valter/umskt-rs
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
umskt-rs/src/confid/black_box.rs

1275 lines
41 KiB
Rust
Raw Blame History

use std::{ffi::c_void, ptr};
#[derive(Copy, Clone)]
#[repr(C)]
struct TDivisor {
u: [u64; 2],
v: [u64; 2],
}
#[derive(Copy, Clone)]
#[repr(C)]
struct C2RustUnnamed {
encoded: [u32; 4],
}
#[derive(Copy, Clone)]
#[repr(C)]
union C2RustUnnamed0 {
c2rust_unnamed: C2RustUnnamed1,
c2rust_unnamed_0: C2RustUnnamed,
}
#[derive(Copy, Clone)]
#[repr(C)]
struct C2RustUnnamed1 {
encoded_lo: u64,
encoded_hi: u64,
}
#[derive(Copy, Clone)]
#[repr(C)]
struct C2RustUnnamed2 {
lo: u64,
hi: u64,
}
#[derive(Copy, Clone)]
#[repr(C)]
union C2RustUnnamed3 {
buffer: [u8; 14],
c2rust_unnamed: C2RustUnnamed2,
}
#[derive(Copy, Clone)]
#[repr(C, packed)]
struct C2RustUnnamed4 {
hardware_id: u64,
product_id_low: u64,
product_id_high: u8,
key_sha1: u16,
}
static mut F: [u64; 6] = [
0,
0x21840136c85381,
0x44197b83892ad0,
0x1400606322b3b04,
0x1400606322b3b04,
1,
];
const MOD: u64 = 0x16A6B036D7F2A79;
const BAD: u64 = 0xffffffffffffffff;
fn residue_add(x: u64, y: u64) -> u64 {
let mut z: u64 = x.wrapping_add(y);
//z = z - (z >= MOD ? MOD : 0);
if z >= MOD {
z = z.wrapping_sub(MOD);
}
z
}
fn residue_sub(x: u64, y: u64) -> u64 {
let mut z: u64 = x.wrapping_sub(y);
//z += (x < y ? MOD : 0);
if x < y {
z = z.wrapping_add(MOD);
}
z
}
fn umul128(a: u64, b: u64, hi: &mut u64) -> u64 {
let r: u128 = a as u128 * b as u128;
*hi = (r >> 64) as u64;
r as u64
}
fn ui128_quotient_mod(lo: u64, hi: u64) -> u64 {
// hi:lo * ceil(2**170/MOD) >> (64 + 64 + 42)
let mut prod1: u64 = 0;
umul128(lo, 0x604fa6a1c6346a87_i64 as u64, &mut prod1);
let mut part1hi: u64 = 0;
let part1lo: u64 = umul128(lo, 0x2d351c6d04f8b_i64 as u64, &mut part1hi);
let mut part2hi: u64 = 0;
let part2lo: u64 = umul128(hi, 0x604fa6a1c6346a87_i64 as u64, &mut part2hi);
let mut sum1: u64 = part1lo.wrapping_add(part2lo);
let mut sum1carry: u32 = (sum1 < part1lo) as i32 as u32;
sum1 = sum1.wrapping_add(prod1);
sum1carry = sum1carry.wrapping_add((sum1 < prod1) as i32 as u32);
let prod2: u64 = part1hi.wrapping_add(part2hi).wrapping_add(sum1carry as u64);
let mut prod3hi: u64 = 0;
let mut prod3lo: u64 = umul128(hi, 0x2d351c6d04f8b_i64 as u64, &mut prod3hi);
prod3lo = prod3lo.wrapping_add(prod2);
prod3hi = prod3hi.wrapping_add((prod3lo < prod2) as i32 as u64);
prod3lo >> 42_i32 | prod3hi << 22_i32
}
fn residue_mul(x: u64, y: u64) -> u64 {
// * ceil(2**170/MOD) = 0x2d351 c6d04f8b|604fa6a1 c6346a87 for (p-1)*(p-1) max
let mut hi: u64 = 0;
let lo: u64 = umul128(x, y, &mut hi);
let quotient: u64 = ui128_quotient_mod(lo, hi);
lo.wrapping_sub(quotient.wrapping_mul(MOD))
}
fn residue_pow(x: u64, mut y: u64) -> u64 {
if y == 0_i32 as u64 {
return 1_i32 as u64;
}
let mut cur: u64 = x;
while y & 1_i32 as u64 == 0 {
cur = residue_mul(cur, cur);
y >>= 1_i32;
}
let mut res: u64 = cur;
loop {
y >>= 1_i32;
if y == 0_i32 as u64 {
break;
}
cur = residue_mul(cur, cur);
if y & 1_i32 as u64 != 0 {
res = residue_mul(res, cur);
}
}
res
}
fn inverse(mut u: u64, mut v: u64) -> u64 {
let mut tmp;
let mut xu: i64 = 1_i32 as i64;
let mut xv: i64 = 0_i32 as i64;
let v0: u64 = v;
while u > 1_i32 as u64 {
let d: u64 = v.wrapping_div(u);
let remainder: u64 = v.wrapping_rem(u);
tmp = u as i64;
u = remainder;
v = tmp as u64;
tmp = xu;
xu = (xv as u64).wrapping_sub(d.wrapping_mul(xu as u64)) as i64;
xv = tmp;
}
xu = (xu as u64).wrapping_add(if xu < 0_i32 as i64 { v0 } else { 0_i32 as u64 }) as i64;
xu as u64
}
fn residue_inv(x: u64) -> u64 {
inverse(x, MOD)
}
fn residue_sqrt(what: u64) -> u64 {
if what == 0 {
return 0_i32 as u64;
}
let g: u64 = 43_i32 as u64;
let mut e: u64 = 0_i32 as u64;
let mut q: u64 = MOD.wrapping_sub(1_i32 as u64);
while q & 1_i32 as u64 == 0 {
e = e.wrapping_add(1);
q >>= 1_i32;
}
let z = residue_pow(g, q);
let mut y = z;
let mut r = e;
let mut x = residue_pow(
what,
q.wrapping_sub(1_i32 as u64).wrapping_div(2_i32 as u64),
);
let mut b = residue_mul(residue_mul(what, x), x);
x = residue_mul(what, x);
while b != 1_i32 as u64 {
let mut m: u64 = 0_i32 as u64;
let mut b2: u64 = b;
loop {
m = m.wrapping_add(1);
b2 = residue_mul(b2, b2);
if b2 == 1_i32 as u64 {
break;
}
}
if m == r {
return BAD;
}
let t = residue_pow(
y,
(1_i32 << r.wrapping_sub(m).wrapping_sub(1_i32 as u64)) as u64,
);
y = residue_mul(t, t);
r = m;
x = residue_mul(x, t);
b = residue_mul(b, y);
}
if residue_mul(x, x) != what {
return BAD;
}
x
}
unsafe fn find_divisor_v(d: *mut TDivisor) -> i32 {
// u | v^2 - f
// u = u0 + u1*x + x^2
// f%u = f0 + f1*x
let mut v1;
let mut f2: [u64; 6] = [0; 6];
let mut i: i32 = 0_i32;
while i < 6_i32 {
f2[i as usize] = F[i as usize];
i += 1;
}
let u0: u64 = (*d).u[0_i32 as usize];
let u1: u64 = (*d).u[1_i32 as usize];
let mut j: i32 = 4_i32;
loop {
let fresh0 = j;
j -= 1;
if fresh0 == 0 {
break;
}
f2[j as usize] = residue_sub(f2[j as usize], residue_mul(u0, f2[(j + 2_i32) as usize]));
f2[(j + 1_i32) as usize] = residue_sub(
f2[(j + 1_i32) as usize],
residue_mul(u1, f2[(j + 2_i32) as usize]),
);
f2[(j + 2_i32) as usize] = 0_i32 as u64;
}
// v = v0 + v1*x
// u | (v0^2 - f0) + (2*v0*v1 - f1)*x + v1^2*x^2 = u0*v1^2 + u1*v1^2*x + v1^2*x^2
// v0^2 - f0 = u0*v1^2
// 2*v0*v1 - f1 = u1*v1^2
// v0^2 = f0 + u0*v1^2 = (f1 + u1*v1^2)^2 / (2*v1)^2
// (f1^2) + 2*(f1*u1-2*f0) * v1^2 + (u1^2-4*u0) * v1^4 = 0
// v1^2 = ((2*f0-f1*u1) +- 2*sqrt(-f0*f1*u1 + f0^2 + f1^2*u0))) / (u1^2-4*u0)
let f0: u64 = f2[0_i32 as usize];
let f1: u64 = f2[1_i32 as usize];
let u0double: u64 = residue_add(u0, u0);
let coeff2: u64 = residue_sub(residue_mul(u1, u1), residue_add(u0double, u0double));
let coeff1: u64 = residue_sub(residue_add(f0, f0), residue_mul(f1, u1));
if coeff2 == 0_i32 as u64 {
if coeff1 == 0_i32 as u64 {
if f1 == 0_i32 as u64 {
// impossible
panic!("bad f(), double root detected");
}
return 0_i32;
}
let sqr: u64 = residue_mul(
residue_mul(f1, f1),
residue_inv(residue_add(coeff1, coeff1)),
);
v1 = residue_sqrt(sqr);
if v1 == BAD {
return 0_i32;
}
} else {
let mut d_0: u64 = residue_add(
residue_mul(f0, f0),
residue_mul(f1, residue_sub(residue_mul(f1, u0), residue_mul(f0, u1))),
);
d_0 = residue_sqrt(d_0);
if d_0 == BAD {
return 0_i32;
}
d_0 = residue_add(d_0, d_0);
let inv: u64 = residue_inv(coeff2);
let mut root: u64 = residue_mul(residue_add(coeff1, d_0), inv);
v1 = residue_sqrt(root);
if v1 == BAD {
root = residue_mul(residue_sub(coeff1, d_0), inv);
v1 = residue_sqrt(root);
if v1 == BAD {
return 0_i32;
}
}
}
let v0: u64 = residue_mul(
residue_add(f1, residue_mul(u1, residue_mul(v1, v1))),
residue_inv(residue_add(v1, v1)),
);
(*d).v[0_i32 as usize] = v0;
(*d).v[1_i32 as usize] = v1;
1_i32
}
unsafe fn polynomial_mul(
adeg: i32,
a: *const u64,
bdeg: i32,
b: *const u64,
mut resultprevdeg: i32,
result: *mut u64,
) -> i32 {
// generic short slow code
if adeg < 0_i32 || bdeg < 0_i32 {
return resultprevdeg;
}
let mut i = resultprevdeg + 1_i32;
while i <= adeg + bdeg {
*result.offset(i as isize) = 0_i32 as u64;
i += 1;
}
resultprevdeg = i - 1_i32;
i = 0_i32;
while i <= adeg {
let mut j = 0_i32;
while j <= bdeg {
*result.offset((i + j) as isize) = residue_add(
*result.offset((i + j) as isize),
residue_mul(*a.offset(i as isize), *b.offset(j as isize)),
);
j += 1;
}
i += 1;
}
while resultprevdeg >= 0_i32 && *result.offset(resultprevdeg as isize) == 0_i32 as u64 {
resultprevdeg -= 1;
}
resultprevdeg
}
unsafe fn polynomial_div_monic(
adeg: i32,
a: *mut u64,
bdeg: i32,
b: *const u64,
quotient: *mut u64,
) -> i32 {
let mut i = adeg - bdeg;
while i >= 0_i32 {
let q: u64 = *a.offset((i + bdeg) as isize);
if !quotient.is_null() {
*quotient.offset(i as isize) = q;
}
let mut j = 0_i32;
while j < bdeg {
*a.offset((i + j) as isize) = residue_sub(
*a.offset((i + j) as isize),
residue_mul(q, *b.offset(j as isize)),
);
j += 1;
}
*a.offset((i + j) as isize) = 0_i32 as u64;
i -= 1;
}
i += bdeg;
while i >= 0_i32 && *a.offset(i as isize) == 0_i32 as u64 {
i -= 1;
}
i
}
#[allow(clippy::too_many_arguments)]
unsafe fn polynomial_xgcd(
adeg: i32,
a: *const u64,
bdeg: i32,
b: *const u64,
pgcddeg: *mut i32,
gcd: *mut u64,
pmult1deg: *mut i32,
mult1: *mut u64,
pmult2deg: *mut i32,
mult2: *mut u64,
) {
let mut sdeg: i32 = -1_i32;
let mut s: [u64; 3] = [0_i32 as u64, 0_i32 as u64, 0_i32 as u64];
let mut mult1deg: i32 = 0_i32;
*mult1.offset(0_i32 as isize) = 1_i32 as u64;
*mult1.offset(1_i32 as isize) = 0_i32 as u64;
*mult1.offset(2_i32 as isize) = 0_i32 as u64;
let mut tdeg: i32 = 0_i32;
let mut t: [u64; 3] = [1_i32 as u64, 0_i32 as u64, 0_i32 as u64];
let mut mult2deg: i32 = -1_i32;
*mult2.offset(0_i32 as isize) = 0_i32 as u64;
*mult2.offset(1_i32 as isize) = 0_i32 as u64;
*mult2.offset(2_i32 as isize) = 0_i32 as u64;
let mut rdeg: i32 = bdeg;
let mut r: [u64; 3] = [
*b.offset(0_i32 as isize),
*b.offset(1_i32 as isize),
*b.offset(2_i32 as isize),
];
let mut gcddeg: i32 = adeg;
*gcd.offset(0_i32 as isize) = *a.offset(0_i32 as isize);
*gcd.offset(1_i32 as isize) = *a.offset(1_i32 as isize);
*gcd.offset(2_i32 as isize) = *a.offset(2_i32 as isize);
// s*u1 + t*u2 = r
// mult1*u1 + mult2*u2 = gcd
while rdeg >= 0_i32 {
if rdeg > gcddeg {
let tmp = rdeg as u32;
rdeg = gcddeg;
gcddeg = tmp as i32;
std::mem::swap(&mut sdeg, &mut mult1deg);
std::mem::swap(&mut tdeg, &mut mult2deg);
let mut tmp2 = r[0_i32 as usize];
r[0_i32 as usize] = *gcd.offset(0_i32 as isize);
*gcd.offset(0_i32 as isize) = tmp2;
tmp2 = r[1_i32 as usize];
r[1_i32 as usize] = *gcd.offset(1_i32 as isize);
*gcd.offset(1_i32 as isize) = tmp2;
tmp2 = r[2_i32 as usize];
r[2_i32 as usize] = *gcd.offset(2_i32 as isize);
*gcd.offset(2_i32 as isize) = tmp2;
tmp2 = s[0_i32 as usize];
s[0_i32 as usize] = *mult1.offset(0_i32 as isize);
*mult1.offset(0_i32 as isize) = tmp2;
tmp2 = s[1_i32 as usize];
s[1_i32 as usize] = *mult1.offset(1_i32 as isize);
*mult1.offset(1_i32 as isize) = tmp2;
tmp2 = s[2_i32 as usize];
s[2_i32 as usize] = *mult1.offset(2_i32 as isize);
*mult1.offset(2_i32 as isize) = tmp2;
tmp2 = t[0_i32 as usize];
t[0_i32 as usize] = *mult2.offset(0_i32 as isize);
*mult2.offset(0_i32 as isize) = tmp2;
tmp2 = t[1_i32 as usize];
t[1_i32 as usize] = *mult2.offset(1_i32 as isize);
*mult2.offset(1_i32 as isize) = tmp2;
tmp2 = t[2_i32 as usize];
t[2_i32 as usize] = *mult2.offset(2_i32 as isize);
*mult2.offset(2_i32 as isize) = tmp2;
} else {
let delta: i32 = gcddeg - rdeg;
let mult: u64 =
residue_mul(*gcd.offset(gcddeg as isize), residue_inv(r[rdeg as usize]));
// quotient = mult * x**delta
let mut i: i32 = 0_i32;
while i <= rdeg {
*gcd.offset((i + delta) as isize) = residue_sub(
*gcd.offset((i + delta) as isize),
residue_mul(mult, r[i as usize]),
);
i += 1;
}
while gcddeg >= 0_i32 && *gcd.offset(gcddeg as isize) == 0_i32 as u64 {
gcddeg -= 1;
}
let mut i_0: i32 = 0_i32;
while i_0 <= sdeg {
*mult1.offset((i_0 + delta) as isize) = residue_sub(
*mult1.offset((i_0 + delta) as isize),
residue_mul(mult, s[i_0 as usize]),
);
i_0 += 1;
}
if mult1deg < sdeg + delta {
mult1deg = sdeg + delta;
}
while mult1deg >= 0_i32 && *mult1.offset(mult1deg as isize) == 0_i32 as u64 {
mult1deg -= 1;
}
let mut i_1: i32 = 0_i32;
while i_1 <= tdeg {
*mult2.offset((i_1 + delta) as isize) = residue_sub(
*mult2.offset((i_1 + delta) as isize),
residue_mul(mult, t[i_1 as usize]),
);
i_1 += 1;
}
if mult2deg < tdeg + delta {
mult2deg = tdeg + delta;
}
while mult2deg >= 0_i32 && *mult2.offset(mult2deg as isize) == 0_i32 as u64 {
mult2deg -= 1;
}
}
}
// d1 = gcd, e1 = mult1, e2 = mult2
*pgcddeg = gcddeg;
*pmult1deg = mult1deg;
*pmult2deg = mult2deg;
}
unsafe fn u2poly(src: *const TDivisor, polyu: *mut u64, polyv: *mut u64) -> i32 {
if (*src).u[1_i32 as usize] != BAD {
*polyu.offset(0_i32 as isize) = (*src).u[0_i32 as usize];
*polyu.offset(1_i32 as isize) = (*src).u[1_i32 as usize];
*polyu.offset(2_i32 as isize) = 1_i32 as u64;
*polyv.offset(0_i32 as isize) = (*src).v[0_i32 as usize];
*polyv.offset(1_i32 as isize) = (*src).v[1_i32 as usize];
return 2_i32;
}
if (*src).u[0_i32 as usize] != BAD {
*polyu.offset(0_i32 as isize) = (*src).u[0_i32 as usize];
*polyu.offset(1_i32 as isize) = 1_i32 as u64;
*polyv.offset(0_i32 as isize) = (*src).v[0_i32 as usize];
*polyv.offset(1_i32 as isize) = 0_i32 as u64;
return 1_i32;
}
*polyu.offset(0_i32 as isize) = 1_i32 as u64;
*polyv.offset(0_i32 as isize) = 0_i32 as u64;
*polyv.offset(1_i32 as isize) = 0_i32 as u64;
0_i32
}
unsafe fn divisor_add(src1: *const TDivisor, src2: *const TDivisor, dst: *mut TDivisor) {
let mut u1: [u64; 3] = [0; 3];
let mut u2: [u64; 3] = [0; 3];
let mut v1: [u64; 2] = [0; 2];
let mut v2: [u64; 2] = [0; 2];
let u1deg: i32 = u2poly(src1, u1.as_mut_ptr(), v1.as_mut_ptr());
let u2deg: i32 = u2poly(src2, u2.as_mut_ptr(), v2.as_mut_ptr());
// extended gcd: d1 = gcd(u1, u2) = e1*u1 + e2*u2
let mut d1deg: i32 = 0;
let mut e1deg: i32 = 0;
let mut e2deg: i32 = 0;
let mut d1: [u64; 3] = [0; 3];
let mut e1: [u64; 3] = [0; 3];
let mut e2: [u64; 3] = [0; 3];
polynomial_xgcd(
u1deg,
u1.as_mut_ptr() as *const u64,
u2deg,
u2.as_mut_ptr() as *const u64,
&mut d1deg,
d1.as_mut_ptr(),
&mut e1deg,
e1.as_mut_ptr(),
&mut e2deg,
e2.as_mut_ptr(),
);
// extended gcd again: d = gcd(d1, v1+v2) = c1*d1 + c2*(v1+v2)
let mut b: [u64; 3] = [
residue_add(v1[0_i32 as usize], v2[0_i32 as usize]),
residue_add(v1[1_i32 as usize], v2[1_i32 as usize]),
0_i32 as u64,
];
let bdeg: i32 = if b[1_i32 as usize] == 0_i32 as u64 {
if b[0_i32 as usize] == 0_i32 as u64 {
-1_i32
} else {
0_i32
}
} else {
1_i32
};
let mut ddeg: i32 = 0;
let mut c1deg: i32 = 0;
let mut c2deg: i32 = 0;
let mut d: [u64; 3] = [0; 3];
let mut c1: [u64; 3] = [0; 3];
let mut c2: [u64; 3] = [0; 3];
polynomial_xgcd(
d1deg,
d1.as_mut_ptr() as *const u64,
bdeg,
b.as_mut_ptr() as *const u64,
&mut ddeg,
d.as_mut_ptr(),
&mut c1deg,
c1.as_mut_ptr(),
&mut c2deg,
c2.as_mut_ptr(),
);
let dmult: u64 = residue_inv(d[ddeg as usize]);
let mut i = 0_i32;
while i < ddeg {
d[i as usize] = residue_mul(d[i as usize], dmult);
i += 1;
}
d[i as usize] = 1_i32 as u64;
i = 0_i32;
while i <= c1deg {
c1[i as usize] = residue_mul(c1[i as usize], dmult);
i += 1;
}
i = 0_i32;
while i <= c2deg {
c2[i as usize] = residue_mul(c2[i as usize], dmult);
i += 1;
}
let mut u: [u64; 5] = [0; 5];
let mut udeg: i32 = polynomial_mul(
u1deg,
u1.as_mut_ptr() as *const u64,
u2deg,
u2.as_mut_ptr() as *const u64,
-1_i32,
u.as_mut_ptr(),
);
// u is monic
let mut v: [u64; 7] = [0; 7];
let mut tmp: [u64; 7] = [0; 7];
// c1*(e1*u1*v2 + e2*u2*v1) + c2*(v1*v2 + f)
// c1*(e1*u1*(v2-v1) + d1*v1) + c2*(v1*v2 + f)
v[0_i32 as usize] = residue_sub(v2[0_i32 as usize], v1[0_i32 as usize]);
v[1_i32 as usize] = residue_sub(v2[1_i32 as usize], v1[1_i32 as usize]);
let mut tmpdeg = polynomial_mul(
e1deg,
e1.as_mut_ptr() as *const u64,
1_i32,
v.as_mut_ptr() as *const u64,
-1_i32,
tmp.as_mut_ptr(),
);
let mut vdeg = polynomial_mul(
u1deg,
u1.as_mut_ptr() as *const u64,
tmpdeg,
tmp.as_mut_ptr() as *const u64,
-1_i32,
v.as_mut_ptr(),
);
vdeg = polynomial_mul(
d1deg,
d1.as_mut_ptr() as *const u64,
1_i32,
v1.as_mut_ptr() as *const u64,
vdeg,
v.as_mut_ptr(),
);
i = 0_i32;
while i <= vdeg {
v[i as usize] = residue_mul(v[i as usize], c1[0_i32 as usize]);
i += 1;
}
tmp[0] = F[0];
tmp[1] = F[1];
tmp[2] = F[2];
tmp[3] = F[3];
tmp[4] = F[4];
tmp[5] = F[5];
tmpdeg = 5_i32;
tmpdeg = polynomial_mul(
1_i32,
v1.as_mut_ptr() as *const u64,
1_i32,
v2.as_mut_ptr() as *const u64,
tmpdeg,
tmp.as_mut_ptr(),
);
vdeg = polynomial_mul(
c2deg,
c2.as_mut_ptr() as *const u64,
tmpdeg,
tmp.as_mut_ptr() as *const u64,
vdeg,
v.as_mut_ptr(),
);
if ddeg > 0_i32 {
let mut udiv: [u64; 5] = [0; 5];
polynomial_div_monic(
udeg,
u.as_mut_ptr(),
ddeg,
d.as_mut_ptr() as *const u64,
udiv.as_mut_ptr(),
);
udeg -= ddeg;
polynomial_div_monic(
udeg,
udiv.as_mut_ptr(),
ddeg,
d.as_mut_ptr() as *const u64,
u.as_mut_ptr(),
);
udeg -= ddeg;
if vdeg >= 0_i32 {
polynomial_div_monic(
vdeg,
v.as_mut_ptr(),
ddeg,
d.as_mut_ptr() as *const u64,
udiv.as_mut_ptr(),
);
vdeg -= ddeg;
for i in 0..=vdeg {
v[i as usize] = udiv[i as usize];
}
}
}
vdeg = polynomial_div_monic(
vdeg,
v.as_mut_ptr(),
udeg,
u.as_mut_ptr() as *const u64,
std::ptr::null_mut::<u64>(),
);
while udeg > 2_i32 {
// u' = monic((f-v^2)/u), v'=-v mod u'
tmpdeg = polynomial_mul(
vdeg,
v.as_mut_ptr() as *const u64,
vdeg,
v.as_mut_ptr() as *const u64,
-1_i32,
tmp.as_mut_ptr(),
);
i = 0_i32;
while i <= tmpdeg && i <= 5_i32 {
tmp[i as usize] = residue_sub(F[i as usize], tmp[i as usize]);
i += 1;
}
while i <= tmpdeg {
tmp[i as usize] = residue_sub(0_i32 as u64, tmp[i as usize]);
i += 1;
}
while i <= 5_i32 {
tmp[i as usize] = F[i as usize];
i += 1;
}
tmpdeg = i - 1_i32;
let mut udiv_0: [u64; 5] = [0; 5];
polynomial_div_monic(
tmpdeg,
tmp.as_mut_ptr(),
udeg,
u.as_mut_ptr() as *const u64,
udiv_0.as_mut_ptr(),
);
udeg = tmpdeg - udeg;
let mult: u64 = residue_inv(udiv_0[udeg as usize]);
i = 0_i32;
while i < udeg {
u[i as usize] = residue_mul(udiv_0[i as usize], mult);
i += 1;
}
u[i as usize] = 1_i32 as u64;
i = 0_i32;
while i <= vdeg {
v[i as usize] = residue_sub(0_i32 as u64, v[i as usize]);
i += 1;
}
vdeg = polynomial_div_monic(
vdeg,
v.as_mut_ptr(),
udeg,
u.as_mut_ptr() as *const u64,
std::ptr::null_mut::<u64>(),
);
}
if udeg == 2_i32 {
(*dst).u[0_i32 as usize] = u[0_i32 as usize];
(*dst).u[1_i32 as usize] = u[1_i32 as usize];
(*dst).v[0_i32 as usize] = if vdeg >= 0_i32 {
v[0_i32 as usize]
} else {
0_i32 as u64
};
(*dst).v[1_i32 as usize] = if vdeg >= 1_i32 {
v[1_i32 as usize]
} else {
0_i32 as u64
};
} else if udeg == 1_i32 {
(*dst).u[0_i32 as usize] = u[0_i32 as usize];
(*dst).u[1_i32 as usize] = BAD;
(*dst).v[0_i32 as usize] = if vdeg >= 0_i32 {
v[0_i32 as usize]
} else {
0_i32 as u64
};
(*dst).v[1_i32 as usize] = BAD;
} else {
(*dst).u[0_i32 as usize] = BAD;
(*dst).u[1_i32 as usize] = BAD;
(*dst).v[0_i32 as usize] = BAD;
(*dst).v[1_i32 as usize] = BAD;
};
}
unsafe fn divisor_mul128(
src: *const TDivisor,
mut mult_lo: u64,
mut mult_hi: u64,
dst: *mut TDivisor,
) {
if mult_lo == 0_i32 as u64 && mult_hi == 0_i32 as u64 {
(*dst).u[0_i32 as usize] = BAD;
(*dst).u[1_i32 as usize] = BAD;
(*dst).v[0_i32 as usize] = BAD;
(*dst).v[1_i32 as usize] = BAD;
return;
}
let mut cur: TDivisor = *src;
while mult_lo & 1_i32 as u64 == 0 {
divisor_add(&cur, &cur, &mut cur);
mult_lo >>= 1_i32;
if mult_hi & 1_i32 as u64 != 0 {
mult_lo |= 1_u64 << 63_i32;
}
mult_hi >>= 1_i32;
}
*dst = cur;
loop {
mult_lo >>= 1_i32;
if mult_hi & 1_i32 as u64 != 0 {
mult_lo |= 1_u64 << 63_i32;
}
mult_hi >>= 1_i32;
if mult_lo == 0_i32 as u64 && mult_hi == 0_i32 as u64 {
break;
}
divisor_add(&cur, &cur, &mut cur);
if mult_lo & 1_i32 as u64 != 0 {
divisor_add(dst, &cur, dst);
}
}
}
fn rol(x: u32, shift: i32) -> u32 {
x << shift | x >> (32_i32 - shift)
}
unsafe fn sha1_single_block(input: *mut u8, output: *mut u8) {
let mut a = 0x67452301_i32 as u32;
let mut b = 0xefcdab89_u32;
let mut c = 0x98badcfe_u32;
let mut d = 0x10325476_i32 as u32;
let mut e = 0xc3d2e1f0_u32;
let mut w: [u32; 80] = [0; 80];
let mut i = 0_i32 as usize;
while i < 16 {
w[i] = ((*input.add(4_usize.wrapping_mul(i)) as i32) << 24_i32
| (*input.add(4_usize.wrapping_mul(i).wrapping_add(1)) as i32) << 16_i32
| (*input.add(4_usize.wrapping_mul(i).wrapping_add(2)) as i32) << 8_i32
| *input.add(4_usize.wrapping_mul(i).wrapping_add(3)) as i32) as u32;
i = i.wrapping_add(1);
}
i = 16_i32 as usize;
while i < 80 {
w[i] = rol(
w[i.wrapping_sub(3)]
^ w[i.wrapping_sub(8)]
^ w[i.wrapping_sub(14)]
^ w[i.wrapping_sub(16)],
1_i32,
);
i = i.wrapping_add(1);
}
i = 0_i32 as usize;
while i < 20 {
let tmp: u32 = (rol(a, 5_i32))
.wrapping_add(b & c | !b & d)
.wrapping_add(e)
.wrapping_add(w[i])
.wrapping_add(0x5a827999_i32 as u32);
e = d;
d = c;
c = rol(b, 30_i32);
b = a;
a = tmp;
i = i.wrapping_add(1);
}
i = 20_i32 as usize;
while i < 40 {
let tmp_0: u32 = (rol(a, 5_i32))
.wrapping_add(b ^ c ^ d)
.wrapping_add(e)
.wrapping_add(w[i])
.wrapping_add(0x6ed9eba1_i32 as u32);
e = d;
d = c;
c = rol(b, 30_i32);
b = a;
a = tmp_0;
i = i.wrapping_add(1);
}
i = 40_i32 as usize;
while i < 60 {
let tmp_1: u32 = (rol(a, 5_i32))
.wrapping_add(b & c | b & d | c & d)
.wrapping_add(e)
.wrapping_add(w[i])
.wrapping_add(0x8f1bbcdc_u32);
e = d;
d = c;
c = rol(b, 30_i32);
b = a;
a = tmp_1;
i = i.wrapping_add(1);
}
i = 60_i32 as usize;
while i < 80 {
let tmp_2: u32 = (rol(a, 5_i32))
.wrapping_add(b ^ c ^ d)
.wrapping_add(e)
.wrapping_add(w[i])
.wrapping_add(0xca62c1d6_u32);
e = d;
d = c;
c = rol(b, 30_i32);
b = a;
a = tmp_2;
i = i.wrapping_add(1);
}
a = a.wrapping_add(0x67452301_i32 as u32);
b = b.wrapping_add(0xefcdab89_u32);
c = c.wrapping_add(0x98badcfe_u32);
d = d.wrapping_add(0x10325476_i32 as u32);
e = e.wrapping_add(0xc3d2e1f0_u32);
*output.offset(0_i32 as isize) = (a >> 24_i32) as u8;
*output.offset(1_i32 as isize) = (a >> 16_i32) as u8;
*output.offset(2_i32 as isize) = (a >> 8_i32) as u8;
*output.offset(3_i32 as isize) = a as u8;
*output.offset(4_i32 as isize) = (b >> 24_i32) as u8;
*output.offset(5_i32 as isize) = (b >> 16_i32) as u8;
*output.offset(6_i32 as isize) = (b >> 8_i32) as u8;
*output.offset(7_i32 as isize) = b as u8;
*output.offset(8_i32 as isize) = (c >> 24_i32) as u8;
*output.offset(9_i32 as isize) = (c >> 16_i32) as u8;
*output.offset(10_i32 as isize) = (c >> 8_i32) as u8;
*output.offset(11_i32 as isize) = c as u8;
*output.offset(12_i32 as isize) = (d >> 24_i32) as u8;
*output.offset(13_i32 as isize) = (d >> 16_i32) as u8;
*output.offset(14_i32 as isize) = (d >> 8_i32) as u8;
*output.offset(15_i32 as isize) = d as u8;
*output.offset(16_i32 as isize) = (e >> 24_i32) as u8;
*output.offset(17_i32 as isize) = (e >> 16_i32) as u8;
*output.offset(18_i32 as isize) = (e >> 8_i32) as u8;
*output.offset(19_i32 as isize) = e as u8;
}
unsafe fn mix(buffer: *mut u8, buf_size: usize, key: *const u8, key_size: usize) {
let mut sha1_input: [u8; 64] = [0; 64];
let mut sha1_result: [u8; 20] = [0; 20];
let half: usize = buf_size.wrapping_div(2);
let mut external_counter = 0_i32;
while external_counter < 4_i32 {
for n in &mut sha1_input {
*n = 0;
}
ptr::copy_nonoverlapping(buffer.add(half), sha1_input.as_mut_ptr(), half);
ptr::copy_nonoverlapping(
key as *const c_void,
sha1_input.as_mut_ptr().add(half) as *mut c_void,
key_size,
);
sha1_input[half.wrapping_add(key_size)] = 0x80_i32 as u8;
sha1_input
[(::std::mem::size_of::<[u8; 64]>() as u64).wrapping_sub(1_i32 as u64) as usize] =
half.wrapping_add(key_size).wrapping_mul(8) as u8;
sha1_input
[(::std::mem::size_of::<[u8; 64]>() as u64).wrapping_sub(2_i32 as u64) as usize] =
half.wrapping_add(key_size)
.wrapping_mul(8)
.wrapping_div(0x100) as u8;
sha1_single_block(sha1_input.as_mut_ptr(), sha1_result.as_mut_ptr());
let mut i = half & !3;
while i < half {
sha1_result[i] = sha1_result[i.wrapping_add(4).wrapping_sub(half & 3)];
i = i.wrapping_add(1);
}
i = 0_i32 as usize;
while i < half {
let tmp: u8 = *buffer.add(i.wrapping_add(half));
*buffer.add(i.wrapping_add(half)) =
(*buffer.add(i) as i32 ^ sha1_result[i] as i32) as u8;
*buffer.add(i) = tmp;
i = i.wrapping_add(1);
}
external_counter += 1;
}
}
unsafe fn unmix(buffer: *mut u8, buf_size: usize, key: *const u8, key_size: usize) {
let mut sha1_input: [u8; 64] = [0; 64];
let mut sha1_result: [u8; 20] = [0; 20];
let half: usize = buf_size.wrapping_div(2);
let mut external_counter = 0_i32;
while external_counter < 4_i32 {
for n in &mut sha1_input {
*n = 0;
}
ptr::copy_nonoverlapping(buffer, sha1_input.as_mut_ptr(), half);
ptr::copy_nonoverlapping(key, sha1_input.as_mut_ptr().add(half), key_size);
sha1_input[half.wrapping_add(key_size)] = 0x80_i32 as u8;
sha1_input
[(::std::mem::size_of::<[u8; 64]>() as u64).wrapping_sub(1_i32 as u64) as usize] =
half.wrapping_add(key_size).wrapping_mul(8) as u8;
sha1_input
[(::std::mem::size_of::<[u8; 64]>() as u64).wrapping_sub(2_i32 as u64) as usize] =
half.wrapping_add(key_size)
.wrapping_mul(8)
.wrapping_div(0x100) as u8;
sha1_single_block(sha1_input.as_mut_ptr(), sha1_result.as_mut_ptr());
let mut i = half & !3;
while i < half {
sha1_result[i] = sha1_result[i.wrapping_add(4).wrapping_sub(half & 3)];
i = i.wrapping_add(1);
}
i = 0_i32 as usize;
while i < half {
let tmp: u8 = *buffer.add(i);
*buffer.add(i) =
(*buffer.add(i.wrapping_add(half)) as i32 ^ sha1_result[i] as i32) as u8;
*buffer.add(i.wrapping_add(half)) = tmp;
i = i.wrapping_add(1);
}
external_counter += 1;
}
}
pub unsafe fn generate(installation_id_str: *const i8, confirmation_id: *mut i8) -> i32 {
let mut installation_id: [u8; 19] = [0; 19]; // 10**45 < 256**19
let mut installation_id_len: usize = 0_i32 as usize;
let mut p: *const i8 = installation_id_str;
let mut count: usize = 0_i32 as usize;
let mut total_count: usize = 0_i32 as usize;
let mut check: u32 = 0_i32 as u32;
while *p != 0 {
if !(*p as i32 == ' ' as i32 || *p as i32 == '-' as i32) {
let d: i32 = *p as i32 - '0' as i32;
if !(0_i32..=9_i32).contains(&d) {
return 3_i32;
}
if count == 5 || *p.offset(1_i32 as isize) as i32 == 0_i32 {
if count == 0 {
return if total_count == 45 { 2_i32 } else { 1_i32 };
}
if d as u32 != check.wrapping_rem(7_i32 as u32) {
return if count < 5 { 1_i32 } else { 4_i32 };
}
check = 0_i32 as u32;
count = 0_i32 as usize;
} else {
check = check.wrapping_add(
(if count.wrapping_rem(2) != 0 {
d * 2_i32
} else {
d
}) as u32,
);
count = count.wrapping_add(1);
total_count = total_count.wrapping_add(1);
if total_count > 45 {
return 2_i32;
}
let mut carry: u8 = d as u8;
let mut i = 0_i32 as usize;
while i < installation_id_len {
let x: u32 = (installation_id[i] as i32 * 10_i32 + carry as i32) as u32;
installation_id[i] = (x & 0xff_i32 as u32) as u8;
carry = (x >> 8_i32) as u8;
i = i.wrapping_add(1);
}
if carry != 0 {
let fresh1 = installation_id_len;
installation_id_len = installation_id_len.wrapping_add(1);
installation_id[fresh1] = carry;
}
}
}
p = p.offset(1);
}
if total_count != 41 && total_count < 45 {
return 1_i32;
}
while installation_id_len < ::std::mem::size_of::<[u8; 19]>() {
installation_id[installation_id_len] = 0_i32 as u8;
installation_id_len = installation_id_len.wrapping_add(1);
}
const IID_KEY: [u8; 4] = [
0x6a_i32 as u8,
0xc8_i32 as u8,
0x5e_i32 as u8,
0xd4_i32 as u8,
];
unmix(
installation_id.as_mut_ptr(),
(if total_count == 41 { 17_i32 } else { 19_i32 }) as usize,
IID_KEY.as_ptr(),
4_i32 as usize,
);
if installation_id[18_i32 as usize] as i32 >= 0x10_i32 {
return 5_i32;
}
let mut parsed: C2RustUnnamed4 = C2RustUnnamed4 {
hardware_id: 0,
product_id_low: 0,
product_id_high: 0,
key_sha1: 0,
};
ptr::copy_nonoverlapping(
installation_id.as_mut_ptr() as *const c_void,
&mut parsed as *mut C2RustUnnamed4 as *mut c_void,
std::mem::size_of::<C2RustUnnamed4>(),
);
let product_id_1: u32 = (parsed.product_id_low & ((1_i32 << 17_i32) - 1_i32) as u64) as u32;
let product_id_2: u32 =
(parsed.product_id_low >> 17_i32 & ((1_i32 << 10_i32) - 1_i32) as u64) as u32;
let product_id_3: u32 =
(parsed.product_id_low >> 27_i32 & ((1_i32 << 25_i32) - 1_i32) as u64) as u32;
let version: u32 = (parsed.product_id_low >> 52_i32 & 7_i32 as u64) as u32;
let product_id_4: u32 = (parsed.product_id_low >> 55_i32
| ((parsed.product_id_high as i32) << 9_i32) as u64) as u32;
if version != (if total_count == 41 { 4_i32 } else { 5_i32 }) as u32 {
return 5_i32;
}
let mut keybuf: [u8; 16] = [0; 16];
let mut hardware_id = parsed.hardware_id;
ptr::copy_nonoverlapping(
&mut hardware_id as *mut u64 as *const c_void,
keybuf.as_mut_ptr() as *mut c_void,
8,
);
let mut product_id_mixed: u64 = (product_id_1 as u64) << 41_i32
| (product_id_2 as u64) << 58_i32
| (product_id_3 as u64) << 17_i32
| product_id_4 as u64;
ptr::copy_nonoverlapping(
&mut product_id_mixed as *mut u64 as *const c_void,
keybuf.as_mut_ptr().offset(8) as *mut c_void,
8,
);
let mut d_0: TDivisor = TDivisor {
u: [0; 2],
v: [0; 2],
};
let mut attempt = 0_i32 as u8;
while attempt as i32 <= 0x80_i32 {
let mut u: C2RustUnnamed3 = C2RustUnnamed3 { buffer: [0; 14] };
u.c2rust_unnamed.lo = 0_i32 as u64;
u.c2rust_unnamed.hi = 0_i32 as u64;
u.buffer[7_i32 as usize] = attempt;
mix(
(u.buffer).as_mut_ptr(),
14_i32 as usize,
keybuf.as_mut_ptr(),
16_i32 as usize,
);
let mut x2: u64 = ui128_quotient_mod(u.c2rust_unnamed.lo, u.c2rust_unnamed.hi);
let x1: u64 = u.c2rust_unnamed.lo.wrapping_sub(x2.wrapping_mul(MOD));
x2 = x2.wrapping_add(1);
d_0.u[0_i32 as usize] = residue_sub(
residue_mul(x1, x1),
residue_mul(43_i32 as u64, residue_mul(x2, x2)),
);
d_0.u[1_i32 as usize] = residue_add(x1, x1);
if find_divisor_v(&mut d_0) != 0 {
break;
}
attempt = attempt.wrapping_add(1);
}
if attempt as i32 > 0x80_i32 {
return 6_i32;
}
divisor_mul128(
&d_0,
0x4e21b9d10f127c1_i64 as u64,
0x40da7c36d44c_i64 as u64,
&mut d_0,
);
let mut e: C2RustUnnamed0 = C2RustUnnamed0 {
c2rust_unnamed: C2RustUnnamed1 {
encoded_lo: 0,
encoded_hi: 0,
},
};
if d_0.u[0_i32 as usize] == BAD {
// we can not get the zero divisor, actually...
e.c2rust_unnamed.encoded_lo = umul128(
MOD.wrapping_add(2_i32 as u64),
MOD,
&mut e.c2rust_unnamed.encoded_hi,
);
} else if d_0.u[1_i32 as usize] == BAD {
e.c2rust_unnamed.encoded_lo = umul128(
MOD.wrapping_add(1_i32 as u64),
d_0.u[0_i32 as usize],
&mut e.c2rust_unnamed.encoded_hi,
);
e.c2rust_unnamed.encoded_lo = e.c2rust_unnamed.encoded_lo.wrapping_add(MOD);
e.c2rust_unnamed.encoded_hi = e
.c2rust_unnamed
.encoded_hi
.wrapping_add((e.c2rust_unnamed.encoded_lo < MOD) as i32 as u64);
} else {
let x1_0: u64 = (if d_0.u[1_i32 as usize] as i32 % 2_i32 != 0 {
d_0.u[1_i32 as usize].wrapping_add(MOD)
} else {
d_0.u[1_i32 as usize]
})
.wrapping_div(2_i32 as u64);
let x2sqr: u64 = residue_sub(residue_mul(x1_0, x1_0), d_0.u[0_i32 as usize]);
let mut x2_0: u64 = residue_sqrt(x2sqr);
if x2_0 == BAD {
x2_0 = residue_sqrt(residue_mul(x2sqr, residue_inv(43_i32 as u64)));
e.c2rust_unnamed.encoded_lo = umul128(
MOD.wrapping_add(1_i32 as u64),
MOD.wrapping_add(x2_0),
&mut e.c2rust_unnamed.encoded_hi,
);
e.c2rust_unnamed.encoded_lo = e.c2rust_unnamed.encoded_lo.wrapping_add(x1_0);
e.c2rust_unnamed.encoded_hi = e
.c2rust_unnamed
.encoded_hi
.wrapping_add((e.c2rust_unnamed.encoded_lo < x1_0) as i32 as u64);
} else {
// points (-x1+x2, v(-x1+x2)) and (-x1-x2, v(-x1-x2))
let mut x1a: u64 = residue_sub(x1_0, x2_0);
let y1: u64 = residue_sub(
d_0.v[0_i32 as usize],
residue_mul(d_0.v[1_i32 as usize], x1a),
);
let mut x2a: u64 = residue_add(x1_0, x2_0);
let y2: u64 = residue_sub(
d_0.v[0_i32 as usize],
residue_mul(d_0.v[1_i32 as usize], x2a),
);
if x1a > x2a {
std::mem::swap(&mut x1a, &mut x2a);
}
if (y1 ^ y2) & 1_i32 as u64 != 0 {
std::mem::swap(&mut x1a, &mut x2a);
}
e.c2rust_unnamed.encoded_lo = umul128(
MOD.wrapping_add(1_i32 as u64),
x1a,
&mut e.c2rust_unnamed.encoded_hi,
);
e.c2rust_unnamed.encoded_lo = e.c2rust_unnamed.encoded_lo.wrapping_add(x2a);
e.c2rust_unnamed.encoded_hi = e
.c2rust_unnamed
.encoded_hi
.wrapping_add((e.c2rust_unnamed.encoded_lo < x2a) as i32 as u64);
}
}
let mut decimal: [u8; 35] = [0; 35];
let mut i = 0_i32 as usize;
while i < 35 {
let c: u32 = (e.c2rust_unnamed_0.encoded[3_i32 as usize]).wrapping_rem(10_i32 as u32);
e.c2rust_unnamed_0.encoded[3_i32 as usize] =
e.c2rust_unnamed_0.encoded[3_i32 as usize].wrapping_div(10_i32 as u32);
let c2: u32 = ((c as u64) << 32_i32 | e.c2rust_unnamed_0.encoded[2_i32 as usize] as u64)
.wrapping_rem(10_i32 as u64) as u32;
e.c2rust_unnamed_0.encoded[2_i32 as usize] =
((c as u64) << 32_i32 | e.c2rust_unnamed_0.encoded[2_i32 as usize] as u64)
.wrapping_div(10_i32 as u64) as u32;
let c3: u32 = ((c2 as u64) << 32_i32 | e.c2rust_unnamed_0.encoded[1_i32 as usize] as u64)
.wrapping_rem(10_i32 as u64) as u32;
e.c2rust_unnamed_0.encoded[1_i32 as usize] =
((c2 as u64) << 32_i32 | e.c2rust_unnamed_0.encoded[1_i32 as usize] as u64)
.wrapping_div(10_i32 as u64) as u32;
let c4: u32 = ((c3 as u64) << 32_i32 | e.c2rust_unnamed_0.encoded[0_i32 as usize] as u64)
.wrapping_rem(10_i32 as u64) as u32;
e.c2rust_unnamed_0.encoded[0_i32 as usize] =
((c3 as u64) << 32_i32 | e.c2rust_unnamed_0.encoded[0_i32 as usize] as u64)
.wrapping_div(10_i32 as u64) as u32;
decimal[34_usize.wrapping_sub(i)] = c4 as u8;
i = i.wrapping_add(1);
}
let mut q: *mut i8 = confirmation_id;
i = 0_i32 as usize;
while i < 7 {
if i != 0 {
let fresh2 = q;
q = q.offset(1);
*fresh2 = '-' as i32 as i8;
}
let p_0: *mut u8 = decimal.as_mut_ptr().add(i.wrapping_mul(5));
*q.offset(0_i32 as isize) = (*p_0.offset(0_i32 as isize) as i32 + '0' as i32) as i8;
*q.offset(1_i32 as isize) = (*p_0.offset(1_i32 as isize) as i32 + '0' as i32) as i8;
*q.offset(2_i32 as isize) = (*p_0.offset(2_i32 as isize) as i32 + '0' as i32) as i8;
*q.offset(3_i32 as isize) = (*p_0.offset(3_i32 as isize) as i32 + '0' as i32) as i8;
*q.offset(4_i32 as isize) = (*p_0.offset(4_i32 as isize) as i32 + '0' as i32) as i8;
*q.offset(5_i32 as isize) = ((*p_0.offset(0_i32 as isize) as i32
+ *p_0.offset(1_i32 as isize) as i32 * 2_i32
+ *p_0.offset(2_i32 as isize) as i32
+ *p_0.offset(3_i32 as isize) as i32 * 2_i32
+ *p_0.offset(4_i32 as isize) as i32)
% 7_i32
+ '0' as i32) as i8;
q = q.offset(6_i32 as isize);
i = i.wrapping_add(1);
}
let fresh3 = q.offset(1);
*fresh3 = 0_i32 as i8;
0_i32
}
Reference in a new issue View git blame Copy permalink