readpassphrase-3
| Crates.io | readpassphrase-3 |
| lib.rs | readpassphrase-3 |
| version | 1.0.1 |
| created_at | 2025-08-06 05:50:14.256758+00 |
| updated_at | 2025-09-13 03:31:14.895483+00 |
| description | Simple wrapper around readpassphrase(3) |
| homepage | |
| repository | https://github.com/mrdomino/readpassphrase-3 |
| max_upload_size | |
| id | 1783443 |
| size | 50,907 |
Steven Dee (mrdomino)
documentation
README
readpassphrase-3
This crate endeavors to expose a thin Rust wrapper around the C readpassphrase(3) function for reading passphrases on the console in CLI programs.
It uses a few third-party dependencies: flags to readpassphrase are implemented via the bitflags library, native builds are done via cc, and memory zeroing can optionally be done by zeroize. To try to reduce churn in this library itself, we do not lock the versions of these dependencies; it is recommended that you vet their current versions yourself for compromises or software supply chain attacks. If you would rather not do that (or if you need support for wasm), consider instead using the excellent rpassword crate, which ships without external dependencies.
Usage
Add this crate to your project:
cargo add readpassphrase-3
If your project is using zeroize, you can instead do:
cargo add readpassphrase-3 -F zeroize
See https://docs.rs/readpassphrase-3 for documentation and examples.
Crate Features
linux-vendored, enabled by default, uses (on non-Windows and non-macOS) the bundled BSD readpassphrase source from the first-partytcm-readpassphrase-vendoredcrate, shipped separately so as to not subject this crate to the (permissive) ISC license.windows-vendored, also enabled by default, uses (on Windows only) a bundled readpassphrase implementation from the public domain.externaltells Rust to expect areadpassphraseimplementation to be provided externally (e.g. by an external build system like Bazel); this crate will not complain if it does not find one in the build script.libbsd-staticusesreadpassphrasefrom thelibbsdsystem library statically, i.e. without incurring a runtime dependency.zeroizeuseszeroizeto zero memory internally (otherwise a minimal in-crate version is used.)
NFAQ
Why use this?
readpassphrase(3) is a standard function that exists in many platforms’ libc implementations. It has had a lot of miles put on it; it is well-tested and works even under conditions like suspend/resume with C-z / fg, keeping echo off and so forth.
As well, readpassphrase(3) —and the interfaces this library exposes to it— does not allocate extra memory, making it relatively easy to be sure that you have zeroed all copies of your passwords after use. As long as you zero the memory you own, either the buffer you pass in to the non-owned readpassphrase or the String you receive from the owned getpass, you’re good.
Why not use this?
This crate requires either a readpassphrase(3) in the libc on your target platform or a build-time dependency on a C compiler; if you do not wish to take that on, then you should look elsewhere.
I’m getting a “mismatched types” error!
That’s not a question, but it’s okay. You are probably passing a Rust &str as the prompt argument. To avoid needing to take a dynamically allocated string or make a copy of the prompt on every call, this library takes a &CStr (i.e. a null-terminated span of characters) as its prompt argument.
If you’re passing a literal string, you can just prepend c to your string:
let _ = getpass(c"Prompt: ")?;
// ^
// |
// like this
If you need a dynamic prompt, look at CString.
Why is this named readpassphrase-3?
There is already an unmaintained readpassphrase crate that was not to my liking. Rather than try to invent a new name for this standard C function, I decided to pick a number. The number I picked, 3, corresponds to the “library calls” man section, in which readpassphrase’s man page is located.