Oubliette Password Manager support

doc/NEWS

@@ -1,5 +1,7 @@
 Major changes from 1.9.0-jumbo-1 (May 2019) in this bleeding-edge version:
 
+- Added format plugin for Oubliette Password Manager. [DavideDG; 2025]
+
 - Bug fixes, most importantly in OldOffice-opencl format, which could give
   false negatives on some or many builds.  [Solar, magnum, others; 2019]
 

run/oubliette2john.py

@@ -0,0 +1,62 @@
+#!/usr/bin/env python3
+'''
+ * Contributed by DavideDG github.com/davidedg
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted.
+ *
+ * There's ABSOLUTELY NO WARRANTY, express or implied.
+'''
+import sys
+import struct
+import binascii
+
+def process_file(filename):
+    try:
+        with open(filename, 'rb') as f:
+            # Read and validate header
+            header = f.read(12)
+            if len(header) != 12:
+                sys.stderr.write(f"{filename}: Invalid file size\n")
+                return 1
+
+            # Unpack header fields
+            magic = header[0:5].decode('ascii')
+            major_ver = header[5]
+            minor_ver = header[6]
+            algorithm = header[7]
+            data_size = struct.unpack("<I", header[8:12])[0]
+
+            if magic != "OUBPF":
+                sys.stderr.write(f"{filename}: Invalid magic bytes\n")
+                return 2
+
+            if algorithm not in [0, 1]:
+                sys.stderr.write(f"{filename}: Unknown algorithm {algorithm}\n")
+                return 3
+
+            # Read the PasswordEncryptedHash
+            password_hash = f.read(32)
+            if len(password_hash) != 32:
+                sys.stderr.write(f"{filename}: Failed to read PasswordEncryptedHash\n")
+                return 4
+
+            # Format output for John the Ripper with different tags for Blowfish and IDEA
+            hex_hash = binascii.hexlify(password_hash).decode('ascii')
+            format_tag = "oubliette-blowfish" if algorithm == 0 else "oubliette-idea"
+            print(f"${format_tag}${major_ver}.{minor_ver}${hex_hash}")
+            return 0
+
+    except IOError as e:
+        sys.stderr.write(f"{filename}: {e}\n")
+        return 5
+
+def usage():
+    sys.stderr.write("Usage: oubliette2john.py <oubliette files>\n")
+    sys.exit(6)
+
+if __name__ == "__main__":
+    if len(sys.argv) < 2:
+        usage()
+
+    for filename in sys.argv[1:]:
+        process_file(filename)

src/oubliette_blowfish_fmt_plug.c

@@ -0,0 +1,277 @@
+/*
+ * Oubliette password manager Blowfish format cracker for JtR.
+ * Contributed by DavideDG github.com/davidedg
+ *
+ * This software is Copyright (c) 2025 DavideDG, <delgrande.davide at gmail.com>, and it is hereby released to the general public under the following terms:
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted.
+ *
+ * There's ABSOLUTELY NO WARRANTY, express or implied.
+ */
+
+#if AC_BUILT
+#include "autoconfig.h"
+#endif
+
+#if HAVE_LIBCRYPTO
+
+#if FMT_EXTERNS_H
+extern struct fmt_main fmt_oubliette_blowfish;
+#elif FMT_REGISTERS_H
+john_register_one(&fmt_oubliette_blowfish);
+#else
+
+#include <string.h>
+#include <openssl/blowfish.h>
+#include <openssl/sha.h>
+
+#ifdef _OPENMP
+#include <omp.h>
+#endif
+
+#define SIMD_WIDTH 1  // No SIMD, process one at a time
+
+#include "arch.h"
+#include "misc.h"
+#include "common.h"
+#include "formats.h"
+
+#define FORMAT_LABEL            "oubliette-blowfish"
+#define FORMAT_NAME             "Oubliette Blowfish"
+#define FORMAT_TAG              "$oubliette-blowfish$"
+#define TAG_LENGTH             (sizeof(FORMAT_TAG)-1)
+#define ALGORITHM_NAME          "SHA1 Blowfish 32/" ARCH_BITS_STR
+#define BENCHMARK_COMMENT       ""
+#define BENCHMARK_LENGTH        0x107
+#define PLAINTEXT_LENGTH        125
+#define BINARY_SIZE            32
+#define BINARY_ALIGN           sizeof(uint32_t)
+#define SALT_SIZE              0
+#define SALT_ALIGN             1
+#define MIN_KEYS_PER_CRYPT     16
+#define MAX_KEYS_PER_CRYPT     256
+#define OMP_SCALE              16
+
+// Aligned buffer for better cache performance
+typedef struct {
+    // Group frequently accessed data together
+    unsigned char padded_sha1[32] __attribute__((aligned(16)));
+    BF_KEY bf_key __attribute__((aligned(16)));
+    // Less frequently accessed data
+    unsigned char iv[8] __attribute__((aligned(16)));
+    unsigned char encrypted_iv[8] __attribute__((aligned(16)));
+} oubliette_state;
+
+#endif
+
+static struct fmt_tests tests[] = {
+    {"$oubliette-blowfish$1.0$16c863009dbc7a89fa26520aeeae5543beda0bbf41622be472d7c7320c8ea66f", "12345678"},
+    {"$oubliette-blowfish$1.0$82ea2c652362c380349d6ac0d5a06d2ae9b164becc5a75103c2744b4d27fe35d", "\xd1\xa2\x63\x5e\xac\x4e\x4a\x25\x48\xd5\x45\x73\xae\x79\x53\xb2\xe5\x69\xfc\x59\xce\x40\x21\x6a\x67\x54\x5c\xff\x5c\xfe\x7a\x52\xbe\x77\xd2\x77\xb8\x61\x39\x45\xf0\x2b\x3e\x4a\x3c\xa4\x2e\x53\xd8\xba\x71\xc8\x32\x26\x69\x37\x2f\xfa\x7d\xa1\xff\xdf\xd4\xba\x29\x4d\xd4\x72\x69\x40\xc3\x5c\x22\x2b\x79\x50\x21\x41\x5d\xc7\xdd\x6a\x3f\xed\x26\x7b\x34\x7e\xb9\x21"},
+    {NULL}
+};
+
+static unsigned char (*saved_key)[PLAINTEXT_LENGTH];
+static int *saved_len;
+static uint32_t (*crypt_out)[BINARY_SIZE / sizeof(uint32_t)];
+static oubliette_state *state;
+
+static void init(struct fmt_main *self)
+{
+#ifdef _OPENMP
+    omp_autotune(self, OMP_SCALE);
+#endif
+    saved_key = mem_calloc(self->params.max_keys_per_crypt, sizeof(*saved_key));
+    saved_len = mem_calloc(self->params.max_keys_per_crypt, sizeof(*saved_len));
+    crypt_out = mem_calloc(self->params.max_keys_per_crypt, sizeof(*crypt_out));
+    state = mem_calloc(self->params.max_keys_per_crypt, sizeof(*state));
+}
+
+static void done(void)
+{
+    MEM_FREE(state);
+    MEM_FREE(saved_key);
+    MEM_FREE(saved_len);
+    MEM_FREE(crypt_out);
+}
+
+static int valid(char *ciphertext, struct fmt_main *self)
+{
+    char *p;
+    char *ctcopy;
+    char *keeptr;
+    int version, minor;
+
+    if (strncmp(ciphertext, FORMAT_TAG, TAG_LENGTH) != 0)
+        return 0;
+
+    ctcopy = xstrdup(ciphertext);
+    keeptr = ctcopy;
+    ctcopy += TAG_LENGTH;
+
+    if ((p = strtokm(ctcopy, "$")) == NULL) /* version */
+        goto err;
+    if (sscanf(p, "%d.%d", &version, &minor) != 2)
+        goto err;
+    if (version != 1 || minor != 0)
+        goto err;
+
+    if ((p = strtokm(NULL, "$")) == NULL) /* hash */
+        goto err;
+    if (hexlenl(p, NULL) != BINARY_SIZE * 2)
+        goto err;
+
+    MEM_FREE(keeptr);
+    return 1;
+
+err:
+    MEM_FREE(keeptr);
+    return 0;
+}
+
+static void *get_binary(char *ciphertext)
+{
+    static union {
+        unsigned char c[BINARY_SIZE];
+        uint32_t dummy;
+    } buf;
+    char *p;
+    int i;
+    p = strrchr(ciphertext, '$') + 1;
+    for (i = 0; i < BINARY_SIZE; i++) {
+        buf.c[i] = (atoi16[ARCH_INDEX(*p)] << 4) | atoi16[ARCH_INDEX(p[1])];
+        p += 2;
+    }
+    return buf.c;
+}
+
+static void set_key(char *key, int index)
+{
+    saved_len[index] = strlen(key);
+    memcpy(saved_key[index], key, saved_len[index]);
+}
+
+static char *get_key(int index)
+{
+    static char out[PLAINTEXT_LENGTH + 1];
+    memcpy(out, saved_key[index], saved_len[index]);
+    out[saved_len[index]] = 0;
+    return out;
+}
+
+static int get_hash_0(int index) { return crypt_out[index][0] & PH_MASK_0; }
+static int get_hash_1(int index) { return crypt_out[index][0] & PH_MASK_1; }
+static int get_hash_2(int index) { return crypt_out[index][0] & PH_MASK_2; }
+static int get_hash_3(int index) { return crypt_out[index][0] & PH_MASK_3; }
+static int get_hash_4(int index) { return crypt_out[index][0] & PH_MASK_4; }
+static int get_hash_5(int index) { return crypt_out[index][0] & PH_MASK_5; }
+static int get_hash_6(int index) { return crypt_out[index][0] & PH_MASK_6; }
+
+static int crypt_all(int *pcount, struct db_salt *salt)
+{
+    const int count = *pcount;
+    int index;
+
+#ifdef _OPENMP
+#pragma omp parallel for
+#endif
+    for (index = 0; index < count; index += SIMD_WIDTH) {
+        oubliette_state *s = &state[index];
+        SHA_CTX ctx;
+
+        SHA1_Init(&ctx);
+        SHA1_Update(&ctx, saved_key[index], saved_len[index]);
+        SHA1_Final(s->padded_sha1, &ctx);
+
+        memset(s->padded_sha1 + 20, 0xFF, 12);
+        BF_set_key(&s->bf_key, 32, s->padded_sha1);
+        memset(s->iv, 0xFF, 8);
+        BF_ecb_encrypt(s->iv, s->encrypted_iv, &s->bf_key, BF_ENCRYPT);
+
+        unsigned char *out = (unsigned char*)crypt_out[index];
+        BF_cbc_encrypt(s->padded_sha1, out, 32, &s->bf_key, s->encrypted_iv, BF_ENCRYPT);
+    }
+    return count;
+}
+
+static int cmp_all(void *binary, int count)
+{
+    int index;
+    for (index = 0; index < count; index++) {
+        if (!memcmp(binary, crypt_out[index], BINARY_SIZE))
+            return 1;
+    }
+    return 0;
+}
+
+static int cmp_one(void *binary, int index)
+{
+    return !memcmp(binary, crypt_out[index], BINARY_SIZE);
+}
+
+static int cmp_exact(char *source, int index)
+{
+    return 1;
+}
+
+struct fmt_main fmt_oubliette_blowfish = {
+    {
+        FORMAT_LABEL,
+        FORMAT_NAME,
+        ALGORITHM_NAME,
+        BENCHMARK_COMMENT,
+        BENCHMARK_LENGTH,
+        0,
+        PLAINTEXT_LENGTH,
+        BINARY_SIZE,
+        BINARY_ALIGN,
+        SALT_SIZE,
+        SALT_ALIGN,
+        MIN_KEYS_PER_CRYPT,
+        MAX_KEYS_PER_CRYPT,
+        FMT_CASE | FMT_8_BIT | FMT_OMP,
+        { NULL },
+        { FORMAT_TAG },
+        tests
+    }, {
+        init,
+        done,
+        fmt_default_reset,
+        fmt_default_prepare,
+        valid,
+        fmt_default_split,
+        get_binary,
+        fmt_default_salt,
+        { NULL },
+        fmt_default_source,
+        {
+            fmt_default_binary_hash_0,
+            fmt_default_binary_hash_1,
+            fmt_default_binary_hash_2,
+            fmt_default_binary_hash_3,
+            fmt_default_binary_hash_4,
+            fmt_default_binary_hash_5,
+            fmt_default_binary_hash_6
+        },
+        fmt_default_salt_hash,
+        NULL,
+        fmt_default_set_salt,
+        set_key,
+        get_key,
+        fmt_default_clear_keys,
+        crypt_all,
+        {
+            get_hash_0,
+            get_hash_1,
+            get_hash_2,
+            get_hash_3,
+            get_hash_4,
+            get_hash_5,
+            get_hash_6
+        },
+        cmp_all,
+        cmp_one,
+        cmp_exact
+    }
+};
+
+#endif /* plugin stanza */