Handle pin_protocol field in HmacSecretInput #1

robin-nitrokey · 2021-11-04T15:45:47Z

The December 08, 2020 version of the Client to Authenticator Protocol
(CTAP) specification added the pinUvAuthProtocol(0x04) field to the
input data for the hmac-secret extension in the
authenticatorGetAssertion command. This patch checks that the value of
this field (if present) is set to 1 as we only support this pin
protocol.
https://fidoalliance.org/specs/fido-v2.1-rd-20201208/fido-client-to-authenticator-protocol-v2.1-rd-20201208.html

This is still a draft because it depends on trussed-dev/ctap-types#2.

src/lib.rs

Cargo.toml

The December 08, 2020 version of the Client to Authenticator Protocol (CTAP) specification added the pinUvAuthProtocol(0x04) field to the input data for the hmac-secret extension in the authenticatorGetAssertion command. This patch checks that the value of this field (if present) is set to 1 as we only support this pin protocol. https://fidoalliance.org/specs/fido-v2.1-rd-20201208/fido-client-to-authenticator-protocol-v2.1-rd-20201208.html

robin-nitrokey · 2021-11-25T16:01:14Z

Rebased onto main and removed the changes to the dependencies.

robin-nitrokey mentioned this pull request Nov 4, 2021

Update ctap-types and fido-authenticator Nitrokey/nitrokey-3-firmware#16

Merged

bcecchinato reviewed Nov 5, 2021

View reviewed changes

src/lib.rs Show resolved Hide resolved

nickray reviewed Nov 24, 2021

View reviewed changes

Cargo.toml Outdated Show resolved Hide resolved

nickray reviewed Nov 24, 2021

View reviewed changes

Cargo.toml Outdated Show resolved Hide resolved

nickray marked this pull request as ready for review November 24, 2021 23:42

robin-nitrokey force-pushed the hmac-secret branch from 9e26a01 to e055f5d Compare November 25, 2021 15:59

nickray merged commit 4c51a15 into trussed-dev:main Nov 25, 2021

robin-nitrokey deleted the hmac-secret branch November 29, 2021 11:36

Provide feedback