It's very bad that non-stored password parameters are stored for future rebuild. That's not what user expect - i.e. non-stored password should not be stored anywhere no matter what. This is to have some basic password security.