz_syskey_cache; 96 1.1 jmcneill const struct stoeplitz_cache *const 97 1.1 jmcneill stoeplitz_cache = &stoeplitz_syskey_cache; 98 1.1 jmcneill 99 1.1 jmcneill /* parity of n16: count (mod 2) of ones in the binary representation. */ 100 1.1 jmcneill static int 101 1.1 jmcneill parity(uint16_t n16) 102 1.1 jmcneill { 103 1.1 jmcneill n16 = ((n16 & 0xaaaa) >> 1) ^ (n16 & 0x5555); 104 1.1 jmcneill n16 = ((n16 & 0xcccc) >> 2) ^ (n16 & 0x3333); 105 1.1 jmcneill n16 = ((n16 & 0xf0f0) >> 4) ^ (n16 & 0x0f0f); 106 1.1 jmcneill n16 = ((n16 & 0xff00) >> 8) ^ (n16 & 0x00ff); 107 1.1 jmcneill 108 1.1 jmcneill return (n16); 109 1.1 jmcneill } 110 1.1 jmcneill 111 1.1 jmcneill /* 112 1.1 jmcneill * The Toeplitz matrix obtained from a seed is invertible if and only if the 113 1.1 jmcneill * parity of the seed is 1. Generate such a seed uniformly at random. 114 1.1 jmcneill */ 115 1.1 jmcneill static stoeplitz_key 116 1.1 jmcneill stoeplitz_random_seed(void) 117 1.1 jmcneill { 118 1.1 jmcneill stoeplitz_key seed; 119 1.1 jmcneill 120 1.1 jmcneill seed = cprng_strong32() & UINT16_MAX; 121 1.1 jmcneill if (parity(seed) == 0) 122 1.1 jmcneill seed ^= 1; 123 1.1 jmcneill 124 1.1 jmcneill return (seed); 125 1.1 jmcneill } 126 1.1 jmcneill 127 1.1 jmcneill void 128 1.1 jmcneill stoeplitz_init(void) 129 1.1 jmcneill { 130 1.1 jmcneill stoeplitz_keyseed = stoeplitz_random_seed(); 131 1.1 jmcneill stoeplitz_cache_init(&stoeplitz_syskey_cache, stoeplitz_keyseed); 132 1.1 jmcneill } 133 1.1 jmcneill 134 1.1 jmcneill #define NBSK (NBBY * sizeof(stoeplitz_key)) 135 1.1 jmcneill 136 1.1 jmcneill /* 137 1.1 jmcneill * The Toeplitz hash of a 16-bit number considered as a column vector over 138 1.1 jmcneill * the field with two elements is calculated as a matrix multiplication with 139 1.1 jmcneill * a 16x16 circulant Toeplitz matrix T generated by skey. 140 1.1 jmcneill * 141 1.1 jmcneill * The first eight columns H of T generate the remaining eight columns using 142 1.1 jmcneill * the byteswap operation J = swap16: T = [H JH]. Thus, the Toeplitz hash of 143 1.1 jmcneill * n = [hi lo] is computed via the formula T * n = (H * hi) ^ swap16(H * lo). 144 1.1 jmcneill * 145 1.1 jmcneill * Therefore the results H * val for all values of a byte are cached in scache. 146 1.1 jmcneill */ 147 1.1 jmcneill void 148 1.1 jmcneill stoeplitz_cache_init(struct stoeplitz_cache *scache, stoeplitz_key skey) 149 1.1 jmcneill { 150 1.1 jmcneill uint16_t column[NBBY]; 151 1.1 jmcneill unsigned int b, shift, val; 152 1.1 jmcneill 153 1.1 jmcneill bzero(column, sizeof(column)); 154 1.1 jmcneill 155 1.1 jmcneill /* Calculate the first eight columns H of the Toeplitz matrix T. */ 156 1.1 jmcneill for (b = 0; b < NBBY; ++b) 157 1.1 jmcneill column[b] = skey << b | skey >> (NBSK - b); 158 1.1 jmcneill 159 1.1 jmcneill /* Cache the results of H * val for all possible values of a byte. */ 160 1.1 jmcneill for (val = 0; val < 256; ++val) { 161 1.1 jmcneill uint16_t res = 0; 162 1.1 jmcneill 163 1.1 jmcneill for (b = 0; b < NBBY; ++b) { 164 1.1 jmcneill shift = NBBY - b - 1; 165 1.1 jmcneill if (val & (1 << shift)) 166 1.1 jmcneill res ^= column[b]; 167 1.1 jmcneill } 168 1.1 jmcneill scache->bytes[val] = res; 169 1.1 jmcneill } 170 1.1 jmcneill } 171 1.1 jmcneill 172 1.1 jmcneill uint16_t 173 1.1 jmcneill stoeplitz_hash_ip4(const struct stoeplitz_cache *scache, 174 1.1 jmcneill in_addr_t faddr, in_addr_t laddr) 175 1.1 jmcneill { 176 1.1 jmcneill return (stoeplitz_hash_n32(scache, faddr ^ laddr)); 177 1.1 jmcneill } 178 1.1 jmcneill 179 1.1 jmcneill uint16_t 180 1.1 jmcneill stoeplitz_hash_ip4port(const struct stoeplitz_cache *scache, 181 1.1 jmcneill in_addr_t faddr, in_addr_t laddr, in_port_t fport, in_port_t lport) 182 1.1 jmcneill { 183 1.1 jmcneill return (stoeplitz_hash_n32(scache, faddr ^ laddr ^ fport ^ lport)); 184 1.1 jmcneill } 185 1.1 jmcneill 186 1.1 jmcneill #ifdef INET6 187 1.1 jmcneill uint16_t 188 1.1 jmcneill stoeplitz_hash_ip6(const struct stoeplitz_cache *scache, 189 1.1 jmcneill const struct in6_addr *faddr6, const struct in6_addr *laddr6) 190 1.1 jmcneill { 191 1.1 jmcneill uint32_t n32 = 0; 192 1.1 jmcneill size_t i; 193 1.1 jmcneill 194 1.2 yamaguch for (i = 0; i < __arraycount(faddr6->s6_addr32); i++) 195 1.1 jmcneill n32 ^= faddr6->s6_addr32[i] ^ laddr6->s6_addr32[i]; 196 1.1 jmcneill 197 1.1 jmcneill return (stoeplitz_hash_n32(scache, n32)); 198 1.1 jmcneill } 199 1.1 jmcneill 200 1.1 jmcneill uint16_t 201 1.1 jmcneill stoeplitz_hash_ip6port(const struct stoeplitz_cache *scache, 202 1.1 jmcneill const struct in6_addr *faddr6, const struct in6_addr *laddr6, 203 1.1 jmcneill in_port_t fport, in_port_t lport) 204 1.1 jmcneill { 205 1.1 jmcneill uint32_t n32 = 0; 206 1.1 jmcneill size_t i; 207 1.1 jmcneill 208 1.2 yamaguch for (i = 0; i < __arraycount(faddr6->s6_addr32); i++) 209 1.1 jmcneill n32 ^= faddr6->s6_addr32[i] ^ laddr6->s6_addr32[i]; 210 1.1 jmcneill 211 1.1 jmcneill n32 ^= fport ^ lport; 212 1.1 jmcneill 213 1.1 jmcneill return (stoeplitz_hash_n32(scache, n32)); 214 1.1 jmcneill } 215 1.1 jmcneill #endif /* INET6 */ 216 1.1 jmcneill 217 1.1 jmcneill void 218 1.1 jmcneill stoeplitz_to_key(void *key, size_t klen) 219 1.1 jmcneill { 220 1.1 jmcneill uint8_t *k = key; 221 1.1 jmcneill uint16_t skey = htons(stoeplitz_keyseed); 222 1.1 jmcneill size_t i; 223 1.1 jmcneill 224 1.1 jmcneill KASSERT((klen % 2) == 0); 225 1.1 jmcneill 226 1.1 jmcneill for (i = 0; i < klen; i += sizeof(skey)) { 227 1.1 jmcneill k[i + 0] = skey >> 8; 228 1.1 jmcneill k[i + 1] = skey; 229 1.1 jmcneill } 230 1.1 jmcneill } 231 1.3 knakahar 232 1.3 knakahar /* 233 1.3 knakahar * e.g.) 234 1.3 knakahar * 235 1.3 knakahar * struct in_addr src, dst; 236 1.3 knakahar * uint16_t srcport, dstport; 237 1.3 knakahar * toeplitz_vhash(rsskey[], sizeof(rsskey), 238 1.3 knakahar * &src, sizeof(src), 239 1.3 knakahar * &dst, sizeof(dst), 240 1.3 knakahar * &srcport, sizeof(srcport), 241 1.3 knakahar * &dstport, sizeof(dstport), 242 1.3 knakahar * NULL); 243 1.3 knakahar * 244 1.3 knakahar * struct in6_addr src6, dst6; 245 1.3 knakahar * toeplitz_vhash(rsskey[], sizeof(rsskey), 246 1.3 knakahar * &src6, sizeof(src6), 247 1.3 knakahar * &dst6, sizeof(dst6), 248 1.3 knakahar * NULL); 249 1.3 knakahar * 250 1.3 knakahar * struct ip *ip; 251 1.3 knakahar * struct tcphdr *tcp; 252 1.3 knakahar * toeplitz_vhash(rsskey[], sizeof(rsskey), 253 1.3 knakahar * &ip->ip_src, sizeof(ip->ip_src), 254 1.3 knakahar * &ip->ip_dst, sizeof(ip->ip_dst), 255 1.3 knakahar * &tcp->th_sport, sizeof(tcp->th_sport), 256 1.3 knakahar * &tcp->th_dport, sizeof(tcp->th_dport), 257 1.3 knakahar * NULL); 258 1.3 knakahar * 259 1.3 knakahar */ 260 1.3 knakahar uint32_t 261 1.3 knakahar toeplitz_vhash(const uint8_t *keyp, size_t keylen, ...) 262 1.3 knakahar { 263 1.3 knakahar va_list ap; 264 1.3 knakahar uint32_t hash, v; 265 1.3 knakahar size_t datalen; 266 1.3 knakahar uint8_t *datap, key, data; 267 1.3 knakahar const uint8_t *keyend; 268 1.3 knakahar 269 1.3 knakahar keyend = keyp + keylen; 270 1.3 knakahar 271 1.3 knakahar /* first 32bit is initial vector */ 272 1.3 knakahar v = *keyp++; 273 1.3 knakahar v <<= 8; 274 1.3 knakahar v |= *keyp++; 275 1.3 knakahar v <<= 8; 276 1.3 knakahar v |= *keyp++; 277 1.3 knakahar v <<= 8; 278 1.3 knakahar v |= *keyp++; 279 1.3 knakahar 280 1.3 knakahar hash = 0; 281 1.3 knakahar va_start(ap, keylen); 282 1.3 knakahar 283 1.3 knakahar while ((datap = va_arg(ap, uint8_t *)) != NULL) { 284 1.3 knakahar for (datalen = va_arg(ap, size_t); datalen > 0; datalen--) { 285 1.3 knakahar /* fetch key and input data by 8bit */ 286 1.3 knakahar if (keyp < keyend) 287 1.3 knakahar key = *keyp++; 288 1.3 knakahar else 289 1.3 knakahar key = 0; 290 1.3 knakahar data = *datap++; 291 1.3 knakahar 292 1.3 knakahar #define XOR_AND_FETCH_BIT(x) \ 293 1.3 knakahar if (data & __BIT(x)) \ 294 1.3 knakahar hash ^= v; \ 295 1.3 knakahar v <<= 1; \ 296 1.3 knakahar if (key & __BIT(x)) \ 297 1.3 knakahar v |= 1; 298 1.3 knakahar 299 1.3 knakahar XOR_AND_FETCH_BIT(7); 300 1.3 knakahar XOR_AND_FETCH_BIT(6); 301 1.3 knakahar XOR_AND_FETCH_BIT(5); 302 1.3 knakahar XOR_AND_FETCH_BIT(4); 303 1.3 knakahar XOR_AND_FETCH_BIT(3); 304 1.3 knakahar XOR_AND_FETCH_BIT(2); 305 1.3 knakahar XOR_AND_FETCH_BIT(1); 306 1.3 knakahar XOR_AND_FETCH_BIT(0); 307 1.3 knakahar 308 1.3 knakahar #undef XOR_AND_FETCH_BIT 309 1.3 knakahar } 310 1.3 knakahar } 311 1.3 knakahar va_end(ap); 312 1.3 knakahar 313 1.3 knakahar return hash; 314 1.3 knakahar } 315
Indexes created Fri Oct 03 02:09:57 GMT 2025