mkp224o/worker_fast.inc.h

108 lines
2.3 KiB
C
Raw Normal View History

2019-03-16 21:57:29 +02:00
2022-05-05 23:18:41 +03:00
void *CRYPTO_NAMESPACE(worker_fast)(void *task)
2019-03-16 21:57:29 +02:00
{
union pubonionunion pubonion;
u8 * const pk = &pubonion.raw[PKPREFIX_SIZE];
u8 secret[SKPREFIX_SIZE + SECRET_LEN];
u8 * const sk = &secret[SKPREFIX_SIZE];
u8 seed[SEED_LEN];
u8 hashsrc[checksumstrlen + PUBLIC_LEN + 1];
u8 wpk[PUBLIC_LEN + 1];
2020-11-22 13:13:50 +00:00
ge_p3 ALIGN(16) ge_public;
2019-03-16 21:57:29 +02:00
char *sname;
size_t counter;
size_t i;
#ifdef STATISTICS
struct statstruct *st = (struct statstruct *)task;
#else
(void) task;
#endif
PREFILTER
memcpy(secret,skprefix,SKPREFIX_SIZE);
wpk[PUBLIC_LEN] = 0;
memset(&pubonion,0,sizeof(pubonion));
memcpy(pubonion.raw,pkprefix,PKPREFIX_SIZE);
// write version later as it will be overwritten by hash
memcpy(hashsrc,checksumstr,checksumstrlen);
hashsrc[checksumstrlen + PUBLIC_LEN] = 0x03; // version
sname = makesname();
initseed:
2021-11-02 17:32:10 +02:00
2019-03-16 21:57:29 +02:00
#ifdef STATISTICS
++st->numrestart.v;
#endif
2019-11-15 04:58:21 +00:00
2019-03-16 21:57:29 +02:00
randombytes(seed,sizeof(seed));
2019-11-15 04:58:21 +00:00
2019-03-16 21:57:29 +02:00
ed25519_seckey_expand(sk,seed);
ge_scalarmult_base(&ge_public,sk);
ge_p3_tobytes(pk,&ge_public);
for (counter = 0;counter < SIZE_MAX-8;counter += 8) {
2020-11-22 13:13:50 +00:00
ge_p1p1 ALIGN(16) sum;
2019-03-16 21:57:29 +02:00
if (unlikely(endwork))
goto end;
DOFILTER(i,pk,{
if (numwords > 1) {
shiftpk(wpk,pk,filter_len(i));
size_t j;
for (int w = 1;;) {
DOFILTER(j,wpk,goto secondfind);
goto next;
secondfind:
if (++w >= numwords)
break;
shiftpk(wpk,wpk,filter_len(j));
}
}
// found!
// update secret key with counter
addsztoscalar32(sk,counter);
// sanity check
if ((sk[0] & 248) != sk[0] || ((sk[31] & 63) | 64) != sk[31])
goto initseed;
ADDNUMSUCCESS;
// calc checksum
memcpy(&hashsrc[checksumstrlen],pk,PUBLIC_LEN);
FIPS202_SHA3_256(hashsrc,sizeof(hashsrc),&pk[PUBLIC_LEN]);
// version byte
pk[PUBLIC_LEN + 2] = 0x03;
// full name
strcpy(base32_to(&sname[direndpos],pk,PUBONION_LEN),".onion");
onionready(sname,secret,pubonion.raw);
pk[PUBLIC_LEN] = 0; // what is this for?
// don't reuse same seed
goto initseed;
});
next:
ge_add(&sum,&ge_public,&ge_eightpoint);
ge_p1p1_to_p3(&ge_public,&sum);
ge_p3_tobytes(pk,&ge_public);
#ifdef STATISTICS
++st->numcalc.v;
#endif
}
goto initseed;
end:
free(sname);
2021-11-02 17:32:10 +02:00
2019-03-16 21:57:29 +02:00
POSTFILTER
2021-11-02 17:32:10 +02:00
2019-03-16 21:57:29 +02:00
sodium_memzero(secret,sizeof(secret));
sodium_memzero(seed,sizeof(seed));
2021-11-02 17:32:10 +02:00
2019-03-16 21:57:29 +02:00
return 0;
}