rcrypt 0.4.0

A compact hashing/salting library based on bcrypt with smaller hashes
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161

/*
 * Copyright (c) 2022, Sayan Nandan <nandansayan@outlook.com>
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
*/

//! # rcrypt: A compact hashing and salting library based on bcrypt with smaller hashes
//!
//! `rcrypt`, short for "reduced crypt" is a more compact alternative to bcrypt,
//! generating **hashes that are 33.3% smaller** (40 bytes vs 60 bytes) than bcrypt.
//!
//! To achieve this, rcrypt merges fields of the hash and encodes the salt+digest into binary,
//! in accordance with the [BMCF specification](https://github.com/ademarre/binary-mcf).
//! Read [more here](https://github.com/ohsayan/rcrypt#how-it-works).
//!
//! This is a very simple example that you can use for conveniently hashing and
//! salting passwords:
//! ```
//! let password = String::from("pass123");
//!	let hash = rcrypt::hash(&password, rcrypt::DEFAULT_COST).unwrap();
//!	assert!(rcrypt::verify(&password, &hash).unwrap());
//! ```
//!
//! ## Migrating from bcrypt
//!
//! To migrate from bcrypt, simply keep this in mind: the returned hash is a [`Vec<u8>`]
//! instead of a [`String`], since `rcrypt` returns hashes with binary data.
//! Similary, to verify a hash, you'll have to pass the password as usual but the hash
//! passed must be a `&[u8]`, corresponding to the binary hash that rcrypt generates.
//!
//! The rest remains unchanged.
//!
//! ## Getting back your bcrypt hash
//!
//! If for some reason you need a [`String`] with the bcrypt hash, you can do that too!
//! Here's the procedure:
//! ```
//! use rcrypt::DEFAULT_COST;
//! let rhash = rcrypt::hash("mypassword", DEFAULT_COST).unwrap();
//! // now let's get the bcrypt hash from the rcrypt hash
//! let bhash = rcrypt::bmcf::decode_into_mcf(&rhash).unwrap();
//! ```

/// The default hash cost
pub const DEFAULT_COST: u32 = 12;
pub use crate::error::{RcryptError, RcryptResult};

mod algorithms;

/// Hash and salt the provided password with the given cost. If you don't know
/// which cost to use, use the [`DEFAULT_COST`]. The OS randomness is used to
/// generate the salt
pub fn hash<T: AsRef<[u8]>>(password: T, cost: u32) -> RcryptResult<Vec<u8>> {
    let hash = crate::algorithms::rcrypt_hash(password.as_ref(), cost)?;
    Ok(hash)
}

/// Hash and salt the provided password with the given cost and salt. If you don't know
/// which cost to use, use the [`DEFAULT_COST`]
pub fn hash_with_salt<T: AsRef<[u8]>>(
    password: T,
    cost: u32,
    salt: &[u8],
) -> RcryptResult<Vec<u8>> {
    let hash = crate::algorithms::rcrypt_hash_with(password.as_ref(), cost, salt)?;
    Ok(hash)
}

/// Verify if the provided password is correct using the provided hash
pub fn verify<T: AsRef<[u8]>>(password: T, hash: &[u8]) -> RcryptResult<bool> {
    let verified = crate::algorithms::rcrypt_verify(password.as_ref(), hash)?;
    Ok(verified)
}

pub mod bmcf {
    //! # MCF/BMCF tools
    //!
    //! This module contains encoding tools that enable you to conver bcrypt MCF
    //! hashes into their binary equivalent (BMCF) and decode binary hashes into
    //! MCF
    pub use crate::algorithms::decode_into_mcf;
    pub use crate::algorithms::encode_into_bmcf;
}

mod error {
    use std::fmt;
    /// A generic result for the rcrypt library
    pub type RcryptResult<T> = Result<T, RcryptError>;

    #[derive(Debug)]
    /// Errors that can result when hashing, salting, verifying, compressing
    /// or decompressing `rcrypt` hashes
    pub enum RcryptError {
        /// The hash is corrupted. The description is given in the tuple field
        CorruptedHash(String),
        /// The hash has the wrong size (expected, present)
        WrongSize(usize, usize),
        /// The hash prefix is unsupported
        UnsupportedHashPrefix(u8),
        /// The cost of the hash is incorrect
        BadDecodedCost(String),
        /// The cost is not allowed
        DisallowedCost(u32),
        /// Unknown scheme
        UnknownScheme(String),
        /// An error while decoding base64 data
        Base64Error(base64::DecodeError),
        /// The password contains illegal characters or is empty
        BadPassword,
        /// An error in the RNG call
        RngError(getrandom::Error),
        /// The salt size is invalid
        BadSalt(usize),
    }

    macro_rules! from {
        ($($ty:ty, $var:expr),*) => {
            $(impl From<$ty> for RcryptError {
                fn from(e: $ty) -> Self {
                    $var(e)
                }
            })*
        };
    }

    from!(
        base64::DecodeError,
        RcryptError::Base64Error,
        getrandom::Error,
        RcryptError::RngError
    );

    impl fmt::Display for RcryptError {
        fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
            match self {
                RcryptError::BadDecodedCost(c) => write!(f, "failed to decode cost: {}", c),
                RcryptError::Base64Error(e) => write!(f, "base64 decode error: {}", e),
                RcryptError::CorruptedHash(e) => write!(f, "corrupted hash: {}", e),
                RcryptError::UnknownScheme(e) => write!(f, "unknown scheme: {}", e),
                RcryptError::UnsupportedHashPrefix(p) => write!(f, "unsupported prefix: {}", p),
                RcryptError::WrongSize(esz, sz) => {
                    write!(f, "wrong hash size. expected {} bytes, found {}", esz, sz)
                }
                RcryptError::BadPassword => write!(f, "Bad password"),
                RcryptError::DisallowedCost(cst) => write!(f, "illegal cost: {}", cst),
                RcryptError::RngError(e) => write!(f, "error while generating salt: {}", e),
                RcryptError::BadSalt(slt) => write!(f, "Expected salt with 16 bytes. got {}", slt),
            }
        }
    }
}