pub struct CapSecret(_);
Expand description
A CapSecret is used by a caller to prove to a callee access to a committed CapGrant.
It is a random, unique identifier for the capability, which is shared by the grantor to allow access to others. The grantor can optionally further restrict usage of the secret to specific agents.
@todo enforce that secrets are unique across all grants in a chain.
Trait Implementations
sourceimpl Debug for CapSecret
impl Debug for CapSecret
The only meaningful debug information for a cryptograhpic secret is the literal bytes. Also, encodings like base64 are not constant time so debugging could open some weird side channel issue trying to be ‘human friendly’. It seems better to never try to encode secrets.
sourceimpl<'de> Deserialize<'de> for CapSecret
impl<'de> Deserialize<'de> for CapSecret
sourcefn deserialize<D>(
deserializer: D
) -> Result<CapSecret, <D as Deserializer<'de>>::Error>where
D: Deserializer<'de>,
fn deserialize<D>(
deserializer: D
) -> Result<CapSecret, <D as Deserializer<'de>>::Error>where
D: Deserializer<'de>,
sourceimpl From<[u8; 64]> for CapSecret
impl From<[u8; 64]> for CapSecret
Trivial new type derivation. Secrets should have private interiors and be constructed directly from fixed length arrays of known length.
sourceimpl From<CapSecret> for CapAccess
impl From<CapSecret> for CapAccess
Implements secret.into() shorthand for CapAccess::Transferable(secret)
sourceimpl PartialEq<CapSecret> for CapSecret
impl PartialEq<CapSecret> for CapSecret
Constant time equality check. This mitigates timing attacks where a remote agent can reverse engineer data by measuring tiny changes in latency associated with optimised equality checks. More matching bytes = more latency = vulnerability. This type of attack has been successfully demonstrated over a network despite varied latencies.
sourceimpl Serialize for CapSecret
impl Serialize for CapSecret
sourcefn serialize<S>(
&self,
serializer: S
) -> Result<<S as Serializer>::Ok, <S as Serializer>::Error>where
S: Serializer,
fn serialize<S>(
&self,
serializer: S
) -> Result<<S as Serializer>::Ok, <S as Serializer>::Error>where
S: Serializer,
sourceimpl TryFrom<&CapSecret> for SerializedBytes
impl TryFrom<&CapSecret> for SerializedBytes
type Error = SerializedBytesError
type Error = SerializedBytesError
sourcefn try_from(t: &CapSecret) -> Result<SerializedBytes, SerializedBytesError>
fn try_from(t: &CapSecret) -> Result<SerializedBytes, SerializedBytesError>
sourceimpl TryFrom<CapSecret> for SerializedBytes
impl TryFrom<CapSecret> for SerializedBytes
type Error = SerializedBytesError
type Error = SerializedBytesError
sourcefn try_from(t: CapSecret) -> Result<SerializedBytes, SerializedBytesError>
fn try_from(t: CapSecret) -> Result<SerializedBytes, SerializedBytesError>
sourceimpl TryFrom<SerializedBytes> for CapSecret
impl TryFrom<SerializedBytes> for CapSecret
type Error = SerializedBytesError
type Error = SerializedBytesError
sourcefn try_from(sb: SerializedBytes) -> Result<CapSecret, SerializedBytesError>
fn try_from(sb: SerializedBytes) -> Result<CapSecret, SerializedBytesError>
impl Copy for CapSecret
impl Eq for CapSecret
Auto Trait Implementations
impl RefUnwindSafe for CapSecret
impl Send for CapSecret
impl Sync for CapSecret
impl Unpin for CapSecret
impl UnwindSafe for CapSecret
Blanket Implementations
impl<T> ArchivePointee for T
impl<T> ArchivePointee for T
type ArchivedMetadata = ()
type ArchivedMetadata = ()
fn pointer_metadata(
_: &<T as ArchivePointee>::ArchivedMetadata
) -> <T as Pointee>::Metadata
fn pointer_metadata(
_: &<T as ArchivePointee>::ArchivedMetadata
) -> <T as Pointee>::Metadata
sourceimpl<T> BorrowMut<T> for Twhere
T: ?Sized,
impl<T> BorrowMut<T> for Twhere
T: ?Sized,
const: unstable · sourcefn borrow_mut(&mut self) -> &mut T
fn borrow_mut(&mut self) -> &mut T
impl<F, W, T, D> Deserialize<With<T, W>, D> for Fwhere
W: DeserializeWith<F, T, D>,
D: Fallible + ?Sized,
F: ?Sized,
impl<F, W, T, D> Deserialize<With<T, W>, D> for Fwhere
W: DeserializeWith<F, T, D>,
D: Fallible + ?Sized,
F: ?Sized,
fn deserialize(
&self,
deserializer: &mut D
) -> Result<With<T, W>, <D as Fallible>::Error>
fn deserialize(
&self,
deserializer: &mut D
) -> Result<With<T, W>, <D as Fallible>::Error>
sourceimpl<Q, K> Equivalent<K> for Qwhere
Q: Eq + ?Sized,
K: Borrow<Q> + ?Sized,
impl<Q, K> Equivalent<K> for Qwhere
Q: Eq + ?Sized,
K: Borrow<Q> + ?Sized,
sourcefn equivalent(&self, key: &K) -> bool
fn equivalent(&self, key: &K) -> bool
key
and return true
if they are equal.