Better password storage #1753
Merged
Better password storage #1753
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
Thanks for submitting this pull request. bors try Note: if this build fails, read this. |
tryBuild failed: |
|
bors retry |
|
🔒 Permission denied Existing reviewers: click here to make nextgens a reviewer |
lub
previously requested changes
Feb 8, 2021
There was a problem hiding this comment.
Thank you very much, although the review took me longer than anticipated. But that's not your fault :)
I've left some thoughts and suggestions. Would be great if you could have a look at them, although I suspect you already have more experience with that part of the code than me. So maybe I missed some things.
I haven't tested the code on my system(s) yet, in case you want to incorporate some of the notes. But from reading it I didn't find any bugs.
ghostwheel42
reviewed
Feb 9, 2021
lub
previously approved these changes
Feb 11, 2021
nextgens
force-pushed
the
better-password-storage
branch
2 times, most recently
from
cf0ef56
to
aba4e3e
Compare
lub
previously approved these changes
Feb 13, 2021
|
@ghostwheel42 any chance you can update your review to get it merged? |
ghostwheel42
approved these changes
Feb 20, 2021
There was a problem hiding this comment.
@nextgens sorry, I somehow overlooked this.
But I think there's just a bors try missing, isn't it?
This was referenced Feb 24, 2021
Diman0
previously approved these changes
Mar 8, 2021
|
bors r+ |
bors bot
added a commit
that referenced
this pull request
Mar 8, 2021
1753: Better password storage r=mergify[bot] a=nextgens ## What type of PR? Enhancement: optimization of the logic to speedup authentication requests, support the import of most hashes passlib supports. ## What does this PR do? - it changes the default password cold-storage format to sha256+bcrypt - it enhances the logic to ensure that no CPU cycles are wasted when valid credentials are found - it fixes token authentication on /webdav/ - it lowers the number of rounds used for token storage (on the basis that they are high-entropy: not bruteforceable and speed matters) - it introduces a new setting to set the number of rounds used by the password hashing function (CREDENTIAL_ROUNDS). The setting can be adjusted as required and existing hashes will be migrated to the new cost-factor. - it updates the version of passlib in use and enables all supported hash types (that will be converted to the current settings on first use) - it removes the PASSWORD_SCHEME setting ### Related issue(s) - close #1194 - close #1662 - close #1706 ## Prerequistes Before we can consider review and merge, please make sure the following list is done and checked. If an entry in not applicable, you can check it or remove it from the list. - [x] In case of feature or enhancement: documentation updated accordingly - [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file. Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
|
Build failed: |
|
bors retry |
bors bot
added a commit
that referenced
this pull request
Mar 8, 2021
1753: Better password storage r=mergify[bot] a=nextgens ## What type of PR? Enhancement: optimization of the logic to speedup authentication requests, support the import of most hashes passlib supports. ## What does this PR do? - it changes the default password cold-storage format to sha256+bcrypt - it enhances the logic to ensure that no CPU cycles are wasted when valid credentials are found - it fixes token authentication on /webdav/ - it lowers the number of rounds used for token storage (on the basis that they are high-entropy: not bruteforceable and speed matters) - it introduces a new setting to set the number of rounds used by the password hashing function (CREDENTIAL_ROUNDS). The setting can be adjusted as required and existing hashes will be migrated to the new cost-factor. - it updates the version of passlib in use and enables all supported hash types (that will be converted to the current settings on first use) - it removes the PASSWORD_SCHEME setting ### Related issue(s) - close #1194 - close #1662 - close #1706 ## Prerequistes Before we can consider review and merge, please make sure the following list is done and checked. If an entry in not applicable, you can check it or remove it from the list. - [x] In case of feature or enhancement: documentation updated accordingly - [x] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/guide.html#changelog) entry file. Co-authored-by: Florent Daigniere <nextgens@freenetproject.org>
|
Build failed: |
|
bors retry |
|
Merge conflict. |
mergify
bot
dismissed stale reviews from lub and Diman0
Pull request has been modified.
This is also fixing tokens on /webdav/
shortcomings of the previous format included: - 1000x slower than it should be (no point in adding rounds since there is enough entropy: they are not bruteforceable) - vulnerable to DoS as explained in https://passlib.readthedocs.io/en/stable/lib/passlib.hash.sha256_crypt.html#security-issues
- remove PASSWORD_SCHEME altogether - introduce CREDENTIAL_ROUNDS - migrate all old hashes to the current format - auto-detect/enable all hash types that passlib supports - upgrade passlib to 1.7.4 (see Mailu#1706: ldap_salted_sha512 support)
nextgens
force-pushed
the
better-password-storage
branch
from
0521c13
to
96ae54d
Compare
|
bors r+ |
|
Build succeeded: |
bors bot
added a commit
that referenced
this pull request
Nov 16, 2021
2056: Passlib r=mergify[bot] a=ghostwheel42 ## What type of PR? minor bug-fix ## What does this PR do? compiles list of schemes using an iterator. will not fail when `scrypt` is not present in registry. ### Related issue(s) updates #1753 ## Prerequisites Before we can consider review and merge, please make sure the following list is done and checked. If an entry in not applicable, you can check it or remove it from the list. - [ ] In case of feature or enhancement: documentation updated accordingly - [ ] Unless it's docs or a minor change: add [changelog](https://mailu.io/master/contributors/workflow.html#changelog) entry file. Co-authored-by: Alexander Graf <ghostwheel42@users.noreply.github.com>
2 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What type of PR?
Enhancement: optimization of the logic to speedup authentication requests, support the import of most hashes passlib supports.
What does this PR do?
Related issue(s)
Prerequistes
Before we can consider review and merge, please make sure the following list is done and checked.
If an entry in not applicable, you can check it or remove it from the list.