[storin] / diffan.c

/* -*-c-*-
 *
 * $Id: diffan.c,v 1.2 2000/05/28 00:39:52 mdw Exp $
 *
 * Differential analysis of matrix multiplication
 *
 * (c) 2000 Mark Wooding
 */

/*----- Licensing notice --------------------------------------------------* 
 *
 * Copyright (c) 2000 Mark Wooding
 * All rights reserved.
 * 
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions are
 * met:
 * 
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 * 
 * 2, Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 * 
 * 3. The name of the authors may not be used to endorse or promote
 *    products derived from this software without specific prior written
 *    permission.
 * 
 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED
 * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
 * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.  IN
 * NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
 * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
 * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
 * ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
 * POSSIBILITY OF SUCH DAMAGE.
 * 
 * Instead of accepting the above terms, you may redistribute and/or modify
 * this software under the terms of either the GNU General Public License,
 * or the GNU Library General Public License, published by the Free
 * Software Foundation; either version 2 of the License, or (at your
 * option) any later version.
 */

/*----- Revision history --------------------------------------------------* 
 *
 * $Log: diffan.c,v $
 * Revision 1.2  2000/05/28 00:39:52  mdw
 * Bad bug makes all previous testing worthless.
 *
 * Revision 1.1  2000/05/21 11:28:30  mdw
 * Initial check-in.
 *
 */

/*----- Header files ------------------------------------------------------*/

#include <stdio.h>
#include <stdlib.h>

#include "bits.h"
#include "sym.h"
#include "fibrand.h"
#include "matrix.h"
#include "storin-tab.h"

/*----- The constant matrix -----------------------------------------------*/

static const uint24 m[] = STORIN_M;

/*----- Magic numbers -----------------------------------------------------*/

#define PROBES 8192
#define EXHAUST 4

/*----- Static variables --------------------------------------------------*/

static fibrand r;

/*----- Main code ---------------------------------------------------------*/

typedef struct {
  sym_base b;
  unsigned n;
} diff;

static void probe(uint24 *delta)
{
  unsigned i, j;
  unsigned max = 0;
  uint24 mout[4];
  sym_table t;

  sym_create(&t);

  for (i = 0; i < PROBES; i++) {
    uint24 x[4], y[4];
    uint24 xi[4], yi[4];
    uint24 dd[4];
    octet db[12];
    diff *p;
    unsigned c;

    for (j = 0; j < 4; j++) {
      x[j] = U24(fibrand_step(&r));
      y[j] = x[j] ^ delta[j];
    }

    matmul(xi, m, x, 4, 4, 1);
    matmul(yi, m, y, 4, 4, 1);

    for (j = 0; j < 4; j++)
      dd[j] = xi[j] ^ yi[j];

    STORE24(db + 0, dd[0]);
    STORE24(db + 3, dd[1]);
    STORE24(db + 6, dd[2]);
    STORE24(db + 9, dd[3]);

    p = sym_find(&t, (char *)db, 12, sizeof(*p), &c);
    if (!c)
      p->n = 1;
    else
      p->n++;
    if (p->n > max) {
      max = p->n;
      for (j = 0; j < 4; j++)
	mout[j] = dd[j];
    }
  }

  sym_destroy(&t);

  if (max > 1) {
    printf("%06x %06x %06x %06x -> %06x %06x %06x %06x: %u\n",
	   delta[0], delta[1], delta[2], delta[3],
	   mout[0], mout[1], mout[2], mout[3], max);
  }
}

static void rdiff(uint24 *delta, unsigned i, unsigned n)
{
  if (!n) {
    probe(delta);
    return;
  }
  for (; i < 96; i++) {
    uint24 *dd = delta + i / 24;
    uint24 m = 1 << (i % 24);
    *dd ^= m;
    rdiff(delta, i + 1, n - 1);
    *dd ^= m;
  }
}

static void bitdiffs(unsigned n)
{
  uint24 delta[4] = { 0 };
  rdiff(delta, 0, n);
  probe(delta);
}

int main(void)
{
  unsigned i, j;
  uint24 delta[4];

  fibrand_lcseed(&r, 0);

  for (i = 1; i <= EXHAUST; i++)
    bitdiffs(i);

  printf("*** ok, trying random probing\n");

  for (;;) {
    for (j = 0; j < 4; j++)
      delta[j] = U24(fibrand_step(&r));
    probe(delta);
  }

  return (0);
}

/*----- That's all, folks -------------------------------------------------*/
Commit	Line	Data
e6e0e332 MW	1	/* --c--
e6e0e332 MW	2	*
ed1b0d9c	3	* $Id: diffan.c,v 1.2 2000/05/28 00:39:52 mdw Exp $
e6e0e332 MW	4	*
	5	* Differential analysis of matrix multiplication
	6	*
	7	* (c) 2000 Mark Wooding
	8	*/
	9
	10	/----- Licensing notice --------------------------------------------------
	11	*
	12	* Copyright (c) 2000 Mark Wooding
	13	* All rights reserved.
	14	*
	15	* Redistribution and use in source and binary forms, with or without
	16	* modification, are permitted provided that the following conditions are
	17	* met:
	18	*
	19	* 1. Redistributions of source code must retain the above copyright
	20	* notice, this list of conditions and the following disclaimer.
	21	*
	22	* 2, Redistributions in binary form must reproduce the above copyright
	23	* notice, this list of conditions and the following disclaimer in the
	24	* documentation and/or other materials provided with the distribution.
	25	*
	26	* 3. The name of the authors may not be used to endorse or promote
	27	* products derived from this software without specific prior written
	28	* permission.
	29	*
	30	* THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED
	31	* WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
	32	* MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN
	33	* NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
	34	* INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
	35	* (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
	36	* SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
	37	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
	38	* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
	39	* ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
	40	* POSSIBILITY OF SUCH DAMAGE.
	41	*
	42	* Instead of accepting the above terms, you may redistribute and/or modify
	43	* this software under the terms of either the GNU General Public License,
	44	* or the GNU Library General Public License, published by the Free
	45	* Software Foundation; either version 2 of the License, or (at your
	46	* option) any later version.
	47	*/
	48
	49	/----- Revision history --------------------------------------------------
	50	*
	51	* $Log: diffan.c,v $
ed1b0d9c MW	52	* Revision 1.2 2000/05/28 00:39:52 mdw
	53	* Bad bug makes all previous testing worthless.
	54	*
e6e0e332 MW	55	* Revision 1.1 2000/05/21 11:28:30 mdw
	56	* Initial check-in.
	57	*
	58	*/
	59
	60	/----- Header files ------------------------------------------------------/
	61
	62	#include <stdio.h>
	63	#include <stdlib.h>
	64
	65	#include "bits.h"
	66	#include "sym.h"
	67	#include "fibrand.h"
	68	#include "matrix.h"
	69	#include "storin-tab.h"
	70
	71	/----- The constant matrix -----------------------------------------------/
	72
	73	static const uint24 m[] = STORIN_M;
	74
	75	/----- Magic numbers -----------------------------------------------------/
	76
	77	#define PROBES 8192
	78	#define EXHAUST 4
	79
	80	/----- Static variables --------------------------------------------------/
	81
	82	static fibrand r;
	83
	84	/----- Main code ---------------------------------------------------------/
	85
	86	typedef struct {
	87	sym_base b;
	88	unsigned n;
	89	} diff;
	90
	91	static void probe(uint24 *delta)
	92	{
	93	unsigned i, j;
	94	unsigned max = 0;
	95	uint24 mout[4];
	96	sym_table t;
	97
	98	sym_create(&t);
	99
	100	for (i = 0; i < PROBES; i++) {
	101	uint24 x[4], y[4];
	102	uint24 xi[4], yi[4];
	103	uint24 dd[4];
	104	octet db[12];
	105	diff *p;
	106	unsigned c;
	107
	108	for (j = 0; j < 4; j++) {
	109	x[j] = U24(fibrand_step(&r));
ed1b0d9c	110	y[j] = x[j] ^ delta[j];
e6e0e332 MW	111	}
	112
	113	matmul(xi, m, x, 4, 4, 1);
	114	matmul(yi, m, y, 4, 4, 1);
	115
	116	for (j = 0; j < 4; j++)
	117	dd[j] = xi[j] ^ yi[j];
	118
	119	STORE24(db + 0, dd[0]);
	120	STORE24(db + 3, dd[1]);
	121	STORE24(db + 6, dd[2]);
	122	STORE24(db + 9, dd[3]);
	123
	124	p = sym_find(&t, (char )db, 12, sizeof(p), &c);
	125	if (!c)
	126	p->n = 1;
	127	else
	128	p->n++;
	129	if (p->n > max) {
	130	max = p->n;
	131	for (j = 0; j < 4; j++)
	132	mout[j] = dd[j];
	133	}
	134	}
	135
	136	sym_destroy(&t);
	137
	138	if (max > 1) {
	139	printf("%06x %06x %06x %06x -> %06x %06x %06x %06x: %u\n",
	140	delta[0], delta[1], delta[2], delta[3],
	141	mout[0], mout[1], mout[2], mout[3], max);
	142	}
	143	}
	144
	145	static void rdiff(uint24 *delta, unsigned i, unsigned n)
	146	{
	147	if (!n) {
	148	probe(delta);
	149	return;
	150	}
	151	for (; i < 96; i++) {
	152	uint24 *dd = delta + i / 24;
	153	uint24 m = 1 << (i % 24);
	154	*dd ^= m;
	155	rdiff(delta, i + 1, n - 1);
	156	*dd ^= m;
	157	}
	158	}
	159
	160	static void bitdiffs(unsigned n)
	161	{
	162	uint24 delta[4] = { 0 };
	163	rdiff(delta, 0, n);
	164	probe(delta);
	165	}
	166
	167	int main(void)
	168	{
	169	unsigned i, j;
	170	uint24 delta[4];
	171
	172	fibrand_lcseed(&r, 0);
	173
	174	for (i = 1; i <= EXHAUST; i++)
175	bitdiffs(i);
176
177	printf("*** ok, trying random probing\n");
178
179	for (;;) {
180	for (j = 0; j < 4; j++)
181	delta[j] = U24(fibrand_step(&r));
182	probe(delta);
183	}
184
185	return (0);
186	}
187
188	/----- That's all, folks -------------------------------------------------/