Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Sun, 26 Aug 2012 09:29:10 -0500
From: "jfoug" <jfoug@....net>
To: <john-dev@...ts.openwall.com>
Subject: Getting a stack warning (VC build), and some other warnings / problems.

Benchmarking: Apple DMG PBKDF2-HMAC-SHA-1 3DES / AES [32/32]... (0) :
Run-Time Check Failure #2 - Stack around the variable 'iv' was corrupted.(

0) : Run-Time Check Failure #2 - Stack around the variable 'iv' was
corrupted.(0) : Run-Time Check Failure #2 - Stack around the variable 'iv' w

as corrupted.(0) : Run-Time Check Failure #2 - Stack around the variable
'iv' was corrupted.(0) : Run-Time Check Failure #2 - Stack around the v

ariable 'iv' was corrupted.DONE

Raw:    62.5 c/s

 

This warning is ALMOST never spurious.   Something on the stack is getting
whacked.

 

Also getting a few warnings about unaligned salt (spurious most likely).

 

Under VC:

Benchmarking: GOST R 34.11-94 [32/32]... Warning: salt() returned misaligned
pointer

 

Under cygwin:

Benchmarking: DIGEST-MD5 C/R [32/32]... Warning: binary() returned
misaligned pointer

Benchmarking: EPiServer SID salted SHA-1 [32/32]... Warning: binary()
returned misaligned pointer

Benchmarking: PST custom CRC-32 [32/32]... Warning: salt() returned
misaligned pointer

 

 

Also, mag-jumbo and jumbo-bleeding are getting these problems (at least in
32 bit cygwin).  These tests pass fine on jumbo-6-fixes.  The missed hashes
are all very early on (such as 2 or 3 out of the first 4).

 

$ make test

cd ../test && perl jtrts.pl -q

----------------------------------------------------------------------------
---

- JtR-TestSuite (jtrts). Version 1.12.11, July 20, 2012.  By, Jim Fougeron &
others

- Testing:  John the Ripper password cracker, version
1.7.9.6-jumbo-6+bleeding [win32-cygwin-x86-sse2i]

----------------------------------------------------------------------------
----

form=hmac-sha1                    guesses: 1497 time: 0:00:00:00 : Expected
count(s) (1500)  [!!!FAILED!!!]

.pot CHK:hmac-sha1                guesses: 1494 time: 0:00:00:00 : Expected
count(s) (1500)  [!!!FAILED!!!]

form=hmacMD5                      guesses: 1498 time: 0:00:00:00 : Expected
count(s) (1500)  [!!!FAILED!!!]

.pot CHK:hmacMD5                  guesses: 1493 time: 0:00:00:00 : Expected
count(s) (1500)  [!!!FAILED!!!]

 

 

These issues are just listed here.  I have not had time to look into them.
The first error is only going to be 'seen' under a VC build (possibly seen
on some other build if it has full stack checking).  The 2nd group are
transient.  Some builds will show them, others will not.  I do wonder if
these should have been left as fatal, to force format authors to fix them.

 

The last (TS problem for hmac-sha1 and md5), are seen on both my cygwin and
VC builds.   Both of those builds are 32 bit, but likely this issues has
crept into the mag-jumbo+ builds.  It is NOT seen in the RC for j7.  If
other builds are working fine with the TS, then please follow up.

 

Jim.


Content of type "text/html" skipped

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ