From 1469d83a967cf2877b76e50d596b190f85346632 Mon Sep 17 00:00:00 2001
From: Johannes Bauer <joe@johannes-bauer.com>
Date: Fri, 25 Oct 2019 13:33:48 +0200
Subject: [PATCH] Fix default KDF

Inconsistency in KDF documentation fixed.
---
 README.md         | 2 +-
 file_encryption.h | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/README.md b/README.md
index 9027b60..9c03073 100644
--- a/README.md
+++ b/README.md
@@ -26,7 +26,7 @@ allow for easy code review. It exclusively uses fixed message lengths.
 
 The key database is encrypted itself, using AES256-GCM, a 128 bit randomized
 initialization vector and authenticated with a 128 bit authentication tag. Key
-derivation is done using scrypt with N = 131072 = 2^18, r = 8, p = 1.
+derivation is done using scrypt with N = 262144 = 2^18, r = 8, p = 1.
 
 ## Dependencies
 OpenSSL v1.1 is required for luksrku.
diff --git a/file_encryption.h b/file_encryption.h
index e17f5ec..ced6d0b 100644
--- a/file_encryption.h
+++ b/file_encryption.h
@@ -38,7 +38,7 @@ enum kdf_t {
 	KDF_PBKDF2_MAX = KDF_PBKDF2_MIN + 0,
 };
 
-#define ENCRYPTED_FILE_DEFAULT_KDF			KDF_SCRYPT_N17_r8_p1
+#define ENCRYPTED_FILE_DEFAULT_KDF			KDF_SCRYPT_N18_r8_p1
 #define ENCRYPTED_FILE_SALT_SIZE			16
 #define ENCRYPTED_FILE_KEY_SIZE				32
 #define ENCRYPTED_FILE_AUTH_TAG_SIZE		16