1
0
mirror of https://git.FreeBSD.org/src.git synced 2024-12-22 11:17:19 +00:00
freebsd/sys
Allan Jude 85c15ab853 improve PBKDF2 performance
The PBKDF2 in sys/geom/eli/pkcs5v2.c is around half the speed it could be

GELI's PBKDF2 uses a simple benchmark to determine a number of iterations
that will takes approximately 2 seconds. The security provided is actually
half what is expected, because an attacker could use the optimized
algorithm to brute force the key in half the expected time.

With this change, all newly generated GELI keys will be approximately 2x
as strong. Previously generated keys will talk half as long to calculate,
resulting in faster mounting of encrypted volumes. Users may choose to
rekey, to generate a new key with the larger default number of iterations
using the geli(8) setkey command.

Security of existing data is not compromised, as ~1 second per brute force
attempt is still a very high threshold.

PR:		202365
Original Research:	https://jbp.io/2015/08/11/pbkdf2-performance-matters/
Submitted by:	Joe Pixton <jpixton@gmail.com> (Original Version), jmg (Later Version)
Reviewed by:	ed, pjd, delphij
Approved by:	secteam, pjd (maintainer)
MFC after:	2 weeks
Differential Revision:	https://reviews.freebsd.org/D8236
2017-02-19 19:30:31 +00:00
..
amd64 In pmap_enter(), set the PG_MANAGED flag on the new PTE in one place, 2017-02-19 18:00:57 +00:00
arm Change the naming of imx{5,6} gpio pins to exactly match the names used in 2017-02-18 18:24:03 +00:00
arm64 Load the new sp_el0 with interrupts disabled in fork_trampoline. If an 2017-02-15 14:56:47 +00:00
boot improve PBKDF2 performance 2017-02-19 19:30:31 +00:00
bsm
cam Remove dead mentions of CAM target mode APIs from drivers. 2017-02-19 17:27:58 +00:00
cddl MVF: 313876 2017-02-17 17:52:12 +00:00
compat There are some Linux binaries that expect the system to obey the "addr" 2017-02-19 17:17:06 +00:00
conf Add USB Mass Storage CTL frontend. This makes it possible 2017-02-19 17:47:43 +00:00
contrib Stop including sys/types.h from arm's machine/atomic.h, fix the places 2017-02-11 01:07:46 +00:00
crypto Remove pc98 support completely. 2017-01-28 02:22:15 +00:00
ddb Revert crap accidentally committed 2017-01-28 16:31:23 +00:00
dev Add USB Mass Storage CTL frontend. This makes it possible 2017-02-19 17:47:43 +00:00
fs ext2fs: Remove unused assignment. 2017-02-17 20:56:43 +00:00
gdb
geom improve PBKDF2 performance 2017-02-19 19:30:31 +00:00
gnu
i386 Implement rt_tgsigqueueinfo system call used by glibc for pthread_sigqueue(3). 2017-02-19 07:38:11 +00:00
isa Remove pc98 support completely. 2017-01-28 02:22:15 +00:00
kern locks: make trylock routines check for 'unowned' value 2017-02-19 16:28:46 +00:00
kgssapi
libkern Remove inet_ntoa() from the kernel 2017-02-16 20:50:01 +00:00
mips Bring back r313037, with fixes for mips: 2017-02-19 02:03:09 +00:00
modules Add USB Mass Storage CTL frontend. This makes it possible 2017-02-19 17:47:43 +00:00
net Bring back r313037, with fixes for mips: 2017-02-19 02:03:09 +00:00
net80211 [net80211] add a sysctl that forces a vap restart. 2017-02-11 05:33:49 +00:00
netgraph mppc - Finish pluging NETGRAPH_MPPC_COMPRESSION. 2017-01-20 00:02:11 +00:00
netinet Remove inet_ntoa() from the kernel 2017-02-16 20:50:01 +00:00
netinet6 Remove IPsec related PCB code from SCTP. 2017-02-13 11:37:52 +00:00
netipsec For translated packets do not adjust UDP checksum if it is zero. 2017-02-18 19:53:37 +00:00
netnatm
netpfil Use inet_ntoa_r() instead of inet_ntoa() throughout the kernel 2017-02-16 20:47:41 +00:00
netsmb
nfs
nfsclient
nfsserver
nlm
ofed
opencrypto
powerpc Bring back r313037, with fixes for mips: 2017-02-19 02:03:09 +00:00
riscv Implement atomic_fcmpset_*() for RISC-V. 2017-02-05 00:32:12 +00:00
rpc add svcpool_close to handle killed nfsd threads 2017-02-14 17:49:08 +00:00
security
sparc64 Bring back r313037, with fixes for mips: 2017-02-19 02:03:09 +00:00
sys mtx: plug the 'opts' argument when not used 2017-02-18 01:52:10 +00:00
teken
tests
tools Replace using of objdump with elfdump 2017-01-10 18:46:40 +00:00
ufs prefix UFS symbols with UFS_ to reduce namespace pollution 2017-02-15 19:50:26 +00:00
vm try to fix RACCT_RSS accounting 2017-02-14 13:54:05 +00:00
x86 Fix regression in r313898 on i386. 2017-02-19 03:57:41 +00:00
xdr
xen "Buses" is the preferred plural of "bus" 2017-01-15 17:54:01 +00:00
Makefile Remove pc98 support completely. 2017-01-28 02:22:15 +00:00