mirror of
https://github.com/hashcat/hashcat.git
synced 2024-12-24 15:38:11 +00:00
532 lines
11 KiB
Common Lisp
532 lines
11 KiB
Common Lisp
/**
|
|
* Author......: See docs/credits.txt
|
|
* License.....: MIT
|
|
*/
|
|
|
|
//too much register pressure
|
|
//#define NEW_SIMD_CODE
|
|
|
|
#ifdef KERNEL_STATIC
|
|
#include "inc_vendor.h"
|
|
#include "inc_types.h"
|
|
#include "inc_common.cl"
|
|
#include "inc_simd.cl"
|
|
#include "inc_hash_md5.cl"
|
|
#endif
|
|
|
|
typedef struct oldoffice01
|
|
{
|
|
u32 version;
|
|
u32 encryptedVerifier[4];
|
|
u32 encryptedVerifierHash[4];
|
|
u32 rc4key[2];
|
|
|
|
} oldoffice01_t;
|
|
|
|
typedef struct
|
|
{
|
|
u8 S[256];
|
|
|
|
u32 wtf_its_faster;
|
|
|
|
} RC4_KEY;
|
|
|
|
DECLSPEC void swap (LOCAL_AS RC4_KEY *rc4_key, const u8 i, const u8 j)
|
|
{
|
|
u8 tmp;
|
|
|
|
tmp = rc4_key->S[i];
|
|
rc4_key->S[i] = rc4_key->S[j];
|
|
rc4_key->S[j] = tmp;
|
|
}
|
|
|
|
DECLSPEC void rc4_init_16 (LOCAL_AS RC4_KEY *rc4_key, const u32 *data)
|
|
{
|
|
u32 v = 0x03020100;
|
|
u32 a = 0x04040404;
|
|
|
|
LOCAL_AS u32 *ptr = (LOCAL_AS u32 *) rc4_key->S;
|
|
|
|
#ifdef _unroll
|
|
#pragma unroll
|
|
#endif
|
|
for (u32 i = 0; i < 64; i++)
|
|
{
|
|
*ptr++ = v; v += a;
|
|
}
|
|
|
|
u32 j = 0;
|
|
|
|
for (u32 i = 0; i < 16; i++)
|
|
{
|
|
u32 idx = i * 16;
|
|
|
|
u32 v;
|
|
|
|
v = data[0];
|
|
|
|
j += rc4_key->S[idx] + (v >> 0); swap (rc4_key, idx, j); idx++;
|
|
j += rc4_key->S[idx] + (v >> 8); swap (rc4_key, idx, j); idx++;
|
|
j += rc4_key->S[idx] + (v >> 16); swap (rc4_key, idx, j); idx++;
|
|
j += rc4_key->S[idx] + (v >> 24); swap (rc4_key, idx, j); idx++;
|
|
|
|
v = data[1];
|
|
|
|
j += rc4_key->S[idx] + (v >> 0); swap (rc4_key, idx, j); idx++;
|
|
j += rc4_key->S[idx] + (v >> 8); swap (rc4_key, idx, j); idx++;
|
|
j += rc4_key->S[idx] + (v >> 16); swap (rc4_key, idx, j); idx++;
|
|
j += rc4_key->S[idx] + (v >> 24); swap (rc4_key, idx, j); idx++;
|
|
|
|
v = data[2];
|
|
|
|
j += rc4_key->S[idx] + (v >> 0); swap (rc4_key, idx, j); idx++;
|
|
j += rc4_key->S[idx] + (v >> 8); swap (rc4_key, idx, j); idx++;
|
|
j += rc4_key->S[idx] + (v >> 16); swap (rc4_key, idx, j); idx++;
|
|
j += rc4_key->S[idx] + (v >> 24); swap (rc4_key, idx, j); idx++;
|
|
|
|
v = data[3];
|
|
|
|
j += rc4_key->S[idx] + (v >> 0); swap (rc4_key, idx, j); idx++;
|
|
j += rc4_key->S[idx] + (v >> 8); swap (rc4_key, idx, j); idx++;
|
|
j += rc4_key->S[idx] + (v >> 16); swap (rc4_key, idx, j); idx++;
|
|
j += rc4_key->S[idx] + (v >> 24); swap (rc4_key, idx, j); idx++;
|
|
}
|
|
}
|
|
|
|
DECLSPEC u8 rc4_next_16 (LOCAL_AS RC4_KEY *rc4_key, u8 i, u8 j, const u32 *in, u32 *out)
|
|
{
|
|
#ifdef _unroll
|
|
#pragma unroll
|
|
#endif
|
|
for (u32 k = 0; k < 4; k++)
|
|
{
|
|
u32 xor4 = 0;
|
|
|
|
u8 idx;
|
|
|
|
i += 1;
|
|
j += rc4_key->S[i];
|
|
|
|
swap (rc4_key, i, j);
|
|
|
|
idx = rc4_key->S[i] + rc4_key->S[j];
|
|
|
|
xor4 |= rc4_key->S[idx] << 0;
|
|
|
|
i += 1;
|
|
j += rc4_key->S[i];
|
|
|
|
swap (rc4_key, i, j);
|
|
|
|
idx = rc4_key->S[i] + rc4_key->S[j];
|
|
|
|
xor4 |= rc4_key->S[idx] << 8;
|
|
|
|
i += 1;
|
|
j += rc4_key->S[i];
|
|
|
|
swap (rc4_key, i, j);
|
|
|
|
idx = rc4_key->S[i] + rc4_key->S[j];
|
|
|
|
xor4 |= rc4_key->S[idx] << 16;
|
|
|
|
i += 1;
|
|
j += rc4_key->S[i];
|
|
|
|
swap (rc4_key, i, j);
|
|
|
|
idx = rc4_key->S[i] + rc4_key->S[j];
|
|
|
|
xor4 |= rc4_key->S[idx] << 24;
|
|
|
|
out[k] = in[k] ^ xor4;
|
|
}
|
|
|
|
return j;
|
|
}
|
|
|
|
KERNEL_FQ void m09710_m04 (KERN_ATTR_ESALT (oldoffice01_t))
|
|
{
|
|
/**
|
|
* modifier
|
|
*/
|
|
|
|
const u64 lid = get_local_id (0);
|
|
|
|
/**
|
|
* base
|
|
*/
|
|
|
|
const u64 gid = get_global_id (0);
|
|
|
|
if (gid >= gid_max) return;
|
|
|
|
u32 pw_buf0[4];
|
|
u32 pw_buf1[4];
|
|
|
|
pw_buf0[0] = pws[gid].i[0];
|
|
pw_buf0[1] = pws[gid].i[1];
|
|
pw_buf0[2] = pws[gid].i[2];
|
|
pw_buf0[3] = pws[gid].i[3];
|
|
pw_buf1[0] = pws[gid].i[4];
|
|
pw_buf1[1] = pws[gid].i[5];
|
|
pw_buf1[2] = pws[gid].i[6];
|
|
pw_buf1[3] = pws[gid].i[7];
|
|
|
|
const u32 pw_l_len = pws[gid].pw_len & 63;
|
|
|
|
/**
|
|
* shared
|
|
*/
|
|
|
|
LOCAL_AS RC4_KEY rc4_keys[64];
|
|
|
|
LOCAL_AS RC4_KEY *rc4_key = &rc4_keys[lid];
|
|
|
|
/**
|
|
* esalt
|
|
*/
|
|
|
|
const u32 version = esalt_bufs[digests_offset].version;
|
|
|
|
u32 encryptedVerifier[4];
|
|
|
|
encryptedVerifier[0] = esalt_bufs[digests_offset].encryptedVerifier[0];
|
|
encryptedVerifier[1] = esalt_bufs[digests_offset].encryptedVerifier[1];
|
|
encryptedVerifier[2] = esalt_bufs[digests_offset].encryptedVerifier[2];
|
|
encryptedVerifier[3] = esalt_bufs[digests_offset].encryptedVerifier[3];
|
|
|
|
/**
|
|
* loop
|
|
*/
|
|
|
|
for (u32 il_pos = 0; il_pos < il_cnt; il_pos += VECT_SIZE)
|
|
{
|
|
const u32x pw_r_len = pwlenx_create_combt (combs_buf, il_pos) & 63;
|
|
|
|
const u32x pw_len = (pw_l_len + pw_r_len) & 63;
|
|
|
|
/**
|
|
* concat password candidate
|
|
*/
|
|
|
|
u32x wordl0[4] = { 0 };
|
|
u32x wordl1[4] = { 0 };
|
|
u32x wordl2[4] = { 0 };
|
|
u32x wordl3[4] = { 0 };
|
|
|
|
wordl0[0] = pw_buf0[0];
|
|
wordl0[1] = pw_buf0[1];
|
|
wordl0[2] = pw_buf0[2];
|
|
wordl0[3] = pw_buf0[3];
|
|
wordl1[0] = pw_buf1[0];
|
|
wordl1[1] = pw_buf1[1];
|
|
wordl1[2] = pw_buf1[2];
|
|
wordl1[3] = pw_buf1[3];
|
|
|
|
u32x wordr0[4] = { 0 };
|
|
u32x wordr1[4] = { 0 };
|
|
u32x wordr2[4] = { 0 };
|
|
u32x wordr3[4] = { 0 };
|
|
|
|
wordr0[0] = ix_create_combt (combs_buf, il_pos, 0);
|
|
wordr0[1] = ix_create_combt (combs_buf, il_pos, 1);
|
|
wordr0[2] = ix_create_combt (combs_buf, il_pos, 2);
|
|
wordr0[3] = ix_create_combt (combs_buf, il_pos, 3);
|
|
wordr1[0] = ix_create_combt (combs_buf, il_pos, 4);
|
|
wordr1[1] = ix_create_combt (combs_buf, il_pos, 5);
|
|
wordr1[2] = ix_create_combt (combs_buf, il_pos, 6);
|
|
wordr1[3] = ix_create_combt (combs_buf, il_pos, 7);
|
|
|
|
if (combs_mode == COMBINATOR_MODE_BASE_LEFT)
|
|
{
|
|
switch_buffer_by_offset_le_VV (wordr0, wordr1, wordr2, wordr3, pw_l_len);
|
|
}
|
|
else
|
|
{
|
|
switch_buffer_by_offset_le_VV (wordl0, wordl1, wordl2, wordl3, pw_r_len);
|
|
}
|
|
|
|
u32x w0[4];
|
|
u32x w1[4];
|
|
u32x w2[4];
|
|
u32x w3[4];
|
|
|
|
w0[0] = wordl0[0] | wordr0[0];
|
|
w0[1] = wordl0[1] | wordr0[1];
|
|
|
|
/**
|
|
* md5
|
|
*/
|
|
|
|
w0[0] = w0[0];
|
|
w0[1] = w0[1] & 0xff;
|
|
w0[2] = 0x8000;
|
|
w0[3] = 0;
|
|
w1[0] = 0;
|
|
w1[1] = 0;
|
|
w1[2] = 0;
|
|
w1[3] = 0;
|
|
w2[0] = 0;
|
|
w2[1] = 0;
|
|
w2[2] = 0;
|
|
w2[3] = 0;
|
|
w3[0] = 0;
|
|
w3[1] = 0;
|
|
w3[2] = 9 * 8;
|
|
w3[3] = 0;
|
|
|
|
u32 digest[4];
|
|
|
|
digest[0] = MD5M_A;
|
|
digest[1] = MD5M_B;
|
|
digest[2] = MD5M_C;
|
|
digest[3] = MD5M_D;
|
|
|
|
md5_transform (w0, w1, w2, w3, digest);
|
|
|
|
// now the RC4 part
|
|
|
|
rc4_init_16 (rc4_key, digest);
|
|
|
|
u32 out[4];
|
|
|
|
u8 j = rc4_next_16 (rc4_key, 0, 0, encryptedVerifier, out);
|
|
|
|
w0[0] = out[0];
|
|
w0[1] = out[1];
|
|
w0[2] = out[2];
|
|
w0[3] = out[3];
|
|
w1[0] = 0x80;
|
|
w1[1] = 0;
|
|
w1[2] = 0;
|
|
w1[3] = 0;
|
|
w2[0] = 0;
|
|
w2[1] = 0;
|
|
w2[2] = 0;
|
|
w2[3] = 0;
|
|
w3[0] = 0;
|
|
w3[1] = 0;
|
|
w3[2] = 16 * 8;
|
|
w3[3] = 0;
|
|
|
|
digest[0] = MD5M_A;
|
|
digest[1] = MD5M_B;
|
|
digest[2] = MD5M_C;
|
|
digest[3] = MD5M_D;
|
|
|
|
md5_transform (w0, w1, w2, w3, digest);
|
|
|
|
rc4_next_16 (rc4_key, 16, j, digest, out);
|
|
|
|
COMPARE_M_SIMD (out[0], out[1], out[2], out[3]);
|
|
}
|
|
}
|
|
|
|
KERNEL_FQ void m09710_m08 (KERN_ATTR_ESALT (oldoffice01_t))
|
|
{
|
|
}
|
|
|
|
KERNEL_FQ void m09710_m16 (KERN_ATTR_ESALT (oldoffice01_t))
|
|
{
|
|
}
|
|
|
|
KERNEL_FQ void m09710_s04 (KERN_ATTR_ESALT (oldoffice01_t))
|
|
{
|
|
/**
|
|
* modifier
|
|
*/
|
|
|
|
const u64 lid = get_local_id (0);
|
|
|
|
/**
|
|
* base
|
|
*/
|
|
|
|
const u64 gid = get_global_id (0);
|
|
|
|
if (gid >= gid_max) return;
|
|
|
|
u32 pw_buf0[4];
|
|
u32 pw_buf1[4];
|
|
|
|
pw_buf0[0] = pws[gid].i[0];
|
|
pw_buf0[1] = pws[gid].i[1];
|
|
pw_buf0[2] = pws[gid].i[2];
|
|
pw_buf0[3] = pws[gid].i[3];
|
|
pw_buf1[0] = pws[gid].i[4];
|
|
pw_buf1[1] = pws[gid].i[5];
|
|
pw_buf1[2] = pws[gid].i[6];
|
|
pw_buf1[3] = pws[gid].i[7];
|
|
|
|
const u32 pw_l_len = pws[gid].pw_len & 63;
|
|
|
|
/**
|
|
* shared
|
|
*/
|
|
|
|
LOCAL_AS RC4_KEY rc4_keys[64];
|
|
|
|
LOCAL_AS RC4_KEY *rc4_key = &rc4_keys[lid];
|
|
|
|
/**
|
|
* esalt
|
|
*/
|
|
|
|
const u32 version = esalt_bufs[digests_offset].version;
|
|
|
|
u32 encryptedVerifier[4];
|
|
|
|
encryptedVerifier[0] = esalt_bufs[digests_offset].encryptedVerifier[0];
|
|
encryptedVerifier[1] = esalt_bufs[digests_offset].encryptedVerifier[1];
|
|
encryptedVerifier[2] = esalt_bufs[digests_offset].encryptedVerifier[2];
|
|
encryptedVerifier[3] = esalt_bufs[digests_offset].encryptedVerifier[3];
|
|
|
|
/**
|
|
* digest
|
|
*/
|
|
|
|
const u32 search[4] =
|
|
{
|
|
digests_buf[digests_offset].digest_buf[DGST_R0],
|
|
digests_buf[digests_offset].digest_buf[DGST_R1],
|
|
digests_buf[digests_offset].digest_buf[DGST_R2],
|
|
digests_buf[digests_offset].digest_buf[DGST_R3]
|
|
};
|
|
|
|
/**
|
|
* loop
|
|
*/
|
|
|
|
for (u32 il_pos = 0; il_pos < il_cnt; il_pos += VECT_SIZE)
|
|
{
|
|
const u32x pw_r_len = pwlenx_create_combt (combs_buf, il_pos) & 63;
|
|
|
|
const u32x pw_len = (pw_l_len + pw_r_len) & 63;
|
|
|
|
/**
|
|
* concat password candidate
|
|
*/
|
|
|
|
u32x wordl0[4] = { 0 };
|
|
u32x wordl1[4] = { 0 };
|
|
u32x wordl2[4] = { 0 };
|
|
u32x wordl3[4] = { 0 };
|
|
|
|
wordl0[0] = pw_buf0[0];
|
|
wordl0[1] = pw_buf0[1];
|
|
wordl0[2] = pw_buf0[2];
|
|
wordl0[3] = pw_buf0[3];
|
|
wordl1[0] = pw_buf1[0];
|
|
wordl1[1] = pw_buf1[1];
|
|
wordl1[2] = pw_buf1[2];
|
|
wordl1[3] = pw_buf1[3];
|
|
|
|
u32x wordr0[4] = { 0 };
|
|
u32x wordr1[4] = { 0 };
|
|
u32x wordr2[4] = { 0 };
|
|
u32x wordr3[4] = { 0 };
|
|
|
|
wordr0[0] = ix_create_combt (combs_buf, il_pos, 0);
|
|
wordr0[1] = ix_create_combt (combs_buf, il_pos, 1);
|
|
wordr0[2] = ix_create_combt (combs_buf, il_pos, 2);
|
|
wordr0[3] = ix_create_combt (combs_buf, il_pos, 3);
|
|
wordr1[0] = ix_create_combt (combs_buf, il_pos, 4);
|
|
wordr1[1] = ix_create_combt (combs_buf, il_pos, 5);
|
|
wordr1[2] = ix_create_combt (combs_buf, il_pos, 6);
|
|
wordr1[3] = ix_create_combt (combs_buf, il_pos, 7);
|
|
|
|
if (combs_mode == COMBINATOR_MODE_BASE_LEFT)
|
|
{
|
|
switch_buffer_by_offset_le_VV (wordr0, wordr1, wordr2, wordr3, pw_l_len);
|
|
}
|
|
else
|
|
{
|
|
switch_buffer_by_offset_le_VV (wordl0, wordl1, wordl2, wordl3, pw_r_len);
|
|
}
|
|
|
|
u32x w0[4];
|
|
u32x w1[4];
|
|
u32x w2[4];
|
|
u32x w3[4];
|
|
|
|
w0[0] = wordl0[0] | wordr0[0];
|
|
w0[1] = wordl0[1] | wordr0[1];
|
|
|
|
/**
|
|
* md5
|
|
*/
|
|
|
|
w0[0] = w0[0];
|
|
w0[1] = w0[1] & 0xff;
|
|
w0[2] = 0x8000;
|
|
w0[3] = 0;
|
|
w1[0] = 0;
|
|
w1[1] = 0;
|
|
w1[2] = 0;
|
|
w1[3] = 0;
|
|
w2[0] = 0;
|
|
w2[1] = 0;
|
|
w2[2] = 0;
|
|
w2[3] = 0;
|
|
w3[0] = 0;
|
|
w3[1] = 0;
|
|
w3[2] = 9 * 8;
|
|
w3[3] = 0;
|
|
|
|
u32 digest[4];
|
|
|
|
digest[0] = MD5M_A;
|
|
digest[1] = MD5M_B;
|
|
digest[2] = MD5M_C;
|
|
digest[3] = MD5M_D;
|
|
|
|
md5_transform (w0, w1, w2, w3, digest);
|
|
|
|
// now the RC4 part
|
|
|
|
rc4_init_16 (rc4_key, digest);
|
|
|
|
u32 out[4];
|
|
|
|
u8 j = rc4_next_16 (rc4_key, 0, 0, encryptedVerifier, out);
|
|
|
|
w0[0] = out[0];
|
|
w0[1] = out[1];
|
|
w0[2] = out[2];
|
|
w0[3] = out[3];
|
|
w1[0] = 0x80;
|
|
w1[1] = 0;
|
|
w1[2] = 0;
|
|
w1[3] = 0;
|
|
w2[0] = 0;
|
|
w2[1] = 0;
|
|
w2[2] = 0;
|
|
w2[3] = 0;
|
|
w3[0] = 0;
|
|
w3[1] = 0;
|
|
w3[2] = 16 * 8;
|
|
w3[3] = 0;
|
|
|
|
digest[0] = MD5M_A;
|
|
digest[1] = MD5M_B;
|
|
digest[2] = MD5M_C;
|
|
digest[3] = MD5M_D;
|
|
|
|
md5_transform (w0, w1, w2, w3, digest);
|
|
|
|
rc4_next_16 (rc4_key, 16, j, digest, out);
|
|
|
|
COMPARE_S_SIMD (out[0], out[1], out[2], out[3]);
|
|
}
|
|
}
|
|
|
|
KERNEL_FQ void m09710_s08 (KERN_ATTR_ESALT (oldoffice01_t))
|
|
{
|
|
}
|
|
|
|
KERNEL_FQ void m09710_s16 (KERN_ATTR_ESALT (oldoffice01_t))
|
|
{
|
|
}
|