zipcrack.c

解加密的zip文件的密码的程序

/*
 * zipcrack.c - where the 'crack' routine is located
 */

/*
 * guiding comments for gencrack.pl
 *
 * MTH cpmask init_cpmask crack_cpmask load_img
 *
 * LCL init_crack_pw crack_pw
 * LOD load_zip
 *
 * ARC ARCH_i386
 * DEF USE_MULT_TAB
 * DEF TARGET_CPU 5 $ 6
 * DFT TARGET_CPU==COMPILE_CPU && USE_MULT_TAB
 * DEP defined(__i386__) || defined(__i386) || defined(i386)
 *
 * DEF USE_MULT_TAB
 * DFT USE_MULT_TAB
 * DEP 1
 *
 * END
 */

#include "crc32.h"

#undef USE_GCC_X86_ASM
#define USE_GCC_X86_ASM (ARCH_i386 && USE_GCC_ASM && USE_MULT_TAB)

static void init_crack_pw (void)
{
#if USE_MULT_TAB
  u16 t;
  for (t = 0; t < 16384; t++)
    mult_tab[t] = ((t*4+3) * (t*4+2) >> 8) & 0xff;
#endif
}

static int crack_pw (gen_func genfunc, callback_func cbfunc)
{
  int changed = -1;
  int crack_count = 0;
  u32 key_stack[(MAX_PW+1) * 3] = { 0x12345678UL, 0x23456789UL, 0x34567890UL };
  u32 *sp;
#if USE_GCC_X86_ASM
  int dummy; /* dummy output.  */
#endif

  sp = 0; /* to calm down dumb compilers */

  do
    {
      int count = file_count;
      int count2 = 0;
      u32 key0, key1, key2;
      u8 *p;
      u8 *b = files;
      
      if (changed < 0)
        {
          changed = strlen (pw);
          pw_end = pw + changed;
          sp = key_stack + changed * 3;
        }
      
      sp -= changed * 3;
      p = (u8 *)pw_end - changed;
      
      if (++crack_count >= 1000000 && verbosity)
        {
          printf ("checking pw %-40.40s\r", pw), fflush (stdout);
          crack_count = 0;
        }
      
#  if USE_GCC_X86_ASM
      asm("
        movl (%7),%0
        movl 4(%7),%1
        movl 8(%7),%2
        xorl %3,%3
        movb (%5),%b3
1:      xorb %b0,%b3
        shrl $8,%0
        incl %5
        xorl %c6(,%3,4),%0
        movb %b0,%b3
        addl $12,%7
        movl %0,(%7)
        addl %1,%3
        imul $134775813,%3
        leal 1(%3),%1
        shrl $24,%3
        movl %1,4(%7)
        xorb %b2,%b3
        shrl $8,%2
        xorl %c6(,%3,4),%2
        movb (%5),%b3
        orb  %b3,%b3
        movl %2,8(%7)
        jnz  1b
        " : "=c" (key0), "=a" (key1), "=b" (key2), "=&d" (dummy), "=D" (sp)
          : "S" (p), "i" (crc_32_tab), "D" (sp)
      );
#  else
      key0 = *sp++;
      key1 = *sp++;
      key2 = *sp++;
      do {
        *sp++ = key0 = crc32 (key0, *p++);
        *sp++ = key1 = (key1 + (u8)key0) * 134775813 + 1;
        *sp++ = key2 = crc32 (key2, key1 >> 24);
      } while (*p);
      
      sp -= 3;
#  endif
      
      do
        {
          u8 target, pre_target;
          
#         if USE_GCC_X86_ASM
            asm("
              movl $-12,%%edi
              pushl %%ebx
              addl $12,%3
              pushl %%ecx
              xorl %%edx,%%edx
              pushl %%ebp
              jmp  2f
1:            shrl $2,%%edx
              movb %c8(%%edx),%%dl
              xorb -1(%3,%%edi),%%dl\n"
#if TARGET_CPU == 6
"             movzbl %%dl,%%ebp\n"
#else
"             movl %%edx,%%ebp\n"
#endif
"             xorb %b4,%%dl
              shrl $8,%4\n"
#if TARGET_CPU == 6
"             movzbl %%dl,%%edx\n"
#else
"             andl $0xff,%%edx\n"
#endif
"             xorl %c7(,%%edx,4),%4\n"
#if TARGET_CPU == 6
"             movzbl %b4,%%edx\n"
#else
"             movb %b4,%%dl\n"
#endif
"             addl %5,%%edx
              imul $134775813,%%edx
              leal 1(%%edx),%5
              shrl $24,%%edx\n"
#if TARGET_CPU == 6
"             xorl %6,%%edx
              shrl $8,%6
              movzbl %%dl,%%edx\n"
#else
"             xorb %b6,%%dl
              shrl $8,%6\n"
#endif
"             xorl %c7(,%%edx,4),%6
2:            "
#if TARGET_CPU == 6
"             movzwl %w6,%%edx\n"
#else
"             movw %w6,%%dx\n"
#endif
"             shrl $2,%%edx
              movb %c8(%%edx),%%dl
              xorb (%3,%%edi),%%dl\n"
#if TARGET_CPU == 6
"             movzbl %%dl,%%ebp\n"
#else
"             movl %%edx,%%ebp\n"
#endif
"             xorb %b4,%%dl
              shrl $8,%4\n"
#if TARGET_CPU == 6
"             movzbl %%dl,%%edx\n"
#else
"             andl $0xff,%%edx\n"
#endif
"             xorl %c7(,%%edx,4),%4\n"
#if TARGET_CPU == 6
"             movzbl %b4,%%edx\n"
#else
"             movb %b4,%%dl\n"
#endif
"             addl %5,%%edx
              imul $134775813,%%edx
              leal 1(%%edx),%5
              shrl $24,%%edx\n"
#if TARGET_CPU == 6
"             xorl %6,%%edx
              shrl $8,%6
              movzbl %%dl,%%edx\n"
#else
"             xorb %b6,%%dl
              shrl $8,%6\n"
#endif
"             xorl %c7(,%%edx,4),%6
              addl $2,%%edi\n"
#if TARGET_CPU == 6
"             movzwl %w6,%%edx\n"
#else
"             movw %w6,%%dx\n"
#endif
"             jne  1b\n"
#if TARGET_CPU == 6
"             movzwl %w6,%6\n"
#else
"             andl $0xffff,%6\n"
#endif
"             movb -1(%3),%1
              shrl $2,%6
              movl %%ebp,%k2
              popl %%ebp
              popl %%ecx
              xorb %c8(%6),%1
              popl %%ebx
              " : "=S" (b), "=a" (target), "=d" (pre_target)
                : "S" (b), "c" (key0), "a" (key1), "b" (key2),
                  "i" (crc_32_tab), "i" (mult_tab)
                : "edi"
            );
#         else
#           if !USE_MULT_TAB
              u16 t;
#           endif
            u32 kez0, kez1, kez2;
            u8 *e = b + FILE_SIZE - 1;
          
            kez0 = key0, kez1 = key1, kez2 = key2;
            do
              {
#               if USE_MULT_TAB
                  pre_target = *b++ ^ mult_tab [(u16)(kez2) >> 2];
#               else
                  t = kez2 | 2;
                  pre_target = *b++ ^ (u8)(((u16) (t * (t^1)) >> 8));
#               endif
                kez0 = crc32 (kez0, pre_target);
                kez1 = (kez1 + (u8)kez0) * 134775813 + 1;
                kez2 = crc32 (kez2, kez1 >> 24);
              }
            while (b < e);
            
#           if USE_MULT_TAB
              target = *b++ ^ mult_tab [(u16)(kez2) >> 2];
#           else
              t = kez2 | 2;
              target = *b++ ^ (u8)(((u16) (t * (t^1)) >> 8));
#           endif
#         endif

          /*printf ("pw=%s, t1=%02x, t2=%02x (%02x, %02x)\n", pw, target, pre_target, b[0], b[1]);*/
          
          if (target != *b++)
            goto out;
          
          if (pre_target == *b++)
            count2++;
        }
      while(--count);
      
      if ((changed = cbfunc (pw, 0)))
         return changed;
      
      out:
    }
  while ((changed = genfunc ()));
  
  return 0;
}