Skip to content
This repository has been archived by the owner on Feb 1, 2023. It is now read-only.

Pathological worstcase when password is a hex string #15

Open
Mjolnir42 opened this issue Apr 23, 2016 · 16 comments
Open

Pathological worstcase when password is a hex string #15

Mjolnir42 opened this issue Apr 23, 2016 · 16 comments

Comments

@Mjolnir42
Copy link

Hi,

I think I hit an algorithmic pathological worst case, if the supplied password string is a hex encoded string. I have not been able to reproduce this behavior with other, way longer passphrases.

I've created a gist with a testcase: Gist

At the point where I aborted (password length 32 characters), it is was consuming around 7GBytes of RAM.
@Mjolnir42
Copy link
Author

Since the initial data came from my laptop, I've also tried it on my workstation. It could not complete the 32 characters before it ran out of memory:

swap_pager: out of swap space
swap_pager_getswapspace(16): failed
pid 1403 (zxcvbn), uid 1001, was killed: out of swap space

I've updated the data comment in the gist, including top output from shortly before it ended. Memory consumption was around 14.5GByte for the 32 character string at that time.

@nbutton23
Copy link
Owner

hmmm. Ill have to play with it and see if I can figure out where its spending the most time, and why its eating so much memory.

@nbutton23
Copy link
Owner

So I found where its spending the time. Im not sure if this is where the memory issue is.

https://gist.github.com/nbutton23/b11f57561c6471890bd95ac5a3b52a75

@nbutton23
Copy link
Owner

nbutton23 commented Jun 1, 2016
edited
Loading

Okay after some more digging. I have found that the issue is not in the above code. using pprof I can see that it is in matching.leet.go:getAllPermutationsOfLeetSubstitutions. Since the the string has an abnormally hi number of leet characters (0, 1, 2, 3, 4, 5, 6, 7) it is generating an insane number of permutations.

@nbutton23 nbutton23 mentioned this issue Jun 11, 2016
Closed
@ghost ghost mentioned this issue Sep 23, 2016
Closed
@t3h2mas
Copy link

t3h2mas commented Aug 31, 2017

I ran into this when running against a MD5 hash. Is there a workaround or an option to skip the leet permutations?

@nbutton23
Copy link
Owner

So @TheMacies just added the ability to filter out matchers.

the call would look like zxcvbn.PasswordStrength(password, nil, matching.FilterL33tMatcher)

@sahib
Copy link

sahib commented Apr 9, 2018

Hello @nbutton23,

I'm using your library to an interactive password check in a commandline application
Sadly, it's pretty slow with longer inputs (>= 12 characters), due to the code you already posted:

https://gist.github.com/nbutton23/b11f57561c6471890bd95ac5a3b52a75

I'm not sure if all permutations of the string need to be checked there.
Maybe it's sufficient enough to only an exact match?

Alternatively one could also try to call this function less often (still n^2 though) and/or make the number of checks depending on the string length (i.e. do exact match if length >= 10, only prefix check if length >= 6)

Sorry for hijacking the issue, just wanted to ask if this is a valid way to go.
If so I could also prepare a PR.

@cerlestes
Copy link

I ran into the same issue with a similiar string. For testing purposes, I've used UUIDs as passwords, like so:

zxcvbn.PasswordStrength("ce59f9ce-c1ca-4929-ad94-a494c7fbe032", nil)

After a few minutes I've noticed I still had no response from the API only to find that it was consuming nearly 11 GByte of RAM.

This issue needs to be addressed, as it allows for pretty trivial DoS attacks against any software using this library.

@TheMacies
Copy link
Contributor

As a temporary solution, try out the feature I added a while ago.
#24

@cerlestes
Copy link

@TheMacies I've seen that and it works, thank you. But this bug needs to be fixed, not worked around. The obvious quick fix would be to remove L33tMatcher (and others, if the problem exists in more than this one) from the list of matchers enabled by default, and release a bugfix version of this library.

@TheMacies
Copy link
Contributor

Yes. Although i did not want to change the behaviour of this lib after someone updates vendor. That was my primary goal

@edwincarlo edwincarlo mentioned this issue May 9, 2018
Merged
@edwincarlo
Copy link
Contributor

@TheMacies , @cerlestes , @sahib ,

It was created a pull request ( #28 ) aiming to solve this issue. It would be great if you could check.

@cerlestes
Copy link

@edwincarlo Very nice work, thank you. Code is looking good. I'll give the patch a try next week and report back.

@sahib
Copy link

sahib commented May 12, 2018
edited
Loading

@edwincarlo: Great work, I see definite improvements. For a hash string like 68b329da9893e34099c7d8ad5cb9c940 the time has gone from ~7s to a few milliseconds. This finally allows using this library for checking passwords while typing without any crude workarounds.

For reference, the pprof output I made while testing the change:
Before applying @edwincarlo's changes and after (second pprof was with a longer password than first to have some more samples, actual timing is 5.37s vs 4ms with same password).

@cerlestes
Copy link

Awesome! Instead of killing the process after 60 seconds and 14GB of RAM consumed, my tests are now running through in ~0.1s, when the patch was applied (taken from current master branch).

@edwincarlo Thanks again!
@nbutton23 Please release asap :) Thanks!

@dcormier
Copy link

dcormier commented Aug 1, 2018

Is this still an issue? The last couple of comments suggest that it's been resolved.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
8 participants
@dcormier @sahib @t3h2mas @edwincarlo @nbutton23 @Mjolnir42 @cerlestes @TheMacies