15701779eSjmcneill /* $OpenBSD: toeplitz.c,v 1.9 2020/09/01 19:18:26 tb Exp $ */
25701779eSjmcneill
35701779eSjmcneill /*
45701779eSjmcneill * Copyright (c) 2009 The DragonFly Project. All rights reserved.
55701779eSjmcneill *
65701779eSjmcneill * This code is derived from software contributed to The DragonFly Project
75701779eSjmcneill * by Sepherosa Ziehau <sepherosa@gmail.com>
85701779eSjmcneill *
95701779eSjmcneill * Redistribution and use in source and binary forms, with or without
105701779eSjmcneill * modification, are permitted provided that the following conditions
115701779eSjmcneill * are met:
125701779eSjmcneill *
135701779eSjmcneill * 1. Redistributions of source code must retain the above copyright
145701779eSjmcneill * notice, this list of conditions and the following disclaimer.
155701779eSjmcneill * 2. Redistributions in binary form must reproduce the above copyright
165701779eSjmcneill * notice, this list of conditions and the following disclaimer in
175701779eSjmcneill * the documentation and/or other materials provided with the
185701779eSjmcneill * distribution.
195701779eSjmcneill * 3. Neither the name of The DragonFly Project nor the names of its
205701779eSjmcneill * contributors may be used to endorse or promote products derived
215701779eSjmcneill * from this software without specific, prior written permission.
225701779eSjmcneill *
235701779eSjmcneill * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
245701779eSjmcneill * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
255701779eSjmcneill * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
265701779eSjmcneill * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
275701779eSjmcneill * COPYRIGHT HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
285701779eSjmcneill * INCIDENTAL, SPECIAL, EXEMPLARY OR CONSEQUENTIAL DAMAGES (INCLUDING,
295701779eSjmcneill * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
305701779eSjmcneill * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
315701779eSjmcneill * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
325701779eSjmcneill * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
335701779eSjmcneill * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
345701779eSjmcneill * SUCH DAMAGE.
355701779eSjmcneill */
365701779eSjmcneill
375701779eSjmcneill /*
385701779eSjmcneill * Copyright (c) 2019 David Gwynne <dlg@openbsd.org>
395701779eSjmcneill * Copyright (c) 2020 Theo Buehler <tb@openbsd.org>
405701779eSjmcneill *
415701779eSjmcneill * Permission to use, copy, modify, and distribute this software for any
425701779eSjmcneill * purpose with or without fee is hereby granted, provided that the above
435701779eSjmcneill * copyright notice and this permission notice appear in all copies.
445701779eSjmcneill *
455701779eSjmcneill * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
465701779eSjmcneill * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
475701779eSjmcneill * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
485701779eSjmcneill * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
495701779eSjmcneill * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
505701779eSjmcneill * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
515701779eSjmcneill * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
525701779eSjmcneill */
535701779eSjmcneill
548364d2d2Sknakahara /*-
55*90313c06Smsaitoh * Copyright (c) 2019 Ryo Shimizu
568364d2d2Sknakahara * All rights reserved.
578364d2d2Sknakahara *
588364d2d2Sknakahara * Redistribution and use in source and binary forms, with or without
598364d2d2Sknakahara * modification, are permitted provided that the following conditions
608364d2d2Sknakahara * are met:
618364d2d2Sknakahara * 1. Redistributions of source code must retain the above copyright
628364d2d2Sknakahara * notice, this list of conditions and the following disclaimer.
638364d2d2Sknakahara * 2. Redistributions in binary form must reproduce the above copyright
648364d2d2Sknakahara * notice, this list of conditions and the following disclaimer in the
658364d2d2Sknakahara * documentation and/or other materials provided with the distribution.
668364d2d2Sknakahara *
678364d2d2Sknakahara * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS
688364d2d2Sknakahara * OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
698364d2d2Sknakahara * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
708364d2d2Sknakahara * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT,
718364d2d2Sknakahara * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
728364d2d2Sknakahara * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
738364d2d2Sknakahara * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
748364d2d2Sknakahara * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
758364d2d2Sknakahara * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING
768364d2d2Sknakahara * IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
778364d2d2Sknakahara * POSSIBILITY OF SUCH DAMAGE.
788364d2d2Sknakahara */
798364d2d2Sknakahara
805701779eSjmcneill #include <sys/param.h>
815701779eSjmcneill #include <sys/systm.h>
825701779eSjmcneill #include <sys/kernel.h>
835701779eSjmcneill #include <sys/sysctl.h>
845701779eSjmcneill #include <sys/cprng.h>
855701779eSjmcneill
865701779eSjmcneill #include <netinet/in.h>
875701779eSjmcneill
885701779eSjmcneill #include <net/toeplitz.h>
895701779eSjmcneill
905701779eSjmcneill /*
915701779eSjmcneill * symmetric toeplitz
925701779eSjmcneill */
935701779eSjmcneill
945701779eSjmcneill static stoeplitz_key stoeplitz_keyseed = STOEPLITZ_KEYSEED;
955701779eSjmcneill static struct stoeplitz_cache stoeplitz_syskey_cache;
965701779eSjmcneill const struct stoeplitz_cache *const
975701779eSjmcneill stoeplitz_cache = &stoeplitz_syskey_cache;
985701779eSjmcneill
995701779eSjmcneill /* parity of n16: count (mod 2) of ones in the binary representation. */
1005701779eSjmcneill static int
parity(uint16_t n16)1015701779eSjmcneill parity(uint16_t n16)
1025701779eSjmcneill {
1035701779eSjmcneill n16 = ((n16 & 0xaaaa) >> 1) ^ (n16 & 0x5555);
1045701779eSjmcneill n16 = ((n16 & 0xcccc) >> 2) ^ (n16 & 0x3333);
1055701779eSjmcneill n16 = ((n16 & 0xf0f0) >> 4) ^ (n16 & 0x0f0f);
1065701779eSjmcneill n16 = ((n16 & 0xff00) >> 8) ^ (n16 & 0x00ff);
1075701779eSjmcneill
1085701779eSjmcneill return (n16);
1095701779eSjmcneill }
1105701779eSjmcneill
1115701779eSjmcneill /*
1125701779eSjmcneill * The Toeplitz matrix obtained from a seed is invertible if and only if the
1135701779eSjmcneill * parity of the seed is 1. Generate such a seed uniformly at random.
1145701779eSjmcneill */
1155701779eSjmcneill static stoeplitz_key
stoeplitz_random_seed(void)1165701779eSjmcneill stoeplitz_random_seed(void)
1175701779eSjmcneill {
1185701779eSjmcneill stoeplitz_key seed;
1195701779eSjmcneill
1205701779eSjmcneill seed = cprng_strong32() & UINT16_MAX;
1215701779eSjmcneill if (parity(seed) == 0)
1225701779eSjmcneill seed ^= 1;
1235701779eSjmcneill
1245701779eSjmcneill return (seed);
1255701779eSjmcneill }
1265701779eSjmcneill
1275701779eSjmcneill void
stoeplitz_init(void)1285701779eSjmcneill stoeplitz_init(void)
1295701779eSjmcneill {
1305701779eSjmcneill stoeplitz_keyseed = stoeplitz_random_seed();
1315701779eSjmcneill stoeplitz_cache_init(&stoeplitz_syskey_cache, stoeplitz_keyseed);
1325701779eSjmcneill }
1335701779eSjmcneill
1345701779eSjmcneill #define NBSK (NBBY * sizeof(stoeplitz_key))
1355701779eSjmcneill
1365701779eSjmcneill /*
1375701779eSjmcneill * The Toeplitz hash of a 16-bit number considered as a column vector over
1385701779eSjmcneill * the field with two elements is calculated as a matrix multiplication with
1395701779eSjmcneill * a 16x16 circulant Toeplitz matrix T generated by skey.
1405701779eSjmcneill *
1415701779eSjmcneill * The first eight columns H of T generate the remaining eight columns using
1425701779eSjmcneill * the byteswap operation J = swap16: T = [H JH]. Thus, the Toeplitz hash of
1435701779eSjmcneill * n = [hi lo] is computed via the formula T * n = (H * hi) ^ swap16(H * lo).
1445701779eSjmcneill *
1455701779eSjmcneill * Therefore the results H * val for all values of a byte are cached in scache.
1465701779eSjmcneill */
1475701779eSjmcneill void
stoeplitz_cache_init(struct stoeplitz_cache * scache,stoeplitz_key skey)1485701779eSjmcneill stoeplitz_cache_init(struct stoeplitz_cache *scache, stoeplitz_key skey)
1495701779eSjmcneill {
1505701779eSjmcneill uint16_t column[NBBY];
1515701779eSjmcneill unsigned int b, shift, val;
1525701779eSjmcneill
1535701779eSjmcneill bzero(column, sizeof(column));
1545701779eSjmcneill
1555701779eSjmcneill /* Calculate the first eight columns H of the Toeplitz matrix T. */
1565701779eSjmcneill for (b = 0; b < NBBY; ++b)
1575701779eSjmcneill column[b] = skey << b | skey >> (NBSK - b);
1585701779eSjmcneill
1595701779eSjmcneill /* Cache the results of H * val for all possible values of a byte. */
1605701779eSjmcneill for (val = 0; val < 256; ++val) {
1615701779eSjmcneill uint16_t res = 0;
1625701779eSjmcneill
1635701779eSjmcneill for (b = 0; b < NBBY; ++b) {
1645701779eSjmcneill shift = NBBY - b - 1;
1655701779eSjmcneill if (val & (1 << shift))
1665701779eSjmcneill res ^= column[b];
1675701779eSjmcneill }
1685701779eSjmcneill scache->bytes[val] = res;
1695701779eSjmcneill }
1705701779eSjmcneill }
1715701779eSjmcneill
1725701779eSjmcneill uint16_t
stoeplitz_hash_ip4(const struct stoeplitz_cache * scache,in_addr_t faddr,in_addr_t laddr)1735701779eSjmcneill stoeplitz_hash_ip4(const struct stoeplitz_cache *scache,
1745701779eSjmcneill in_addr_t faddr, in_addr_t laddr)
1755701779eSjmcneill {
1765701779eSjmcneill return (stoeplitz_hash_n32(scache, faddr ^ laddr));
1775701779eSjmcneill }
1785701779eSjmcneill
1795701779eSjmcneill uint16_t
stoeplitz_hash_ip4port(const struct stoeplitz_cache * scache,in_addr_t faddr,in_addr_t laddr,in_port_t fport,in_port_t lport)1805701779eSjmcneill stoeplitz_hash_ip4port(const struct stoeplitz_cache *scache,
1815701779eSjmcneill in_addr_t faddr, in_addr_t laddr, in_port_t fport, in_port_t lport)
1825701779eSjmcneill {
1835701779eSjmcneill return (stoeplitz_hash_n32(scache, faddr ^ laddr ^ fport ^ lport));
1845701779eSjmcneill }
1855701779eSjmcneill
1865701779eSjmcneill #ifdef INET6
1875701779eSjmcneill uint16_t
stoeplitz_hash_ip6(const struct stoeplitz_cache * scache,const struct in6_addr * faddr6,const struct in6_addr * laddr6)1885701779eSjmcneill stoeplitz_hash_ip6(const struct stoeplitz_cache *scache,
1895701779eSjmcneill const struct in6_addr *faddr6, const struct in6_addr *laddr6)
1905701779eSjmcneill {
1915701779eSjmcneill uint32_t n32 = 0;
1925701779eSjmcneill size_t i;
1935701779eSjmcneill
1943a0c206eSyamaguchi for (i = 0; i < __arraycount(faddr6->s6_addr32); i++)
1955701779eSjmcneill n32 ^= faddr6->s6_addr32[i] ^ laddr6->s6_addr32[i];
1965701779eSjmcneill
1975701779eSjmcneill return (stoeplitz_hash_n32(scache, n32));
1985701779eSjmcneill }
1995701779eSjmcneill
2005701779eSjmcneill uint16_t
stoeplitz_hash_ip6port(const struct stoeplitz_cache * scache,const struct in6_addr * faddr6,const struct in6_addr * laddr6,in_port_t fport,in_port_t lport)2015701779eSjmcneill stoeplitz_hash_ip6port(const struct stoeplitz_cache *scache,
2025701779eSjmcneill const struct in6_addr *faddr6, const struct in6_addr *laddr6,
2035701779eSjmcneill in_port_t fport, in_port_t lport)
2045701779eSjmcneill {
2055701779eSjmcneill uint32_t n32 = 0;
2065701779eSjmcneill size_t i;
2075701779eSjmcneill
2083a0c206eSyamaguchi for (i = 0; i < __arraycount(faddr6->s6_addr32); i++)
2095701779eSjmcneill n32 ^= faddr6->s6_addr32[i] ^ laddr6->s6_addr32[i];
2105701779eSjmcneill
2115701779eSjmcneill n32 ^= fport ^ lport;
2125701779eSjmcneill
2135701779eSjmcneill return (stoeplitz_hash_n32(scache, n32));
2145701779eSjmcneill }
2155701779eSjmcneill #endif /* INET6 */
2165701779eSjmcneill
2175701779eSjmcneill void
stoeplitz_to_key(void * key,size_t klen)2185701779eSjmcneill stoeplitz_to_key(void *key, size_t klen)
2195701779eSjmcneill {
2205701779eSjmcneill uint8_t *k = key;
2215701779eSjmcneill uint16_t skey = htons(stoeplitz_keyseed);
2225701779eSjmcneill size_t i;
2235701779eSjmcneill
2245701779eSjmcneill KASSERT((klen % 2) == 0);
2255701779eSjmcneill
2265701779eSjmcneill for (i = 0; i < klen; i += sizeof(skey)) {
2275701779eSjmcneill k[i + 0] = skey >> 8;
2285701779eSjmcneill k[i + 1] = skey;
2295701779eSjmcneill }
2305701779eSjmcneill }
2313d4863dcSknakahara
2323d4863dcSknakahara /*
2333d4863dcSknakahara * e.g.)
2343d4863dcSknakahara *
2353d4863dcSknakahara * struct in_addr src, dst;
2363d4863dcSknakahara * uint16_t srcport, dstport;
2373d4863dcSknakahara * toeplitz_vhash(rsskey[], sizeof(rsskey),
2383d4863dcSknakahara * &src, sizeof(src),
2393d4863dcSknakahara * &dst, sizeof(dst),
2403d4863dcSknakahara * &srcport, sizeof(srcport),
2413d4863dcSknakahara * &dstport, sizeof(dstport),
2423d4863dcSknakahara * NULL);
2433d4863dcSknakahara *
2443d4863dcSknakahara * struct in6_addr src6, dst6;
2453d4863dcSknakahara * toeplitz_vhash(rsskey[], sizeof(rsskey),
2463d4863dcSknakahara * &src6, sizeof(src6),
2473d4863dcSknakahara * &dst6, sizeof(dst6),
2483d4863dcSknakahara * NULL);
2493d4863dcSknakahara *
2503d4863dcSknakahara * struct ip *ip;
2513d4863dcSknakahara * struct tcphdr *tcp;
2523d4863dcSknakahara * toeplitz_vhash(rsskey[], sizeof(rsskey),
2533d4863dcSknakahara * &ip->ip_src, sizeof(ip->ip_src),
2543d4863dcSknakahara * &ip->ip_dst, sizeof(ip->ip_dst),
2553d4863dcSknakahara * &tcp->th_sport, sizeof(tcp->th_sport),
2563d4863dcSknakahara * &tcp->th_dport, sizeof(tcp->th_dport),
2573d4863dcSknakahara * NULL);
2583d4863dcSknakahara *
2593d4863dcSknakahara */
2603d4863dcSknakahara uint32_t
toeplitz_vhash(const uint8_t * keyp,size_t keylen,...)2613d4863dcSknakahara toeplitz_vhash(const uint8_t *keyp, size_t keylen, ...)
2623d4863dcSknakahara {
2633d4863dcSknakahara va_list ap;
2643d4863dcSknakahara uint32_t hash, v;
2653d4863dcSknakahara size_t datalen;
2663d4863dcSknakahara uint8_t *datap, key, data;
2673d4863dcSknakahara const uint8_t *keyend;
2683d4863dcSknakahara
2693d4863dcSknakahara keyend = keyp + keylen;
2703d4863dcSknakahara
2713d4863dcSknakahara /* first 32bit is initial vector */
2723d4863dcSknakahara v = *keyp++;
2733d4863dcSknakahara v <<= 8;
2743d4863dcSknakahara v |= *keyp++;
2753d4863dcSknakahara v <<= 8;
2763d4863dcSknakahara v |= *keyp++;
2773d4863dcSknakahara v <<= 8;
2783d4863dcSknakahara v |= *keyp++;
2793d4863dcSknakahara
2803d4863dcSknakahara hash = 0;
2813d4863dcSknakahara va_start(ap, keylen);
2823d4863dcSknakahara
2833d4863dcSknakahara while ((datap = va_arg(ap, uint8_t *)) != NULL) {
2843d4863dcSknakahara for (datalen = va_arg(ap, size_t); datalen > 0; datalen--) {
2853d4863dcSknakahara /* fetch key and input data by 8bit */
2863d4863dcSknakahara if (keyp < keyend)
2873d4863dcSknakahara key = *keyp++;
2883d4863dcSknakahara else
2893d4863dcSknakahara key = 0;
2903d4863dcSknakahara data = *datap++;
2913d4863dcSknakahara
2923d4863dcSknakahara #define XOR_AND_FETCH_BIT(x) \
2933d4863dcSknakahara if (data & __BIT(x)) \
2943d4863dcSknakahara hash ^= v; \
2953d4863dcSknakahara v <<= 1; \
2963d4863dcSknakahara if (key & __BIT(x)) \
2973d4863dcSknakahara v |= 1;
2983d4863dcSknakahara
2993d4863dcSknakahara XOR_AND_FETCH_BIT(7);
3003d4863dcSknakahara XOR_AND_FETCH_BIT(6);
3013d4863dcSknakahara XOR_AND_FETCH_BIT(5);
3023d4863dcSknakahara XOR_AND_FETCH_BIT(4);
3033d4863dcSknakahara XOR_AND_FETCH_BIT(3);
3043d4863dcSknakahara XOR_AND_FETCH_BIT(2);
3053d4863dcSknakahara XOR_AND_FETCH_BIT(1);
3063d4863dcSknakahara XOR_AND_FETCH_BIT(0);
3073d4863dcSknakahara
3083d4863dcSknakahara #undef XOR_AND_FETCH_BIT
3093d4863dcSknakahara }
3103d4863dcSknakahara }
3113d4863dcSknakahara va_end(ap);
3123d4863dcSknakahara
3133d4863dcSknakahara return hash;
3143d4863dcSknakahara }
315