Inicio Explorar Ayuda
Iniciar sesión
maker
/
bachelor
Seguir 1
Destacar 0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Explorar el Código

Fixing Dixon's Gauss-Jordan algorithm.

Michele Orrù hace 11 años
padre
5aa6f22cfb
commit
db2e18b3d5
Se han modificado 7 ficheros con 92 adiciones y 33 borrados
Dividir vista Mostrar estadísticas de diff
  1. 1 1
      src/qa.c
  2. 2 2
      src/questions/allquestions.c
  3. 36 30
      src/questions/dixon.c
  4. 3 0
      src/questions/include/qstrings.h
  5. 18 0
      src/questions/qstrings.c
  6. 19 0
      src/questions/tests/test_dixon.c
  7. 13 0
      src/questions/tests/test_qstrings.c

+ 1 - 1
src/qa.c
Ver fichero 

@@ -158,7 +158,7 @@ qa_dispose(X509 *crt, RSA *rsa)
 
   LIST_FOREACH(q, &questions, qs) {
 
 
 #ifdef HAVE_OPENMPI
 
-    if (i++ %  procs != proc) continue;
 
+    //  if (i++ %  procs != proc) continue;
 
 #endif
 
 
     printf( "[-] Running: %s\n", q->pretty_name);

+ 2 - 2
src/questions/allquestions.c
Ver fichero 

@@ -96,12 +96,12 @@ void select_all_questions(void)
 
 {
 
   LIST_INIT(&questions);
 
 
-  REGISTER_QUESTION(ExampleQuestion);
 
+  /* REGISTER_QUESTION(ExampleQuestion); */
 
   REGISTER_QUESTION(WienerQuestion);
 
   REGISTER_QUESTION(PollardQuestion);
 
   REGISTER_QUESTION(FermatQuestion);
 
   REGISTER_QUESTION(MetadataQuestion);
 
-  REGISTER_QUESTION(PollardRhoQuestion);
 
+  /* REGISTER_QUESTION(PollardRhoQuestion); */
 
   REGISTER_QUESTION(WilliamsQuestion);
 
   REGISTER_QUESTION(DixonQuestion);
 
   REGISTER_QUESTION(PollardBrentRhoQuestion);

+ 36 - 30
src/questions/dixon.c
Ver fichero 

@@ -96,17 +96,22 @@ matrix_free(matrix_t *m)
 
 matrix_t *
 
 kernel(matrix_t *m)
 
 {
 
-  int i, j, k;
 
+  int i, j, rg;
 
   matrix_t *h = identity_matrix_new(m->f);
 
 
+  rg = 0;
 
   for (j=0; j!=m->r; j++)
 
-    for (i=0;  i != m->f; i++)
 
+    for (i=rg;  i != m->f; i++)
 
       if (m->M[i][j]) {
 
-        for (k=i+1; k != m->f; k++)
 
-          if (m->M[k][j]) {
 
-            vxor(m->M[k], m->M[k], m->M[i], m->r);
 
-            vxor(h->M[k], h->M[k], h->M[i], h->r);
 
+        vswap(m->M[i], m->M[rg], m->r);
 
+        vswap(h->M[i], h->M[rg], h->r);
 
+
 
+        for (i=rg+1; i < m->f; i++)
 
+          if (m->M[i][j]) {
 
+            vxor(m->M[i], m->M[i], m->M[rg], m->r);
 
+            vxor(h->M[i], h->M[i], h->M[rg], h->r);
 
           }
 
+        rg++;
 
         break;
 
       }
 
 
@@ -212,8 +217,6 @@ dixon_question_ask_rsa(const RSA *rsa)
 
   MPI_Type_struct(3, lengths, offsets, types, &MPI_BNPAIR);
 
   MPI_Type_commit(&MPI_BNPAIR);
 
 
-  count = procs > 1 ? f / (procs-1) : f;
 
-  printf("slave %d/%d at your service, sir.\n", proc, procs);
 
   /* root node fetches, child nodes discovery */
 
   if (proc == 0) {
 
     /** STEP 1: initialization **/
 
@@ -221,6 +224,7 @@ dixon_question_ask_rsa(const RSA *rsa)
 
     R = malloc(sizeof(struct bnpair) * f);
 
 
     /** STEP 2 generating R */
 
+    count = procs > 1 ? f % (procs-1) : f;
 
     for (i=0; i != f - count; i++) {
 
       MPI_Recv(&to, 1, MPI_BNPAIR, MPI_ANY_SOURCE, 0, MPI_COMM_WORLD, MPI_STATUS_IGNORE);
 
       R[i].x = BN_new();
 
@@ -229,10 +233,10 @@ dixon_question_ask_rsa(const RSA *rsa)
 
       BN_hex2bn(&R[i].y, to.y);
 
       memcpy(m->M[i], to.v, r);
 
 
-      fprintf(stderr, "received: %s (%zu/%d)\n", to.x, i, f);
 
+      fprintf(stderr, "[!] discovering relations (%zu/%zu)\r", i, f);
 
     }
 
 
-    while (i++ < f) {
 
+    for (;i < f; i++) {
 
       R[i].x = BN_new();
 
       R[i].y = BN_new();
 
       discover_smooth(R[i].y, R[i].x, rsa->n, ctx, m->M[i], r);
 
@@ -241,7 +245,7 @@ dixon_question_ask_rsa(const RSA *rsa)
 
     BIGNUM *x = BN_new(), *y = BN_new();
 
     char *s;
 
 
-    while (count--) {
 
+    for (count = f / (procs-1); count; count--) {
 
       discover_smooth(y, x, rsa->n, ctx, to.v, r);
 
       s = BN_bn2hex(x);
 
       strcpy(to.x, s);
 
@@ -250,10 +254,9 @@ dixon_question_ask_rsa(const RSA *rsa)
 
       strcpy(to.y, s);
 
       OPENSSL_free(s);
 
 
-      //      fprintf(stderr, "generated: %s (%d)", to.x, count);
 
+      /* fprintf(stderr, "generated: %s (%d)", to.x, count); */
 
       MPI_Send(&to, 1, MPI_BNPAIR, 0, 0, MPI_COMM_WORLD);
 
     }
 
-    fprintf(stderr, "worker %zu finished.", proc);
 
     BN_free(x);
 
     BN_free(y);
 
   }
 
@@ -264,26 +267,29 @@ dixon_question_ask_rsa(const RSA *rsa)
 
   }
 
 #endif
 
 
+  fprintf(stderr, "\n[!] breaching the kernel\n");
 
   /** STEP 3: break & enter. */
 
   h = kernel(m);
 
-  BN_one(x);
 
-  BN_one(sqy);
 
-  for (i=0; i!=f && !ret; i++)
 
+  for (i = h->f - 1;
 
+       !ret && is_vzero(m->M[i], h->r);
 
+       i--) {
 
+    BN_one(x);
 
+    BN_one(sqy);
 
     /* if we found an even power */
 
-    if (is_vzero(m->M[i], f)) {
 
-      /* compute x, y² */
 
-      for (j=0; j!=f; j++)
 
-        if (h->M[i][j]) {
 
-          BN_mul(x, x, R[j].x, ctx);
 
-          BN_mul(sqy, sqy, R[j].y, ctx);
 
-        }
 
-      BN_sqrtmod(y, rem, sqy, ctx);
 
-      assert(!BN_is_zero(rem));
 
-      BN_gcd(gcd, x, y, ctx);
 
-      if (BN_cmp(gcd, rsa->n) < 0 &&
 
-          BN_cmp(gcd, BN_value_one()) > 0)
 
-        ret = qa_RSA_recover(rsa, gcd, ctx);
 
-    }
 
+    fprintf(stderr, "[!] Examining relation\n");
 
+    /* compute x, y² */
 
+    for (j=0; j!=h->r; j++)
 
+      if (h->M[i][j]) {
 
+        BN_mul(x, x, R[j].x, ctx);
 
+        BN_mul(sqy, sqy, R[j].y, ctx);
 
+      }
 
+    BN_sqrtmod(y, rem, sqy, ctx);
 
+    //  assert(!BN_is_zero(rem));
 
+    BN_gcd(gcd, x, y, ctx);
 
+    if (BN_cmp(gcd, rsa->n) < 0 &&
 
+        BN_cmp(gcd, BN_value_one()) > 0)
 
+      ret = qa_RSA_recover(rsa, gcd, ctx);
 
+  }
 
 
   /* free all the shit */
 
   for (i=0; i!=f; i++) {

+ 3 - 0
src/questions/include/qstrings.h
Ver fichero 

@@ -7,6 +7,9 @@ is_vzero(const void *v, size_t len);
 
 void
 
 vxor(void *u, const void *v, const void *w, size_t len);
 
 
+void
 
+vswap(void *a, void *b, size_t len);
 
+
 
 int
 
 ASN1_TIME_str(char *dest, const ASN1_TIME *tm);

+ 18 - 0
src/questions/qstrings.c
Ver fichero 

@@ -29,6 +29,24 @@ vxor(void *void_u, const void *void_v, const void *void_w, size_t len)
 
     *(u++) = *(v++) ^ *(w++);
 
 }
 
 
+/**
 
+ * \brief swap two vectors.
 
+ *
 
+ *
 
+ *
 
+ */
 
+void
 
+vswap(void *void_a, void *void_b, size_t len)
 
+{
 
+  char unsigned *a = (char unsigned *) void_a;
 
+  char unsigned *b = (char unsigned *) void_b;
 
+  char unsigned c;
 
+
 
+  for (; len--; a++, b++) {
 
+    c = *a;
 
+    *a = *b; *b = c;
 
+  }
 
+}
 
 
 /**
 
  * \brief Check v the first len bits of v are filled with zeroes

+ 19 - 0
src/questions/tests/test_dixon.c
Ver fichero 

@@ -66,6 +66,25 @@ test_kernel(void)
 
   assert(h->M[2][1] == 1 && h->M[2][2] == 1);
 
   assert(h->f == 4 && h->r == 4);
 
   assert(h->M[3][2] == 0);
 
+
 
+  matrix_free(h);
 
+  matrix_free(m);
 
+
 
+  m = matrix_new(10, 6);
 
+  memcpy(m->M[0], "\1\0\1\0\1\0", 6);
 
+  memcpy(m->M[1], "\1\0\1\1\1\0", 6);
 
+  memcpy(m->M[2], "\1\1\1\0\1\0", 6);
 
+  memcpy(m->M[3], "\1\0\1\0\1\0", 6);
 
+  memcpy(m->M[4], "\0\1\0\0\1\0", 6);
 
+  memcpy(m->M[5], "\1\0\1\0\1\0", 6);
 
+  memcpy(m->M[6], "\1\0\1\0\1\1", 6);
 
+  memcpy(m->M[7], "\1\0\1\1\1\0", 6);
 
+  memcpy(m->M[8], "\0\0\1\0\1\0", 6);
 
+  memcpy(m->M[9], "\0\0\1\1\1\1", 6);
 
+  h = kernel(m);
 
+  assert(is_vzero(m->M[9], 6));
 
+  matrix_free(h);
 
+  matrix_free(m);
 
 }
 
 
 void

+ 13 - 0
src/questions/tests/test_qstrings.c
Ver fichero 

@@ -1,6 +1,8 @@
 
 #include <stddef.h>
 
 #include <assert.h>
 
 
+#include <openssl/asn1.h>
 
+
 
 #include "qa/questions/qstrings.h"
 
 
 void
 
@@ -34,11 +36,22 @@ test_vxor(void)
 
 
 }
 
 
+void test_vswap(void)
 
+{
 
+  char v[10] = "\0\0\0\0\0\0\0\0\0\0";
 
+  char w[10] = "\1\1\1\1\1\1\1\1\1\2";
 
+
 
+  vswap(v, w, 10);
 
+  assert(v[0] && !w[0]);
 
+  assert(v[9] == 2);
 
+}
 
+
 
 
 int main(int argc, char **argv)
 
 {
 
   test_is_vzero();
 
   test_vxor();
 
+  test_vswap();
 
 
   return 0;
 
 }