Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Date: Sun, 26 Aug 2012 09:29:10 -0500
From: "jfoug" <jfoug@....net>
To: <john-dev@...ts.openwall.com>
Subject: Getting a stack warning (VC build), and some other warnings / problems.

Benchmarking: Apple DMG PBKDF2-HMAC-SHA-1 3DES / AES [32/32]... (0) :
Run-Time Check Failure #2 - Stack around the variable 'iv' was corrupted.(

0) : Run-Time Check Failure #2 - Stack around the variable 'iv' was
corrupted.(0) : Run-Time Check Failure #2 - Stack around the variable 'iv' w

as corrupted.(0) : Run-Time Check Failure #2 - Stack around the variable
'iv' was corrupted.(0) : Run-Time Check Failure #2 - Stack around the v

ariable 'iv' was corrupted.DONE

Raw:    62.5 c/s

 

This warning is ALMOST never spurious.   Something on the stack is getting
whacked.

 

Also getting a few warnings about unaligned salt (spurious most likely).

 

Under VC:

Benchmarking: GOST R 34.11-94 [32/32]... Warning: salt() returned misaligned
pointer

 

Under cygwin:

Benchmarking: DIGEST-MD5 C/R [32/32]... Warning: binary() returned
misaligned pointer

Benchmarking: EPiServer SID salted SHA-1 [32/32]... Warning: binary()
returned misaligned pointer

Benchmarking: PST custom CRC-32 [32/32]... Warning: salt() returned
misaligned pointer

 

 

Also, mag-jumbo and jumbo-bleeding are getting these problems (at least in
32 bit cygwin).  These tests pass fine on jumbo-6-fixes.  The missed hashes
are all very early on (such as 2 or 3 out of the first 4).

 

$ make test

cd ../test && perl jtrts.pl -q

----------------------------------------------------------------------------
---

- JtR-TestSuite (jtrts). Version 1.12.11, July 20, 2012.  By, Jim Fougeron &
others

- Testing:  John the Ripper password cracker, version
1.7.9.6-jumbo-6+bleeding [win32-cygwin-x86-sse2i]

----------------------------------------------------------------------------
----

form=hmac-sha1                    guesses: 1497 time: 0:00:00:00 : Expected
count(s) (1500)  [!!!FAILED!!!]

.pot CHK:hmac-sha1                guesses: 1494 time: 0:00:00:00 : Expected
count(s) (1500)  [!!!FAILED!!!]

form=hmacMD5                      guesses: 1498 time: 0:00:00:00 : Expected
count(s) (1500)  [!!!FAILED!!!]

.pot CHK:hmacMD5                  guesses: 1493 time: 0:00:00:00 : Expected
count(s) (1500)  [!!!FAILED!!!]

 

 

These issues are just listed here.  I have not had time to look into them.
The first error is only going to be 'seen' under a VC build (possibly seen
on some other build if it has full stack checking).  The 2nd group are
transient.  Some builds will show them, others will not.  I do wonder if
these should have been left as fatal, to force format authors to fix them.

 

The last (TS problem for hmac-sha1 and md5), are seen on both my cygwin and
VC builds.   Both of those builds are 32 bit, but likely this issues has
crept into the mag-jumbo+ builds.  It is NOT seen in the RC for j7.  If
other builds are working fine with the TS, then please follow up.

 

Jim.


Content of type "text/html" skipped

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.