Scrypt fails to create Params with len=80

[dEajL3kA]

Hello.

We are currently implementing the existing specification of a security protocol. This requires, at one point, to hash a given "password" and "salt" with the scrypt functuion using exactly the following parameters:

scrypt_params = Params::new(15u8, 8u32, 1u32, 80usize);

This currently fails with an InvalidParams error. As far as I can tell, it is because len is greater than 64 😓

Why is the Rust implementation of scrypt limited to only 64 bytes output?

Is there any chance that this limitation can be increased to allow, at least, 80 bytes of output?

To make it clear: There are existing real-world specification that explicitely require to invoke scrypt() with a length of 80 bytes!

(Note: They will split the generated 80 bytes output into two sub-keys of 40 bytes each)

Thank you and best regards.

[tarcieri]

Your question is related to #449, namely the length parameter only applies when using the PasswordHasher interface (which is designed to produce a password hash string) and is ignored when using the low-level scrypt::scrypt interface.

We should definitely document this better and/or find a way to disentangle the output length from the other Params, possibly by making scrypt::scrypt accept explicit parameters rather than a Params struct and only using that for the PasswordHasher API.

--

Edit: to actually answer your question, you can use 64 (or whatever) as the length for Params, and supply an output of the desired size to scrypt::scrypt, and the 64 will be ignored

[dEajL3kA]

Edit: to actually answer your question, you can use 64 (or whatever) as the length for Params, and supply an output of the desired size to scrypt::scrypt, and the 64 will be ignored

Thanks for clarification! Works fine ☺️