bcrypter 0.1.1

The bcrypt password hashing function in pure Rust. Supports no_std
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95

#![no_std]
#![feature(alloc)]

extern crate alloc;
extern crate bcrypter;

use bcrypter::*;
use alloc::string::String;

#[test]
fn invalid_cost_high() {
    let pw = String::from("password");
    let result = password(pw).cost(32).hash();
    assert!(result.is_err())
}

#[test]
fn invalid_cost_low() {
    let pw = String::from("password");
    let result = password(pw).cost(3).hash();
    assert!(result.is_err())
}

#[test]
fn empty_password(){
    let result = password(String::from("")).cost(4).hash();
    assert!(result.is_ok())
}

#[test]
fn basic_password() {
    let result = password(String::from("123456")).cost(4).hash();
    assert!(result.is_ok())
}

#[test]
fn utf8_characters(){
    let utf8 = String::from("和风 ゼファー हलकी हवा نسيم عليل Céfiro");
    let result = password(utf8).cost(4).hash();
    assert!(result.is_ok())
}

#[test]
fn oversized_password() {
    // should truncate rather than panic
    let eightyfive_chars = String::from("AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
                        AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA");
    let result = password(eightyfive_chars).cost(4).hash();
    assert!(result.is_ok())
}

#[test]
fn null_byte_mid_string() {
    let salt = [42u8; 16]; 
    let mid_string = password(String::from("null\0byte")).salt(salt).cost(4)
                        .hash().unwrap().digest;
    let null_terminator = password(String::from("null\0")).salt(salt).cost(4)
                        .hash().unwrap().digest;
    let not_present = password(String::from("null")).salt(salt).cost(4)
                        .hash().unwrap().digest;
    assert_ne!(mid_string, null_terminator);
    assert_ne!(mid_string, not_present);
}

#[test]
fn verify_list_of_known_hashes() {
    // From CyberChef - https://gchq.github.io/CyberChef
    let passwords = [ "", "7", "123456", "hunter2", "plantguideBelgium",
                    "JuneSafetyBeautyFailPartialSlowly", "和风 ゼファー हलकी हवा نسيم عليل Céfiro"];

    let hashes =  [ "$2a$04$yM38ULou7XWlFfIXKFvULuA4YqQ74vgd8AAD6gUlMdHcqzNkooIJW",
                    "$2a$04$gYJKdRMZJCwmM7Nv0Jf2zuji/zOADSxeIkmM5RpMxKw6XHOU9FFuW",
                    "$2a$04$9qV92tpa9g9SmuxEgSj0VOgDNdpHlDzkSfJoowqYL3JaIqrV0L8qC",
                    "$2a$04$7eAf8viXin8zazyvaU2HLuZGEbvaHy/lsnlG.HFWkBST5irHhXKJO",
                    "$2a$04$tVS9V4uwUywsvRvPSQoX1eThLRqz.SeEt3PqfvribZCeajKhYgPtm",
                    "$2a$04$5XGs.ba8kks8/4A2YpFg6uD1wrs/tdUyT2lUVHgZjpud.9fxjcVnm",
                    "$2a$04$t1RGGM1/Y3GQYo3Z/cvW2ud0TAmtQfezLSqqnwHFHXPpHmSyRIgeK" ];

    for i in 0..hashes.len() {
        let result = password(String::from(passwords[i])).verify(hashes[i]).unwrap();
        assert!(result)
    }
}

#[test]
fn truncated_input() {
    let salt = [42u8; 16];
    let eighty_chars = String::from("1234567890ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz1234567890--------");
    let seventy_two_chars = String::from("1234567890ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz1234567890");
    let oversized = password(eighty_chars).salt(salt).cost(4)
                        .hash().unwrap();
    let truncated = password(seventy_two_chars).salt(salt).cost(4)
                        .hash().unwrap();
    assert_eq!(oversized.digest, truncated.digest);
}