1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
#![cfg_attr(feature = "clippy", feature(plugin))]
#![cfg_attr(feature = "clippy", plugin(clippy))]
#![recursion_limit = "128"]
#![warn(missing_docs)]
#[macro_use]
extern crate derive_builder;
extern crate fancy_regex;
extern crate itertools;
#[macro_use]
extern crate lazy_static;
#[macro_use]
extern crate quick_error;
extern crate regex;
#[cfg(feature = "ser")]
extern crate serde;
#[cfg(feature = "ser")]
#[macro_use]
extern crate serde_derive;
extern crate time;
#[cfg(test)]
#[macro_use]
extern crate quickcheck;
use std::ascii::AsciiExt;
use matching::Match;
mod adjacency_graphs;
pub mod feedback;
mod frequency_lists;
mod matching;
mod scoring;
pub mod time_estimates;
#[derive(Debug, Clone)]
#[cfg_attr(feature = "ser", derive(Serialize))]
pub struct Entropy {
pub guesses: u64,
pub guesses_log10: u16,
pub crack_times_seconds: time_estimates::CrackTimes,
pub crack_times_display: time_estimates::CrackTimesDisplay,
pub score: u8,
pub feedback: Option<feedback::Feedback>,
pub sequence: Vec<Match>,
pub calc_time: u64,
}
quick_error! {
#[derive(Debug, Clone, Copy)]
pub enum ZxcvbnError {
BlankPassword {
description("Zxcvbn cannot evaluate a blank password")
}
NonAsciiPassword {
description("Zxcvbn can only evaluate ASCII passwords; this feature may be added in the future")
}
}
}
pub fn zxcvbn(password: &str, user_inputs: &[&str]) -> Result<Entropy, ZxcvbnError> {
if password.is_empty() {
return Err(ZxcvbnError::BlankPassword);
}
if !password.is_ascii() {
return Err(ZxcvbnError::NonAsciiPassword);
}
let start_time_ns = time::precise_time_ns();
let password = if password.len() > 100 {
&password[0..100]
} else {
password
};
let sanitized_inputs = user_inputs
.iter()
.enumerate()
.map(|(i, x)| (x.to_lowercase(), i + 1))
.collect();
let matches = matching::omnimatch(password, &sanitized_inputs);
let result = scoring::most_guessable_match_sequence(password, &matches, false);
let calc_time = (time::precise_time_ns() - start_time_ns) / 1_000_000;
let (attack_times, attack_times_display, score) =
time_estimates::estimate_attack_times(result.guesses);
let feedback = feedback::get_feedback(score, &matches);
Ok(Entropy {
guesses: result.guesses,
guesses_log10: result.guesses_log10,
crack_times_seconds: attack_times,
crack_times_display: attack_times_display,
score: score,
feedback: feedback,
sequence: result.sequence,
calc_time: calc_time,
})
}
#[cfg(test)]
mod tests {
use super::*;
use quickcheck::TestResult;
quickcheck! {
fn test_zxcvbn_doesnt_panic(password: String, user_inputs: Vec<String>) -> TestResult {
let inputs = user_inputs.iter().map(|s| s.as_ref()).collect::<Vec<&str>>();
zxcvbn(&password, &inputs).ok();
TestResult::from_bool(true)
}
}
#[test]
fn test_zxcvbn() {
let password = "r0sebudmaelstrom11/20/91aaaa";
let entropy = zxcvbn(password, &[]).unwrap();
assert_eq!(entropy.guesses, 455972282752000);
assert_eq!(entropy.guesses_log10, 14);
assert_eq!(entropy.score, 4);
assert!(!entropy.sequence.is_empty());
assert!(entropy.feedback.is_none());
}
#[test]
fn test_issue_13() {
let password = "Imaginative-Say-Shoulder-Dish-0";
let entropy = zxcvbn(password, &[]).unwrap();
assert_eq!(entropy.score, 4);
}
}