Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Saving takes the same time as opening database, bacause of key stretching #5132

Closed
vstoykovbg opened this issue Jul 19, 2020 · 2 comments
Closed

Saving takes the same time as opening database, bacause of key stretching #5132

vstoykovbg opened this issue Jul 19, 2020 · 2 comments
Labels
bug

Comments

@vstoykovbg
Copy link

vstoykovbg commented Jul 19, 2020
edited

Overview

The problem is the key stretching is being executed not only when opening a .kdbx database, but also when saving changes to the database.

This bug affect users which change key stretching parameters in order to make bruteforcing harder (i.e. take 10-30 seconds or more for every burteforcing attempt on modern computer).

Steps to Reproduce

  1. Create new database.
  2. Change the key stretching settings so the key stretching take about 30 seconds.
  3. Save and lock the database.
  4. Measure the time needed for the database to open.
  5. Make changes, save changes and measure the time needed to save the database.
  6. Compare the time from step 4 and step 5. It should be identical, so I assume that the reason for this is the key stretching.

Expected Behavior

I expect that saving changes would happen instantly and key stretching to be performed only when opening the database.

Actual Behavior

Saving changes take time because key stretching computation is performed every time the data is saved. And computer goes "brrr..." because the key stretching is computational intensive.

Version

KeePassXC - Version 2.3.1
Revision: 2fcaeea

Libraries:

  • Qt 5.9.5
  • libgcrypt 1.8.1

Operating system: Ubuntu 18.04.4 LTS
CPU architecture: x86_64
Kernel: linux 4.15.0-111-generic

Enabled extensions:

  • Auto-Type
  • Browser Integration
  • Legacy Browser Integration (KeePassHTTP)
  • SSH Agent
  • YubiKey

Operating System: Ubuntu Linux

Workaround

It's possible to use external key stretching app (like slowkdf), but this is not practical and there is a risk of accidental copy/paste/clipbord leaks (pasting the stretched key into random window, malicious clipboard malware).
@vstoykovbg vstoykovbg added the bug label Jul 19, 2020
@droidmonkey
Copy link
Member

droidmonkey commented Jul 19, 2020
edited

You mean key transformation. To increase security, KeePass databases use a new randomized nonce every time you save the database. Setting the key transformation time to 1 Second is more than sufficient to prevent brute force attacks.

This is not a bug.

Also, you really need to update your version.

@vstoykovbg
Copy link
Author

vstoykovbg commented Jul 22, 2020
edited

Why not use the same key for encryption and use new nonce at the same time?

Passphrase -> key stretching algorithm -> key

Then, use the key and random nonce to encrypt the data. Is there a reason to introduce the random nonce in the first step (passphrase -> key stretching) instead of after the key is stretched (key -> encryption)?

If the attacker have access to the key this means he have access to the RAM and most likely also have access to the passphrase.

I am using the KeePassXC included in Ubuntu.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@droidmonkey @vstoykovbg