Only derive PartialEq and Eq for PrivateKey for tests

We shouldn't compare private keys in prod for side-channel resilience. Ideally we shouldn't clone too. We currently do for storage. Fixing this would probably require to serialize the private key in the credential struct.
2022-05-17 22:55:51 +02:00
parent f95ae1f5ab
commit 07424c3123
2 changed files with 5 additions and 2 deletions
--- a/src/ctap/crypto_wrapper.rs
+++ b/src/ctap/crypto_wrapper.rs
@@ -89,7 +89,9 @@ pub fn aes256_cbc_decrypt(
 }

 /// An asymmetric private key that can sign messages.
-#[derive(Clone, Debug, PartialEq, Eq)]
+#[derive(Clone, Debug)]
+// We shouldn't compare private keys in prod without constant-time operations.
+#[cfg_attr(test, derive(PartialEq, Eq))]
 pub enum PrivateKey {
    Ecdsa(ecdsa::SecKey),
 }