fix(dht): zeroize AEAD keys on drop (#4843)

Description --- Zeroizes authenticated encryption keys (via the `AuthenticatedCipherKey` struct) on drop. Fixes [issue 4842](#4842). Motivation and Context --- Authenticated encryption (AEAD) keys are intended to be zeroized on drop, but the relevant macros are not applied. This work adds the macros. How Has This Been Tested? --- Manually tested that `Zeroize` was not supported previously, and is supported now.
tari-project · Oct 24, 2022 · 9957222 · 9957222
1 parent 3c97be4
commit 9957222
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/comms/dht/src/crypt.rs b/comms/dht/src/crypt.rs
@@ -59,6 +59,9 @@ use crate::{
 #[derive(Debug, Clone, Zeroize)]
 #[zeroize(drop)]
 pub struct CipherKey(chacha20::Key);
+
+#[derive(Debug, Clone, Zeroize)]
+#[zeroize(drop)]
 pub struct AuthenticatedCipherKey(chacha20poly1305::Key);
 
 const MESSAGE_BASE_LENGTH: usize = 6000;