From 12a90e6b8781d1d4de02e1374b2e3277d132d44c Mon Sep 17 00:00:00 2001 From: Stan Bondi Date: Mon, 24 Jan 2022 15:21:46 +0200 Subject: [PATCH] fix: prevent key leaking through derive debug impl (#3735) Description --- - Impl custom Debug for `UnblindedOutput` to prevent inadvertent leaking of private keys Motivation and Context --- Secret keys would previously have been written to logs if debug formatting was used How Has This Been Tested? --- --- .../transaction/unblinded_output.rs | 26 +++++++++++++++++-- 1 file changed, 24 insertions(+), 2 deletions(-) diff --git a/base_layer/core/src/transactions/transaction/unblinded_output.rs b/base_layer/core/src/transactions/transaction/unblinded_output.rs index ad79c4dd57..e9e3a8e862 100644 --- a/base_layer/core/src/transactions/transaction/unblinded_output.rs +++ b/base_layer/core/src/transactions/transaction/unblinded_output.rs @@ -23,7 +23,11 @@ // Portions of this file were originally copyrighted (c) 2018 The Grin Developers, issued under the Apache License, // Version 2.0, available at http://www.apache.org/licenses/LICENSE-2.0. -use std::{cmp::Ordering, ops::Shl}; +use std::{ + cmp::Ordering, + fmt::{Debug, Formatter}, + ops::Shl, +}; use rand::rngs::OsRng; use serde::{Deserialize, Serialize}; @@ -57,7 +61,7 @@ use crate::{ /// An unblinded output is one where the value and spending key (blinding factor) are known. This can be used to /// build both inputs and outputs (every input comes from an output) // TODO: Try to get rid of 'Serialize' and 'Deserialize' traits here; see related comment at 'struct RawTransactionInfo' -#[derive(Debug, Clone, Serialize, Deserialize)] +#[derive(Clone, Serialize, Deserialize)] pub struct UnblindedOutput { pub version: TransactionOutputVersion, pub value: MicroTari, @@ -281,3 +285,21 @@ impl Ord for UnblindedOutput { self.value.cmp(&other.value) } } + +impl Debug for UnblindedOutput { + fn fmt(&self, f: &mut Formatter<'_>) -> std::fmt::Result { + f.debug_struct("UnblindedOutput") + .field("version", &self.version) + .field("value", &self.value) + .field("spending_key", &"") + .field("features", &self.features) + .field("script", &self.script) + .field("covenant", &self.covenant) + .field("input_data", &self.input_data) + .field("script_private_key", &"") + .field("sender_offset_public_key", &self.sender_offset_public_key) + .field("metadata_signature", &self.metadata_signature) + .field("script_lock_height", &self.script_lock_height) + .finish() + } +}