1. 24 Sep, 2017 2 commits
  2. 23 Sep, 2017 6 commits
  3. 11 Sep, 2017 2 commits
  4. 26 Aug, 2017 5 commits
  5. 25 Aug, 2017 2 commits
  6. 23 Aug, 2017 2 commits
  7. 22 Aug, 2017 5 commits
  8. 16 Aug, 2017 1 commit
    • Milan Broz's avatar
      Fix Argon2 benchmark. · 497fb0b3
      Milan Broz authored
      1) If the calculated costs were the same, it run forever.
      2) If the calculation returned final values in the first step,
      out costs were not updated and benchmark returned too low values.
  9. 15 Aug, 2017 5 commits
  10. 12 Aug, 2017 2 commits
    • Milan Broz's avatar
    • Milan Broz's avatar
      Move PBKDF internal benchmark to one place. · 5fc79f56
      Milan Broz authored
      Also cache its value in active context, so we run benchmark
      only once.
      The patch also changes calculated value for LUKS1 key digest
      to 125 miliseconds (it means that for full 8 used slots
      the additional slow-down is circa 1 second).
      Note that there is no need to have too high iteration count
      for key digest; if it is too computationally expensive, attacker
      will better decrypt of one sector with candidate key anyway.
      (Check for a known signature.)
      The reason to have some delay for key digest check was
      to complicate brute-force search for volume key with LUKS header
      only (and if RNG used to generate volumekey was flawed
      allowing such a search i reasonable time).
  11. 11 Aug, 2017 3 commits
    • Milan Broz's avatar
      Tweak kdf benchmark log.. · f4bb2ad6
      Milan Broz authored
    • Ondrej Mosnáček's avatar
      Fix Argon2 benchmark for decreasing parameters · 15b4f64b
      Ondrej Mosnáček authored
      When we have measured time smaller than target time, we are decreasing
      the parameters. Thus, we should first try to decrease t_cost and only
      if that is not possible should we try to decrease m_cost instead. The
      original logic was only valid for the case where parameters are being
      increased. Most notably this caused unusual parameter combinations for
      iteration time < 250 ms.
      In this commit we also factor out the now heavily nested parameter
      update formula.
    • Milan Broz's avatar
      Group functions together more logically. · a1a7d41e
      Milan Broz authored
      No functional change in this patch, just code shuffling.
  12. 10 Aug, 2017 5 commits