feat: replaced flaky argon2 with better argon2 crate (#37)

* feat: replaced flaky argon2 with better argon2 crate * fix: applied cargo fmt nightly * docs: added comment specifying what the settings for Argon2 mean * fix: made hashing error a bit more descriptive * fix: fixed incorrect value for Kib
2023-12-25 16:28:56 +01:00 · 2023-12-25 16:28:56 +01:00 · fdc3e07be6
commit fdc3e07be6
parent 6a9f8dfa6f
9 changed files with 84 additions and 62 deletions
--- a/src/service/uiaa/mod.rs
+++ b/src/service/uiaa/mod.rs
@ -1,5 +1,6 @@
 mod data;

+use argon2::{PasswordHash, PasswordVerifier};
 pub use data::Data;

 use ruma::{
@ -81,8 +82,14 @@ impl Service {

                // Check if password is correct
                if let Some(hash) = services().users.password_hash(&user_id)? {
-                    let hash_matches =
-                        argon2::verify_encoded(&hash, password.as_bytes()).unwrap_or(false);
+                    let hash_matches = services()
+                        .globals
+                        .argon
+                        .verify_password(
+                            password.as_bytes(),
+                            &PasswordHash::new(&hash).expect("valid hash in database"),
+                        )
+                        .is_ok();

                    if !hash_matches {
                        uiaainfo.auth_error = Some(ruma::api::client::error::StandardErrorBody {