Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Date: Sun, 29 Jul 2012 19:26:14 +0530
From: Dhiru Kholia <dhiru.kholia@...il.com>
To: john-dev@...ts.openwall.com
Subject: help needed debugging Blowfish decryption

Hi,

I am trying to make a KDE KWallet cracker patch for JtR. However, I
have run into a problem regarding Blowfish decryption. If I use
OpenSSL or Python version of Blowfish, the results vary from the
KWallet's Blowfish implementation.

Debugging: Get source from http://dl.dropbox.com/u/1522424/kwallet-v0.tar

$ cd kwallet; make

$ ./1 openwall.kwl  # this uses OpenSSL
663cffa17127acd82e7cf947f4

$ ./2 openwall.kwl # this uses KWallet's implementation
cc7de3d66940abeb00000048 # this is the correct output!

$ python2 bfd.py
663cffa17127acd82e7cf947 # wrong result, same as OpenSSL version

Questions:

Can anyone spot the difference between KWallet's implementation and
OpenSSL's version. Is KWallet's implementation valid?

If I find no answers, I would have to port KWallet's C++ code to C :-(. Thanks!

-- 
Cheers,
Dhiru

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.