Fix verify with options without secret

Author: ranisalt

argon2.cjs

@@ -154,11 +154,7 @@ module.exports.needsRehash = needsRehash;
  * @param {Buffer} [options.secret]
  * @returns {Promise<boolean>} `true` if the digest parameters matches the hash generated from `plain`, otherwise `false`
  */
-async function verify(
-  digest,
-  password,
-  { secret } = { secret: Buffer.alloc(0) },
-) {
+async function verify(digest, password, options = {}) {
   const { id, ...rest } = deserialize(digest);
   if (!(id in types)) {
     return false;
@@ -171,6 +167,8 @@ async function verify(
     hash,
   } = rest;
 
+  const { secret = Buffer.alloc(0) } = options;
+
   return timingSafeEqual(
     await bindingsHash({
       password: Buffer.from(password),

test.cjs

@@ -255,6 +255,13 @@ describe("verify", () => {
     );
   });
 
+  it("verify with options without secret", async () => {
+    // https://github.com/ranisalt/node-argon2/issues/407
+    await assert.doesNotReject(
+      argon2.verify(await argon2.hash(password, { secret }), "password", {}),
+    );
+  });
+
   it("verify argon2d correct password", async () => {
     assert(
       await argon2.verify(