Remove Salt lifetime (#755)

tarcieri · web-flow · commit 2915b8662c90 · 2025-12-06T19:59:59.000-07:00
Companion PR to RustCrypto/traits#2109
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/argon2/src/lib.rs b/argon2/src/lib.rs
@@ -39,18 +39,18 @@
 )]
 //! # fn main() -> Result<(), Box<dyn std::error::Error>> {
 //! use argon2::{
-//!     password_hash::{PasswordHash, PasswordHasher, PasswordVerifier, phc::SaltString},
+//!     password_hash::{PasswordHash, PasswordHasher, PasswordVerifier, phc::Salt},
 //!     Argon2
 //! };
 //!
 //! let password = b"hunter42"; // Bad password; don't actually use!
-//! let salt = SaltString::generate(); // Note: needs the `getrandom` feature of `argon2` enabled
+//! let salt = Salt::generate(); // Note: needs the `getrandom` feature of `argon2` enabled
 //!
 //! // Argon2 with default params (Argon2id v19)
 //! let argon2 = Argon2::default();
 //!
 //! // Hash password to PHC string ($argon2id$v=19$...)
-//! let password_hash = argon2.hash_password(password, salt.as_ref())?.to_string();
+//! let password_hash = argon2.hash_password(password, &salt)?.to_string();
 //!
 //! // Verify password against PHC string.
 //! //
@@ -73,12 +73,12 @@
 )]
 //! # fn main() -> Result<(), Box<dyn std::error::Error>> {
 //! use argon2::{
-//!     password_hash::{PasswordHash, PasswordHasher, PasswordVerifier, phc::SaltString},
+//!     password_hash::{PasswordHash, PasswordHasher, PasswordVerifier, phc::Salt},
 //!     Algorithm, Argon2, Params, Version
 //! };
 //!
 //! let password = b"hunter42"; // Bad password; don't actually use!
-//! let salt = SaltString::generate(); // Note: needs the `getrandom` feature of `argon2` enabled
+//! let salt = Salt::generate(); // Note: needs the `getrandom` feature of `argon2` enabled
 //!
 //! // Argon2 with default params (Argon2id v19) and pepper
 //! let argon2 = Argon2::new_with_secret(
@@ -90,7 +90,7 @@
 //! .unwrap();
 //!
 //! // Hash password to PHC string ($argon2id$v=19$...)
-//! let password_hash = argon2.hash_password(password, salt.as_ref())?.to_string();
+//! let password_hash = argon2.hash_password(password, &salt)?.to_string();
 //!
 //! // Verify password against PHC string.
 //! //
@@ -623,14 +623,14 @@ impl<'key> Argon2<'key> {
 impl CustomizedPasswordHasher for Argon2<'_> {
     type Params = Params;
 
-    fn hash_password_customized<'a>(
+    fn hash_password_customized(
         &self,
         password: &[u8],
-        alg_id: Option<&'a str>,
+        salt: &[u8],
+        alg_id: Option<&str>,
         version: Option<u32>,
         params: Params,
-        salt: &'a str,
-    ) -> password_hash::Result<PasswordHash<'a>> {
+    ) -> password_hash::Result<PasswordHash> {
         let algorithm = alg_id
             .map(Algorithm::try_from)
             .transpose()?
@@ -655,22 +655,16 @@ impl CustomizedPasswordHasher for Argon2<'_> {
 
 #[cfg(all(feature = "alloc", feature = "password-hash"))]
 impl PasswordHasher for Argon2<'_> {
-    fn hash_password<'a>(
-        &self,
-        password: &[u8],
-        salt: &'a str,
-    ) -> password_hash::Result<PasswordHash<'a>> {
-        let salt = Salt::from_b64(salt)?;
-        let mut salt_arr = [0u8; 64];
-        let salt_bytes = salt.decode_b64(&mut salt_arr)?;
+    fn hash_password(&self, password: &[u8], salt: &[u8]) -> password_hash::Result<PasswordHash> {
+        let salt = Salt::new(salt)?;
 
         let output_len = self
             .params
             .output_len()
             .unwrap_or(Params::DEFAULT_OUTPUT_LEN);
 
         let output = Output::init_with(output_len, |out| {
-            Ok(self.hash_password_into(password, salt_bytes, out)?)
+            Ok(self.hash_password_into(password, &salt, out)?)
         })?;
 
         Ok(PasswordHash {
@@ -704,17 +698,18 @@ mod tests {
     const EXAMPLE_PASSWORD: &[u8] = b"hunter42";
 
     /// Example salt value. Don't use a static salt value!!!
-    const EXAMPLE_SALT: &str = "examplesaltvalue";
+    const EXAMPLE_SALT: &[u8] = b"example-salt";
 
     #[test]
     fn decoded_salt_too_short() {
         let argon2 = Argon2::default();
 
-        // Too short after decoding
-        let salt = "somesalt";
+        // Too short: minimum size 8-bytes
+        let salt = b"weesalt";
 
         let res =
-            argon2.hash_password_customized(EXAMPLE_PASSWORD, None, None, Params::default(), salt);
+            argon2.hash_password_customized(EXAMPLE_PASSWORD, salt, None, None, Params::default());
+
         assert_eq!(
             res,
             Err(password_hash::Error::SaltInvalid(
diff --git a/argon2/src/params.rs b/argon2/src/params.rs
@@ -397,10 +397,10 @@ impl TryFrom<&ParamsString> for Params {
 }
 
 #[cfg(feature = "password-hash")]
-impl<'a> TryFrom<&'a PasswordHash<'a>> for Params {
+impl TryFrom<&PasswordHash> for Params {
     type Error = password_hash::Error;
 
-    fn try_from(hash: &'a PasswordHash<'a>) -> password_hash::Result<Self> {
+    fn try_from(hash: &PasswordHash) -> password_hash::Result<Self> {
         let mut params = Self::try_from(&hash.params)?;
 
         if let Some(output) = &hash.hash {
diff --git a/argon2/tests/kat.rs b/argon2/tests/kat.rs
@@ -14,7 +14,6 @@ use argon2::{
     PasswordVerifier, Version,
 };
 use hex_literal::hex;
-use password_hash::phc::SaltString;
 
 /// Params used by the KATs.
 fn example_params() -> Params {
@@ -367,11 +366,7 @@ fn hashtest(
     assert_eq!(out, expected_raw_hash);
 
     // Test hash encoding
-    let salt_string = SaltString::encode_b64(salt).unwrap();
-    let phc_hash = ctx
-        .hash_password(pwd, salt_string.as_ref())
-        .unwrap()
-        .to_string();
+    let phc_hash = ctx.hash_password(pwd, salt).unwrap().to_string();
     assert_eq!(phc_hash, expected_phc_hash);
 
     let hash = PasswordHash::new(alternative_phc_hash).unwrap();
diff --git a/argon2/tests/phc_strings.rs b/argon2/tests/phc_strings.rs
@@ -8,10 +8,7 @@ use argon2::{
     Algorithm, Argon2, AssociatedData, KeyId, ParamsBuilder, PasswordHash, PasswordHasher,
     PasswordVerifier, Version,
 };
-use password_hash::{
-    errors::{Error, InvalidValue},
-    phc::SaltString,
-};
+use password_hash::errors::{Error, InvalidValue};
 
 /// Valid password
 pub const VALID_PASSWORD: &[u8] = b"password";
@@ -213,13 +210,9 @@ fn check_hash_encoding_parameters_order() {
 
     let ctx = Argon2::new(Algorithm::Argon2d, Version::V0x10, params);
 
-    let salt = vec![0; 8];
     let password = b"password";
-    let salt_string = SaltString::encode_b64(&salt).unwrap();
-    let password_hash = ctx
-        .hash_password(password, salt_string.as_ref())
-        .unwrap()
-        .to_string();
+    let salt = [0u8; 8];
+    let password_hash = ctx.hash_password(password, &salt).unwrap().to_string();
 
     // The parameters shall appear in the m,t,p,keyid,data order
     assert_eq!(
diff --git a/balloon-hash/src/lib.rs b/balloon-hash/src/lib.rs
@@ -32,19 +32,19 @@
 #![cfg_attr(not(feature = "getrandom"), doc = "```ignore")]
 //! # fn main() -> Result<(), Box<dyn std::error::Error>> {
 //! use balloon_hash::{
-//!     password_hash::{PasswordHash, PasswordHasher, PasswordVerifier, phc::SaltString},
+//!     password_hash::{PasswordHash, PasswordHasher, PasswordVerifier, phc::Salt},
 //!     Balloon
 //! };
 //! use sha2::Sha256;
 //!
 //! let password = b"hunter42"; // Bad password; don't actually use!
-//! let salt = SaltString::generate(); // Note: needs the `getrandom` feature of `balloon-hash` enabled
+//! let salt = Salt::generate(); // Note: needs the `getrandom` feature of `balloon-hash` enabled
 //!
 //! // Balloon with default params
 //! let balloon = Balloon::<Sha256>::default();
 //!
 //! // Hash password to PHC string ($balloon$v=1$...)
-//! let password_hash = balloon.hash_password(password, salt.as_str())?.to_string();
+//! let password_hash = balloon.hash_password(password, &salt)?.to_string();
 //!
 //! // Verify password against PHC string
 //! let parsed_hash = PasswordHash::new(&password_hash)?;
@@ -219,14 +219,14 @@ where
 {
     type Params = Params;
 
-    fn hash_password_customized<'a>(
+    fn hash_password_customized(
         &self,
         password: &[u8],
+        salt: &[u8],
         alg_id: Option<&str>,
         version: Option<Version>,
         params: Params,
-        salt: &'a str,
-    ) -> password_hash::Result<PasswordHash<'a>> {
+    ) -> password_hash::Result<PasswordHash> {
         let algorithm = alg_id
             .map(Algorithm::try_from)
             .transpose()?
@@ -248,15 +248,9 @@ where
     D: Digest + FixedOutputReset,
     Array<u8, D::OutputSize>: ArrayDecoding,
 {
-    fn hash_password<'a>(
-        &self,
-        password: &[u8],
-        salt: &'a str,
-    ) -> password_hash::Result<PasswordHash<'a>> {
-        let salt = Salt::from_b64(salt)?;
-        let mut salt_arr = [0u8; 64];
-        let salt_bytes = salt.decode_b64(&mut salt_arr)?;
-        let output = Output::new(&self.hash(password, salt_bytes)?)?;
+    fn hash_password(&self, password: &[u8], salt: &[u8]) -> password_hash::Result<PasswordHash> {
+        let salt = Salt::new(salt)?;
+        let output = Output::new(&self.hash(password, &salt)?)?;
 
         Ok(PasswordHash {
             algorithm: self.algorithm.ident(),
diff --git a/balloon-hash/src/params.rs b/balloon-hash/src/params.rs
@@ -106,10 +106,10 @@ impl TryFrom<&ParamsString> for Params {
 }
 
 #[cfg(feature = "password-hash")]
-impl<'a> TryFrom<&'a PasswordHash<'a>> for Params {
+impl TryFrom<&PasswordHash> for Params {
     type Error = password_hash::Error;
 
-    fn try_from(hash: &'a PasswordHash<'a>) -> password_hash::Result<Self> {
+    fn try_from(hash: &PasswordHash) -> password_hash::Result<Self> {
         Self::try_from(&hash.params)
     }
 }
diff --git a/balloon-hash/tests/balloon.rs b/balloon-hash/tests/balloon.rs
@@ -82,7 +82,7 @@ fn hash_simple_retains_configured_params() {
     const EXAMPLE_PASSWORD: &[u8] = b"hunter42";
 
     /// Example salt value. Don't use a static salt value!!!
-    const EXAMPLE_SALT: &str = "examplesaltvalue";
+    const EXAMPLE_SALT: &[u8] = b"example-salt";
 
     // Non-default but valid parameters
     let t_cost = 4;
diff --git a/password-auth/src/lib.rs b/password-auth/src/lib.rs
@@ -28,7 +28,7 @@ pub use crate::errors::{ParseError, VerifyError};
 use alloc::string::{String, ToString};
 use password_hash::{
     PasswordHasher, PasswordVerifier,
-    phc::{ParamsString, PasswordHash, SaltString},
+    phc::{ParamsString, PasswordHash, Salt},
 };
 
 #[cfg(not(any(feature = "argon2", feature = "pbkdf2", feature = "scrypt")))]
@@ -48,18 +48,15 @@ use scrypt::Scrypt;
 /// Uses the best available password hashing algorithm given the enabled
 /// crate features (typically Argon2 unless explicitly disabled).
 pub fn generate_hash(password: impl AsRef<[u8]>) -> String {
-    let salt = SaltString::generate();
-    generate_phc_hash(password.as_ref(), salt.as_ref())
+    let salt = Salt::generate();
+    generate_phc_hash(password.as_ref(), &salt)
         .map(|hash| hash.to_string())
         .expect("password hashing error")
 }
 
 /// Generate a PHC hash using the preferred algorithm.
 #[allow(unreachable_code)]
-fn generate_phc_hash<'a>(
-    password: &[u8],
-    salt: &'a str,
-) -> password_hash::Result<PasswordHash<'a>> {
+fn generate_phc_hash(password: &[u8], salt: &[u8]) -> password_hash::Result<PasswordHash> {
     //
     // Algorithms below are in order of preference
     //
@@ -163,11 +160,15 @@ mod tests {
 
     #[cfg(feature = "pbkdf2")]
     mod pdkdf2 {
-        use super::{EXAMPLE_PASSWORD, verify_password};
+        use super::verify_password;
+
+        /// PBKDF2 password test vector from the `pbkdf2` crate
+        const EXAMPLE_PASSWORD: &[u8] = b"passwordPASSWORDpassword";
 
-        /// PBKDF2 hash for the string "password".
-        const EXAMPLE_HASH: &str =
-            "$pbkdf2-sha256$i=4096,l=32$c2FsdA$xeR41ZKIyEGqUw22hFxMjZYok6ABzk4RpJY4c6qYE0o";
+        /// PBKDF2 hash test vector from the `pbkdf2` crate
+        const EXAMPLE_HASH: &str = "$pbkdf2-sha256$i=4096,l=40\
+            $c2FsdFNBTFRzYWx0U0FMVHNhbHRTQUxUc2FsdFNBTFRzYWx0\
+            $NIyJ28vTKy8y2BS4EW6EzysXNH68GAAYHE4qH7jdU+HGNVGMfaxH6Q";
 
         #[test]
         fn verify() {
diff --git a/pbkdf2/src/lib.rs b/pbkdf2/src/lib.rs
@@ -59,15 +59,15 @@
 #![cfg_attr(not(feature = "simple"), doc = "```ignore")]
 //! # fn main() -> Result<(), Box<dyn core::error::Error>> {
 //! use pbkdf2::{
-//!     password_hash::{PasswordHash, PasswordHasher, PasswordVerifier, phc::SaltString},
+//!     password_hash::{PasswordHash, PasswordHasher, PasswordVerifier, phc::Salt},
 //!     Pbkdf2
 //! };
 //!
 //! let password = b"hunter42"; // Bad password; don't actually use!
-//! let salt = SaltString::generate();
+//! let salt = Salt::generate();
 //!
 //! // Hash password to PHC string ($pbkdf2-sha256$...)
-//! let password_hash = Pbkdf2.hash_password(password, salt.as_ref())?.to_string();
+//! let password_hash = Pbkdf2.hash_password(password, &salt)?.to_string();
 //!
 //! // Verify password against PHC string
 //! let parsed_hash = PasswordHash::new(&password_hash)?;
diff --git a/pbkdf2/src/simple.rs b/pbkdf2/src/simple.rs
@@ -23,14 +23,14 @@ pub struct Pbkdf2;
 impl CustomizedPasswordHasher for Pbkdf2 {
     type Params = Params;
 
-    fn hash_password_customized<'a>(
+    fn hash_password_customized(
         &self,
         password: &[u8],
+        salt: &[u8],
         alg_id: Option<&str>,
         version: Option<password_hash::Version>,
         params: Params,
-        salt: &'a str,
-    ) -> Result<PasswordHash<'a>> {
+    ) -> Result<PasswordHash> {
         let algorithm = alg_id
             .map(Algorithm::try_from)
             .transpose()?
@@ -41,9 +41,7 @@ impl CustomizedPasswordHasher for Pbkdf2 {
             return Err(Error::Version);
         }
 
-        let salt = Salt::from_b64(salt)?;
-        let mut salt_arr = [0u8; 64];
-        let salt_bytes = salt.decode_b64(&mut salt_arr)?;
+        let salt = Salt::new(salt)?;
 
         let output = Output::init_with(params.output_length, |out| {
             let f = match algorithm {
@@ -53,7 +51,7 @@ impl CustomizedPasswordHasher for Pbkdf2 {
                 Algorithm::Pbkdf2Sha512 => pbkdf2_hmac::<Sha512>,
             };
 
-            f(password, salt_bytes, params.rounds, out);
+            f(password, &salt, params.rounds, out);
             Ok(())
         })?;
 
@@ -68,8 +66,8 @@ impl CustomizedPasswordHasher for Pbkdf2 {
 }
 
 impl PasswordHasher for Pbkdf2 {
-    fn hash_password<'a>(&self, password: &[u8], salt: &'a str) -> Result<PasswordHash<'a>> {
-        self.hash_password_customized(password, None, None, Params::default(), salt)
+    fn hash_password(&self, password: &[u8], salt: &[u8]) -> Result<PasswordHash> {
+        self.hash_password_customized(password, salt, None, None, Params::default())
     }
 }
 
@@ -246,10 +244,10 @@ impl TryFrom<&ParamsString> for Params {
     }
 }
 
-impl<'a> TryFrom<&'a PasswordHash<'a>> for Params {
+impl TryFrom<&PasswordHash> for Params {
     type Error = Error;
 
-    fn try_from(hash: &'a PasswordHash<'a>) -> Result<Self> {
+    fn try_from(hash: &PasswordHash) -> Result<Self> {
         if hash.version.is_some() {
             return Err(Error::Version);
         }
diff --git a/pbkdf2/tests/simple.rs b/pbkdf2/tests/simple.rs
diff --git a/scrypt/src/params.rs b/scrypt/src/params.rs
diff --git a/scrypt/src/simple.rs b/scrypt/src/simple.rs

Original file line number	Diff line number	Diff line change
`@@ -106,10 +106,10 @@ impl TryFrom<&ParamsString> for Params {`
`106`	`106`	`}`
`107`	`107`
`108`	`108`	`#[cfg(feature = "password-hash")]`
`109`		`-impl<'a> TryFrom<&'a PasswordHash<'a>> for Params {`
	`109`	`+impl TryFrom<&PasswordHash> for Params {`
`110`	`110`	`type Error = password_hash::Error;`
`111`	`111`
`112`		`- fn try_from(hash: &'a PasswordHash<'a>) -> password_hash::Result<Self> {`
	`112`	`+ fn try_from(hash: &PasswordHash) -> password_hash::Result<Self> {`
`113`	`113`	`Self::try_from(&hash.params)`
`114`	`114`	`}`
`115`	`115`	`}`