This is an automated email from the ASF dual-hosted git repository.
rnewson pushed a change to branch main
in repository https://gitbox.apache.org/repos/asf/couchdb.git
from 46a781fdc Replace unique_integer with a ref in ets_lru
add 8655f58c6 remove pre-emptive cookie on successful basic auth
add 00fa01c60 Import fast_pbkdf2 at f47dc6c12ae9bb6
add d7e168ee7 switch PBKDF2 to fast_pbkdf2
add 21c2dec1d optimize couch_passwords:verify for OTP 25+
add 323432be1 Introduce pbkdf2_prf parameter
add a3306fd8c in-memory password hash cache
add 6108614f4 use couch password cache
add 28e27dbc1 give couch_password_hasher:hash a clearer name
add 30efa6964 upgrade password on next session or basic auth
add f37ddfa94 Enhance dev/run to use pbkdf2 with sha256
add 869838522 remove all password derivation fields before adding back the
new ones
add f0ddb2486 improve assertion failure messages
add a29ea969d Password hash upgrade tests
add c1e75c13f increase default password iterations to 50000
add b50aca0d9 update Makefile.win to match
add dbcbc9aee try to fix mac silicon and Windows Build
new 5fd357950 Merge pull request #4814 from
apache/decouple_offline_hash_strength_from_online
The 1 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
Makefile | 6 +-
Makefile.win | 4 +-
dev/run | 7 +-
rebar.config.script | 1 +
rel/overlay/etc/default.ini | 15 +-
rel/reltool.config | 6 +-
src/chttpd/src/chttpd_auth_cache.erl | 2 +-
.../eunit/chttpd_auth_hash_algorithms_tests.erl | 4 +-
src/chttpd/test/eunit/chttpd_auth_tests.erl | 5 +-
src/couch/src/couch.app.src | 1 +
src/couch/src/couch_auth_cache.erl | 26 +-
src/couch/src/couch_httpd_auth.erl | 102 ++--
src/couch/src/couch_password_hasher.erl | 99 +++-
src/couch/src/couch_passwords.erl | 148 ++----
src/couch/src/couch_passwords_cache.erl | 74 +++
src/couch/src/couch_primary_sup.erl | 12 +-
src/couch/src/couch_server.erl | 2 +-
src/couch/src/couch_users_db.erl | 71 ++-
src/couch/test/eunit/couch_passwords_tests.erl | 12 +-
src/docs/src/intro/security.rst | 4 +-
src/fast_pbkdf2/.gitignore | 30 ++
src/{dreyfus/LICENSE.txt => fast_pbkdf2/LICENSE} | 15 +-
src/fast_pbkdf2/Makefile | 39 ++
src/fast_pbkdf2/README.md | 58 ++
src/fast_pbkdf2/benchmarks/bench.ex | 37 ++
src/fast_pbkdf2/c_src/fast_pbkdf2.c | 592 +++++++++++++++++++++
src/fast_pbkdf2/mix.exs | 18 +
src/fast_pbkdf2/rebar.config | 60 +++
src/fast_pbkdf2/src/fast_pbkdf2.app.src | 15 +
src/fast_pbkdf2/src/fast_pbkdf2.erl | 62 +++
src/fast_pbkdf2/test/erl_pbkdf2.erl | 42 ++
src/fast_pbkdf2/test/pbkdf2_SUITE.erl | 203 +++++++
test/elixir/lib/couch/dbtest.ex | 8 +-
test/elixir/test/config/skip.elixir | 3 -
test/elixir/test/config_test.exs | 2 +-
test/elixir/test/helper_test.exs | 2 +-
test/elixir/test/users_db_security_test.exs | 120 ++++-
37 files changed, 1665 insertions(+), 242 deletions(-)
create mode 100644 src/couch/src/couch_passwords_cache.erl
create mode 100644 src/fast_pbkdf2/.gitignore
copy src/{dreyfus/LICENSE.txt => fast_pbkdf2/LICENSE} (94%)
create mode 100644 src/fast_pbkdf2/Makefile
create mode 100644 src/fast_pbkdf2/README.md
create mode 100644 src/fast_pbkdf2/benchmarks/bench.ex
create mode 100644 src/fast_pbkdf2/c_src/fast_pbkdf2.c
create mode 100644 src/fast_pbkdf2/mix.exs
create mode 100644 src/fast_pbkdf2/rebar.config
create mode 100644 src/fast_pbkdf2/src/fast_pbkdf2.app.src
create mode 100644 src/fast_pbkdf2/src/fast_pbkdf2.erl
create mode 100644 src/fast_pbkdf2/test/erl_pbkdf2.erl
create mode 100644 src/fast_pbkdf2/test/pbkdf2_SUITE.erl
