Linaro Git Browser
Code Review Sign In
review.linaro.org / kernel / linux-linaro-stable.git / 536657195e2fb24484eac985302dc7a1e0093f5c / . / net / core / secure_seq.c
blob: d0afc322b961f37be72a908c4e3fb66b40ff761a [file] [log] [blame]
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]1#include <linux/kernel.h>
2#include <linux/init.h>
3#include <linux/cryptohash.h>
4#include <linux/module.h>
5#include <linux/cache.h>
6#include <linux/random.h>
7#include <linux/hrtimer.h>
8#include <linux/ktime.h>
9#include <linux/string.h>
10
11#include <net/secure_seq.h>
12
Fabio Estevamb9396c42013-10-05 17:56:59 -0300[diff] [blame]13#if IS_ENABLED(CONFIG_IPV6) || IS_ENABLED(CONFIG_INET)
Eric Dumazetbdf831a2013-09-24 06:19:57 -0700[diff] [blame]14#define NET_SECRET_SIZE (MD5_MESSAGE_BYTES / 4)
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]15
Eric Dumazetbdf831a2013-09-24 06:19:57 -0700[diff] [blame]16static u32 net_secret[NET_SECRET_SIZE] ____cacheline_aligned;
17
18static void net_secret_init(void)
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]19{
Eric Dumazetbdf831a2013-09-24 06:19:57 -0700[diff] [blame]20 u32 tmp;
21 int i;
22
23 if (likely(net_secret[0]))
24 return;
25
26 for (i = NET_SECRET_SIZE; i > 0;) {
27 do {
28 get_random_bytes(&tmp, sizeof(tmp));
29 } while (!tmp);
30 cmpxchg(&net_secret[--i], 0, tmp);
31 }
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]32}
Fabio Estevamb9396c42013-10-05 17:56:59 -0300[diff] [blame]33#endif
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]34
Stephen Boyd681090902011-12-06 08:04:40 +0000[diff] [blame]35#ifdef CONFIG_INET
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]36static u32 seq_scale(u32 seq)
37{
38 /*
39 * As close as possible to RFC 793, which
40 * suggests using a 250 kHz clock.
41 * Further reading shows this assumes 2 Mb/s networks.
42 * For 10 Mb/s Ethernet, a 1 MHz clock is appropriate.
43 * For 10 Gb/s Ethernet, a 1 GHz clock should be ok, but
44 * we also need to limit the resolution so that the u32 seq
45 * overlaps less than one time per MSL (2 minutes).
46 * Choosing a clock of 64 ns period is OK. (period of 274 s)
47 */
48 return seq + (ktime_to_ns(ktime_get_real()) >> 6);
49}
Stephen Boyd681090902011-12-06 08:04:40 +0000[diff] [blame]50#endif
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]51
Eric Dumazetdfd56b82011-12-10 09:48:31 +0000[diff] [blame]52#if IS_ENABLED(CONFIG_IPV6)
Eric Dumazetcf533ea2011-10-21 05:22:42 -0400[diff] [blame]53__u32 secure_tcpv6_sequence_number(const __be32 *saddr, const __be32 *daddr,
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]54 __be16 sport, __be16 dport)
55{
56 u32 secret[MD5_MESSAGE_BYTES / 4];
57 u32 hash[MD5_DIGEST_WORDS];
58 u32 i;
59
Eric Dumazetbdf831a2013-09-24 06:19:57 -0700[diff] [blame]60 net_secret_init();
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]61 memcpy(hash, saddr, 16);
62 for (i = 0; i < 4; i++)
Eric Dumazet747465e2012-01-16 19:27:39 +0000[diff] [blame]63 secret[i] = net_secret[i] + (__force u32)daddr[i];
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]64 secret[4] = net_secret[4] +
65 (((__force u16)sport << 16) + (__force u16)dport);
66 for (i = 5; i < MD5_MESSAGE_BYTES / 4; i++)
67 secret[i] = net_secret[i];
68
69 md5_transform(hash, secret);
70
71 return seq_scale(hash[0]);
72}
73EXPORT_SYMBOL(secure_tcpv6_sequence_number);
74
75u32 secure_ipv6_port_ephemeral(const __be32 *saddr, const __be32 *daddr,
76 __be16 dport)
77{
78 u32 secret[MD5_MESSAGE_BYTES / 4];
79 u32 hash[MD5_DIGEST_WORDS];
80 u32 i;
81
Eric Dumazetbdf831a2013-09-24 06:19:57 -0700[diff] [blame]82 net_secret_init();
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]83 memcpy(hash, saddr, 16);
84 for (i = 0; i < 4; i++)
85 secret[i] = net_secret[i] + (__force u32) daddr[i];
86 secret[4] = net_secret[4] + (__force u32)dport;
87 for (i = 5; i < MD5_MESSAGE_BYTES / 4; i++)
88 secret[i] = net_secret[i];
89
90 md5_transform(hash, secret);
91
92 return hash[0];
93}
Patrick McHardy58a317f2012-08-26 19:14:12 +0200[diff] [blame]94EXPORT_SYMBOL(secure_ipv6_port_ephemeral);
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]95#endif
96
97#ifdef CONFIG_INET
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]98
99__u32 secure_tcp_sequence_number(__be32 saddr, __be32 daddr,
100 __be16 sport, __be16 dport)
101{
102 u32 hash[MD5_DIGEST_WORDS];
103
Eric Dumazetbdf831a2013-09-24 06:19:57 -0700[diff] [blame]104 net_secret_init();
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]105 hash[0] = (__force u32)saddr;
106 hash[1] = (__force u32)daddr;
107 hash[2] = ((__force u16)sport << 16) + (__force u16)dport;
108 hash[3] = net_secret[15];
109
110 md5_transform(hash, net_secret);
111
112 return seq_scale(hash[0]);
113}
114
115u32 secure_ipv4_port_ephemeral(__be32 saddr, __be32 daddr, __be16 dport)
116{
117 u32 hash[MD5_DIGEST_WORDS];
118
Eric Dumazetbdf831a2013-09-24 06:19:57 -0700[diff] [blame]119 net_secret_init();
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]120 hash[0] = (__force u32)saddr;
121 hash[1] = (__force u32)daddr;
122 hash[2] = (__force u32)dport ^ net_secret[14];
123 hash[3] = net_secret[15];
124
125 md5_transform(hash, net_secret);
126
127 return hash[0];
128}
129EXPORT_SYMBOL_GPL(secure_ipv4_port_ephemeral);
130#endif
131
Igor Maravića3bf7ae2011-12-12 02:58:22 +0000[diff] [blame]132#if IS_ENABLED(CONFIG_IP_DCCP)
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]133u64 secure_dccp_sequence_number(__be32 saddr, __be32 daddr,
134 __be16 sport, __be16 dport)
135{
136 u32 hash[MD5_DIGEST_WORDS];
137 u64 seq;
138
Eric Dumazetbdf831a2013-09-24 06:19:57 -0700[diff] [blame]139 net_secret_init();
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]140 hash[0] = (__force u32)saddr;
141 hash[1] = (__force u32)daddr;
142 hash[2] = ((__force u16)sport << 16) + (__force u16)dport;
143 hash[3] = net_secret[15];
144
145 md5_transform(hash, net_secret);
146
147 seq = hash[0] | (((u64)hash[1]) << 32);
148 seq += ktime_to_ns(ktime_get_real());
149 seq &= (1ull << 48) - 1;
150
151 return seq;
152}
153EXPORT_SYMBOL(secure_dccp_sequence_number);
154
Eric Dumazetdfd56b82011-12-10 09:48:31 +0000[diff] [blame]155#if IS_ENABLED(CONFIG_IPV6)
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]156u64 secure_dccpv6_sequence_number(__be32 *saddr, __be32 *daddr,
157 __be16 sport, __be16 dport)
158{
159 u32 secret[MD5_MESSAGE_BYTES / 4];
160 u32 hash[MD5_DIGEST_WORDS];
161 u64 seq;
162 u32 i;
163
Eric Dumazetbdf831a2013-09-24 06:19:57 -0700[diff] [blame]164 net_secret_init();
David S. Miller6e5714e2011-08-03 20:50:44 -0700[diff] [blame]165 memcpy(hash, saddr, 16);
166 for (i = 0; i < 4; i++)
167 secret[i] = net_secret[i] + daddr[i];
168 secret[4] = net_secret[4] +
169 (((__force u16)sport << 16) + (__force u16)dport);
170 for (i = 5; i < MD5_MESSAGE_BYTES / 4; i++)
171 secret[i] = net_secret[i];
172
173 md5_transform(hash, secret);
174
175 seq = hash[0] | (((u64)hash[1]) << 32);
176 seq += ktime_to_ns(ktime_get_real());
177 seq &= (1ull << 48) - 1;
178
179 return seq;
180}
181EXPORT_SYMBOL(secure_dccpv6_sequence_number);
182#endif
183#endif