2017-12-04 09:46:23 -05:00
|
|
|
/*
|
|
|
|
* Copyright (C) 2017 KeePassXC Team <team@keepassxc.org>
|
|
|
|
*
|
|
|
|
* This program is free software: you can redistribute it and/or modify
|
|
|
|
* it under the terms of the GNU General Public License as published by
|
|
|
|
* the Free Software Foundation, either version 2 or (at your option)
|
|
|
|
* version 3 of the License.
|
|
|
|
*
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU General Public License for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU General Public License
|
|
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include "Estimate.h"
|
2018-09-29 13:00:47 -04:00
|
|
|
#include "cli/Utils.h"
|
2017-12-04 09:46:23 -05:00
|
|
|
|
|
|
|
#include <QCommandLineParser>
|
|
|
|
|
2018-10-28 14:55:00 -04:00
|
|
|
#include "cli/TextStream.h"
|
2017-12-04 09:46:23 -05:00
|
|
|
#include <stdio.h>
|
|
|
|
#include <stdlib.h>
|
|
|
|
#include <string.h>
|
|
|
|
#include <zxcvbn.h>
|
|
|
|
|
|
|
|
/* For pre-compiled headers under windows */
|
|
|
|
#ifdef _WIN32
|
|
|
|
#ifndef __MINGW32__
|
|
|
|
#include "stdafx.h"
|
|
|
|
#endif
|
|
|
|
#endif
|
|
|
|
|
|
|
|
Estimate::Estimate()
|
|
|
|
{
|
2018-02-05 19:17:36 -05:00
|
|
|
name = QString("estimate");
|
|
|
|
description = QObject::tr("Estimate the entropy of a password.");
|
2017-12-04 09:46:23 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
Estimate::~Estimate()
|
|
|
|
{
|
|
|
|
}
|
|
|
|
|
2017-12-14 20:22:59 -05:00
|
|
|
static void estimate(const char* pwd, bool advanced)
|
2017-12-04 09:46:23 -05:00
|
|
|
{
|
2018-10-28 14:55:00 -04:00
|
|
|
TextStream out(Utils::STDOUT, QIODevice::WriteOnly);
|
2018-09-29 13:00:47 -04:00
|
|
|
|
|
|
|
double e = 0.0;
|
|
|
|
int len = static_cast<int>(strlen(pwd));
|
2017-12-04 09:46:23 -05:00
|
|
|
if (!advanced) {
|
2018-09-29 13:00:47 -04:00
|
|
|
e = ZxcvbnMatch(pwd, nullptr, nullptr);
|
2018-10-31 23:27:38 -04:00
|
|
|
// clang-format off
|
2018-09-29 13:00:47 -04:00
|
|
|
out << QObject::tr("Length %1").arg(len, 0) << '\t'
|
|
|
|
<< QObject::tr("Entropy %1").arg(e, 0, 'f', 3) << '\t'
|
|
|
|
<< QObject::tr("Log10 %1").arg(e * 0.301029996, 0, 'f', 3) << endl;
|
2018-10-31 23:27:38 -04:00
|
|
|
// clang-format on
|
2017-12-04 09:46:23 -05:00
|
|
|
} else {
|
2018-09-29 13:00:47 -04:00
|
|
|
int ChkLen = 0;
|
2017-12-04 09:46:23 -05:00
|
|
|
ZxcMatch_t *info, *p;
|
|
|
|
double m = 0.0;
|
2018-09-29 13:00:47 -04:00
|
|
|
e = ZxcvbnMatch(pwd, nullptr, &info);
|
2017-12-04 09:46:23 -05:00
|
|
|
for (p = info; p; p = p->Next) {
|
|
|
|
m += p->Entrpy;
|
|
|
|
}
|
|
|
|
m = e - m;
|
2018-10-31 23:27:38 -04:00
|
|
|
// clang-format off
|
2018-09-29 13:00:47 -04:00
|
|
|
out << QObject::tr("Length %1").arg(len) << '\t'
|
|
|
|
<< QObject::tr("Entropy %1").arg(e, 0, 'f', 3) << '\t'
|
|
|
|
<< QObject::tr("Log10 %1").arg(e * 0.301029996, 0, 'f', 3) << "\n "
|
|
|
|
<< QObject::tr("Multi-word extra bits %1").arg(m, 0, 'f', 1) << endl;
|
2018-10-31 23:27:38 -04:00
|
|
|
// clang-format on
|
2017-12-04 09:46:23 -05:00
|
|
|
p = info;
|
|
|
|
ChkLen = 0;
|
|
|
|
while (p) {
|
|
|
|
int n;
|
|
|
|
switch (static_cast<int>(p->Type)) {
|
|
|
|
case BRUTE_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: Bruteforce") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case DICTIONARY_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: Dictionary") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case DICT_LEET_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: Dict+Leet") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case USER_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: User Words") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case USER_LEET_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: User+Leet") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case REPEATS_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: Repeated") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case SEQUENCE_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: Sequence") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case SPATIAL_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: Spatial") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case DATE_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: Date") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case BRUTE_MATCH + MULTIPLE_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: Bruteforce(Rep)") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case DICTIONARY_MATCH + MULTIPLE_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: Dictionary(Rep)") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case DICT_LEET_MATCH + MULTIPLE_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: Dict+Leet(Rep)") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case USER_MATCH + MULTIPLE_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: User Words(Rep)") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case USER_LEET_MATCH + MULTIPLE_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: User+Leet(Rep)") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case REPEATS_MATCH + MULTIPLE_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: Repeated(Rep)") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case SEQUENCE_MATCH + MULTIPLE_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: Sequence(Rep)") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case SPATIAL_MATCH + MULTIPLE_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: Spatial(Rep)") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
case DATE_MATCH + MULTIPLE_MATCH:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: Date(Rep)") << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
|
|
|
|
default:
|
2018-09-29 13:00:47 -04:00
|
|
|
out << " " << QObject::tr("Type: Unknown%1").arg(p->Type) << " ";
|
2017-12-04 09:46:23 -05:00
|
|
|
break;
|
|
|
|
}
|
|
|
|
ChkLen += p->Length;
|
2018-10-31 23:27:38 -04:00
|
|
|
// clang-format off
|
2018-09-29 13:00:47 -04:00
|
|
|
out << QObject::tr("Length %1").arg(p->Length) << '\t'
|
|
|
|
<< QObject::tr("Entropy %1 (%2)").arg(p->Entrpy, 6, 'f', 3).arg(p->Entrpy * 0.301029996, 0, 'f', 2) << '\t';
|
2018-10-31 23:27:38 -04:00
|
|
|
// clang-format on
|
2017-12-04 09:46:23 -05:00
|
|
|
for (n = 0; n < p->Length; ++n, ++pwd) {
|
2018-09-29 13:00:47 -04:00
|
|
|
out << *pwd;
|
2017-12-04 09:46:23 -05:00
|
|
|
}
|
2018-09-29 13:00:47 -04:00
|
|
|
out << endl;
|
2017-12-04 09:46:23 -05:00
|
|
|
p = p->Next;
|
|
|
|
}
|
|
|
|
ZxcvbnFreeInfo(info);
|
|
|
|
if (ChkLen != len) {
|
2018-10-31 23:27:38 -04:00
|
|
|
out << QObject::tr("*** Password length (%1) != sum of length of parts (%2) ***").arg(len).arg(ChkLen)
|
|
|
|
<< endl;
|
2017-12-04 09:46:23 -05:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2018-02-05 19:17:36 -05:00
|
|
|
int Estimate::execute(const QStringList& arguments)
|
2017-12-04 09:46:23 -05:00
|
|
|
{
|
2019-01-16 12:32:06 -05:00
|
|
|
TextStream inputTextStream(Utils::STDIN, QIODevice::ReadOnly);
|
|
|
|
TextStream errorTextStream(Utils::STDERR, QIODevice::WriteOnly);
|
2017-12-04 09:46:23 -05:00
|
|
|
|
|
|
|
QCommandLineParser parser;
|
2018-09-29 13:00:47 -04:00
|
|
|
parser.setApplicationDescription(description);
|
2017-12-04 09:46:23 -05:00
|
|
|
parser.addPositionalArgument("password", QObject::tr("Password for which to estimate the entropy."), "[password]");
|
2018-10-31 23:27:38 -04:00
|
|
|
QCommandLineOption advancedOption(QStringList() << "a"
|
|
|
|
<< "advanced",
|
2017-12-04 09:46:23 -05:00
|
|
|
QObject::tr("Perform advanced analysis on the password."));
|
|
|
|
parser.addOption(advancedOption);
|
2018-09-29 13:00:47 -04:00
|
|
|
parser.addHelpOption();
|
2017-12-04 09:46:23 -05:00
|
|
|
parser.process(arguments);
|
|
|
|
|
|
|
|
const QStringList args = parser.positionalArguments();
|
|
|
|
if (args.size() > 1) {
|
2019-04-19 16:19:19 -04:00
|
|
|
errorTextStream << parser.helpText().replace("[options]", "estimate [options]");
|
2017-12-04 09:46:23 -05:00
|
|
|
return EXIT_FAILURE;
|
|
|
|
}
|
|
|
|
|
|
|
|
QString password;
|
|
|
|
if (args.size() == 1) {
|
|
|
|
password = args.at(0);
|
|
|
|
} else {
|
2019-01-16 12:32:06 -05:00
|
|
|
password = inputTextStream.readLine();
|
2017-12-04 09:46:23 -05:00
|
|
|
}
|
|
|
|
|
2017-12-14 20:22:59 -05:00
|
|
|
estimate(password.toLatin1(), parser.isSet(advancedOption));
|
2017-12-04 09:46:23 -05:00
|
|
|
return EXIT_SUCCESS;
|
|
|
|
}
|