3 * $Id: diffan.c,v 1.1 2000/05/21 11:28:30 mdw Exp $
5 * Differential analysis of matrix multiplication
7 * (c) 2000 Mark Wooding
10 /*----- Licensing notice --------------------------------------------------*
12 * Copyright (c) 2000 Mark Wooding
13 * All rights reserved.
15 * Redistribution and use in source and binary forms, with or without
16 * modification, are permitted provided that the following conditions are
19 * 1. Redistributions of source code must retain the above copyright
20 * notice, this list of conditions and the following disclaimer.
22 * 2, Redistributions in binary form must reproduce the above copyright
23 * notice, this list of conditions and the following disclaimer in the
24 * documentation and/or other materials provided with the distribution.
26 * 3. The name of the authors may not be used to endorse or promote
27 * products derived from this software without specific prior written
30 * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED
31 * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
32 * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN
33 * NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
34 * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
35 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
36 * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
37 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
38 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
39 * ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
40 * POSSIBILITY OF SUCH DAMAGE.
42 * Instead of accepting the above terms, you may redistribute and/or modify
43 * this software under the terms of either the GNU General Public License,
44 * or the GNU Library General Public License, published by the Free
45 * Software Foundation; either version 2 of the License, or (at your
46 * option) any later version.
49 /*----- Revision history --------------------------------------------------*
52 * Revision 1.1 2000/05/21 11:28:30 mdw
57 /*----- Header files ------------------------------------------------------*/
66 #include "storin-tab.h"
68 /*----- The constant matrix -----------------------------------------------*/
70 static const uint24 m[] = STORIN_M;
72 /*----- Magic numbers -----------------------------------------------------*/
77 /*----- Static variables --------------------------------------------------*/
81 /*----- Main code ---------------------------------------------------------*/
88 static void probe(uint24 *delta)
97 for (i = 0; i < PROBES; i++) {
105 for (j = 0; j < 4; j++) {
106 x[j] = U24(fibrand_step(&r));
107 y[j] = x[j] & delta[j];
110 matmul(xi, m, x, 4, 4, 1);
111 matmul(yi, m, y, 4, 4, 1);
113 for (j = 0; j < 4; j++)
114 dd[j] = xi[j] ^ yi[j];
116 STORE24(db + 0, dd[0]);
117 STORE24(db + 3, dd[1]);
118 STORE24(db + 6, dd[2]);
119 STORE24(db + 9, dd[3]);
121 p = sym_find(&t, (char *)db, 12, sizeof(*p), &c);
128 for (j = 0; j < 4; j++)
136 printf("%06x %06x %06x %06x -> %06x %06x %06x %06x: %u\n",
137 delta[0], delta[1], delta[2], delta[3],
138 mout[0], mout[1], mout[2], mout[3], max);
142 static void rdiff(uint24 *delta, unsigned i, unsigned n)
148 for (; i < 96; i++) {
149 uint24 *dd = delta + i / 24;
150 uint24 m = 1 << (i % 24);
152 rdiff(delta, i + 1, n - 1);
157 static void bitdiffs(unsigned n)
159 uint24 delta[4] = { 0 };
169 fibrand_lcseed(&r, 0);
171 for (i = 1; i <= EXHAUST; i++)
174 printf("*** ok, trying random probing\n");
177 for (j = 0; j < 4; j++)
178 delta[j] = U24(fibrand_step(&r));
185 /*----- That's all, folks -------------------------------------------------*/