bitwarden · dani-garcia · Jan 25, 2024 · Jan 16, 2024 · Jan 19, 2024 · Jan 22, 2024
diff --git a/crates/bitwarden-crypto/src/keys/asymmetric_crypto_key.rs b/crates/bitwarden-crypto/src/keys/asymmetric_crypto_key.rs
@@ -17,10 +17,10 @@
 // Note that RsaPrivateKey already implements ZeroizeOnDrop, so we don't need to do anything
 // We add this assertion to make sure that this is still true in the future
 const _: () = {
    fn assert_zeroize_on_drop<T: zeroize::ZeroizeOnDrop>() {}
    fn assert_all() {
        assert_zeroize_on_drop::<RsaPrivateKey>();
    }
 };

 impl zeroize::ZeroizeOnDrop for AsymmetricCryptoKey {}
@@ -31,7 +31,7 @@
         let bits = 2048;
 
         Self {
-            key: RsaPrivateKey::new(rng, bits).expect("failed to generate a key"),
+            key: Box::pin(RsaPrivateKey::new(rng, bits).expect("failed to generate a key")),
         }
     }
 

diff --git a/crates/bitwarden-crypto/src/keys/device_key.rs b/crates/bitwarden-crypto/src/keys/device_key.rs
@@ -63,8 +63,8 @@ impl DeviceKey {
         let device_private_key: Vec<u8> = protected_device_private_key.decrypt_with_key(&self.0)?;
         let device_private_key = AsymmetricCryptoKey::from_der(device_private_key.as_slice())?;
 
-        let dec: Vec<u8> = protected_user_key.decrypt_with_key(&device_private_key)?;
-        let user_key: SymmetricCryptoKey = dec.as_slice().try_into()?;
+        let mut dec: Vec<u8> = protected_user_key.decrypt_with_key(&device_private_key)?;
+        let user_key: SymmetricCryptoKey = dec.as_mut_slice().try_into()?;
 
         Ok(UserKey(user_key))
     }
@@ -96,15 +96,15 @@ mod tests {
     #[test]
     fn test_decrypt_user_key() {
         // Example keys from desktop app
-        let user_key: &[u8] = &[
+        let user_key: &mut [u8] = &mut [
             109, 128, 172, 147, 206, 123, 134, 95, 16, 36, 155, 113, 201, 18, 186, 230, 216, 212,
             173, 188, 74, 11, 134, 131, 137, 242, 105, 178, 105, 126, 52, 139, 248, 91, 215, 21,
             128, 91, 226, 222, 165, 67, 251, 34, 83, 81, 77, 147, 225, 76, 13, 41, 102, 45, 183,
             218, 106, 89, 254, 208, 251, 101, 130, 10,
         ];
         let user_key = SymmetricCryptoKey::try_from(user_key).unwrap();
 
-        let key_data: &[u8] = &[
+        let key_data: &mut [u8] = &mut [
             114, 235, 60, 115, 172, 156, 203, 145, 195, 130, 215, 250, 88, 146, 215, 230, 12, 109,
             245, 222, 54, 217, 255, 211, 221, 105, 230, 236, 65, 52, 209, 133, 76, 208, 113, 254,
             194, 216, 156, 19, 230, 62, 32, 93, 87, 7, 144, 156, 117, 142, 250, 32, 182, 118, 187,