Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Message-ID: <20120920050058.GA27300@openwall.com>
Date: Thu, 20 Sep 2012 09:00:58 +0400
From: Solar Designer <solar@...nwall.com>
To: john-dev@...ts.openwall.com, deepika dutta <deepikadutta_19@...oo.com>
Subject: Re: Bitsliced DES - SSE

Hi Deepika,

On Tue, Sep 18, 2012 at 04:15:39AM -0700, deepika dutta wrote:
> Hi, I am looking into the SSE part of bitsliced des and working on adding the plain des encryption part in it. I am working with x86-sse.S. I got an idea of what is happening there but I have following doubt, please answer it so that i can proceed further... I would like to do this part as it will aid in my understanding also.

I hope you enjoy doing this.

I was/am planning to do it myself, and it'd be easy for me to do - so
there's no real need for you to get into it.  I just haven't approached
the larger task of processing your contributions yet.

> I had added a code in MSCHAP to fill plaintext in bitsliced form which was copied to DES_bs_all.B before starting encryption. (This code i have shifted now to DES-bs_b.c to make it available to any algorithm.) When using sse (linux-x86 build for 32/64 bit), the DES_bs_vector becomes a 2D array with 64 rows and 4 columns. Without sse the array was  1D each bit was put as 0 or -1 in array elements. Now for SSE, whether I should bitslice the plaintext in C function populating each column with same value or do it in assembly using 128 bit sse instructions? I know it would be easier to do in C but will it have any performance issues?? 

If this initialization of B occurs during password cracking for a given
format (that is, if it can't be done in init() just once, then
memcpy()'ed), then indeed you ought to be using the SIMD instructions.
However, you don't absolutely have to use them from the assembly file;
you may instead use the intrinsics from C.  The choice between assembly
vs. intrinsics should be the same for the entire bitslice DES thing (in
a given build), though.  Right now, JtR uses assembly when built without
OpenMP and without AVX (yet for an x86 CPU) and intrinsics otherwise
(when OpenMP or/and AVX is enabled, or when building for PPC/AltiVec).
So you should do the same.  This means having several implementations of
the B[] initialization: in .S files and in DES_bs_b.c.  The latter
should use the proper macros, so that the same source lines translate to
regular C assignments or to intrinsics.

I hope this helps.

Alexander

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.