Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Message-ID: <dce08e71ccbc035c99ef533887e9bc07@smtp.hushmail.com>
Date: Wed, 19 Sep 2012 01:11:54 +0200
From: magnum <john.magnum@...hmail.com>
To: john-dev@...ts.openwall.com
Subject: hmac-md5/sha1 in magnum-jumbo (was: 1.7.9-jumbo-7)

On 18 Sep, 2012, at 21:30 , jfoug <jfoug@....net> wrote:
> I have only seen this issue in mag-jumbo or bleeding, not in fixes.  (Win32
> builds).

After fixing the SHA_BUF_SIZ bug in the -fixes branch (which made about half of the 1500 fail) and merging that to magnum-jumbo, I now probably see the same as you in the latter branch:


form=hmac-sha1                    guesses: 1497 time: 0:00:00:00 : Expected count(s) (1500)  [!!!FAILED!!!]
.pot CHK:hmac-sha1                guesses: 1493 time: 0:00:00:00 : Expected count(s) (1500)  [!!!FAILED!!!]

form=hmacMD5                      guesses: 1498 time: 0:00:00:00 : Expected count(s) (1500)  [!!!FAILED!!!]
.pot CHK:hmacMD5                  guesses: 1493 time: 0:00:00:00 : Expected count(s) (1500)  [!!!FAILED!!!]


This happened when I introduced clear_keys() in the hmac SSE2 formats. We could just revert that but I'm very curious why that fails. It might be worth trying to nail it.

magnum


>> From: magnum [mailto:john.magnum@...hmail.com]
>> 
>> On 18 Sep, 2012, at 20:28 , magnum <john.magnum@...hmail.com> wrote:
>>> There is a regression problem in hmac-sha1 only found by Test Suite. I
>> will revert the clear_keys() patch (I thought it was to magnum-jumbo
>> only).
>> 
>> Very odd. I only get the problem on OSX, not on Linux (both are 64-bit).
>> The clear_keys() is not in -fixes, there are only very minor changes and
>> an added split() that unifies case. I have no idea what goes wrong!
> 
> 

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.