asciilifeform: ( i.e. transformator for 256b K that produces K1,...Kn that go to equiv. end states )

asciilifeform: at least until i actually do it and it spews forth the pill eqn.

asciilifeform: hey, it remains theoretically possible that asciilifeform somehow is mistaken and the gauss-reduced matrix has unique solution...

asciilifeform: there's a quite tall pile of pointlessly murdered trees behind ' asciilifeform never brought us a nice symm cipher ! '

asciilifeform: ( reduces to halting problem )

asciilifeform: the fundamental problem with 'i'ma use turing-complete automaton as hash!' is that ~specifically~ the aspect that makes it seem appealing to begin with, is the very same thing that kills you, it is impossible to prove non-cyclicity

asciilifeform: ( in general asciilifeform eschews wasting folx's time with questionable algos for which there is no approach to fix )

asciilifeform: i had an automata thing, but found that i could not in good conscience play it for the prize, i never found any approach to a proof that it dun have ( as mircea_popescu called ) 'kek state'

asciilifeform: ( the prng stuff is even easier to demolish, imho it's not worth anyffing )

asciilifeform: mircea_popescu: the bigger saddity, is that i dun have anything to offer to plug-in replace 'serpent', nao just as in '16 when mircea_popescu was offering prizes

asciilifeform: sad, but better to learn this nao than after gluing it in eulora, or baking asics, etc

asciilifeform: ( and dollars to doughnuts , can be narrowed substantially using what leaks out into ciphertext, but that's ~entirely~ separate bag of lulz )

asciilifeform: loox like finding answer might add up to costing some penies ( or not, lessee, if dulap dun suffice, i'ma lease some cycles on lulazon cluster )

asciilifeform: i still dun know what the actual keyspace is, just yet

asciilifeform: ( by a certain mugurel.andreica<at>cs.pub.ro . wonder if spyked et al know the fella ) ☟︎

asciilifeform: meanwhile, in detritus from asciilifeform's torture room, 'În această lucrare se prezintă o metodă eficientă de implementare a eliminării Gaussiene pentru o matrice de dimensiuni n·m (m≥n), folosind o arhitectură SIMD ce constă dintr-o matrice de n·m procesoare.' (U.P.B. Sci. Bull., Series C, Vol. 71, Iss. 4, 2009)

asciilifeform: 'First of all you can’t get power to charge your laptop. Anywhere. Electrical outlets in customer areas: it’s just not done here' << sounds like the ultimate trial for us x60 folk ☟︎

asciilifeform: hm trinque is Mocky currently in the deedbot rotation ? i missed his last 2 posts apparently

asciilifeform: so for bit 0 of w, h21 ^ f21 ^ d21 ^ a21 ^ 1 == w0, and if you want that w0 they gotta sum to same thing mod-2 , no matter what. but for the ~last~ bit of W, you have 79 whole slots ! that still only gotta add up to same thing mod-2 ! many more variants .

asciilifeform: btw if it aint obvious -- the denser the horiz. path across the pic, the ~easier~ it is to find alt-solutions to that line of the expansion (i.e. rearrangements of the input key that yield the same mod-2 summation when multiplied with that row of the matrix )

asciilifeform: it's funny, if only to me -- if author wanted to make the keyspace == 2**256, all he would have had to do is to drop a copy of the 256bit key into the expansion. but i can already picture the fatlogic, 'oh noez, that wouldn't do, will leak key via plaintext cuz not whitened'

asciilifeform: i'm reminded of the chessboards they used to print in sov newspapers. after a good rain.

asciilifeform: ( no prizes for guessing why holyshit.png doesn't appear in the orig 'serpent' paper, or the mountain of 'analysis' ... ) ☟︎

asciilifeform: these , in a hash output, is.. i lack the words

asciilifeform: but simply from the pic you can already see, with naked eye , 'floor tiles'

asciilifeform: i expect the gaussation itself could take coupla wks on dulap, once the req'd pieces are cut and glued

asciilifeform: for example, 32 lines of the bitmap represent the first 32bit word of the 528-byte inflatolade.

asciilifeform: last col. is the constant term of the row.

asciilifeform: ^ prolly can guess what this is.

asciilifeform: ( iirc symmetric keys are supplied, per protocol, by client, so not an issue there ) ☟︎

asciilifeform: you will want a way to make use of 2+ fg (iirc you already have 2 on ea. machine)

asciilifeform: will note, tho, re fg timeouts -- the most likely waiting-on-fg scenario is starvation, rather than outright hangage , thing shits out 7kB/s per spec, 8 on a good day; i expect it will be the limiting reactant re how many rsa msgs / sec can be produced

asciilifeform: in very other noose, found another http://btcbase.org/log/2018-10-30#1867757 , 27.76.232.151 . making for 4 known shitslingers , of this type , on btc net ☝︎

asciilifeform: fwiw i've witnessed the death of usb ports per se.

asciilifeform: granted i've yet to witness a dead fg. but i dun have a written guarantee from the gods, that they can never die, no

asciilifeform: diana_coman: ideally you want to at least know why halted.

asciilifeform: diana_coman: metoo, i had to breathe ada for yrs before working all the c sad out of my follicles

asciilifeform: otherwise the result of a dead/unplugged FG is simply halted box

asciilifeform: diana_coman: rng.adb / Get_Octets -- you'll prolly want a timeout there

asciilifeform: ( c 'unions' are sad cuz c dun give you any portable knob for cementing where the bits actually go; ada's records are sane, you can specify the exact location of erry element, paddings, endianisms, bit orders )

asciilifeform: but pointing out for the l0gz, that there's a 'ecologically clean' variant for those.

asciilifeform: ( not necessarily worth sweating over given as you already wrote it , but for next time )

asciilifeform: diana_coman: re: ToOctets / ToBitstream / etc -- do you know that ada has 'variant records' (similar to ye olde C 'unions' , but with typechecking ) , you could in principle use'em and avoid the conversions, for slightly cleaner proggy

asciilifeform: ( keep in mind that it will give you all the ones that your ~particular~ gnat supports; but nao that we have the makings of a cemented gnat, this is less of a concern )

asciilifeform: but i dun recall from my head; it is in the logs somewhere

asciilifeform: diana_coman: there's a gnat flag that actually gives you all permissible constraints, whether you knew about them or not, that can be then thrown straight into restrict.adc

asciilifeform: that way it is possible to write a piece under 1 set of constraints, and then permit it to run in a larger proggy with looser ones

asciilifeform: it is one of the reasons why i section my routines into staticlinkable libs , rather than 'take this and cut&paste'

asciilifeform: there is no particular reason why ~erry~ proggy has to have the same pragma fascism as ffa ( and in fact i've written several that cannot function under that set of constraints, e.g. the mmap thing requires System.Address )

asciilifeform: implicit conditionals aint evil per se , tho ; i banned them in ffa specifically as they get in the way of constanttimeism, is all ☟︎

asciilifeform: ( the only other operation i know to do this, is array concatenation ; hence my earlier suspicion )

asciilifeform: 'No Implicit Conditionals' bans this, with the result of banning such forms

asciilifeform: and inserts the check

asciilifeform: ada treats any statement that divides by anything other than an immediate constant ( incl. / or mod by a named constant ) as potentially div0-barfing

asciilifeform: and you dun have to hardcoad it; simply replace Output(X, Y) := Rotate_Left(Input(X,Y), ( (T+1)*(T+2)/2) mod Z_Length); with Output(X, Y) := Rotate_Left(Input(X,Y), ( (T+1)*(T+2)/2) and (2**Keccak_L - 1));

asciilifeform: loox like it's a naked modular type right nao

asciilifeform: (at least on my old gnat, this worked reliably)

asciilifeform: if it can't, you can narrow the type and be rid of the implicit 'is-div0?' check ☟︎

asciilifeform: ahahaha it's the implicit div0 check

asciilifeform: ( using the ada ampersand notation )

asciilifeform: cuz that's typically why

asciilifeform: 'The "No Implicit Conditionals" restriction for the whole smg comms had to be discarded because of the Keccak...' << this is odd; is there an array concatenation in keccak ?

asciilifeform: ( it goes straight to the /tmp files horrors )

asciilifeform: diana_coman: the caveat re my method, is that i do not presently know how to ~portably~ 'lock' the thing ( so >1 process dun eat from it )