Release 4.12 net/core/secure_seq.c
/*
* Copyright (C) 2016 Jason A. Donenfeld <Jason@zx2c4.com>. All Rights Reserved.
*/
#include <linux/kernel.h>
#include <linux/init.h>
#include <linux/cryptohash.h>
#include <linux/module.h>
#include <linux/cache.h>
#include <linux/random.h>
#include <linux/hrtimer.h>
#include <linux/ktime.h>
#include <linux/string.h>
#include <linux/net.h>
#include <linux/siphash.h>
#include <net/secure_seq.h>
#if IS_ENABLED(CONFIG_IPV6) || IS_ENABLED(CONFIG_INET)
#include <linux/in6.h>
#include <net/tcp.h>
static siphash_key_t net_secret __read_mostly;
static siphash_key_t ts_secret __read_mostly;
static __always_inline void net_secret_init(void)
{
net_get_random_once(&net_secret, sizeof(net_secret));
}
Contributors
| Person | Tokens | Prop | Commits | CommitProp |
| Florian Westphal | 6 | 30.00% | 1 | 12.50% |
| David S. Miller | 6 | 30.00% | 1 | 12.50% |
| Eric Dumazet | 5 | 25.00% | 3 | 37.50% |
| Hannes Frederic Sowa | 2 | 10.00% | 2 | 25.00% |
| Jason A. Donenfeld | 1 | 5.00% | 1 | 12.50% |
| Total | 20 | 100.00% | 8 | 100.00% |
static __always_inline void ts_secret_init(void)
{
net_get_random_once(&ts_secret, sizeof(ts_secret));
}
Contributors
| Person | Tokens | Prop | Commits | CommitProp |
| Eric Dumazet | 13 | 65.00% | 2 | 40.00% |
| Florian Westphal | 3 | 15.00% | 1 | 20.00% |
| David S. Miller | 3 | 15.00% | 1 | 20.00% |
| Hannes Frederic Sowa | 1 | 5.00% | 1 | 20.00% |
| Total | 20 | 100.00% | 5 | 100.00% |
#endif
#ifdef CONFIG_INET
static u32 seq_scale(u32 seq)
{
/*
* As close as possible to RFC 793, which
* suggests using a 250 kHz clock.
* Further reading shows this assumes 2 Mb/s networks.
* For 10 Mb/s Ethernet, a 1 MHz clock is appropriate.
* For 10 Gb/s Ethernet, a 1 GHz clock should be ok, but
* we also need to limit the resolution so that the u32 seq
* overlaps less than one time per MSL (2 minutes).
* Choosing a clock of 64 ns period is OK. (period of 274 s)
*/
return seq + (ktime_get_real_ns() >> 6);
}
Contributors
| Person | Tokens | Prop | Commits | CommitProp |
| David S. Miller | 19 | 95.00% | 1 | 50.00% |
| Eric Dumazet | 1 | 5.00% | 1 | 50.00% |
| Total | 20 | 100.00% | 2 | 100.00% |
#endif
#if IS_ENABLED(CONFIG_IPV6)
u32 secure_tcpv6_ts_off(const __be32 *saddr, const __be32 *daddr)
{
const struct {
struct in6_addr saddr;
struct in6_addr daddr;
} __aligned(SIPHASH_ALIGNMENT) combined = {
.saddr = *(struct in6_addr *)saddr,
.daddr = *(struct in6_addr *)daddr,
};
if (sysctl_tcp_timestamps != 1)
return 0;
ts_secret_init();
return siphash(&combined, offsetofend(typeof(combined), daddr),
&ts_secret);
}
Contributors
| Person | Tokens | Prop | Commits | CommitProp |
| Florian Westphal | 86 | 96.63% | 1 | 50.00% |
| Eric Dumazet | 3 | 3.37% | 1 | 50.00% |
| Total | 89 | 100.00% | 2 | 100.00% |
EXPORT_SYMBOL(secure_tcpv6_ts_off);
u32 secure_tcpv6_seq(const __be32 *saddr, const __be32 *daddr,
__be16 sport, __be16 dport)
{
const struct {
struct in6_addr saddr;
struct in6_addr daddr;
__be16 sport;
__be16 dport;
} __aligned(SIPHASH_ALIGNMENT) combined = {
.saddr = *(struct in6_addr *)saddr,
.daddr = *(struct in6_addr *)daddr,
.sport = sport,
.dport = dport
};
u32 hash;
net_secret_init();
hash = siphash(&combined, offsetofend(typeof(combined), dport),
&net_secret);
return seq_scale(hash);
}
Contributors
| Person | Tokens | Prop | Commits | CommitProp |
| Jason A. Donenfeld | 64 | 57.14% | 1 | 16.67% |
| David S. Miller | 41 | 36.61% | 1 | 16.67% |
| Eric Dumazet | 6 | 5.36% | 3 | 50.00% |
| Florian Westphal | 1 | 0.89% | 1 | 16.67% |
| Total | 112 | 100.00% | 6 | 100.00% |
EXPORT_SYMBOL(secure_tcpv6_seq);
u32 secure_ipv6_port_ephemeral(const __be32 *saddr, const __be32 *daddr,
__be16 dport)
{
const struct {
struct in6_addr saddr;
struct in6_addr daddr;
__be16 dport;
} __aligned(SIPHASH_ALIGNMENT) combined = {
.saddr = *(struct in6_addr *)saddr,
.daddr = *(struct in6_addr *)daddr,
.dport = dport
};
net_secret_init();
return siphash(&combined, offsetofend(typeof(combined), dport),
&net_secret);
}
Contributors
| Person | Tokens | Prop | Commits | CommitProp |
| Jason A. Donenfeld | 54 | 59.34% | 1 | 50.00% |
| David S. Miller | 37 | 40.66% | 1 | 50.00% |
| Total | 91 | 100.00% | 2 | 100.00% |
EXPORT_SYMBOL(secure_ipv6_port_ephemeral);
#endif
#ifdef CONFIG_INET
u32 secure_tcp_ts_off(__be32 saddr, __be32 daddr)
{
if (sysctl_tcp_timestamps != 1)
return 0;
ts_secret_init();
return siphash_2u32((__force u32)saddr, (__force u32)daddr,
&ts_secret);
}
Contributors
| Person | Tokens | Prop | Commits | CommitProp |
| Florian Westphal | 39 | 92.86% | 1 | 50.00% |
| Eric Dumazet | 3 | 7.14% | 1 | 50.00% |
| Total | 42 | 100.00% | 2 | 100.00% |
/* secure_tcp_seq_and_tsoff(a, b, 0, d) == secure_ipv4_port_ephemeral(a, b, d),
* but fortunately, `sport' cannot be 0 in any circumstances. If this changes,
* it would be easy enough to have the former function use siphash_4u32, passing
* the arguments as separate u32.
*/
u32 secure_tcp_seq(__be32 saddr, __be32 daddr,
__be16 sport, __be16 dport)
{
u32 hash;
net_secret_init();
hash = siphash_3u32((__force u32)saddr, (__force u32)daddr,
(__force u32)sport << 16 | (__force u32)dport,
&net_secret);
return seq_scale(hash);
}
Contributors
| Person | Tokens | Prop | Commits | CommitProp |
| David S. Miller | 49 | 77.78% | 1 | 20.00% |
| Jason A. Donenfeld | 8 | 12.70% | 1 | 20.00% |
| Eric Dumazet | 5 | 7.94% | 2 | 40.00% |
| Florian Westphal | 1 | 1.59% | 1 | 20.00% |
| Total | 63 | 100.00% | 5 | 100.00% |
u32 secure_ipv4_port_ephemeral(__be32 saddr, __be32 daddr, __be16 dport)
{
net_secret_init();
return siphash_3u32((__force u32)saddr, (__force u32)daddr,
(__force u16)dport, &net_secret);
}
Contributors
| Person | Tokens | Prop | Commits | CommitProp |
| David S. Miller | 32 | 76.19% | 1 | 33.33% |
| Jason A. Donenfeld | 7 | 16.67% | 1 | 33.33% |
| Eric Dumazet | 3 | 7.14% | 1 | 33.33% |
| Total | 42 | 100.00% | 3 | 100.00% |
EXPORT_SYMBOL_GPL(secure_ipv4_port_ephemeral);
#endif
#if IS_ENABLED(CONFIG_IP_DCCP)
u64 secure_dccp_sequence_number(__be32 saddr, __be32 daddr,
__be16 sport, __be16 dport)
{
u64 seq;
net_secret_init();
seq = siphash_3u32((__force u32)saddr, (__force u32)daddr,
(__force u32)sport << 16 | (__force u32)dport,
&net_secret);
seq += ktime_get_real_ns();
seq &= (1ull << 48) - 1;
return seq;
}
Contributors
| Person | Tokens | Prop | Commits | CommitProp |
| David S. Miller | 50 | 66.67% | 1 | 20.00% |
| Eric Dumazet | 17 | 22.67% | 3 | 60.00% |
| Jason A. Donenfeld | 8 | 10.67% | 1 | 20.00% |
| Total | 75 | 100.00% | 5 | 100.00% |
EXPORT_SYMBOL(secure_dccp_sequence_number);
#if IS_ENABLED(CONFIG_IPV6)
u64 secure_dccpv6_sequence_number(__be32 *saddr, __be32 *daddr,
__be16 sport, __be16 dport)
{
const struct {
struct in6_addr saddr;
struct in6_addr daddr;
__be16 sport;
__be16 dport;
} __aligned(SIPHASH_ALIGNMENT) combined = {
.saddr = *(struct in6_addr *)saddr,
.daddr = *(struct in6_addr *)daddr,
.sport = sport,
.dport = dport
};
u64 seq;
net_secret_init();
seq = siphash(&combined, offsetofend(typeof(combined), dport),
&net_secret);
seq += ktime_get_real_ns();
seq &= (1ull << 48) - 1;
return seq;
}
Contributors
| Person | Tokens | Prop | Commits | CommitProp |
| Jason A. Donenfeld | 64 | 52.46% | 1 | 25.00% |
| David S. Miller | 55 | 45.08% | 1 | 25.00% |
| Eric Dumazet | 3 | 2.46% | 2 | 50.00% |
| Total | 122 | 100.00% | 4 | 100.00% |
EXPORT_SYMBOL(secure_dccpv6_sequence_number);
#endif
#endif
Overall Contributors
| Person | Tokens | Prop | Commits | CommitProp |
| David S. Miller | 370 | 44.74% | 1 | 4.76% |
| Jason A. Donenfeld | 216 | 26.12% | 1 | 4.76% |
| Florian Westphal | 143 | 17.29% | 3 | 14.29% |
| Eric Dumazet | 67 | 8.10% | 9 | 42.86% |
| Fabio Estevam | 13 | 1.57% | 1 | 4.76% |
| Hannes Frederic Sowa | 6 | 0.73% | 2 | 9.52% |
| Stephen Boyd | 5 | 0.60% | 1 | 4.76% |
| Patrick McHardy | 5 | 0.60% | 1 | 4.76% |
| Alexey Kodanev | 1 | 0.12% | 1 | 4.76% |
| Igor Maravić | 1 | 0.12% | 1 | 4.76% |
| Total | 827 | 100.00% | 21 | 100.00% |
Information contained on this website is for historical information purposes only and does not indicate or represent copyright ownership.