Fix bcrypt hashers for Python 3.13 compatibility

eadwinCode · eadwinCode · commit 3b08ba76a308 · 2025-10-03T22:44:20.000+01:00
Add fallback handling for Python 3.13's strict 72-byte password
limit enforcement in bcrypt. BCryptSHA256Hasher now manually
pre-hashes with SHA256 when needed, and BCryptHasher explicitly
truncates passwords to 72 bytes. Maintains backward compatibility
across all Python versions.
diff --git a/ellar/core/security/hashers/bcrypt.py b/ellar/core/security/hashers/bcrypt.py
@@ -1,6 +1,11 @@
+import hashlib
+import math
+import typing as t
+
+from ellar.utils.crypto import RANDOM_STRING_CHARS
 from passlib.hash import django_bcrypt, django_bcrypt_sha256
 
-from .base import BaseHasher
+from .base import BaseHasher, EncodingSalt, EncodingType
 
 
 class BCryptSHA256Hasher(BaseHasher):
@@ -11,6 +16,9 @@ class BCryptSHA256Hasher(BaseHasher):
     must first install the bcrypt library.  Please be warned that
     this library depends on native C code and might cause portability
     issues.
+
+    This hasher uses SHA256 to pre-hash passwords, allowing passwords
+    of any length to be safely hashed without hitting bcrypt's 72-byte limit.
     """
 
     hasher = django_bcrypt_sha256
@@ -22,6 +30,55 @@ def _get_using_kwargs(self) -> dict:
             "rounds": self.rounds,
         }
 
+    def _sha256_hash(self, password: EncodingType) -> str:
+        """
+        Hash password with SHA256 and return as hex string.
+        This matches what passlib's django_bcrypt_sha256 does internally.
+        """
+        if isinstance(password, str):
+            password_bytes = password.encode("utf-8")
+        else:
+            password_bytes = password
+
+        return hashlib.sha256(password_bytes).hexdigest()
+
+    def encode(
+        self, password: EncodingType, salt: EncodingSalt = None
+    ) -> t.Union[str, t.Any]:
+        self._check_encode_args(password, salt)
+
+        default_salt_size = math.ceil(
+            self.salt_entropy / math.log2(len(RANDOM_STRING_CHARS))
+        )
+        using_kw = {"default_salt_size": default_salt_size, "salt": salt}
+        using_kw.update(self._get_using_kwargs())
+
+        # Try passlib first (works on Python < 3.13)
+        try:
+            return self.hasher.using(**using_kw).hash(password)
+        except ValueError as e:
+            # Python 3.13+ bcrypt enforces 72-byte limit before passlib can pre-hash
+            # So we pre-hash manually and use the plain bcrypt hasher
+            if "password cannot be longer than 72 bytes" in str(e):
+                hashed = self._sha256_hash(password)
+                return self.hasher.using(**using_kw).hash(hashed)
+            raise
+
+    def verify(self, secret: EncodingType, hash_secret: str) -> bool:
+        """
+        Verify secret against an existing hash.
+        """
+        # Try passlib first (works on Python < 3.13)
+        try:
+            return self.hasher.verify(secret, hash_secret)  # type:ignore[no-any-return]
+        except ValueError as e:
+            # Python 3.13+ bcrypt enforces 72-byte limit before passlib can pre-hash
+            # So we pre-hash manually
+            if "password cannot be longer than 72 bytes" in str(e):
+                hashed = self._sha256_hash(secret)
+                return self.hasher.verify(hashed, hash_secret)  # type:ignore[no-any-return]
+            raise
+
     def decode(self, encoded: str) -> dict:
         algorithm, empty, algostr, work_factor, data = encoded.split("$", 4)
         assert algorithm == self.algorithm
@@ -54,3 +111,33 @@ class BCryptHasher(BCryptSHA256Hasher):
 
     algorithm = "bcrypt"
     hasher = django_bcrypt
+
+    def encode(
+        self, password: EncodingType, salt: EncodingSalt = None
+    ) -> t.Union[str, t.Any]:
+        self._check_encode_args(password, salt)
+
+        # Truncate password to 72 bytes for bcrypt compatibility (Python 3.13+)
+        if isinstance(password, str):
+            password_bytes = password.encode("utf-8")[:72]
+        else:
+            password_bytes = password[:72]
+
+        default_salt_size = math.ceil(
+            self.salt_entropy / math.log2(len(RANDOM_STRING_CHARS))
+        )
+        using_kw = {"default_salt_size": default_salt_size, "salt": salt}
+        using_kw.update(self._get_using_kwargs())
+        return self.hasher.using(**using_kw).hash(password_bytes)
+
+    def verify(self, secret: EncodingType, hash_secret: str) -> bool:
+        """
+        Verify secret against an existing hash, truncating to 72 bytes.
+        """
+        # Truncate secret to 72 bytes for bcrypt compatibility (Python 3.13+)
+        if isinstance(secret, str):
+            secret_bytes = secret.encode("utf-8")[:72]
+        else:
+            secret_bytes = secret[:72]
+
+        return self.hasher.verify(secret_bytes, hash_secret)  # type:ignore[no-any-return]
