2 * Author......: Jens Steube <jens.steube@gmail.com>
8 #include "include/constants.h"
9 #include "include/kernel_vendor.h"
16 #include "include/kernel_functions.c"
17 #include "OpenCL/types_ocl.c"
18 #include "OpenCL/common.c"
20 #define COMPARE_S "OpenCL/check_single_comp4.c"
21 #define COMPARE_M "OpenCL/check_multi_comp4.c"
23 static void md5_transform (const u32 w0[4], const u32 w1[4], const u32 w2[4], const u32 w3[4], u32 digest[4])
47 MD5_STEP (MD5_Fo, a, b, c, d, w0_t, MD5C00, MD5S00);
48 MD5_STEP (MD5_Fo, d, a, b, c, w1_t, MD5C01, MD5S01);
49 MD5_STEP (MD5_Fo, c, d, a, b, w2_t, MD5C02, MD5S02);
50 MD5_STEP (MD5_Fo, b, c, d, a, w3_t, MD5C03, MD5S03);
51 MD5_STEP (MD5_Fo, a, b, c, d, w4_t, MD5C04, MD5S00);
52 MD5_STEP (MD5_Fo, d, a, b, c, w5_t, MD5C05, MD5S01);
53 MD5_STEP (MD5_Fo, c, d, a, b, w6_t, MD5C06, MD5S02);
54 MD5_STEP (MD5_Fo, b, c, d, a, w7_t, MD5C07, MD5S03);
55 MD5_STEP (MD5_Fo, a, b, c, d, w8_t, MD5C08, MD5S00);
56 MD5_STEP (MD5_Fo, d, a, b, c, w9_t, MD5C09, MD5S01);
57 MD5_STEP (MD5_Fo, c, d, a, b, wa_t, MD5C0a, MD5S02);
58 MD5_STEP (MD5_Fo, b, c, d, a, wb_t, MD5C0b, MD5S03);
59 MD5_STEP (MD5_Fo, a, b, c, d, wc_t, MD5C0c, MD5S00);
60 MD5_STEP (MD5_Fo, d, a, b, c, wd_t, MD5C0d, MD5S01);
61 MD5_STEP (MD5_Fo, c, d, a, b, we_t, MD5C0e, MD5S02);
62 MD5_STEP (MD5_Fo, b, c, d, a, wf_t, MD5C0f, MD5S03);
64 MD5_STEP (MD5_Go, a, b, c, d, w1_t, MD5C10, MD5S10);
65 MD5_STEP (MD5_Go, d, a, b, c, w6_t, MD5C11, MD5S11);
66 MD5_STEP (MD5_Go, c, d, a, b, wb_t, MD5C12, MD5S12);
67 MD5_STEP (MD5_Go, b, c, d, a, w0_t, MD5C13, MD5S13);
68 MD5_STEP (MD5_Go, a, b, c, d, w5_t, MD5C14, MD5S10);
69 MD5_STEP (MD5_Go, d, a, b, c, wa_t, MD5C15, MD5S11);
70 MD5_STEP (MD5_Go, c, d, a, b, wf_t, MD5C16, MD5S12);
71 MD5_STEP (MD5_Go, b, c, d, a, w4_t, MD5C17, MD5S13);
72 MD5_STEP (MD5_Go, a, b, c, d, w9_t, MD5C18, MD5S10);
73 MD5_STEP (MD5_Go, d, a, b, c, we_t, MD5C19, MD5S11);
74 MD5_STEP (MD5_Go, c, d, a, b, w3_t, MD5C1a, MD5S12);
75 MD5_STEP (MD5_Go, b, c, d, a, w8_t, MD5C1b, MD5S13);
76 MD5_STEP (MD5_Go, a, b, c, d, wd_t, MD5C1c, MD5S10);
77 MD5_STEP (MD5_Go, d, a, b, c, w2_t, MD5C1d, MD5S11);
78 MD5_STEP (MD5_Go, c, d, a, b, w7_t, MD5C1e, MD5S12);
79 MD5_STEP (MD5_Go, b, c, d, a, wc_t, MD5C1f, MD5S13);
81 MD5_STEP (MD5_H , a, b, c, d, w5_t, MD5C20, MD5S20);
82 MD5_STEP (MD5_H , d, a, b, c, w8_t, MD5C21, MD5S21);
83 MD5_STEP (MD5_H , c, d, a, b, wb_t, MD5C22, MD5S22);
84 MD5_STEP (MD5_H , b, c, d, a, we_t, MD5C23, MD5S23);
85 MD5_STEP (MD5_H , a, b, c, d, w1_t, MD5C24, MD5S20);
86 MD5_STEP (MD5_H , d, a, b, c, w4_t, MD5C25, MD5S21);
87 MD5_STEP (MD5_H , c, d, a, b, w7_t, MD5C26, MD5S22);
88 MD5_STEP (MD5_H , b, c, d, a, wa_t, MD5C27, MD5S23);
89 MD5_STEP (MD5_H , a, b, c, d, wd_t, MD5C28, MD5S20);
90 MD5_STEP (MD5_H , d, a, b, c, w0_t, MD5C29, MD5S21);
91 MD5_STEP (MD5_H , c, d, a, b, w3_t, MD5C2a, MD5S22);
92 MD5_STEP (MD5_H , b, c, d, a, w6_t, MD5C2b, MD5S23);
93 MD5_STEP (MD5_H , a, b, c, d, w9_t, MD5C2c, MD5S20);
94 MD5_STEP (MD5_H , d, a, b, c, wc_t, MD5C2d, MD5S21);
95 MD5_STEP (MD5_H , c, d, a, b, wf_t, MD5C2e, MD5S22);
96 MD5_STEP (MD5_H , b, c, d, a, w2_t, MD5C2f, MD5S23);
98 MD5_STEP (MD5_I , a, b, c, d, w0_t, MD5C30, MD5S30);
99 MD5_STEP (MD5_I , d, a, b, c, w7_t, MD5C31, MD5S31);
100 MD5_STEP (MD5_I , c, d, a, b, we_t, MD5C32, MD5S32);
101 MD5_STEP (MD5_I , b, c, d, a, w5_t, MD5C33, MD5S33);
102 MD5_STEP (MD5_I , a, b, c, d, wc_t, MD5C34, MD5S30);
103 MD5_STEP (MD5_I , d, a, b, c, w3_t, MD5C35, MD5S31);
104 MD5_STEP (MD5_I , c, d, a, b, wa_t, MD5C36, MD5S32);
105 MD5_STEP (MD5_I , b, c, d, a, w1_t, MD5C37, MD5S33);
106 MD5_STEP (MD5_I , a, b, c, d, w8_t, MD5C38, MD5S30);
107 MD5_STEP (MD5_I , d, a, b, c, wf_t, MD5C39, MD5S31);
108 MD5_STEP (MD5_I , c, d, a, b, w6_t, MD5C3a, MD5S32);
109 MD5_STEP (MD5_I , b, c, d, a, wd_t, MD5C3b, MD5S33);
110 MD5_STEP (MD5_I , a, b, c, d, w4_t, MD5C3c, MD5S30);
111 MD5_STEP (MD5_I , d, a, b, c, wb_t, MD5C3d, MD5S31);
112 MD5_STEP (MD5_I , c, d, a, b, w2_t, MD5C3e, MD5S32);
113 MD5_STEP (MD5_I , b, c, d, a, w9_t, MD5C3f, MD5S33);
121 static void hmac_md5_pad (u32 w0[4], u32 w1[4], u32 w2[4], u32 w3[4], u32 ipad[4], u32 opad[4])
123 w0[0] = w0[0] ^ 0x36363636;
124 w0[1] = w0[1] ^ 0x36363636;
125 w0[2] = w0[2] ^ 0x36363636;
126 w0[3] = w0[3] ^ 0x36363636;
127 w1[0] = w1[0] ^ 0x36363636;
128 w1[1] = w1[1] ^ 0x36363636;
129 w1[2] = w1[2] ^ 0x36363636;
130 w1[3] = w1[3] ^ 0x36363636;
131 w2[0] = w2[0] ^ 0x36363636;
132 w2[1] = w2[1] ^ 0x36363636;
133 w2[2] = w2[2] ^ 0x36363636;
134 w2[3] = w2[3] ^ 0x36363636;
135 w3[0] = w3[0] ^ 0x36363636;
136 w3[1] = w3[1] ^ 0x36363636;
137 w3[2] = w3[2] ^ 0x36363636;
138 w3[3] = w3[3] ^ 0x36363636;
145 md5_transform (w0, w1, w2, w3, ipad);
147 w0[0] = w0[0] ^ 0x6a6a6a6a;
148 w0[1] = w0[1] ^ 0x6a6a6a6a;
149 w0[2] = w0[2] ^ 0x6a6a6a6a;
150 w0[3] = w0[3] ^ 0x6a6a6a6a;
151 w1[0] = w1[0] ^ 0x6a6a6a6a;
152 w1[1] = w1[1] ^ 0x6a6a6a6a;
153 w1[2] = w1[2] ^ 0x6a6a6a6a;
154 w1[3] = w1[3] ^ 0x6a6a6a6a;
155 w2[0] = w2[0] ^ 0x6a6a6a6a;
156 w2[1] = w2[1] ^ 0x6a6a6a6a;
157 w2[2] = w2[2] ^ 0x6a6a6a6a;
158 w2[3] = w2[3] ^ 0x6a6a6a6a;
159 w3[0] = w3[0] ^ 0x6a6a6a6a;
160 w3[1] = w3[1] ^ 0x6a6a6a6a;
161 w3[2] = w3[2] ^ 0x6a6a6a6a;
162 w3[3] = w3[3] ^ 0x6a6a6a6a;
169 md5_transform (w0, w1, w2, w3, opad);
172 static void hmac_md5_run (u32 w0[4], u32 w1[4], u32 w2[4], u32 w3[4], u32 ipad[4], u32 opad[4], u32 digest[4])
179 md5_transform (w0, w1, w2, w3, digest);
195 w3[2] = (64 + 16) * 8;
203 md5_transform (w0, w1, w2, w3, digest);
206 static void sha1_transform (const u32 w0[4], const u32 w1[4], const u32 w2[4], const u32 w3[4], u32 digest[5])
234 SHA1_STEP (SHA1_F0o, A, B, C, D, E, w0_t);
235 SHA1_STEP (SHA1_F0o, E, A, B, C, D, w1_t);
236 SHA1_STEP (SHA1_F0o, D, E, A, B, C, w2_t);
237 SHA1_STEP (SHA1_F0o, C, D, E, A, B, w3_t);
238 SHA1_STEP (SHA1_F0o, B, C, D, E, A, w4_t);
239 SHA1_STEP (SHA1_F0o, A, B, C, D, E, w5_t);
240 SHA1_STEP (SHA1_F0o, E, A, B, C, D, w6_t);
241 SHA1_STEP (SHA1_F0o, D, E, A, B, C, w7_t);
242 SHA1_STEP (SHA1_F0o, C, D, E, A, B, w8_t);
243 SHA1_STEP (SHA1_F0o, B, C, D, E, A, w9_t);
244 SHA1_STEP (SHA1_F0o, A, B, C, D, E, wa_t);
245 SHA1_STEP (SHA1_F0o, E, A, B, C, D, wb_t);
246 SHA1_STEP (SHA1_F0o, D, E, A, B, C, wc_t);
247 SHA1_STEP (SHA1_F0o, C, D, E, A, B, wd_t);
248 SHA1_STEP (SHA1_F0o, B, C, D, E, A, we_t);
249 SHA1_STEP (SHA1_F0o, A, B, C, D, E, wf_t);
250 w0_t = rotl32 ((wd_t ^ w8_t ^ w2_t ^ w0_t), 1u); SHA1_STEP (SHA1_F0o, E, A, B, C, D, w0_t);
251 w1_t = rotl32 ((we_t ^ w9_t ^ w3_t ^ w1_t), 1u); SHA1_STEP (SHA1_F0o, D, E, A, B, C, w1_t);
252 w2_t = rotl32 ((wf_t ^ wa_t ^ w4_t ^ w2_t), 1u); SHA1_STEP (SHA1_F0o, C, D, E, A, B, w2_t);
253 w3_t = rotl32 ((w0_t ^ wb_t ^ w5_t ^ w3_t), 1u); SHA1_STEP (SHA1_F0o, B, C, D, E, A, w3_t);
258 w4_t = rotl32 ((w1_t ^ wc_t ^ w6_t ^ w4_t), 1u); SHA1_STEP (SHA1_F1, A, B, C, D, E, w4_t);
259 w5_t = rotl32 ((w2_t ^ wd_t ^ w7_t ^ w5_t), 1u); SHA1_STEP (SHA1_F1, E, A, B, C, D, w5_t);
260 w6_t = rotl32 ((w3_t ^ we_t ^ w8_t ^ w6_t), 1u); SHA1_STEP (SHA1_F1, D, E, A, B, C, w6_t);
261 w7_t = rotl32 ((w4_t ^ wf_t ^ w9_t ^ w7_t), 1u); SHA1_STEP (SHA1_F1, C, D, E, A, B, w7_t);
262 w8_t = rotl32 ((w5_t ^ w0_t ^ wa_t ^ w8_t), 1u); SHA1_STEP (SHA1_F1, B, C, D, E, A, w8_t);
263 w9_t = rotl32 ((w6_t ^ w1_t ^ wb_t ^ w9_t), 1u); SHA1_STEP (SHA1_F1, A, B, C, D, E, w9_t);
264 wa_t = rotl32 ((w7_t ^ w2_t ^ wc_t ^ wa_t), 1u); SHA1_STEP (SHA1_F1, E, A, B, C, D, wa_t);
265 wb_t = rotl32 ((w8_t ^ w3_t ^ wd_t ^ wb_t), 1u); SHA1_STEP (SHA1_F1, D, E, A, B, C, wb_t);
266 wc_t = rotl32 ((w9_t ^ w4_t ^ we_t ^ wc_t), 1u); SHA1_STEP (SHA1_F1, C, D, E, A, B, wc_t);
267 wd_t = rotl32 ((wa_t ^ w5_t ^ wf_t ^ wd_t), 1u); SHA1_STEP (SHA1_F1, B, C, D, E, A, wd_t);
268 we_t = rotl32 ((wb_t ^ w6_t ^ w0_t ^ we_t), 1u); SHA1_STEP (SHA1_F1, A, B, C, D, E, we_t);
269 wf_t = rotl32 ((wc_t ^ w7_t ^ w1_t ^ wf_t), 1u); SHA1_STEP (SHA1_F1, E, A, B, C, D, wf_t);
270 w0_t = rotl32 ((wd_t ^ w8_t ^ w2_t ^ w0_t), 1u); SHA1_STEP (SHA1_F1, D, E, A, B, C, w0_t);
271 w1_t = rotl32 ((we_t ^ w9_t ^ w3_t ^ w1_t), 1u); SHA1_STEP (SHA1_F1, C, D, E, A, B, w1_t);
272 w2_t = rotl32 ((wf_t ^ wa_t ^ w4_t ^ w2_t), 1u); SHA1_STEP (SHA1_F1, B, C, D, E, A, w2_t);
273 w3_t = rotl32 ((w0_t ^ wb_t ^ w5_t ^ w3_t), 1u); SHA1_STEP (SHA1_F1, A, B, C, D, E, w3_t);
274 w4_t = rotl32 ((w1_t ^ wc_t ^ w6_t ^ w4_t), 1u); SHA1_STEP (SHA1_F1, E, A, B, C, D, w4_t);
275 w5_t = rotl32 ((w2_t ^ wd_t ^ w7_t ^ w5_t), 1u); SHA1_STEP (SHA1_F1, D, E, A, B, C, w5_t);
276 w6_t = rotl32 ((w3_t ^ we_t ^ w8_t ^ w6_t), 1u); SHA1_STEP (SHA1_F1, C, D, E, A, B, w6_t);
277 w7_t = rotl32 ((w4_t ^ wf_t ^ w9_t ^ w7_t), 1u); SHA1_STEP (SHA1_F1, B, C, D, E, A, w7_t);
282 w8_t = rotl32 ((w5_t ^ w0_t ^ wa_t ^ w8_t), 1u); SHA1_STEP (SHA1_F2o, A, B, C, D, E, w8_t);
283 w9_t = rotl32 ((w6_t ^ w1_t ^ wb_t ^ w9_t), 1u); SHA1_STEP (SHA1_F2o, E, A, B, C, D, w9_t);
284 wa_t = rotl32 ((w7_t ^ w2_t ^ wc_t ^ wa_t), 1u); SHA1_STEP (SHA1_F2o, D, E, A, B, C, wa_t);
285 wb_t = rotl32 ((w8_t ^ w3_t ^ wd_t ^ wb_t), 1u); SHA1_STEP (SHA1_F2o, C, D, E, A, B, wb_t);
286 wc_t = rotl32 ((w9_t ^ w4_t ^ we_t ^ wc_t), 1u); SHA1_STEP (SHA1_F2o, B, C, D, E, A, wc_t);
287 wd_t = rotl32 ((wa_t ^ w5_t ^ wf_t ^ wd_t), 1u); SHA1_STEP (SHA1_F2o, A, B, C, D, E, wd_t);
288 we_t = rotl32 ((wb_t ^ w6_t ^ w0_t ^ we_t), 1u); SHA1_STEP (SHA1_F2o, E, A, B, C, D, we_t);
289 wf_t = rotl32 ((wc_t ^ w7_t ^ w1_t ^ wf_t), 1u); SHA1_STEP (SHA1_F2o, D, E, A, B, C, wf_t);
290 w0_t = rotl32 ((wd_t ^ w8_t ^ w2_t ^ w0_t), 1u); SHA1_STEP (SHA1_F2o, C, D, E, A, B, w0_t);
291 w1_t = rotl32 ((we_t ^ w9_t ^ w3_t ^ w1_t), 1u); SHA1_STEP (SHA1_F2o, B, C, D, E, A, w1_t);
292 w2_t = rotl32 ((wf_t ^ wa_t ^ w4_t ^ w2_t), 1u); SHA1_STEP (SHA1_F2o, A, B, C, D, E, w2_t);
293 w3_t = rotl32 ((w0_t ^ wb_t ^ w5_t ^ w3_t), 1u); SHA1_STEP (SHA1_F2o, E, A, B, C, D, w3_t);
294 w4_t = rotl32 ((w1_t ^ wc_t ^ w6_t ^ w4_t), 1u); SHA1_STEP (SHA1_F2o, D, E, A, B, C, w4_t);
295 w5_t = rotl32 ((w2_t ^ wd_t ^ w7_t ^ w5_t), 1u); SHA1_STEP (SHA1_F2o, C, D, E, A, B, w5_t);
296 w6_t = rotl32 ((w3_t ^ we_t ^ w8_t ^ w6_t), 1u); SHA1_STEP (SHA1_F2o, B, C, D, E, A, w6_t);
297 w7_t = rotl32 ((w4_t ^ wf_t ^ w9_t ^ w7_t), 1u); SHA1_STEP (SHA1_F2o, A, B, C, D, E, w7_t);
298 w8_t = rotl32 ((w5_t ^ w0_t ^ wa_t ^ w8_t), 1u); SHA1_STEP (SHA1_F2o, E, A, B, C, D, w8_t);
299 w9_t = rotl32 ((w6_t ^ w1_t ^ wb_t ^ w9_t), 1u); SHA1_STEP (SHA1_F2o, D, E, A, B, C, w9_t);
300 wa_t = rotl32 ((w7_t ^ w2_t ^ wc_t ^ wa_t), 1u); SHA1_STEP (SHA1_F2o, C, D, E, A, B, wa_t);
301 wb_t = rotl32 ((w8_t ^ w3_t ^ wd_t ^ wb_t), 1u); SHA1_STEP (SHA1_F2o, B, C, D, E, A, wb_t);
306 wc_t = rotl32 ((w9_t ^ w4_t ^ we_t ^ wc_t), 1u); SHA1_STEP (SHA1_F1, A, B, C, D, E, wc_t);
307 wd_t = rotl32 ((wa_t ^ w5_t ^ wf_t ^ wd_t), 1u); SHA1_STEP (SHA1_F1, E, A, B, C, D, wd_t);
308 we_t = rotl32 ((wb_t ^ w6_t ^ w0_t ^ we_t), 1u); SHA1_STEP (SHA1_F1, D, E, A, B, C, we_t);
309 wf_t = rotl32 ((wc_t ^ w7_t ^ w1_t ^ wf_t), 1u); SHA1_STEP (SHA1_F1, C, D, E, A, B, wf_t);
310 w0_t = rotl32 ((wd_t ^ w8_t ^ w2_t ^ w0_t), 1u); SHA1_STEP (SHA1_F1, B, C, D, E, A, w0_t);
311 w1_t = rotl32 ((we_t ^ w9_t ^ w3_t ^ w1_t), 1u); SHA1_STEP (SHA1_F1, A, B, C, D, E, w1_t);
312 w2_t = rotl32 ((wf_t ^ wa_t ^ w4_t ^ w2_t), 1u); SHA1_STEP (SHA1_F1, E, A, B, C, D, w2_t);
313 w3_t = rotl32 ((w0_t ^ wb_t ^ w5_t ^ w3_t), 1u); SHA1_STEP (SHA1_F1, D, E, A, B, C, w3_t);
314 w4_t = rotl32 ((w1_t ^ wc_t ^ w6_t ^ w4_t), 1u); SHA1_STEP (SHA1_F1, C, D, E, A, B, w4_t);
315 w5_t = rotl32 ((w2_t ^ wd_t ^ w7_t ^ w5_t), 1u); SHA1_STEP (SHA1_F1, B, C, D, E, A, w5_t);
316 w6_t = rotl32 ((w3_t ^ we_t ^ w8_t ^ w6_t), 1u); SHA1_STEP (SHA1_F1, A, B, C, D, E, w6_t);
317 w7_t = rotl32 ((w4_t ^ wf_t ^ w9_t ^ w7_t), 1u); SHA1_STEP (SHA1_F1, E, A, B, C, D, w7_t);
318 w8_t = rotl32 ((w5_t ^ w0_t ^ wa_t ^ w8_t), 1u); SHA1_STEP (SHA1_F1, D, E, A, B, C, w8_t);
319 w9_t = rotl32 ((w6_t ^ w1_t ^ wb_t ^ w9_t), 1u); SHA1_STEP (SHA1_F1, C, D, E, A, B, w9_t);
320 wa_t = rotl32 ((w7_t ^ w2_t ^ wc_t ^ wa_t), 1u); SHA1_STEP (SHA1_F1, B, C, D, E, A, wa_t);
321 wb_t = rotl32 ((w8_t ^ w3_t ^ wd_t ^ wb_t), 1u); SHA1_STEP (SHA1_F1, A, B, C, D, E, wb_t);
322 wc_t = rotl32 ((w9_t ^ w4_t ^ we_t ^ wc_t), 1u); SHA1_STEP (SHA1_F1, E, A, B, C, D, wc_t);
323 wd_t = rotl32 ((wa_t ^ w5_t ^ wf_t ^ wd_t), 1u); SHA1_STEP (SHA1_F1, D, E, A, B, C, wd_t);
324 we_t = rotl32 ((wb_t ^ w6_t ^ w0_t ^ we_t), 1u); SHA1_STEP (SHA1_F1, C, D, E, A, B, we_t);
325 wf_t = rotl32 ((wc_t ^ w7_t ^ w1_t ^ wf_t), 1u); SHA1_STEP (SHA1_F1, B, C, D, E, A, wf_t);
334 static void hmac_sha1_pad (u32 w0[4], u32 w1[4], u32 w2[4], u32 w3[4], u32 ipad[5], u32 opad[5])
336 w0[0] = w0[0] ^ 0x36363636;
337 w0[1] = w0[1] ^ 0x36363636;
338 w0[2] = w0[2] ^ 0x36363636;
339 w0[3] = w0[3] ^ 0x36363636;
340 w1[0] = w1[0] ^ 0x36363636;
341 w1[1] = w1[1] ^ 0x36363636;
342 w1[2] = w1[2] ^ 0x36363636;
343 w1[3] = w1[3] ^ 0x36363636;
344 w2[0] = w2[0] ^ 0x36363636;
345 w2[1] = w2[1] ^ 0x36363636;
346 w2[2] = w2[2] ^ 0x36363636;
347 w2[3] = w2[3] ^ 0x36363636;
348 w3[0] = w3[0] ^ 0x36363636;
349 w3[1] = w3[1] ^ 0x36363636;
350 w3[2] = w3[2] ^ 0x36363636;
351 w3[3] = w3[3] ^ 0x36363636;
359 sha1_transform (w0, w1, w2, w3, ipad);
361 w0[0] = w0[0] ^ 0x6a6a6a6a;
362 w0[1] = w0[1] ^ 0x6a6a6a6a;
363 w0[2] = w0[2] ^ 0x6a6a6a6a;
364 w0[3] = w0[3] ^ 0x6a6a6a6a;
365 w1[0] = w1[0] ^ 0x6a6a6a6a;
366 w1[1] = w1[1] ^ 0x6a6a6a6a;
367 w1[2] = w1[2] ^ 0x6a6a6a6a;
368 w1[3] = w1[3] ^ 0x6a6a6a6a;
369 w2[0] = w2[0] ^ 0x6a6a6a6a;
370 w2[1] = w2[1] ^ 0x6a6a6a6a;
371 w2[2] = w2[2] ^ 0x6a6a6a6a;
372 w2[3] = w2[3] ^ 0x6a6a6a6a;
373 w3[0] = w3[0] ^ 0x6a6a6a6a;
374 w3[1] = w3[1] ^ 0x6a6a6a6a;
375 w3[2] = w3[2] ^ 0x6a6a6a6a;
376 w3[3] = w3[3] ^ 0x6a6a6a6a;
384 sha1_transform (w0, w1, w2, w3, opad);
387 static void hmac_sha1_run (u32 w0[4], u32 w1[4], u32 w2[4], u32 w3[4], u32 ipad[5], u32 opad[5], u32 digest[5])
395 sha1_transform (w0, w1, w2, w3, digest);
412 w3[3] = (64 + 20) * 8;
420 sha1_transform (w0, w1, w2, w3, digest);
423 __kernel void m02500_init (__global pw_t *pws, __global kernel_rule_t *rules_buf, __global comb_t *combs_buf, __global bf_t *bfs_buf, __global wpa_tmp_t *tmps, __global void *hooks, __global u32 *bitmaps_buf_s1_a, __global u32 *bitmaps_buf_s1_b, __global u32 *bitmaps_buf_s1_c, __global u32 *bitmaps_buf_s1_d, __global u32 *bitmaps_buf_s2_a, __global u32 *bitmaps_buf_s2_b, __global u32 *bitmaps_buf_s2_c, __global u32 *bitmaps_buf_s2_d, __global plain_t *plains_buf, __global digest_t *digests_buf, __global u32 *hashes_shown, __global salt_t *salt_bufs, __global wpa_t *wpa_bufs, __global u32 *d_return_buf, __global u32 *d_scryptV_buf, const u32 bitmap_mask, const u32 bitmap_shift1, const u32 bitmap_shift2, const u32 salt_pos, const u32 loop_pos, const u32 loop_cnt, const u32 il_cnt, const u32 digests_cnt, const u32 digests_offset, const u32 combs_mode, const u32 gid_max)
429 const u32 gid = get_global_id (0);
431 if (gid >= gid_max) return;
435 w0[0] = pws[gid].i[ 0];
436 w0[1] = pws[gid].i[ 1];
437 w0[2] = pws[gid].i[ 2];
438 w0[3] = pws[gid].i[ 3];
442 w1[0] = pws[gid].i[ 4];
443 w1[1] = pws[gid].i[ 5];
444 w1[2] = pws[gid].i[ 6];
445 w1[3] = pws[gid].i[ 7];
449 w2[0] = pws[gid].i[ 8];
450 w2[1] = pws[gid].i[ 9];
451 w2[2] = pws[gid].i[10];
452 w2[3] = pws[gid].i[11];
456 w3[0] = pws[gid].i[12];
457 w3[1] = pws[gid].i[13];
458 w3[2] = pws[gid].i[14];
459 w3[3] = pws[gid].i[15];
465 u32 salt_len = salt_bufs[salt_pos].salt_len;
470 salt_buf0[0] = salt_bufs[salt_pos].salt_buf[0];
471 salt_buf0[1] = salt_bufs[salt_pos].salt_buf[1];
472 salt_buf0[2] = salt_bufs[salt_pos].salt_buf[2];
473 salt_buf0[3] = salt_bufs[salt_pos].salt_buf[3];
474 salt_buf1[0] = salt_bufs[salt_pos].salt_buf[4];
475 salt_buf1[1] = salt_bufs[salt_pos].salt_buf[5];
476 salt_buf1[2] = salt_bufs[salt_pos].salt_buf[6];
477 salt_buf1[3] = salt_bufs[salt_pos].salt_buf[7];
483 w0[0] = swap32 (w0[0]);
484 w0[1] = swap32 (w0[1]);
485 w0[2] = swap32 (w0[2]);
486 w0[3] = swap32 (w0[3]);
487 w1[0] = swap32 (w1[0]);
488 w1[1] = swap32 (w1[1]);
489 w1[2] = swap32 (w1[2]);
490 w1[3] = swap32 (w1[3]);
491 w2[0] = swap32 (w2[0]);
492 w2[1] = swap32 (w2[1]);
493 w2[2] = swap32 (w2[2]);
494 w2[3] = swap32 (w2[3]);
495 w3[0] = swap32 (w3[0]);
496 w3[1] = swap32 (w3[1]);
497 w3[2] = swap32 (w3[2]);
498 w3[3] = swap32 (w3[3]);
503 hmac_sha1_pad (w0, w1, w2, w3, ipad, opad);
505 tmps[gid].ipad[0] = ipad[0];
506 tmps[gid].ipad[1] = ipad[1];
507 tmps[gid].ipad[2] = ipad[2];
508 tmps[gid].ipad[3] = ipad[3];
509 tmps[gid].ipad[4] = ipad[4];
511 tmps[gid].opad[0] = opad[0];
512 tmps[gid].opad[1] = opad[1];
513 tmps[gid].opad[2] = opad[2];
514 tmps[gid].opad[3] = opad[3];
515 tmps[gid].opad[4] = opad[4];
517 for (u32 i = 0, j = 1; i < 8; i += 5, j += 1)
519 w0[0] = salt_buf0[0];
520 w0[1] = salt_buf0[1];
521 w0[2] = salt_buf0[2];
522 w0[3] = salt_buf0[3];
523 w1[0] = salt_buf1[0];
524 w1[1] = salt_buf1[1];
525 w1[2] = salt_buf1[2];
526 w1[3] = salt_buf1[3];
537 append_0x01_3x4 (w0, w1, w2, salt_len + 3);
539 append_0x02_3x4 (w0, w1, w2, salt_len + 3);
541 append_0x80_3x4 (w0, w1, w2, salt_len + 4);
543 w0[0] = swap32 (w0[0]);
544 w0[1] = swap32 (w0[1]);
545 w0[2] = swap32 (w0[2]);
546 w0[3] = swap32 (w0[3]);
547 w1[0] = swap32 (w1[0]);
548 w1[1] = swap32 (w1[1]);
549 w1[2] = swap32 (w1[2]);
550 w1[3] = swap32 (w1[3]);
551 w2[0] = swap32 (w2[0]);
552 w2[1] = swap32 (w2[1]);
558 w3[3] = (64 + salt_len + 4) * 8;
562 hmac_sha1_run (w0, w1, w2, w3, ipad, opad, dgst);
564 tmps[gid].dgst[i + 0] = dgst[0];
565 tmps[gid].dgst[i + 1] = dgst[1];
566 tmps[gid].dgst[i + 2] = dgst[2];
567 tmps[gid].dgst[i + 3] = dgst[3];
568 tmps[gid].dgst[i + 4] = dgst[4];
570 tmps[gid].out[i + 0] = dgst[0];
571 tmps[gid].out[i + 1] = dgst[1];
572 tmps[gid].out[i + 2] = dgst[2];
573 tmps[gid].out[i + 3] = dgst[3];
574 tmps[gid].out[i + 4] = dgst[4];
578 __kernel void m02500_loop (__global pw_t *pws, __global kernel_rule_t *rules_buf, __global comb_t *combs_buf, __global bf_t *bfs_buf, __global wpa_tmp_t *tmps, __global void *hooks, __global u32 *bitmaps_buf_s1_a, __global u32 *bitmaps_buf_s1_b, __global u32 *bitmaps_buf_s1_c, __global u32 *bitmaps_buf_s1_d, __global u32 *bitmaps_buf_s2_a, __global u32 *bitmaps_buf_s2_b, __global u32 *bitmaps_buf_s2_c, __global u32 *bitmaps_buf_s2_d, __global plain_t *plains_buf, __global digest_t *digests_buf, __global u32 *hashes_shown, __global salt_t *salt_bufs, __global wpa_t *wpa_bufs, __global u32 *d_return_buf, __global u32 *d_scryptV_buf, const u32 bitmap_mask, const u32 bitmap_shift1, const u32 bitmap_shift2, const u32 salt_pos, const u32 loop_pos, const u32 loop_cnt, const u32 il_cnt, const u32 digests_cnt, const u32 digests_offset, const u32 combs_mode, const u32 gid_max)
580 const u32 gid = get_global_id (0);
582 if (gid >= gid_max) return;
587 ipad[0] = tmps[gid].ipad[0];
588 ipad[1] = tmps[gid].ipad[1];
589 ipad[2] = tmps[gid].ipad[2];
590 ipad[3] = tmps[gid].ipad[3];
591 ipad[4] = tmps[gid].ipad[4];
593 opad[0] = tmps[gid].opad[0];
594 opad[1] = tmps[gid].opad[1];
595 opad[2] = tmps[gid].opad[2];
596 opad[3] = tmps[gid].opad[3];
597 opad[4] = tmps[gid].opad[4];
599 for (u32 i = 0; i < 8; i += 5)
604 dgst[0] = tmps[gid].dgst[i + 0];
605 dgst[1] = tmps[gid].dgst[i + 1];
606 dgst[2] = tmps[gid].dgst[i + 2];
607 dgst[3] = tmps[gid].dgst[i + 3];
608 dgst[4] = tmps[gid].dgst[i + 4];
610 out[0] = tmps[gid].out[i + 0];
611 out[1] = tmps[gid].out[i + 1];
612 out[2] = tmps[gid].out[i + 2];
613 out[3] = tmps[gid].out[i + 3];
614 out[4] = tmps[gid].out[i + 4];
616 for (u32 j = 0; j < loop_cnt; j++)
638 w3[3] = (64 + 20) * 8;
640 hmac_sha1_run (w0, w1, w2, w3, ipad, opad, dgst);
649 tmps[gid].dgst[i + 0] = dgst[0];
650 tmps[gid].dgst[i + 1] = dgst[1];
651 tmps[gid].dgst[i + 2] = dgst[2];
652 tmps[gid].dgst[i + 3] = dgst[3];
653 tmps[gid].dgst[i + 4] = dgst[4];
655 tmps[gid].out[i + 0] = out[0];
656 tmps[gid].out[i + 1] = out[1];
657 tmps[gid].out[i + 2] = out[2];
658 tmps[gid].out[i + 3] = out[3];
659 tmps[gid].out[i + 4] = out[4];
663 __kernel void m02500_comp (__global pw_t *pws, __global kernel_rule_t *rules_buf, __global comb_t *combs_buf, __global bf_t *bfs_buf, __global wpa_tmp_t *tmps, __global void *hooks, __global u32 *bitmaps_buf_s1_a, __global u32 *bitmaps_buf_s1_b, __global u32 *bitmaps_buf_s1_c, __global u32 *bitmaps_buf_s1_d, __global u32 *bitmaps_buf_s2_a, __global u32 *bitmaps_buf_s2_b, __global u32 *bitmaps_buf_s2_c, __global u32 *bitmaps_buf_s2_d, __global plain_t *plains_buf, __global digest_t *digests_buf, __global u32 *hashes_shown, __global salt_t *salt_bufs, __global wpa_t *wpa_bufs, __global u32 *d_return_buf, __global u32 *d_scryptV_buf, const u32 bitmap_mask, const u32 bitmap_shift1, const u32 bitmap_shift2, const u32 salt_pos, const u32 loop_pos, const u32 loop_cnt, const u32 il_cnt, const u32 digests_cnt, const u32 digests_offset, const u32 combs_mode, const u32 gid_max)
665 const u32 gid = get_global_id (0);
667 if (gid >= gid_max) return;
669 const u32 lid = get_local_id (0);
676 w0[0] = tmps[gid].out[0];
677 w0[1] = tmps[gid].out[1];
678 w0[2] = tmps[gid].out[2];
679 w0[3] = tmps[gid].out[3];
680 w1[0] = tmps[gid].out[4];
681 w1[1] = tmps[gid].out[5];
682 w1[2] = tmps[gid].out[6];
683 w1[3] = tmps[gid].out[7];
696 hmac_sha1_pad (w0, w1, w2, w3, ipad, opad);
698 w0[0] = wpa_bufs[salt_pos].pke[ 0];
699 w0[1] = wpa_bufs[salt_pos].pke[ 1];
700 w0[2] = wpa_bufs[salt_pos].pke[ 2];
701 w0[3] = wpa_bufs[salt_pos].pke[ 3];
702 w1[0] = wpa_bufs[salt_pos].pke[ 4];
703 w1[1] = wpa_bufs[salt_pos].pke[ 5];
704 w1[2] = wpa_bufs[salt_pos].pke[ 6];
705 w1[3] = wpa_bufs[salt_pos].pke[ 7];
706 w2[0] = wpa_bufs[salt_pos].pke[ 8];
707 w2[1] = wpa_bufs[salt_pos].pke[ 9];
708 w2[2] = wpa_bufs[salt_pos].pke[10];
709 w2[3] = wpa_bufs[salt_pos].pke[11];
710 w3[0] = wpa_bufs[salt_pos].pke[12];
711 w3[1] = wpa_bufs[salt_pos].pke[13];
712 w3[2] = wpa_bufs[salt_pos].pke[14];
713 w3[3] = wpa_bufs[salt_pos].pke[15];
715 sha1_transform (w0, w1, w2, w3, ipad);
717 w0[0] = wpa_bufs[salt_pos].pke[16];
718 w0[1] = wpa_bufs[salt_pos].pke[17];
719 w0[2] = wpa_bufs[salt_pos].pke[18];
720 w0[3] = wpa_bufs[salt_pos].pke[19];
721 w1[0] = wpa_bufs[salt_pos].pke[20];
722 w1[1] = wpa_bufs[salt_pos].pke[21];
723 w1[2] = wpa_bufs[salt_pos].pke[22];
724 w1[3] = wpa_bufs[salt_pos].pke[23];
725 w2[0] = wpa_bufs[salt_pos].pke[24];
732 w3[3] = (64 + 100) * 8;
736 hmac_sha1_run (w0, w1, w2, w3, ipad, opad, digest);
739 w0[0] = swap32 (digest[0]);
740 w0[1] = swap32 (digest[1]);
741 w0[2] = swap32 (digest[2]);
742 w0[3] = swap32 (digest[3]);
756 hmac_md5_pad (w0, w1, w2, w3, ipad, opad);
758 int eapol_size = wpa_bufs[salt_pos].eapol_size;
763 for (eapol_left = eapol_size, eapol_off = 0; eapol_left >= 56; eapol_left -= 64, eapol_off += 16)
765 w0[0] = wpa_bufs[salt_pos].eapol[eapol_off + 0];
766 w0[1] = wpa_bufs[salt_pos].eapol[eapol_off + 1];
767 w0[2] = wpa_bufs[salt_pos].eapol[eapol_off + 2];
768 w0[3] = wpa_bufs[salt_pos].eapol[eapol_off + 3];
769 w1[0] = wpa_bufs[salt_pos].eapol[eapol_off + 4];
770 w1[1] = wpa_bufs[salt_pos].eapol[eapol_off + 5];
771 w1[2] = wpa_bufs[salt_pos].eapol[eapol_off + 6];
772 w1[3] = wpa_bufs[salt_pos].eapol[eapol_off + 7];
773 w2[0] = wpa_bufs[salt_pos].eapol[eapol_off + 8];
774 w2[1] = wpa_bufs[salt_pos].eapol[eapol_off + 9];
775 w2[2] = wpa_bufs[salt_pos].eapol[eapol_off + 10];
776 w2[3] = wpa_bufs[salt_pos].eapol[eapol_off + 11];
777 w3[0] = wpa_bufs[salt_pos].eapol[eapol_off + 12];
778 w3[1] = wpa_bufs[salt_pos].eapol[eapol_off + 13];
779 w3[2] = wpa_bufs[salt_pos].eapol[eapol_off + 14];
780 w3[3] = wpa_bufs[salt_pos].eapol[eapol_off + 15];
782 md5_transform (w0, w1, w2, w3, ipad);
785 w0[0] = wpa_bufs[salt_pos].eapol[eapol_off + 0];
786 w0[1] = wpa_bufs[salt_pos].eapol[eapol_off + 1];
787 w0[2] = wpa_bufs[salt_pos].eapol[eapol_off + 2];
788 w0[3] = wpa_bufs[salt_pos].eapol[eapol_off + 3];
789 w1[0] = wpa_bufs[salt_pos].eapol[eapol_off + 4];
790 w1[1] = wpa_bufs[salt_pos].eapol[eapol_off + 5];
791 w1[2] = wpa_bufs[salt_pos].eapol[eapol_off + 6];
792 w1[3] = wpa_bufs[salt_pos].eapol[eapol_off + 7];
793 w2[0] = wpa_bufs[salt_pos].eapol[eapol_off + 8];
794 w2[1] = wpa_bufs[salt_pos].eapol[eapol_off + 9];
795 w2[2] = wpa_bufs[salt_pos].eapol[eapol_off + 10];
796 w2[3] = wpa_bufs[salt_pos].eapol[eapol_off + 11];
797 w3[0] = wpa_bufs[salt_pos].eapol[eapol_off + 12];
798 w3[1] = wpa_bufs[salt_pos].eapol[eapol_off + 13];
799 w3[2] = (64 + eapol_size) * 8;
804 hmac_md5_run (w0, w1, w2, w3, ipad, opad, digest1);
812 const u32 r0 = digest1[DGST_R0];
813 const u32 r1 = digest1[DGST_R1];
814 const u32 r2 = digest1[DGST_R2];
815 const u32 r3 = digest1[DGST_R3];
838 hmac_sha1_pad (w0, w1, w2, w3, ipad, opad);
840 int eapol_size = wpa_bufs[salt_pos].eapol_size;
845 for (eapol_left = eapol_size, eapol_off = 0; eapol_left >= 56; eapol_left -= 64, eapol_off += 16)
847 w0[0] = wpa_bufs[salt_pos].eapol[eapol_off + 0];
848 w0[1] = wpa_bufs[salt_pos].eapol[eapol_off + 1];
849 w0[2] = wpa_bufs[salt_pos].eapol[eapol_off + 2];
850 w0[3] = wpa_bufs[salt_pos].eapol[eapol_off + 3];
851 w1[0] = wpa_bufs[salt_pos].eapol[eapol_off + 4];
852 w1[1] = wpa_bufs[salt_pos].eapol[eapol_off + 5];
853 w1[2] = wpa_bufs[salt_pos].eapol[eapol_off + 6];
854 w1[3] = wpa_bufs[salt_pos].eapol[eapol_off + 7];
855 w2[0] = wpa_bufs[salt_pos].eapol[eapol_off + 8];
856 w2[1] = wpa_bufs[salt_pos].eapol[eapol_off + 9];
857 w2[2] = wpa_bufs[salt_pos].eapol[eapol_off + 10];
858 w2[3] = wpa_bufs[salt_pos].eapol[eapol_off + 11];
859 w3[0] = wpa_bufs[salt_pos].eapol[eapol_off + 12];
860 w3[1] = wpa_bufs[salt_pos].eapol[eapol_off + 13];
861 w3[2] = wpa_bufs[salt_pos].eapol[eapol_off + 14];
862 w3[3] = wpa_bufs[salt_pos].eapol[eapol_off + 15];
864 sha1_transform (w0, w1, w2, w3, ipad);
867 w0[0] = wpa_bufs[salt_pos].eapol[eapol_off + 0];
868 w0[1] = wpa_bufs[salt_pos].eapol[eapol_off + 1];
869 w0[2] = wpa_bufs[salt_pos].eapol[eapol_off + 2];
870 w0[3] = wpa_bufs[salt_pos].eapol[eapol_off + 3];
871 w1[0] = wpa_bufs[salt_pos].eapol[eapol_off + 4];
872 w1[1] = wpa_bufs[salt_pos].eapol[eapol_off + 5];
873 w1[2] = wpa_bufs[salt_pos].eapol[eapol_off + 6];
874 w1[3] = wpa_bufs[salt_pos].eapol[eapol_off + 7];
875 w2[0] = wpa_bufs[salt_pos].eapol[eapol_off + 8];
876 w2[1] = wpa_bufs[salt_pos].eapol[eapol_off + 9];
877 w2[2] = wpa_bufs[salt_pos].eapol[eapol_off + 10];
878 w2[3] = wpa_bufs[salt_pos].eapol[eapol_off + 11];
879 w3[0] = wpa_bufs[salt_pos].eapol[eapol_off + 12];
880 w3[1] = wpa_bufs[salt_pos].eapol[eapol_off + 13];
882 w3[3] = (64 + eapol_size) * 8;
886 hmac_sha1_run (w0, w1, w2, w3, ipad, opad, digest2);
894 const u32 r0 = digest2[DGST_R0];
895 const u32 r1 = digest2[DGST_R1];
896 const u32 r2 = digest2[DGST_R2];
897 const u32 r3 = digest2[DGST_R3];