From ba2746228a40ebeed53a187dfa54fc6154234481 Mon Sep 17 00:00:00 2001 From: Royce Williams Date: Tue, 16 Jun 2020 06:51:03 -0800 Subject: [PATCH] pre-release changes.txt grooming --- docs/changes.txt | 66 ++++++++++++++++++++++++------------------------ 1 file changed, 33 insertions(+), 33 deletions(-) diff --git a/docs/changes.txt b/docs/changes.txt index bd25f4746..1527da46a 100644 --- a/docs/changes.txt +++ b/docs/changes.txt @@ -4,13 +4,13 @@ ## Features ## -- Refactor hash-mode integration and replaced it with a fully modularized plugin interface -- Converted all existing hardwired hash-modes into hashcat plugins -- Added comprehensive plugin developer guide on how to add new/custom hash-modes to hashcat -- Refactor compute backend interface to allow adding compute API other than OpenCL +- Refactored hash-mode integration and replaced it with a fully modularized plugin interface +- Converted all existing hardwired hash-modes to hashcat plugins +- Added comprehensive plugin developer guide on adding new/custom hash-modes to hashcat +- Refactored compute backend interface to allow adding compute API other than OpenCL - Added CUDA as a new compute backend (enables hashcat to run on NVIDIA Jetson, IBM POWER9 w/ Nvidia V100, etc.) -- Support automatic use of all available GPU memory using CUDA backend -- Support automatic use of all available CPU cores for hash-mode specific hooks +- Support automatic use of all available GPU memory when using CUDA backend +- Support automatic use of all available CPU cores for hash-mode-specific hooks - Support on-the-fly loading of compressed wordlists in zip and gzip format - Support deflate decompression for the 7-Zip hash-mode using zlib hook - Added additional documentation on hashcat brain, slow-candidate interface and keyboard-layout mapping features @@ -79,32 +79,32 @@ - Fixed buffer overflow in build_plain() function - Fixed buffer overflow in mp_add_cs_buf() function -- Fixed calculation of brain-session ID, only the first hash of the hashset was taken into account -- Fixed cleanup of password candidate buffers on GPU set from autotune in case -n parameter was used +- Fixed calculation of brain-session ID - only the first hash of the hashset was taken into account +- Fixed cleanup of password candidate buffers on GPU as set from autotune when -n parameter was used - Fixed copy/paste error leading to invalid "Integer overflow detected in keyspace of mask" in attack-mode 6 and 7 - Fixed cracking multiple Office hashes (modes 9500, 9600) if hashes shared the same salt -- Fixed cracking of Blockchain, My Wallet (V1 and V2) hashes when testing decrypted data of unexpected format -- Fixed cracking of Cisco-PIX and Cisco-ASA MD5 passwords in mask-attack mode if mask > length 16 +- Fixed cracking of Blockchain, My Wallet (V1 and V2) hashes when testing decrypted data in unexpected format +- Fixed cracking of Cisco-PIX and Cisco-ASA MD5 passwords in mask-attack mode when mask > length 16 - Fixed cracking of DNSSEC (NSEC3) hashes by replacing all dots in the passwords with lengths - Fixed cracking of Electrum Wallet Salt-Type 2 hashes -- Fixed cracking of NetNTLMv1 passwords in mask-attack mode if mask > length 16 (optimized kernels only) -- Fixed cracking of RAR3-hp hashes with passwords longer than 28 bytes with pure kernel +- Fixed cracking of NetNTLMv1 passwords in mask-attack mode when mask > length 16 (optimized kernels only) +- Fixed cracking of RAR3-hp hashes with pure kernel for passwords longer than 28 bytes - Fixed cracking of VeraCrypt Streebog-512 hashes (CPU only) -- Fixed cracking raw Streebog-HMAC 256 and 512 hashes with password of length >= 64 -- Fixed cracking raw Whirlpool hashes cracking with password of length >= 32 +- Fixed cracking raw Streebog-HMAC 256 and 512 hashes for passwords of length >= 64 +- Fixed cracking raw Whirlpool hashes cracking for passwords of length >= 32 - Fixed incorrect progress-only result in a special race condition -- Fixed invalid call of mp_css_utf16le_expand()/mp_css_utf16be_expand() in a slow-candidate session -- Fixed invalid password truncation in attack-mode 1 if final password is longer than 32 character +- Fixed invalid call of mp_css_utf16le_expand()/mp_css_utf16be_expand() in slow-candidate sessions +- Fixed invalid password truncation in attack-mode 1 when the final password is longer than 32 characters - Fixed invalid use of --hex-wordlist if encoded wordlist string is larger than length 256 -- Fixed maximum password length limit which was announced as 256 but actually was 255 -- Fixed out-of-boundary read in pure kernel rule engine rule 'p' if parameter is set to 2 or higher +- Fixed maximum password length limit which was announced as 256 but was actually 255 +- Fixed out-of-boundary read in pure kernel rule engine rule 'p' when parameter was set to 2 or higher - Fixed out-of-boundary write to decrypted[] in DPAPI masterkey file v1 kernel -- Fixed output of IKE PSK (mode 5300 and 5400) hashes to have separators at right position -- Fixed output password of "e" rule in pure and cpu rule engine if separator character is also the first letter -- Fixed problem with the usage of the hexadecimal notations (\x00-\xff) within rules +- Fixed output of IKE PSK (mode 5300 and 5400) hashes to use separators in the correct position +- Fixed output password of "e" rule in pure and CPU rule engine when separator character is also the first letter +- Fixed problem with usage of hexadecimal notation (\x00-\xff) within rules - Fixed race condition in maskfile mode by using a dedicated flag for restore execution -- Fixed some memory leaks in case hashcat is shutting down due to some file error -- Fixed some memory leaks in case mask-files are used in optimized mode +- Fixed some memory leaks when hashcat is shutting down due to some file error +- Fixed some memory leaks when mask-files are used in optimized mode - Fixed --status-json to correctly escape certain characters in hashes - Fixed the 7-Zip parser to allow the entire supported range of encrypted and decrypted data lengths - Fixed the validation of the --brain-client-features command line argument (only values 1, 2 or 3 are allowed) @@ -114,18 +114,18 @@ ## - Bitcoin Wallet: Be more user friendly by allowing a larger data range for ckey and public_key -- Brain: Added new parameter --brain-server-timer to specify the seconds for the next scheduled backup +- Brain: Added new parameter --brain-server-timer to specify seconds between scheduled backups - Building: Fix for library compilation failure due to multiple defenition of sbob_xx64() -- Cracking bcrypt and Password Safe v2: Use a feedback from the compute API backend to dynamically find out optimal thread count -- Dictstat: On Windows, the st_ino attribute in the stat struct is not set which can lead to invalid cache hits. Added the filename to the database entry. +- Cracking bcrypt and Password Safe v2: Use feedback from the compute API backend to dynamically calculate optimal thread count +- Dictstat: On Windows, the st_ino attribute in the stat struct is not set, which can lead to invalid cache hits. Added the filename to the database entry. - Documents: Added README on how to build hashcat on Cygwin, MSYS2 and WSL - File handling: Print a truncation warning when an oversized line is detected - My Wallet: Added additional plaintext pattern used in newer versions - Office cracking: Support hash format with second block data for 40-bit oldoffice files (eliminates false positives) -- OpenCL Runtime: Added a warning if OpenCL runtime NEO, Beignet, POCL (v1.4 or older) or MESA is detected and skip associated devices (override with --force) +- OpenCL Runtime: Added a warning if OpenCL runtime NEO, Beignet, POCL (v1.4 or older) or MESA is detected, and skip associated devices (override with --force) - OpenCL Runtime: Allow the kernel to access post-48k shared memory region on CUDA. Requires both module and kernel preparation - OpenCL Runtime: Disable OpenCL kernel cache on Apple for Intel CPU (throws CL_BUILD_PROGRAM_FAILURE for no reason) -- OpenCL Runtime: Do not run shared- and constant-memory size checks if their memory type is of type global memory (typically CPU) +- OpenCL Runtime: Do not run shared- or constant-memory size checks if their memory type is of type global memory (typically CPU) - OpenCL Runtime: Improve ROCm detection and make sure to not confuse with recent AMDGPU drivers - OpenCL Runtime: Not using amd_bytealign (amd_bitalign is fine) on AMDGPU driver drastically reduces JiT segfaults - OpenCL Runtime: Unlocked maximum thread count for NVIDIA GPU @@ -134,12 +134,12 @@ - OpenCL Runtime: Workaround JiT compiler error on ROCm 2.3 driver if the 'inline' keyword is used in function declaration - OpenCL Runtime: Workaround memory allocation error on AMD driver on Windows leading to CL_MEM_OBJECT_ALLOCATION_FAILURE - OpenCL Runtime: Removed some workarounds by calling chdir() to specific folders on startup -- Outfile: Added new systematic to specify the outfile format, the new --outfile-format now also supports timestamps -- Startup Checks: Improved the pidfile check: Do not just check for existing PID but also check executable filename -- Startup Checks: Prevent the user to modify options which are overwritten automatically in benchmark mode +- Outfile: Added new system to specify the outfile format, the new --outfile-format now also supports timestamps +- Startup Checks: Improved the pidfile check: Do not just check for existing PID, but also check executable filename +- Startup Checks: Prevent the user from modifying options which are overwritten automatically in benchmark mode - Startup Screen: Add extra warning when using --force - Startup Screen: Add extra warning when using --keep-guessing -- Startup Screen: Provide an estimate of host memory requirements for the requested attack +- Startup Screen: Provide an estimate of host memory required for the requested attack - Status Screen: Added brain status for all compute devices - Status Screen: Added remaining counts and changed recovered count logic - Status Screen: Added --status-json flag for easier machine reading of hashcat status output @@ -153,7 +153,7 @@ ## Technical ## -- Backend Interface: Added new options --backend-ignore-cuda and --backend-ingore-opencl to ignore CUDA and/or OpenCL API from being used +- Backend Interface: Added new options --backend-ignore-cuda and --backend-ingore-opencl to prevent CUDA and/or OpenCL API from being used - Binary Distribution: Removed 32-bit binary executables - Building: On macOS, switch from ar to /usr/bin/ar to improve building compatibility - Building: Skipping Travis/Appveyor build for non-code changes