2 * Authors.....: Jens Steube <jens.steube@gmail.com>
3 * Gabriele Gristina <matrix@hashcat.net>
10 #include "include/constants.h"
11 #include "include/kernel_vendor.h"
18 #include "include/kernel_functions.c"
19 #include "OpenCL/types_ocl.c"
20 #include "OpenCL/common.c"
21 #include "OpenCL/simd.c"
31 static void swap (__local RC4_KEY *rc4_key, const u8 i, const u8 j)
36 rc4_key->S[i] = rc4_key->S[j];
40 static void rc4_init_16 (__local RC4_KEY *rc4_key, const u32 data[4])
45 __local u32 *ptr = (__local u32 *) rc4_key->S;
48 for (u32 i = 0; i < 64; i++)
55 for (u32 i = 0; i < 16; i++)
63 j += rc4_key->S[idx] + (v >> 0); swap (rc4_key, idx, j); idx++;
64 j += rc4_key->S[idx] + (v >> 8); swap (rc4_key, idx, j); idx++;
65 j += rc4_key->S[idx] + (v >> 16); swap (rc4_key, idx, j); idx++;
66 j += rc4_key->S[idx] + (v >> 24); swap (rc4_key, idx, j); idx++;
70 j += rc4_key->S[idx] + (v >> 0); swap (rc4_key, idx, j); idx++;
71 j += rc4_key->S[idx] + (v >> 8); swap (rc4_key, idx, j); idx++;
72 j += rc4_key->S[idx] + (v >> 16); swap (rc4_key, idx, j); idx++;
73 j += rc4_key->S[idx] + (v >> 24); swap (rc4_key, idx, j); idx++;
77 j += rc4_key->S[idx] + (v >> 0); swap (rc4_key, idx, j); idx++;
78 j += rc4_key->S[idx] + (v >> 8); swap (rc4_key, idx, j); idx++;
79 j += rc4_key->S[idx] + (v >> 16); swap (rc4_key, idx, j); idx++;
80 j += rc4_key->S[idx] + (v >> 24); swap (rc4_key, idx, j); idx++;
84 j += rc4_key->S[idx] + (v >> 0); swap (rc4_key, idx, j); idx++;
85 j += rc4_key->S[idx] + (v >> 8); swap (rc4_key, idx, j); idx++;
86 j += rc4_key->S[idx] + (v >> 16); swap (rc4_key, idx, j); idx++;
87 j += rc4_key->S[idx] + (v >> 24); swap (rc4_key, idx, j); idx++;
91 static u8 rc4_next_16 (__local RC4_KEY *rc4_key, u8 i, u8 j, const u32 in[4], u32 out[4])
94 for (u32 k = 0; k < 4; k++)
103 swap (rc4_key, i, j);
105 idx = rc4_key->S[i] + rc4_key->S[j];
107 xor4 |= rc4_key->S[idx] << 0;
112 swap (rc4_key, i, j);
114 idx = rc4_key->S[i] + rc4_key->S[j];
116 xor4 |= rc4_key->S[idx] << 8;
121 swap (rc4_key, i, j);
123 idx = rc4_key->S[i] + rc4_key->S[j];
125 xor4 |= rc4_key->S[idx] << 16;
130 swap (rc4_key, i, j);
132 idx = rc4_key->S[i] + rc4_key->S[j];
134 xor4 |= rc4_key->S[idx] << 24;
136 out[k] = in[k] ^ xor4;
142 static void md5_transform (const u32 w0[4], const u32 w1[4], const u32 w2[4], const u32 w3[4], u32 digest[4])
166 MD5_STEP (MD5_Fo, a, b, c, d, w0_t, MD5C00, MD5S00);
167 MD5_STEP (MD5_Fo, d, a, b, c, w1_t, MD5C01, MD5S01);
168 MD5_STEP (MD5_Fo, c, d, a, b, w2_t, MD5C02, MD5S02);
169 MD5_STEP (MD5_Fo, b, c, d, a, w3_t, MD5C03, MD5S03);
170 MD5_STEP (MD5_Fo, a, b, c, d, w4_t, MD5C04, MD5S00);
171 MD5_STEP (MD5_Fo, d, a, b, c, w5_t, MD5C05, MD5S01);
172 MD5_STEP (MD5_Fo, c, d, a, b, w6_t, MD5C06, MD5S02);
173 MD5_STEP (MD5_Fo, b, c, d, a, w7_t, MD5C07, MD5S03);
174 MD5_STEP (MD5_Fo, a, b, c, d, w8_t, MD5C08, MD5S00);
175 MD5_STEP (MD5_Fo, d, a, b, c, w9_t, MD5C09, MD5S01);
176 MD5_STEP (MD5_Fo, c, d, a, b, wa_t, MD5C0a, MD5S02);
177 MD5_STEP (MD5_Fo, b, c, d, a, wb_t, MD5C0b, MD5S03);
178 MD5_STEP (MD5_Fo, a, b, c, d, wc_t, MD5C0c, MD5S00);
179 MD5_STEP (MD5_Fo, d, a, b, c, wd_t, MD5C0d, MD5S01);
180 MD5_STEP (MD5_Fo, c, d, a, b, we_t, MD5C0e, MD5S02);
181 MD5_STEP (MD5_Fo, b, c, d, a, wf_t, MD5C0f, MD5S03);
183 MD5_STEP (MD5_Go, a, b, c, d, w1_t, MD5C10, MD5S10);
184 MD5_STEP (MD5_Go, d, a, b, c, w6_t, MD5C11, MD5S11);
185 MD5_STEP (MD5_Go, c, d, a, b, wb_t, MD5C12, MD5S12);
186 MD5_STEP (MD5_Go, b, c, d, a, w0_t, MD5C13, MD5S13);
187 MD5_STEP (MD5_Go, a, b, c, d, w5_t, MD5C14, MD5S10);
188 MD5_STEP (MD5_Go, d, a, b, c, wa_t, MD5C15, MD5S11);
189 MD5_STEP (MD5_Go, c, d, a, b, wf_t, MD5C16, MD5S12);
190 MD5_STEP (MD5_Go, b, c, d, a, w4_t, MD5C17, MD5S13);
191 MD5_STEP (MD5_Go, a, b, c, d, w9_t, MD5C18, MD5S10);
192 MD5_STEP (MD5_Go, d, a, b, c, we_t, MD5C19, MD5S11);
193 MD5_STEP (MD5_Go, c, d, a, b, w3_t, MD5C1a, MD5S12);
194 MD5_STEP (MD5_Go, b, c, d, a, w8_t, MD5C1b, MD5S13);
195 MD5_STEP (MD5_Go, a, b, c, d, wd_t, MD5C1c, MD5S10);
196 MD5_STEP (MD5_Go, d, a, b, c, w2_t, MD5C1d, MD5S11);
197 MD5_STEP (MD5_Go, c, d, a, b, w7_t, MD5C1e, MD5S12);
198 MD5_STEP (MD5_Go, b, c, d, a, wc_t, MD5C1f, MD5S13);
200 MD5_STEP (MD5_H , a, b, c, d, w5_t, MD5C20, MD5S20);
201 MD5_STEP (MD5_H , d, a, b, c, w8_t, MD5C21, MD5S21);
202 MD5_STEP (MD5_H , c, d, a, b, wb_t, MD5C22, MD5S22);
203 MD5_STEP (MD5_H , b, c, d, a, we_t, MD5C23, MD5S23);
204 MD5_STEP (MD5_H , a, b, c, d, w1_t, MD5C24, MD5S20);
205 MD5_STEP (MD5_H , d, a, b, c, w4_t, MD5C25, MD5S21);
206 MD5_STEP (MD5_H , c, d, a, b, w7_t, MD5C26, MD5S22);
207 MD5_STEP (MD5_H , b, c, d, a, wa_t, MD5C27, MD5S23);
208 MD5_STEP (MD5_H , a, b, c, d, wd_t, MD5C28, MD5S20);
209 MD5_STEP (MD5_H , d, a, b, c, w0_t, MD5C29, MD5S21);
210 MD5_STEP (MD5_H , c, d, a, b, w3_t, MD5C2a, MD5S22);
211 MD5_STEP (MD5_H , b, c, d, a, w6_t, MD5C2b, MD5S23);
212 MD5_STEP (MD5_H , a, b, c, d, w9_t, MD5C2c, MD5S20);
213 MD5_STEP (MD5_H , d, a, b, c, wc_t, MD5C2d, MD5S21);
214 MD5_STEP (MD5_H , c, d, a, b, wf_t, MD5C2e, MD5S22);
215 MD5_STEP (MD5_H , b, c, d, a, w2_t, MD5C2f, MD5S23);
217 MD5_STEP (MD5_I , a, b, c, d, w0_t, MD5C30, MD5S30);
218 MD5_STEP (MD5_I , d, a, b, c, w7_t, MD5C31, MD5S31);
219 MD5_STEP (MD5_I , c, d, a, b, we_t, MD5C32, MD5S32);
220 MD5_STEP (MD5_I , b, c, d, a, w5_t, MD5C33, MD5S33);
221 MD5_STEP (MD5_I , a, b, c, d, wc_t, MD5C34, MD5S30);
222 MD5_STEP (MD5_I , d, a, b, c, w3_t, MD5C35, MD5S31);
223 MD5_STEP (MD5_I , c, d, a, b, wa_t, MD5C36, MD5S32);
224 MD5_STEP (MD5_I , b, c, d, a, w1_t, MD5C37, MD5S33);
225 MD5_STEP (MD5_I , a, b, c, d, w8_t, MD5C38, MD5S30);
226 MD5_STEP (MD5_I , d, a, b, c, wf_t, MD5C39, MD5S31);
227 MD5_STEP (MD5_I , c, d, a, b, w6_t, MD5C3a, MD5S32);
228 MD5_STEP (MD5_I , b, c, d, a, wd_t, MD5C3b, MD5S33);
229 MD5_STEP (MD5_I , a, b, c, d, w4_t, MD5C3c, MD5S30);
230 MD5_STEP (MD5_I , d, a, b, c, wb_t, MD5C3d, MD5S31);
231 MD5_STEP (MD5_I , c, d, a, b, w2_t, MD5C3e, MD5S32);
232 MD5_STEP (MD5_I , b, c, d, a, w9_t, MD5C3f, MD5S33);
240 static void m09710m (__local RC4_KEY *rc4_keys, u32 w0[4], u32 w1[4], u32 w2[4], u32 w3[4], const u32 pw_len, __global pw_t *pws, __global kernel_rule_t *rules_buf, __global comb_t *combs_buf, __global bf_t *bfs_buf, __global void *tmps, __global void *hooks, __global u32 *bitmaps_buf_s1_a, __global u32 *bitmaps_buf_s1_b, __global u32 *bitmaps_buf_s1_c, __global u32 *bitmaps_buf_s1_d, __global u32 *bitmaps_buf_s2_a, __global u32 *bitmaps_buf_s2_b, __global u32 *bitmaps_buf_s2_c, __global u32 *bitmaps_buf_s2_d, __global plain_t *plains_buf, __global digest_t *digests_buf, __global u32 *hashes_shown, __global salt_t *salt_bufs, __global oldoffice01_t *oldoffice01_bufs, __global u32 *d_return_buf, __global u32 *d_scryptV_buf, const u32 bitmap_mask, const u32 bitmap_shift1, const u32 bitmap_shift2, const u32 salt_pos, const u32 loop_pos, const u32 loop_cnt, const u32 il_cnt, const u32 digests_cnt, const u32 digests_offset)
246 const u32 gid = get_global_id (0);
247 const u32 lid = get_local_id (0);
249 __local RC4_KEY *rc4_key = &rc4_keys[lid];
255 const u32 version = oldoffice01_bufs[salt_pos].version;
257 u32 encryptedVerifier[4];
259 encryptedVerifier[0] = oldoffice01_bufs[salt_pos].encryptedVerifier[0];
260 encryptedVerifier[1] = oldoffice01_bufs[salt_pos].encryptedVerifier[1];
261 encryptedVerifier[2] = oldoffice01_bufs[salt_pos].encryptedVerifier[2];
262 encryptedVerifier[3] = oldoffice01_bufs[salt_pos].encryptedVerifier[3];
270 for (u32 il_pos = 0; il_pos < il_cnt; il_pos += VECT_SIZE)
272 const u32 w0r = ix_create_bft (bfs_buf, il_pos);
274 const u32 w0lr = w0l | w0r;
276 // first md5 to generate RC4 128 bit key
284 w0_t[1] = w0[1] & 0xff;
307 md5_transform (w0_t, w1_t, w2_t, w3_t, digest);
318 rc4_init_16 (rc4_key, key);
322 u8 j = rc4_next_16 (rc4_key, 0, 0, encryptedVerifier, out);
346 md5_transform (w0_t, w1_t, w2_t, w3_t, digest);
348 rc4_next_16 (rc4_key, 16, j, digest, out);
350 COMPARE_M_SIMD (out[0], out[1], out[2], out[3]);
354 static void m09710s (__local RC4_KEY *rc4_keys, u32 w0[4], u32 w1[4], u32 w2[4], u32 w3[4], const u32 pw_len, __global pw_t *pws, __global kernel_rule_t *rules_buf, __global comb_t *combs_buf, __global bf_t *bfs_buf, __global void *tmps, __global void *hooks, __global u32 *bitmaps_buf_s1_a, __global u32 *bitmaps_buf_s1_b, __global u32 *bitmaps_buf_s1_c, __global u32 *bitmaps_buf_s1_d, __global u32 *bitmaps_buf_s2_a, __global u32 *bitmaps_buf_s2_b, __global u32 *bitmaps_buf_s2_c, __global u32 *bitmaps_buf_s2_d, __global plain_t *plains_buf, __global digest_t *digests_buf, __global u32 *hashes_shown, __global salt_t *salt_bufs, __global oldoffice01_t *oldoffice01_bufs, __global u32 *d_return_buf, __global u32 *d_scryptV_buf, const u32 bitmap_mask, const u32 bitmap_shift1, const u32 bitmap_shift2, const u32 salt_pos, const u32 loop_pos, const u32 loop_cnt, const u32 il_cnt, const u32 digests_cnt, const u32 digests_offset)
360 const u32 gid = get_global_id (0);
361 const u32 lid = get_local_id (0);
363 __local RC4_KEY *rc4_key = &rc4_keys[lid];
369 const u32 search[4] =
371 digests_buf[digests_offset].digest_buf[DGST_R0],
372 digests_buf[digests_offset].digest_buf[DGST_R1],
373 digests_buf[digests_offset].digest_buf[DGST_R2],
374 digests_buf[digests_offset].digest_buf[DGST_R3]
381 const u32 version = oldoffice01_bufs[salt_pos].version;
383 u32 encryptedVerifier[4];
385 encryptedVerifier[0] = oldoffice01_bufs[salt_pos].encryptedVerifier[0];
386 encryptedVerifier[1] = oldoffice01_bufs[salt_pos].encryptedVerifier[1];
387 encryptedVerifier[2] = oldoffice01_bufs[salt_pos].encryptedVerifier[2];
388 encryptedVerifier[3] = oldoffice01_bufs[salt_pos].encryptedVerifier[3];
396 for (u32 il_pos = 0; il_pos < il_cnt; il_pos += VECT_SIZE)
398 const u32 w0r = ix_create_bft (bfs_buf, il_pos);
400 const u32 w0lr = w0l | w0r;
402 // first md5 to generate RC4 128 bit key
410 w0_t[1] = w0[1] & 0xff;
433 md5_transform (w0_t, w1_t, w2_t, w3_t, digest);
444 rc4_init_16 (rc4_key, key);
448 u8 j = rc4_next_16 (rc4_key, 0, 0, encryptedVerifier, out);
472 md5_transform (w0_t, w1_t, w2_t, w3_t, digest);
474 rc4_next_16 (rc4_key, 16, j, digest, out);
476 COMPARE_S_SIMD (out[0], out[1], out[2], out[3]);
480 __kernel void m09710_m04 (__global pw_t *pws, __global kernel_rule_t *rules_buf, __global comb_t *combs_buf, __global bf_t *bfs_buf, __global void *tmps, __global void *hooks, __global u32 *bitmaps_buf_s1_a, __global u32 *bitmaps_buf_s1_b, __global u32 *bitmaps_buf_s1_c, __global u32 *bitmaps_buf_s1_d, __global u32 *bitmaps_buf_s2_a, __global u32 *bitmaps_buf_s2_b, __global u32 *bitmaps_buf_s2_c, __global u32 *bitmaps_buf_s2_d, __global plain_t *plains_buf, __global digest_t *digests_buf, __global u32 *hashes_shown, __global salt_t *salt_bufs, __global oldoffice01_t *oldoffice01_bufs, __global u32 *d_return_buf, __global u32 *d_scryptV_buf, const u32 bitmap_mask, const u32 bitmap_shift1, const u32 bitmap_shift2, const u32 salt_pos, const u32 loop_pos, const u32 loop_cnt, const u32 il_cnt, const u32 digests_cnt, const u32 digests_offset, const u32 combs_mode, const u32 gid_max)
486 const u32 gid = get_global_id (0);
488 if (gid >= gid_max) return;
492 w0[0] = pws[gid].i[ 0];
493 w0[1] = pws[gid].i[ 1];
494 w0[2] = pws[gid].i[ 2];
495 w0[3] = pws[gid].i[ 3];
518 const u32 pw_len = pws[gid].pw_len;
524 __local RC4_KEY rc4_keys[64];
526 m09710m (rc4_keys, w0, w1, w2, w3, pw_len, pws, rules_buf, combs_buf, bfs_buf, tmps, hooks, bitmaps_buf_s1_a, bitmaps_buf_s1_b, bitmaps_buf_s1_c, bitmaps_buf_s1_d, bitmaps_buf_s2_a, bitmaps_buf_s2_b, bitmaps_buf_s2_c, bitmaps_buf_s2_d, plains_buf, digests_buf, hashes_shown, salt_bufs, oldoffice01_bufs, d_return_buf, d_scryptV_buf, bitmap_mask, bitmap_shift1, bitmap_shift2, salt_pos, loop_pos, loop_cnt, il_cnt, digests_cnt, digests_offset);
529 __kernel void m09710_m08 (__global pw_t *pws, __global kernel_rule_t *rules_buf, __global comb_t *combs_buf, __global bf_t *bfs_buf, __global void *tmps, __global void *hooks, __global u32 *bitmaps_buf_s1_a, __global u32 *bitmaps_buf_s1_b, __global u32 *bitmaps_buf_s1_c, __global u32 *bitmaps_buf_s1_d, __global u32 *bitmaps_buf_s2_a, __global u32 *bitmaps_buf_s2_b, __global u32 *bitmaps_buf_s2_c, __global u32 *bitmaps_buf_s2_d, __global plain_t *plains_buf, __global digest_t *digests_buf, __global u32 *hashes_shown, __global salt_t *salt_bufs, __global oldoffice01_t *oldoffice01_bufs, __global u32 *d_return_buf, __global u32 *d_scryptV_buf, const u32 bitmap_mask, const u32 bitmap_shift1, const u32 bitmap_shift2, const u32 salt_pos, const u32 loop_pos, const u32 loop_cnt, const u32 il_cnt, const u32 digests_cnt, const u32 digests_offset, const u32 combs_mode, const u32 gid_max)
533 __kernel void m09710_m16 (__global pw_t *pws, __global kernel_rule_t *rules_buf, __global comb_t *combs_buf, __global bf_t *bfs_buf, __global void *tmps, __global void *hooks, __global u32 *bitmaps_buf_s1_a, __global u32 *bitmaps_buf_s1_b, __global u32 *bitmaps_buf_s1_c, __global u32 *bitmaps_buf_s1_d, __global u32 *bitmaps_buf_s2_a, __global u32 *bitmaps_buf_s2_b, __global u32 *bitmaps_buf_s2_c, __global u32 *bitmaps_buf_s2_d, __global plain_t *plains_buf, __global digest_t *digests_buf, __global u32 *hashes_shown, __global salt_t *salt_bufs, __global oldoffice01_t *oldoffice01_bufs, __global u32 *d_return_buf, __global u32 *d_scryptV_buf, const u32 bitmap_mask, const u32 bitmap_shift1, const u32 bitmap_shift2, const u32 salt_pos, const u32 loop_pos, const u32 loop_cnt, const u32 il_cnt, const u32 digests_cnt, const u32 digests_offset, const u32 combs_mode, const u32 gid_max)
537 __kernel void m09710_s04 (__global pw_t *pws, __global kernel_rule_t *rules_buf, __global comb_t *combs_buf, __global bf_t *bfs_buf, __global void *tmps, __global void *hooks, __global u32 *bitmaps_buf_s1_a, __global u32 *bitmaps_buf_s1_b, __global u32 *bitmaps_buf_s1_c, __global u32 *bitmaps_buf_s1_d, __global u32 *bitmaps_buf_s2_a, __global u32 *bitmaps_buf_s2_b, __global u32 *bitmaps_buf_s2_c, __global u32 *bitmaps_buf_s2_d, __global plain_t *plains_buf, __global digest_t *digests_buf, __global u32 *hashes_shown, __global salt_t *salt_bufs, __global oldoffice01_t *oldoffice01_bufs, __global u32 *d_return_buf, __global u32 *d_scryptV_buf, const u32 bitmap_mask, const u32 bitmap_shift1, const u32 bitmap_shift2, const u32 salt_pos, const u32 loop_pos, const u32 loop_cnt, const u32 il_cnt, const u32 digests_cnt, const u32 digests_offset, const u32 combs_mode, const u32 gid_max)
543 const u32 gid = get_global_id (0);
545 if (gid >= gid_max) return;
549 w0[0] = pws[gid].i[ 0];
550 w0[1] = pws[gid].i[ 1];
551 w0[2] = pws[gid].i[ 2];
552 w0[3] = pws[gid].i[ 3];
575 const u32 pw_len = pws[gid].pw_len;
581 __local RC4_KEY rc4_keys[64];
583 m09710s (rc4_keys, w0, w1, w2, w3, pw_len, pws, rules_buf, combs_buf, bfs_buf, tmps, hooks, bitmaps_buf_s1_a, bitmaps_buf_s1_b, bitmaps_buf_s1_c, bitmaps_buf_s1_d, bitmaps_buf_s2_a, bitmaps_buf_s2_b, bitmaps_buf_s2_c, bitmaps_buf_s2_d, plains_buf, digests_buf, hashes_shown, salt_bufs, oldoffice01_bufs, d_return_buf, d_scryptV_buf, bitmap_mask, bitmap_shift1, bitmap_shift2, salt_pos, loop_pos, loop_cnt, il_cnt, digests_cnt, digests_offset);
586 __kernel void m09710_s08 (__global pw_t *pws, __global kernel_rule_t *rules_buf, __global comb_t *combs_buf, __global bf_t *bfs_buf, __global void *tmps, __global void *hooks, __global u32 *bitmaps_buf_s1_a, __global u32 *bitmaps_buf_s1_b, __global u32 *bitmaps_buf_s1_c, __global u32 *bitmaps_buf_s1_d, __global u32 *bitmaps_buf_s2_a, __global u32 *bitmaps_buf_s2_b, __global u32 *bitmaps_buf_s2_c, __global u32 *bitmaps_buf_s2_d, __global plain_t *plains_buf, __global digest_t *digests_buf, __global u32 *hashes_shown, __global salt_t *salt_bufs, __global oldoffice01_t *oldoffice01_bufs, __global u32 *d_return_buf, __global u32 *d_scryptV_buf, const u32 bitmap_mask, const u32 bitmap_shift1, const u32 bitmap_shift2, const u32 salt_pos, const u32 loop_pos, const u32 loop_cnt, const u32 il_cnt, const u32 digests_cnt, const u32 digests_offset, const u32 combs_mode, const u32 gid_max)
590 __kernel void m09710_s16 (__global pw_t *pws, __global kernel_rule_t *rules_buf, __global comb_t *combs_buf, __global bf_t *bfs_buf, __global void *tmps, __global void *hooks, __global u32 *bitmaps_buf_s1_a, __global u32 *bitmaps_buf_s1_b, __global u32 *bitmaps_buf_s1_c, __global u32 *bitmaps_buf_s1_d, __global u32 *bitmaps_buf_s2_a, __global u32 *bitmaps_buf_s2_b, __global u32 *bitmaps_buf_s2_c, __global u32 *bitmaps_buf_s2_d, __global plain_t *plains_buf, __global digest_t *digests_buf, __global u32 *hashes_shown, __global salt_t *salt_bufs, __global oldoffice01_t *oldoffice01_bufs, __global u32 *d_return_buf, __global u32 *d_scryptV_buf, const u32 bitmap_mask, const u32 bitmap_shift1, const u32 bitmap_shift2, const u32 salt_pos, const u32 loop_pos, const u32 loop_cnt, const u32 il_cnt, const u32 digests_cnt, const u32 digests_offset, const u32 combs_mode, const u32 gid_max)