crypto: Don't allow user identities to verify devices of other users.
This commit is contained in:
parent
9edc876160
commit
d908d0f817
1 changed files with 8 additions and 0 deletions
|
@ -332,6 +332,10 @@ impl UserIdentity {
|
|||
/// Returns an empty result if the signature check succeeded, otherwise a
|
||||
/// SignatureError indicating why the check failed.
|
||||
pub fn is_device_signed(&self, device: &ReadOnlyDevice) -> Result<(), SignatureError> {
|
||||
if self.user_id() != device.user_id() {
|
||||
return Err(SignatureError::UserIdMissmatch);
|
||||
}
|
||||
|
||||
self.self_signing_key.verify_device(device)
|
||||
}
|
||||
}
|
||||
|
@ -413,6 +417,10 @@ impl OwnUserIdentity {
|
|||
/// Returns an empty result if the signature check succeeded, otherwise a
|
||||
/// SignatureError indicating why the check failed.
|
||||
pub fn is_device_signed(&self, device: &ReadOnlyDevice) -> Result<(), SignatureError> {
|
||||
if self.user_id() != device.user_id() {
|
||||
return Err(SignatureError::UserIdMissmatch);
|
||||
}
|
||||
|
||||
self.self_signing_key.verify_device(device)
|
||||
}
|
||||
|
||||
|
|
Loading…
Reference in a new issue