5
I Use This!
Activity Not Available

Commits : Listings

Analyzed over 1 year ago. based on code collected over 1 year ago.
Jun 12, 2015 — Jun 12, 2016
Commit Message Contributor Files Modified Lines Added Lines Removed Code Location Date
Dropped "#ifndef __CYGWIN__" / "#endif" from tty_init() as this works around a tty vs. fork problem reported by Jim: http://www.openwall.com/lists/john-dev/2016/02/28/2 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
1.8.0.7: 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
Reduced CRACKED_HASH_LOG from jumbo's 25 to 21 because of performance regression seen on smaller systems when --show'ing not so large files. 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
Use calloc() for db->cracked_hash (change first introduced in jumbo in September 2015). 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
Use larger hash tables for "--show" and for "unique" (changes first introduced in jumbo in September 2015). 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
Use PASSWORD_HASH_SHR 0 (larger hash tables) on 64-bit systems (change first introduced in jumbo in September 2015). 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
Prepare for larger hash table sizes (changes first introduced in jumbo in September 2015). 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
Optionally prefetch bitmap entries, hash table entries, and first pw->binary (and likely nearby fields and the actual binary) in each non-empty hash bucket (optimization first introduced in jumbo in September 2015). 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
Avoid unnecessary page copy-on-write in crk_remove_hash() when running with "--fork" (optimization first introduced in jumbo in September 2015). 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
Skip the actual processing in ldr_remove_marked() if there's nothing to remove (optimization first introduced in jumbo in September 2015). 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
Use a larger PASSWORD_HASH_SIZE_FOR_LDR by default. 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
Use larger john.pot and log file buffer sizes (1 MB instead of 32 KB each). 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
Skip some of the processing in ldr_split_line() when we have a bare hash on a line (optimizations first introduced in jumbo in September 2015). 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
Better description of "--save-memory". 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
Loader optimizations first introduced in jumbo in September 2015: 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
Optimizations first introduced in jumbo in September 2015: Special-case handling of repeated rule commands '$', '^', '[', ']', '{', '}'. Update the word in-place with memmove() in the 'D' command. 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
Replaced __ARM_NEON__ with __ARM_NEON per Frank Dittrich's suggestion: http://www.openwall.com/lists/john-dev/2016/01/18/1 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
Don't overflow signed ARCH_WORD on left shift, bug reported by Frank Dittrich: http://www.openwall.com/lists/john-dev/2015/12/18/1 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... almost 2 years ago
In the 'X' command, handle zero-length memorized strings correctly: avoid undesired integer promotion to let the 'm' variable value (last character position) overflow from 255 back to 0 (length). Thanks to magnum and JimF: http://www.openwall.com/lists/john-dev/2015/12/03/1 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... about 2 years ago
Document set_key() as potentially over-reading for up to PLAINTEXT_BUFFER_SIZE total, and provide fmt_null_key for such use. 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... about 2 years ago
Added atoi16l[] ("l" standing for lowercase only) and made use of it in AFS and dummy formats. 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... over 2 years ago
Clarified what value the "v" command sets the "l" variable to. 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... over 2 years ago
Clarified that "\p" refers to all preceding ranges, which is what makes it different from "\p0". 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... over 2 years ago
Characters 2 and 3 of tripcode passwords form a descrypt salt. Formally, 8-bit characters are invalid in descrypt salts, but our implementation, as well as most others, actually handles them in some way, and the 8th bit is not necessarily ignored there. Hence, we set FMT_8_BIT, even though the 8th bit is ignored for most character positions and its behavior for positions 2 and 3 is not precisely defined. This was found by Kai Zhao's testing: http://www.openwall.com/lists/john-dev/2015/08/14/58 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... over 2 years ago
Kai Zhao's extended JtR self-test in jumbo found that the bsdicrypt format wasn't always ignoring the 8th bit in characters contrary to it not having the FMT_8_BIT flag set. This commit corrects that, matching the behavior of (at least) the FreeSec implementation, and adds a test vector that would have detected the problem. 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... over 2 years ago
OpenSSL 1.0.0s 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... over 2 years ago
- Updated to 1.0.0s. - Dropped some patches in order to stay closer to upstream. - Regenerated all remaining patches due to the source code reformatting between 1.0.0q and 1.0.0r. - In the -env patch, added protection of OPENSSL_ia32cap and OPENSSL_sparcv9cap env vars, based on exhaustive re-review of the code for uses of getenv(). 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... over 2 years ago
BIND CVE-2015-5477 fix 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... over 2 years ago
Reviewed the patches in bind-9.3.6-25.P1.el5_11.3 and added those for CVE-2010-3613, CVE-2011-4313 (probably unneeded here, as per the discussion on oss-security back in 2011), CVE-2012-1667, CVE-2012-4244, CVE-2012-5166, CVE-2015-5477. Some other patches were not added for being DNSSEC-specific, or too invasive (most notably, the one for CVE-2014-8500, which hasn't been tested separately from the complex patch for RH bug 572848), or fixing too minor issues (CVE-2012-1033, which isn't even included in ISC's matrix). 603263c8fcc39d101718ff8a419b6517?&s=32&rating=pg&d=http%3a%2f%2fopenhub.net%2fanon32
Solar Designer
as solar
More... over 2 years ago