fix: SecretKey.fromBytes perform constant time comparison to zero byt…

…es (#108) * fix: SecretKey.fromBytes perform constant time comparison to zero bytes * Adds ZERO_BYTES constant * Update lib.ts --------- Co-authored-by: Lion - dapplion <35266934+dapplion@users.noreply.github.com>
ChainSafe · Sep 11, 2023 · 56d9a80 · 56d9a80
1 parent b1ba633
commit 56d9a80
Showing 1 changed file with 2 additions and 10 deletions.
diff --git a/src/lib.ts b/src/lib.ts
@@ -10,6 +10,7 @@ const PUBLIC_KEY_LENGTH_COMPRESSED = 48;
 const PUBLIC_KEY_LENGTH_UNCOMPRESSED = 48 * 2;
 const SIGNATURE_LENGTH_COMPRESSED = 96;
 const SIGNATURE_LENGTH_UNCOMPRESSED = 96 * 2;
+const SECRET_KEY_ZERO_BYTES = new Uint8Array(SECRET_KEY_LENGTH);
 
 export {BLST_ERROR};
 export class ErrorBLST extends Error {
@@ -64,7 +65,7 @@ export class SecretKey {
     if (skBytes.length !== SECRET_KEY_LENGTH) {
       throw new ErrorBLST(BLST_ERROR.BLST_INVALID_SIZE);
     }
-    if (isZeroBytes(skBytes)) {
+    if (crypto.timingSafeEqual(skBytes, SECRET_KEY_ZERO_BYTES)) {
       throw new ErrorBLST(BLST_ERROR.ZERO_SECRET_KEY);
     }
     const sk = new SkConstructor();
@@ -308,12 +309,3 @@ function randomBytesNonZero(BYTES_COUNT: number): Buffer {
   rand[0] = 1;
   return rand;
 }
-
-function isZeroBytes(bytes: Uint8Array): boolean {
-  for (let i = 0; i < bytes.length; i++) {
-    if (bytes[i] !== 0) {
-      return false;
-    }
-  }
-  return true;
-}