Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Sat, 9 Feb 2013 04:45:50 +0400
From: Solar Designer <solar@...nwall.com>
To: john-dev@...ts.openwall.com
Subject: sha512crypt formats matching salt detection bug

magnum, all -

for n in {1..999}; do echo "\$6\$rounds=$n\$aXayEJGxA02Bl4d2\$TWfWx34oD.UjrS/Qtco6Ij2XPY1CPYJfdk3CcxEjnMZvQw2p5obHYH7SI2wxcJgaS9.S9Hz948R.GdGwsvR..."; done > pw999

JtR loads the resulting file as having no different salts, whereas it
should be 999 different because of the different iteration counts.
(It might be possible to optimize for this special case, but I am
talking about correctness only now.)

Both sha512crypt and sha512crypt-opencl are affected.  However,
sha512crypt-cuda correctly loads this as 999 different salts.

Alexander

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ