From 7d0982f81abcb1b36ff5433daf57433489272c1b Mon Sep 17 00:00:00 2001
From: Christian Kamm <mail@ckamm.de>
Date: Mon, 27 Jun 2022 16:48:14 +0200
Subject: [PATCH] Keypair: implement clone()

This was not implemented upstream in ed25519-dalek to force everyone to
think twice before creating another copy of a potentially sensitive
private key in memory.

See https://github.com/dalek-cryptography/ed25519-dalek/issues/76

However, there are now 9 instances of
  Keypair::from_bytes(&keypair.to_bytes())
in the solana codebase and it would be preferable to have a function.

In particular since this also comes up when writing programs and can
cause users to either start messing with lifetimes or discover the
from_bytes() workaround themselves.

This patch opts to not implement the Clone trait. This avoids automatic
use in order to preserve some of the original "let developers think
twice about this" intention.
---
 sdk/src/signer/keypair.rs | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/sdk/src/signer/keypair.rs b/sdk/src/signer/keypair.rs
index 4ee5c51b07232a..fef2d24d1598b7 100644
--- a/sdk/src/signer/keypair.rs
+++ b/sdk/src/signer/keypair.rs
@@ -64,6 +64,18 @@ impl Keypair {
     pub fn secret(&self) -> &ed25519_dalek::SecretKey {
         &self.0.secret
     }
+
+    /// Clones this `Keypair`.
+    ///
+    /// Note that the `Clone` trait is intentionally unimplemented.
+    /// Cloning a potentially sensitive secret key should be done explicitly.
+    pub fn clone(&self) -> Self {
+        Self(ed25519_dalek::Keypair {
+            // This will never error since self is a valid keypair
+            secret: ed25519_dalek::SecretKey::from_bytes(self.0.secret.as_bytes()).unwrap(),
+            public: self.0.public.clone(),
+        })
+    }
 }
 
 impl Signer for Keypair {