KDF parameters missing units in Encryption Settings #10558
Comments
|
Another note, but about the KDF selection itself (not the KDF parameters): In the box for Key Derivation Function, Argon2d is shown as "recommended", while Argon2id is not. This comment says that Argon2id is the default since KeePassXC 2.6.6. Other sources like the audit and RFC 9106 also recommend Argon2id over Argon2d. The KeePassXC documentation says in point 6 about Database Settings:
Should the "recommended" string be moved to the Argon2id entry? (Not sure whether this should be it's own issue.) |
|
After having converted the database from AES-KDF to Argon2id, the settings show correctly at first try, i.e. without toggling Advanced Settings off and on again. |
Overview
In Database Settings -> Security -> Encryption Settings, the units for memory usage (MiB) and parallelism (threads) only show after I disable and re-enable Advanced settings. Also, both default to 1 when units are not shown (compared to 64 MiB and 4 threads with units shown). My database currently uses AES-KDF, which I wanted to change to Argon2id.
Steps to Reproduce
Version A:
Version B:
Expected Behavior
I would expect to see memory usage "64 MiB" and parallelism "4 threads" (or some other values, but including units) every time, including steps 5/6 above.
Actual Behavior
I see memory usage "1" and parallelism "1". Units are missing and the suggested values are the minimum possible, not some (I guess) recommended values.
Context
The database currently uses AES-KDF, which I want to change. I'm using KeePassXC from the Arch Linux package.
KeePassXC - Version 2.7.7
Revision: 68e2dd8
Qt 5.15.13
Debugging mode is disabled.
Operating system: Arch Linux
CPU architecture: x86_64
Kernel: linux 6.6.23-1-lts
Enabled extensions:
Cryptographic libraries:
Operating System: Linux
Desktop Env: i3
Windowing System: X11
The text was updated successfully, but these errors were encountered: