diff options
Diffstat (limited to 'src/passwordmaker/mod.rs')
| -rw-r--r-- | src/passwordmaker/mod.rs | 413 |
1 files changed, 413 insertions, 0 deletions
diff --git a/src/passwordmaker/mod.rs b/src/passwordmaker/mod.rs new file mode 100644 index 0000000..4874758 --- /dev/null +++ b/src/passwordmaker/mod.rs @@ -0,0 +1,413 @@ +use std::convert::identity; +use std::convert::TryInto; +use unicode_segmentation::UnicodeSegmentation; +use leet::LeetReplacementTable; +use remainders::CalcRemainders; +use grapheme::Grapheme; + +use super::Hasher; + +mod remainders; +mod remainders_impl; +mod grapheme; +pub(crate) mod leet; + +impl<'y, H : super::HasherList> super::PasswordMaker<'y, H>{ + pub(super) fn is_suitable_as_output_characters(characters : &str) -> bool { + characters.graphemes(true).nth(1).is_some() + } + + pub(super) fn generate_password_verified_input(self) -> String { + let modified_data = self.data.to_owned() + self.username + self.modifier; + let key = self.key.to_owned(); + let get_modified_key = move |i : usize| { if i == 0 {key.clone()} else {key.clone() + "\n" + &i.to_string()}}; + + //In Passwordmaker Pro, leet is applied on a per-password-part basis. This means that if a password part ends in an upper-case Sigma, + //the results would differ if we moved leeting to after all password parts were joined, or worse, did it on a per-character level. + //However, this makes the code a lot more complex, as it forces us to create an owned string for each password part before combining. + //Therefore, we treat that case special. + match self.post_leet { + None => Self::generate_password_verified_no_post_leet(&modified_data, get_modified_key, &self.assembly_settings, &self.password_part_parameters), + Some(leet_level) => Self::generate_password_verified_with_post_leet(&modified_data, get_modified_key,&self.assembly_settings , &self.password_part_parameters, &leet_level), + } + } + + fn generate_password_verified_no_post_leet<G : Fn(usize)->String>(modified_data : &str, get_modified_key : G, assembly_settings : &PasswordAssemblyParameters, password_part_parameters : &PasswordPartParameters) -> String { + let password = (0..).flat_map(|i| Self::generate_password_part(modified_data, get_modified_key(i), password_part_parameters)); + combine_prefix_password_suffix(password, assembly_settings) + } + + + fn generate_password_verified_with_post_leet<G : Fn(usize)->String>(modified_data : &str, get_modified_key : G, assembly_settings : &PasswordAssemblyParameters, password_part_parameters : &PasswordPartParameters, post_leet : &LeetReplacementTable) -> String { + let suffix_length = assembly_settings.suffix_length; + let prefix_length = assembly_settings.prefix_length; + let needed_password_length = assembly_settings.password_length.saturating_sub(suffix_length).saturating_sub(prefix_length); + + //Helper function that is used in try_fold below. Appends string part p to the input string, and counts graphemes. + //Once grapheme count in total is >= needed_password_length, it returns a ControlFlow::Break. + //Or, wait. Our target platform is limited to Rust 1.52 for now, so it's a Result::Err once the required length is reached. + let append_strings_till_needed_length = |s: (String, usize),p : String| { + let new_length = s.1 + p.graphemes(true).count(); + let st = s.0 + &p; + if new_length >= needed_password_length { + Err(st) + } else { + Ok((st, new_length)) + } + }; + + //here we have to work on a string level... Because word-final sigma and leet's ToLower... + let password = (0..) + .map(|i| Self::generate_password_part(modified_data, get_modified_key(i), password_part_parameters)) + .map(|i| i.map(|g| g.get()).collect::<String>()) //make string from password part... + .map(|non_leeted_password| post_leet.leetify(&non_leeted_password)) //leet it + .try_fold((String::new(), 0), append_strings_till_needed_length).unwrap_err(); + + combine_prefix_password_suffix(Grapheme::iter_from_str(&password), assembly_settings) + } + + fn generate_password_part<'a>(data : &str, key : String, parameters : &'a PasswordPartParameters<'a>) -> GetGraphemesIterator<'a> { + //Must follow PasswordMaker Pro closely here. For instance: + // leet(key) + leet(data) != leet(key+data) + //Soo, easiest way is to just make a _different_ function for each different combination of operations. + //To make what happens explicit. + + match ¶meters.hash_algorithm{ + AlgoSelection::V06(V06HmacOrNot::Hmac) => + Self::generate_password_part_v06_hmac(data, key, ¶meters.pre_leet_level, ¶meters.characters), + AlgoSelection::V06(V06HmacOrNot::NonHmac) => + Self::generate_password_part_v06(data, key, ¶meters.pre_leet_level, ¶meters.characters), + AlgoSelection::Modern(HmacOrNot::Hmac(a)) => + Self::generate_password_part_modern_hmac(data, key, a, ¶meters.pre_leet_level, ¶meters.characters), + AlgoSelection::Modern(HmacOrNot::NonHmac(a)) => + Self::generate_password_part_modern(data, key, a, ¶meters.pre_leet_level, ¶meters.characters), + } + } + + fn generate_password_part_v06<'a>( + second_part : &str, + message : String, + pre_leet_level: &Option<LeetReplacementTable>, + characters : &'a Vec<Grapheme<'a>>, + ) -> GetGraphemesIterator<'a> { + let message = message + second_part; + let message = pre_leet_level.as_ref().map(|l| l.leetify(&message)).unwrap_or(message); + let message = yeet_upper_bytes(&message).collect::<Vec<u8>>(); + let hash = H::MD5::hash(&message); + let hash_as_integer = u128::from_be_bytes(hash); + let grapheme_indices : Vec<_> = hash_as_integer.calc_remainders(characters.len() as u128).map(|llll| llll as usize).collect(); + let grapheme_indices = yoink_additional_graphemes_for_06_if_needed(grapheme_indices); + GetGraphemesIterator { graphemes : characters, inner: grapheme_indices.into_iter().rev()} + } + + fn generate_password_part_v06_hmac<'a>( + data : &str, + key : String, + pre_leet_level: &Option<LeetReplacementTable>, + characters : &'a Vec<Grapheme<'a>>, + ) -> GetGraphemesIterator<'a> { + let key = pre_leet_level.as_ref().map(|l| l.leetify(&key)).unwrap_or(key); + let leetified_data = pre_leet_level.as_ref().map(|l| l.leetify(data)); + let data = leetified_data.as_deref().unwrap_or(data); + let key = yeet_upper_bytes(&key); + let data = yeet_upper_bytes(data); + let hash = hmac::<H::MD5,_,_>(key, data); + let hash_as_integer = u128::from_be_bytes(hash); + let grapheme_indices : Vec<_> = hash_as_integer.calc_remainders(characters.len() as u128).map(|llll| llll as usize).collect(); + let grapheme_indices = yoink_additional_graphemes_for_06_if_needed(grapheme_indices); + GetGraphemesIterator { graphemes : characters, inner: grapheme_indices.into_iter().rev()} + } + + fn generate_password_part_modern_hmac<'a>( + data : &str, + key : String, + algo : &Algorithm, + pre_leet_level: &Option<LeetReplacementTable>, + characters : &'a Vec<Grapheme<'a>>, + ) -> GetGraphemesIterator<'a> { + let key = pre_leet_level.as_ref().map(|l| l.leetify(&key)).unwrap_or(key); + let leetified_data = pre_leet_level.as_ref().map(|l| l.leetify(data)); + let data = leetified_data.as_deref().unwrap_or(data); + let to_usize = |l : u128| l as usize; + let grapheme_indices : Vec<_> = match algo { + Algorithm::Md4 => + modern_hmac_to_grapheme_indices::<H::MD4,_,_,_,_,_>(&key, data, u128::from_be_bytes, characters.len() as u128, to_usize), + Algorithm::Md5 => + modern_hmac_to_grapheme_indices::<H::MD5,_,_,_,_,_>(&key, data, u128::from_be_bytes, characters.len() as u128, to_usize), + Algorithm::Sha1 => + modern_hmac_to_grapheme_indices::<H::SHA1,_,_,_,_,_>(&key, data, ToI32Array::to_int_array, characters.len(), identity), + Algorithm::Sha256 => + modern_hmac_to_grapheme_indices::<H::SHA256,_,_,_,_,_>(&key, data, ToI32Array::to_int_array, characters.len(), identity), + Algorithm::Ripemd160 => + modern_hmac_to_grapheme_indices::<H::RIPEMD160,_,_,_,_,_>(&key, data, ToI32Array::to_int_array, characters.len(), identity), + }; + GetGraphemesIterator { graphemes : characters, inner: grapheme_indices.into_iter().rev()} + } + + fn generate_password_part_modern<'a>( + second_part : &str, + message : String, + algo : &Algorithm, + pre_leet_level: &Option<LeetReplacementTable>, + characters : &'a Vec<Grapheme<'a>>, + ) -> GetGraphemesIterator<'a> { + let message = message + second_part; + let message = pre_leet_level.as_ref().map(|l| l.leetify(&message)).unwrap_or(message); + let to_usize = |l : u128| l as usize; + let grapheme_indices : Vec<_> = match algo { + Algorithm::Md4 => + modern_message_to_grapheme_indices::<H::MD4,_,_,_,_,_>(&message,u128::from_be_bytes,characters.len() as u128, to_usize), + Algorithm::Md5 => + modern_message_to_grapheme_indices::<H::MD5,_,_,_,_,_>(&message,u128::from_be_bytes,characters.len() as u128, to_usize), + Algorithm::Sha1 => + modern_message_to_grapheme_indices::<H::SHA1,_,_,_,_,_>(&message,ToI32Array::to_int_array,characters.len(), identity), + Algorithm::Sha256 => + modern_message_to_grapheme_indices::<H::SHA256,_,_,_,_,_>(&message,ToI32Array::to_int_array,characters.len(), identity), + Algorithm::Ripemd160 => + modern_message_to_grapheme_indices::<H::RIPEMD160,_,_,_,_,_>(&message,ToI32Array::to_int_array,characters.len(), identity), + }; + GetGraphemesIterator { graphemes : characters, inner: grapheme_indices.into_iter().rev()} + } +} + +pub(super) struct PasswordAssemblyParameters<'a> { + suffix : &'a str, + prefix : &'a str, + password_length : usize, + suffix_length : usize, + prefix_length : usize, +} +impl<'a> PasswordAssemblyParameters<'a> { + pub(super) fn from_public_parameters(prefix : &'a str, suffix : &'a str, password_length : usize) -> Self{ + PasswordAssemblyParameters { + suffix, + prefix, + password_length, + suffix_length: Grapheme::iter_from_str(suffix).count(), + prefix_length: Grapheme::iter_from_str(prefix).count(), + } + } +} + +fn combine_prefix_password_suffix<'a, T : Iterator<Item=Grapheme<'a>>>(password: T, assembly_settings : &PasswordAssemblyParameters<'a>) -> String { + Grapheme::iter_from_str(assembly_settings.prefix) + .chain(password) + .take(assembly_settings.password_length.saturating_sub(assembly_settings.suffix_length)) + .chain(Grapheme::iter_from_str(assembly_settings.suffix)) + .take(assembly_settings.password_length)//cut end if suffix_length is larger than password_length... + .map(|g| g.get()) + .collect() +} + +struct GetGraphemesIterator<'a> { + graphemes : &'a Vec<Grapheme<'a>>, + inner : std::iter::Rev<std::vec::IntoIter<usize>>, + //There really should be a better solution than storing those values. If we had arbitrary-length multiplication and subtraction maybe? + //like, finding the highest potence of divisor that still is smaller than the dividend, and dividing by that one to get the left-most digit, + //dividing the remainder of this operation by the next-lower potence of divisor to get the second digit, and so on? +} + +impl<'a> Iterator for GetGraphemesIterator<'a> { + type Item = Grapheme<'a>; + + fn next(&mut self) -> Option<Self::Item> { + self.inner.next().and_then(|i| self.graphemes.get(i)).cloned() + } +} + +fn modern_hmac_to_grapheme_indices<T, F, C, Z, D, U>(key : &str, data: &str, to_dividend : F, divisor : D, to_usize : U) -> Vec<usize> + where T:Hasher, + C: CalcRemainders<Z,D>, + F: Fn(T::Output) -> C, + Z:remainders::Division<D>, + U: Fn(D) -> usize, + <T as Hasher>::Output: AsRef<[u8]> +{ + let key = yeet_upper_bytes(key); + let data = yeet_upper_bytes(data); + to_dividend(hmac::<T,_,_>(key, data)).calc_remainders(divisor).map(to_usize).collect() +} + +fn modern_message_to_grapheme_indices<T, F, C, Z, D, U>(data: &str, to_dividend : F, divisor : D, to_usize : U) -> Vec<usize> + where T:Hasher, + C: CalcRemainders<Z,D>, + F: Fn(T::Output) -> C, + Z:remainders::Division<D>, + U: Fn(D) -> usize, + <T as Hasher>::Output: AsRef<[u8]> +{ + to_dividend(T::hash(data.as_bytes())).calc_remainders(divisor).map(to_usize).collect() +} + +pub(super) struct PasswordPartParameters<'a>{ + hash_algorithm : AlgoSelection, + pre_leet_level : Option<LeetReplacementTable>, + characters : Vec<Grapheme<'a>>, +} + +impl<'a> PasswordPartParameters<'a>{ + pub(super) fn from_public_parameters(hash_algorithm : super::HashAlgorithm, leet : &super::UseLeetWhenGenerating, characters : &'a str) -> Self { + use super::UseLeetWhenGenerating; + let hash_algorithm = AlgoSelection::from_settings_algorithm(hash_algorithm); + PasswordPartParameters{ + characters: match &hash_algorithm { + AlgoSelection::V06(_) => Grapheme::iter_from_str("0123456789abcdef").collect(), + AlgoSelection::Modern(_) => Grapheme::iter_from_str(characters).collect(), + }, + pre_leet_level: match leet { + UseLeetWhenGenerating::NotAtAll + | UseLeetWhenGenerating::After{..} => None, + UseLeetWhenGenerating::Before { level } + | UseLeetWhenGenerating::BeforeAndAfter { level } => Some(LeetReplacementTable::get(level)), + }, + hash_algorithm, + } + } +} + +enum Algorithm { + Md4, + Md5, + Sha1, + Sha256, + Ripemd160, +} + +enum HmacOrNot{ + Hmac(Algorithm), + NonHmac(Algorithm), +} + +enum V06HmacOrNot{ + Hmac, + NonHmac, +} + +enum AlgoSelection{ + V06(V06HmacOrNot), + Modern(HmacOrNot), +} + +impl AlgoSelection { + fn from_settings_algorithm(settings_algorithm : super::HashAlgorithm) -> Self { + use super::HashAlgorithm; + match settings_algorithm { + HashAlgorithm::Md5Version06 => AlgoSelection::V06(V06HmacOrNot::NonHmac), + HashAlgorithm::HmacMd5Version06 => AlgoSelection::V06(V06HmacOrNot::Hmac), + HashAlgorithm::Md4 => AlgoSelection::Modern(HmacOrNot::NonHmac(Algorithm::Md4)), + HashAlgorithm::HmacMd4 => AlgoSelection::Modern(HmacOrNot::Hmac(Algorithm::Md4)), + HashAlgorithm::Md5 => AlgoSelection::Modern(HmacOrNot::NonHmac(Algorithm::Md5)), + HashAlgorithm::HmacMd5 => AlgoSelection::Modern(HmacOrNot::Hmac(Algorithm::Md5)), + HashAlgorithm::Sha1 => AlgoSelection::Modern(HmacOrNot::NonHmac(Algorithm::Sha1)), + HashAlgorithm::HmacSha1 => AlgoSelection::Modern(HmacOrNot::Hmac(Algorithm::Sha1)), + HashAlgorithm::Sha256 => AlgoSelection::Modern(HmacOrNot::NonHmac(Algorithm::Sha256)), + HashAlgorithm::HmacSha256 => AlgoSelection::Modern(HmacOrNot::Hmac(Algorithm::Sha256)), + HashAlgorithm::Ripemd160 => AlgoSelection::Modern(HmacOrNot::NonHmac(Algorithm::Ripemd160)), + HashAlgorithm::HmacRipemd160 => AlgoSelection::Modern(HmacOrNot::Hmac(Algorithm::Ripemd160)), + } + } +} + +// Rust 1.52 only has a very limited support for const generics. This means, we'll have multiple impls for array conversion. +trait ToI32Array<const I : usize> { + fn to_int_array(self) -> [u32; I]; +} + +//this could of course be done in a generic manner, but it's ugly without array_mut, which we don't have in Rust 1.52. +//Soo, pedestrian's approach :D +impl ToI32Array<5> for [u8;20] { + fn to_int_array(self) -> [u32; 5] { + [ + u32::from_be_bytes(self[0..4].try_into().unwrap()), + u32::from_be_bytes(self[4..8].try_into().unwrap()), + u32::from_be_bytes(self[8..12].try_into().unwrap()), + u32::from_be_bytes(self[12..16].try_into().unwrap()), + u32::from_be_bytes(self[16..20].try_into().unwrap()), + ] + } +} + +impl ToI32Array<8> for [u8;32] { + fn to_int_array(self) -> [u32; 8] { + [ + u32::from_be_bytes(self[0..4].try_into().unwrap()), + u32::from_be_bytes(self[4..8].try_into().unwrap()), + u32::from_be_bytes(self[8..12].try_into().unwrap()), + u32::from_be_bytes(self[12..16].try_into().unwrap()), + u32::from_be_bytes(self[16..20].try_into().unwrap()), + u32::from_be_bytes(self[20..24].try_into().unwrap()), + u32::from_be_bytes(self[24..28].try_into().unwrap()), + u32::from_be_bytes(self[28..32].try_into().unwrap()), + ] + } +} + +// Yeets the upper bytes of each UTF-16 char representation. Needed, because PasswordMaker Pro does that for some algorithms (HMAC, MD5 0.6) +// Returns bytes, because there's no way that this transform doesn't break the string. +#[allow(clippy::cast_possible_truncation)] //clippy, stop complaining. Truncating is the very purpose of this function... +fn yeet_upper_bytes(input : &str) -> impl Iterator<Item=u8> + Clone + '_ { + input.encode_utf16().map(|wide_char| wide_char as u8) +} + +// 0.6 Md5 might need to yoink an additional 0 for output graphemes. +fn yoink_additional_graphemes_for_06_if_needed(mut input : Vec<usize>) -> Vec<usize> { + input.resize(32, 0); + input +} + +fn hmac<T, K, M>(key : K, data : M) -> T::Output + where T : Hasher, + T::Output : AsRef<[u8]>, + K : Iterator<Item=u8> + Clone, + M : Iterator<Item=u8>, +{ + let key_len = key.clone().count(); + let key = if key_len > 64 { + KeyOrHash::from_hash(T::hash(&key.collect::<Vec<_>>())) + } else { + KeyOrHash::from_key(key) + }; + let key = key.chain(std::iter::repeat(0)); //if key[i] does not exist, use 0 instead. + + let mut inner_pad = [0u8;64]; + let mut outer_pad = [0u8;64]; + + let pads = inner_pad.iter_mut().zip(outer_pad.iter_mut()); + for ((i,o),k) in pads.zip(key) { + *i = k ^ 0x36; + *o = k ^ 0x5C; + } + + let hash = T::hash(&inner_pad.iter().copied().chain(data).collect::<Vec<_>>()); + T::hash(&outer_pad.iter().chain(hash.as_ref().iter()).copied().collect::<Vec<_>>()) +} + +enum KeyOrHash<K: Iterator<Item=u8>, H: AsRef<[u8]>> { + Key(K), + Hash{ + hash : H, + idx : usize + } +} + +impl<K: Iterator<Item=u8>, H: AsRef<[u8]>> KeyOrHash<K, H>{ + fn from_key(key : K) -> Self { + Self::Key(key) + } + fn from_hash(hash : H) -> Self { + Self::Hash { hash, idx: 0 } + } +} + +impl<K: Iterator<Item=u8>, H: AsRef<[u8]>> Iterator for KeyOrHash<K, H>{ + type Item = u8; + fn next(&mut self) -> Option<Self::Item> { + match self { + KeyOrHash::Key(k) => k.next(), + KeyOrHash::Hash { hash: owned, idx } => { + *idx += 1; + owned.as_ref().get(*idx-1).copied() + }, + } + } +}
\ No newline at end of file |