shimun/ctap
1
0
Fork 0
Code Issues Pull Requests 1 Releases Wiki Activity

use builder pattern to expose all possible options

Browse Source
This commit is contained in:
shimun 2020-03-30 00:00:55 +02:00
parent ec932913e1
commit d4c9dd913f
Signed by: shimun
GPG Key ID: E81D8382DC2F971B
8 changed files with 420 additions and 299 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
Cargo.toml
View File

@ -1,7 +1,7 @@
[package] [package]
name = "ctap_hmac" name = "ctap_hmac"
description = "A Rust implementation of the FIDO2 CTAP protocol, including the HMAC extension" description = "A Rust implementation of the FIDO2 CTAP protocol, including the HMAC extension"
version = "0.2.1" version = "0.3.0"
license = "Apache-2.0/MIT" license = "Apache-2.0/MIT"
homepage = "https://github.com/ArdaXi/ctap/pull/2" homepage = "https://github.com/ArdaXi/ctap/pull/2"
repository = "https://github.com/shimunn/ctap" repository = "https://github.com/shimunn/ctap"
@ -19,5 +19,8 @@ cbor-codec = "0.7"
ring = "0.13" ring = "0.13"
untrusted = "0.6" untrusted = "0.6"
rust-crypto = "0.2" rust-crypto = "0.2"
hex = "0.4.0"
csv-core = "0.1.6" csv-core = "0.1.6"
derive_builder = "0.9.0"
[dev-dependencies]
crossbeam = "0.7.3"
hex = "0.4.0"

28
README.md
View File

@ -13,28 +13,28 @@ ctap is a library implementing the [FIDO2 CTAP](https://fidoalliance.org/specs/f
## Usage example ## Usage example
```rust ```rust
let devices = ctap::get_devices()?; use ctap_hmac::*;
let device_info = &devices[0]; let device_info = get_devices()?.next().expect("no device connected");
let mut device = ctap::FidoDevice::new(device_info)?; let mut device = FidoDevice::new(&device_info)?;
// This can be omitted if the FIDO device is not configured with a PIN. // This can be omitted if the FIDO device is not configured with a PIN.
let pin = "test"; let pin = "test";
device.unlock(pin)?; device.unlock(pin)?;
// In a real application these values would come from the requesting app. // In a real application these values would come from the requesting app.
let rp_id = "rp_id"; let cred_request = FidoCredentialRequestBuilder::default()
let user_id = [0]; .rp_id("rp_id")
let user_name = "user_name"; .user_name("user_name")
let client_data_hash = [0; 32]; .build().unwrap();
let cred = device.make_credential(
rp_id,
&user_id,
user_name,
&client_data_hash
)?;
let cred = device.make_credential(&cred_request)?;
let cred = &&cred;
let assertion_request = FidoAssertionRequestBuilder::default()
.rp_id("rp_id")
.credential(&&cred)
.build().unwrap();
// In a real application the credential would be stored and used later. // In a real application the credential would be stored and used later.
let result = device.get_assertion(&cred, &client_data_hash); let result = device.get_assertion(&assertion_request);
``` ```
## Limitations ## Limitations

48
examples/hmac.rs
View File

@ -2,8 +2,8 @@ extern crate ctap_hmac as ctap;
use crypto::digest::Digest; use crypto::digest::Digest;
use crypto::sha2::Sha256; use crypto::sha2::Sha256;
use ctap::extensions::hmac::{FidoHmacCredential, HmacExtension}; use ctap::extensions::hmac::HmacExtension;
use ctap_hmac::{AuthenticatorOptions, PublicKeyCredentialRpEntity, PublicKeyCredentialUserEntity}; use ctap::{FidoCredential, FidoCredentialRequestBuilder, AuthenticatorOptions};
use hex; use hex;
use std::env::args; use std::env::args;
use std::io::prelude::*; use std::io::prelude::*;
@ -14,38 +14,21 @@ const RP_ID: &str = "ctap_demo";
fn main() -> ctap::FidoResult<()> { fn main() -> ctap::FidoResult<()> {
let mut devices = ctap::get_devices()?; let mut devices = ctap::get_devices()?;
let device_info = &mut devices.next().expect("No authenicator found"); let device_info = &mut devices.next().expect("No authenticator found");
let mut device = ctap::FidoDevice::new(device_info)?; let mut device = ctap::FidoDevice::new(device_info)?;
let options = || {
Some(AuthenticatorOptions { let mut credential = match args().skip(1).next().map(|h| FidoCredential {
uv: false,
rk: true,
})
};
let mut credential = match args().skip(1).next().map(|h| FidoHmacCredential {
id: hex::decode(&h).expect("Invalid credential"), id: hex::decode(&h).expect("Invalid credential"),
rp_id: RP_ID.into(), public_key: None,
}) { }) {
Some(cred) => cred, Some(cred) => cred,
_ => { _ => {
let rp = PublicKeyCredentialRpEntity { let req = FidoCredentialRequestBuilder::default().rp_id(RP_ID).rp_name("ctap_hmac crate").user_name("example").uv(false).build().unwrap();
id: RP_ID,
name: Some("ctap_hmac crate"),
icon: None,
};
let user = PublicKeyCredentialUserEntity {
id: &[0u8],
name: "commandline",
icon: None,
display_name: None,
};
println!("Authorize using your device"); println!("Authorize using your device");
let credential: FidoHmacCredential = device let cred = device.make_hmac_credential(req).expect("Failed to request credential");
.make_hmac_credential_full(rp, user, &[0u8; 32], &[], options()) println!("Credential: {}\nNote: You can pass this credential as first argument in order to reproduce results", hex::encode(&cred.id));
.map(|cred| cred.into())?; cred
println!("Credential: {}\nNote: You can pass this credential as first argument in order to reproduce results", hex::encode(&credential.id));
credential
} }
}; };
let credential = credential; let credential = credential;
@ -61,14 +44,7 @@ fn main() -> ctap::FidoResult<()> {
let mut digest = Sha256::new(); let mut digest = Sha256::new();
digest.input(&message.as_bytes()); digest.input(&message.as_bytes());
digest.result(&mut salt); digest.result(&mut salt);
let hash = device let (cred, (hash1, _hash2)) = device.get_hmac_assertion(RP_ID, &[&credential], &salt, None, None)?;
.get_hmac_assertion( println!("Hash: {}", hex::encode(&hash1));
&credential,
&salt,
None,
None,
)?
.0;
println!("Hash: {}", hex::encode(&hash));
Ok(()) Ok(())
} }

55
examples/multiple.rs Normal file
View File

@ -0,0 +1,55 @@
extern crate ctap_hmac as ctap;
use crypto::digest::Digest;
use crypto::sha2::Sha256;
use ctap::{FidoCredential, FidoCredentialRequestBuilder, FidoAssertionRequestBuilder, AuthenticatorOptions, FidoDevice, FidoError, FidoResult};
use failure::_core::time::Duration;
use hex;
use std::env::args;
use std::io::prelude::*;
use std::io::stdin;
use std::io::stdout;
use std::sync::mpsc::channel;
use std::sync::Mutex;
use crossbeam::thread;
const RP_ID: &str = "ctap_demo";
fn run() -> ctap::FidoResult<()> {
let mut credentials = args().skip(1).map(|id| FidoCredential {
id: hex::decode(&id).expect("Invalid credential"),
public_key: None,
}).collect::<Vec<_>>();
if credentials.len() == 0 {
credentials = ctap::get_devices()?.map(|h| FidoDevice::new(&h).and_then(|mut dev| FidoCredentialRequestBuilder::default()
.rp_id(RP_ID).build().unwrap().make_credential(&mut dev))).collect::<FidoResult<Vec<FidoCredential>>>()?;
}
let credentials = credentials.iter().collect::<Vec<_>>();
let (s, r) = channel();
thread::scope(|scope| {
let handles = ctap::get_devices()?.map(|h| {
let req = FidoAssertionRequestBuilder::default().rp_id(RP_ID).credentials(&credentials[..]).build().unwrap();
let s = s.clone();
scope.spawn(move |_| {
FidoDevice::new(&h).and_then(|mut dev| {
req.get_assertion(&mut dev).map(|res| {
s.send(res.clone());
res
})
})
})
}).collect::<Vec<_>>();
for h in handles {
h.join();
}
Ok::<(), FidoError>(())
}).unwrap();
for res in r.iter().take(credentials.len()) {
dbg!(res);
}
Ok(())
}
fn main() {
dbg!(run());
}

9
src/cbor.rs
View File

@ -700,15 +700,16 @@ impl PublicKeyCredentialDescriptor {
pub struct AuthenticatorOptions { pub struct AuthenticatorOptions {
pub rk: bool, pub rk: bool,
pub uv: bool, pub uv: bool,
pub up: bool,
} }
impl AuthenticatorOptions { impl AuthenticatorOptions {
pub fn encoded(&self) -> bool { pub fn encoded(&self) -> bool {
self.rk || self.uv self.rk || self.uv || self.up
} }
pub fn encode<W: WriteBytesExt>(&self, encoder: &mut Encoder<W>) -> FidoResult<()> { pub fn encode<W: WriteBytesExt>(&self, encoder: &mut Encoder<W>) -> FidoResult<()> {
let length = (self.rk as usize) + (self.uv as usize); let length = (self.rk as usize) + (self.uv as usize) + (self.up as usize);
encoder.object(length)?; encoder.object(length)?;
if self.rk { if self.rk {
encoder.text("rk")?; encoder.text("rk")?;
@ -718,6 +719,10 @@ impl AuthenticatorOptions {
encoder.text("uv")?; encoder.text("uv")?;
encoder.bool(true)?; encoder.bool(true)?;
} }
if self.up {
encoder.text("up")?;
encoder.bool(true)?;
}
Ok(()) Ok(())
} }
} }

2
src/error.rs
View File

@ -46,6 +46,8 @@ pub enum FidoErrorKind {
#[fail(display = "Failed to decrypt PIN.")] #[fail(display = "Failed to decrypt PIN.")]
DecryptPin, DecryptPin,
#[fail(display = "Supplied key has incorrect type.")] #[fail(display = "Supplied key has incorrect type.")]
VerifySignature,
#[fail(display = "Failed to verify response signature.")]
KeyType, KeyType,
#[fail(display = "Device returned error: {}", _0)] #[fail(display = "Device returned error: {}", _0)]
CborError(CborErrorCode), CborError(CborErrorCode),

151
src/extensions/hmac.rs
View File

@ -1,5 +1,6 @@
use crate::{ use crate::{
cbor, AuthenticatorOptions, PublicKeyCredentialRpEntity, PublicKeyCredentialUserEntity, AuthenticatorOptions, FidoAssertionRequestBuilder,
FidoCredentialRequest,
}; };
use crate::{FidoCredential, FidoDevice, FidoErrorKind, FidoResult}; use crate::{FidoCredential, FidoDevice, FidoErrorKind, FidoResult};
use cbor_codec::value::{Bytes, Int, Key, Text, Value}; use cbor_codec::value::{Bytes, Int, Key, Text, Value};
@ -12,21 +13,7 @@ use rust_crypto::mac::Mac;
use rust_crypto::sha2::Sha256; use rust_crypto::sha2::Sha256;
use std::collections::BTreeMap; use std::collections::BTreeMap;
use std::io::Cursor; use std::io::Cursor;
use std::iter::FromIterator;
#[derive(Debug, Clone)]
pub struct FidoHmacCredential {
pub id: Vec<u8>,
pub rp_id: String,
}
impl From<FidoCredential> for FidoHmacCredential {
fn from(cred: FidoCredential) -> Self {
FidoHmacCredential {
id: cred.id,
rp_id: cred.rp_id,
}
}
}
pub trait HmacExtension { pub trait HmacExtension {
fn extension_name() -> &'static str { fn extension_name() -> &'static str {
@ -51,18 +38,10 @@ pub trait HmacExtension {
fn get_data(&mut self, salt: &[u8; 32], salt2: Option<&[u8; 32]>) -> FidoResult<Value>; fn get_data(&mut self, salt: &[u8; 32], salt2: Option<&[u8; 32]>) -> FidoResult<Value>;
/// Convenience function to create an credential with default rp_id and user_name /// Convenience function to create an credential which includes extension specific data
/// Use `FidoDevice::make_credential` if you need more control /// Use `FidoDevice::make_credential` if you need more control
fn make_hmac_credential(&mut self) -> FidoResult<FidoHmacCredential>; fn make_hmac_credential(&mut self, request: FidoCredentialRequest) -> FidoResult<FidoCredential>;
fn make_hmac_credential_full(
&mut self,
rp: cbor::PublicKeyCredentialRpEntity,
user: cbor::PublicKeyCredentialUserEntity,
client_data_hash: &[u8],
exclude_list: &[cbor::PublicKeyCredentialDescriptor],
options: Option<cbor::AuthenticatorOptions>,
) -> FidoResult<FidoCredential>;
/// Request an assertion from the authenticator for a given credential and salt(s). /// Request an assertion from the authenticator for a given credential and salt(s).
/// at least one `salt` must be provided, consider using a hashing function like SHA256 /// at least one `salt` must be provided, consider using a hashing function like SHA256
@ -74,19 +53,21 @@ pub trait HmacExtension {
/// provided, and will fail if a PIN is required but not provided or if the /// provided, and will fail if a PIN is required but not provided or if the
/// device returns malformed data. /// device returns malformed data.
/// ///
fn get_hmac_assertion( fn get_hmac_assertion<'a>(
&mut self, &mut self,
credential: &FidoHmacCredential, rp_id: &str,
credentials: &'a [&'a FidoCredential],
salt: &[u8; 32], salt: &[u8; 32],
salt2: Option<&[u8; 32]>, salt2: Option<&[u8; 32]>,
options: Option<AuthenticatorOptions>, options: Option<AuthenticatorOptions>,
) -> FidoResult<([u8; 32], Option<[u8; 32]>)>; ) -> FidoResult<(&'a FidoCredential, ([u8; 32], Option<[u8; 32]>))>;
/// Convenience function for `get_hmac_assertion` that will accept arbitrary /// Convenience function for `get_hmac_assertion` that will accept arbitrary
/// lenght input which will then be hashed and passed on /// lenght input which will then be hashed and passed on
fn hmac_challange( fn hmac_challange(
&mut self, &mut self,
credential: &FidoHmacCredential, rp_id: &str,
credential: &FidoCredential,
input: &[u8], input: &[u8],
) -> FidoResult<[u8; 32]> { ) -> FidoResult<[u8; 32]> {
let mut salt = [0u8; 32]; let mut salt = [0u8; 32];
@ -94,12 +75,13 @@ pub trait HmacExtension {
digest.input(input); digest.input(input);
digest.result(&mut salt); digest.result(&mut salt);
self.get_hmac_assertion( self.get_hmac_assertion(
credential, rp_id,
&[credential],
&salt, &salt,
None, None,
Some(AuthenticatorOptions { uv: true, rk: true }), Some(AuthenticatorOptions { uv: true, rk: true, up: false }),
) )
.map(|secret| secret.0) .map(|(_cred, secret)| secret.0)
} }
} }
@ -156,94 +138,48 @@ impl HmacExtension for FidoDevice {
Ok(Value::Map(map)) Ok(Value::Map(map))
} }
fn make_hmac_credential(&mut self) -> FidoResult<FidoHmacCredential> { fn make_hmac_credential(&mut self, request: FidoCredentialRequest) -> FidoResult<FidoCredential> {
let rp = PublicKeyCredentialRpEntity { let mut request = request;
id: "hmac", request.rk = true;
name: None, request.extension_data.insert(<Self as HmacExtension>::extension_name(), <Self as HmacExtension>::extension_input());
icon: None, self.make_credential(&request)
};
let user = PublicKeyCredentialUserEntity {
id: &[0u8],
name: "commandline",
icon: None,
display_name: None,
};
let options = Some(AuthenticatorOptions {
uv: true,
rk: false,
});
self.make_hmac_credential_full(rp, user, &[0u8; 32], &[], options)
.map(|cred| cred.into())
} }
fn make_hmac_credential_full( fn get_hmac_assertion<'a>(
&mut self, &mut self,
rp: cbor::PublicKeyCredentialRpEntity, rp_id: &str,
user: cbor::PublicKeyCredentialUserEntity, credentials: &'a [&'a FidoCredential],
client_data_hash: &[u8],
exclude_list: &[cbor::PublicKeyCredentialDescriptor],
options: Option<cbor::AuthenticatorOptions>,
) -> FidoResult<FidoCredential> {
self.make_credential_full(
rp,
user,
client_data_hash,
exclude_list,
&[(
<Self as HmacExtension>::extension_name(),
<Self as HmacExtension>::extension_input(),
)],
options,
)
}
fn get_hmac_assertion(
&mut self,
credential: &FidoHmacCredential,
salt: &[u8; 32], salt: &[u8; 32],
salt2: Option<&[u8; 32]>, salt2: Option<&[u8; 32]>,
options: Option<AuthenticatorOptions>, options: Option<AuthenticatorOptions>,
) -> FidoResult<([u8; 32], Option<[u8; 32]>)> { ) -> FidoResult<(&'a FidoCredential, ([u8; 32], Option<[u8; 32]>))> {
let client_data_hash = [0u8; 32];
while self.shared_secret.is_none() { while self.shared_secret.is_none() {
self.init_shared_secret()?; self.init_shared_secret()?;
} }
if self.needs_pin && self.pin_token.is_none() { let ext_data: Value = self.get_data(salt, salt2)?;
Err(FidoErrorKind::PinRequired)?
let ext_data: BTreeMap<&str, &Value> = BTreeMap::from_iter(
[(<Self as HmacExtension>::extension_name(), &ext_data)]
.iter()
.cloned(),
);
let mut builder = FidoAssertionRequestBuilder::default()
.credentials(credentials)
.rp_id(rp_id)
.extension_data(ext_data);
if let Some(opts) = options {
builder = builder.uv(opts.uv).up(opts.up);
} }
if client_data_hash.len() != 32 { let (cred, auth_data) =
Err(FidoErrorKind::CborEncode)? self.get_assertion(&builder.build().unwrap())?;
}
let pin_auth = self
.pin_token
.as_ref()
.map(|token| token.auth(&client_data_hash));
let ext_data: Value = self.get_data(salt, salt2)?;
let allow_list = [cbor::PublicKeyCredentialDescriptor {
cred_type: String::from("public-key"),
id: credential.id.clone(),
}];
let request = cbor::GetAssertionRequest {
rp_id: &credential.rp_id,
client_data_hash: &client_data_hash,
allow_list: &allow_list,
extensions: &[(<Self as HmacExtension>::extension_name(), &ext_data)],
options: options,
pin_auth,
pin_protocol: pin_auth.and(Some(0x01)),
};
let response = match self.cbor(cbor::Request::GetAssertion(request))? {
cbor::Response::GetAssertion(resp) => resp,
_ => Err(FidoErrorKind::CborDecode)?,
};
let shared_secret = self.shared_secret.as_ref().unwrap(); let shared_secret = self.shared_secret.as_ref().unwrap();
let mut decryptor = shared_secret.decryptor(); let mut decryptor = shared_secret.decryptor();
let mut hmac_secret_combined = [0u8; 64]; let mut hmac_secret_combined = [0u8; 64];
let _output = RefWriteBuffer::new(&mut hmac_secret_combined); let _output = RefWriteBuffer::new(&mut hmac_secret_combined);
let hmac_secret_enc = match response let hmac_secret_enc = match auth_data
.auth_data
.extensions .extensions
.get(<Self as HmacExtension>::extension_name()) .get(<Self as HmacExtension>::extension_name())
.ok_or(FidoErrorKind::CborDecode)? .ok_or(FidoErrorKind::CborDecode)?
@ -270,6 +206,7 @@ impl HmacExtension for FidoDevice {
let mut hmac_secret_1 = [0u8; 32]; let mut hmac_secret_1 = [0u8; 32];
hmac_secret_0.copy_from_slice(&hmac_secret[0..32]); hmac_secret_0.copy_from_slice(&hmac_secret[0..32]);
hmac_secret_1.copy_from_slice(&hmac_secret[32..]); hmac_secret_1.copy_from_slice(&hmac_secret[32..]);
Ok((hmac_secret_0, salt2.map(|_| hmac_secret_1))) let cred = credentials.into_iter().find(|c| c.id == cred.id).unwrap();
Ok((cred, (hmac_secret_0, salt2.and(Some(hmac_secret_1)))))
} }
} }

419
src/lib.rs
View File

@ -9,29 +9,31 @@
//! # Example //! # Example
//! //!
//! ``` //! ```
//! # fn do_fido() -> ctap::FidoResult<()> { //! # use ctap_hmac::*;
//! let mut devices = ctap::get_devices()?; //! # fn do_fido() -> FidoResult<()> {
//! let device_info = &devices.next().unwrap();
//! let mut device = ctap::FidoDevice::new(device_info)?;
//! //!
//! // This can be omitted if the FIDO device is not configured with a PIN. //!use ctap_hmac::*;
//! let pin = "test"; //!let device_info = get_devices()?.next().expect("no device connected");
//! device.unlock(pin)?; //!let mut device = FidoDevice::new(&device_info)?;
//! //!
//! // In a real application these values would come from the requesting app. //!// This can be omitted if the FIDO device is not configured with a PIN.
//! let rp_id = "rp_id"; //!let pin = "test";
//! let user_id = [0]; //!device.unlock(pin)?;
//! let user_name = "user_name"; //!
//! let client_data_hash = [0; 32]; //!// In a real application these values would come from the requesting app.
//! let cred = device.make_credential( //!let cred_request = FidoCredentialRequestBuilder::default()
//! rp_id, //! .rp_id("rp_id")
//! &user_id, //! .user_name("user_name")
//! user_name, //! .build().unwrap();
//! &client_data_hash //!let cred = device.make_credential(&cred_request)?;
//! )?; //!let cred = &&cred;
//!let assertion_request = FidoAssertionRequestBuilder::default()
//! .rp_id("rp_id")
//! .credential(cred)
//! .build().unwrap();
//!// In a real application the credential would be stored and used later.
//!let result = device.get_assertion(&assertion_request);
//! //!
//! // In a real application the credential would be stored and used later.
//! let result = device.get_assertion(&cred, &client_data_hash);
//! # Ok(()) //! # Ok(())
//! # } //! # }
@ -43,6 +45,8 @@ extern crate rand;
extern crate failure_derive; extern crate failure_derive;
#[macro_use] #[macro_use]
extern crate num_derive; extern crate num_derive;
#[macro_use]
extern crate derive_builder;
extern crate byteorder; extern crate byteorder;
extern crate cbor as cbor_codec; extern crate cbor as cbor_codec;
extern crate crypto as rust_crypto; extern crate crypto as rust_crypto;
@ -64,16 +68,16 @@ use std::io::{Cursor, Write};
use std::u16; use std::u16;
use std::u8; use std::u8;
pub use self::cbor::{ pub use self::cbor::AuthenticatorOptions;
AuthenticatorOptions, PublicKeyCredentialDescriptor, PublicKeyCredentialRpEntity, use self::cbor::PublicKeyCredentialDescriptor;
PublicKeyCredentialUserEntity,
};
pub use self::error::*; pub use self::error::*;
use self::hid_linux as hid; use self::hid_linux as hid;
use self::packet::CtapCommand; use self::packet::CtapCommand;
use crate::cbor::{AuthenticatorData, GetAssertionRequest};
use failure::{Fail, ResultExt}; use failure::{Fail, ResultExt};
use num_traits::FromPrimitive; use num_traits::FromPrimitive;
use rand::prelude::*; use rand::prelude::*;
use std::collections::BTreeMap;
static BROADCAST_CID: [u8; 4] = [0xff, 0xff, 0xff, 0xff]; static BROADCAST_CID: [u8; 4] = [0xff, 0xff, 0xff, 0xff];
@ -86,14 +90,12 @@ pub fn get_devices() -> FidoResult<impl Iterator<Item = hid::DeviceInfo>> {
} }
/// A credential created by a FIDO2 authenticator. /// A credential created by a FIDO2 authenticator.
#[derive(Debug)] #[derive(Debug, Clone)]
pub struct FidoCredential { pub struct FidoCredential {
/// The ID provided by the authenticator. /// The ID provided by the authenticator.
pub id: Vec<u8>, pub id: Vec<u8>,
/// The public key provided by the authenticator, in uncompressed form. /// The public key provided by the authenticator, in uncompressed form.
pub public_key: Vec<u8>, pub public_key: Option<Vec<u8>>,
/// The Relying Party ID provided by the platform when this key was generated.
pub rp_id: String,
} }
/// An opened FIDO authenticator. /// An opened FIDO authenticator.
@ -107,6 +109,145 @@ pub struct FidoDevice {
aaguid: [u8; 16], aaguid: [u8; 16],
} }
pub struct FidoCancelHandle {
device: fs::File,
packet_size: u16,
channel_id: [u8; 4],
}
impl FidoCancelHandle {
pub fn cancel(&mut self) -> FidoResult<()> {
let payload = &[1u8];
let to_send = payload.len() as u16;
let max_payload = (self.packet_size - 7) as usize;
let (frame, payload) = payload.split_at(cmp::min(payload.len(), max_payload));
packet::write_init_packet(
&mut self.device,
64,
&self.channel_id,
&CtapCommand::Cancel,
to_send,
frame,
)?;
if payload.is_empty() {
return Ok(());
}
let max_payload = (self.packet_size - 5) as usize;
for (seq, frame) in (0..u8::MAX).zip(payload.chunks(max_payload)) {
packet::write_cont_packet(&mut self.device, 64, &self.channel_id, seq, frame)?;
}
self.device.flush().context(FidoErrorKind::WritePacket)?;
Ok(())
}
pub fn cancel_after<T>(&mut self, body: impl Fn(()) -> T) -> FidoResult<T> {
let res = body(());
match self.cancel() {
Ok(_) => Ok(res),
Err(e) => Err(e),
}
}
}
/// Request a new credential from the authenticator. The `rp_id` should be
/// a stable string used to identify the party for whom the credential is
/// created, for convenience it will be returned with the credential.
/// `user_id` and `user_name` are not required when requesting attestations
/// but they MAY be displayed to the user and MAY be stored on the device
/// to be returned with an attestation if the device supports this.
/// `client_data_hash` SHOULD be a SHA256 hash of provided `client_data`,
/// this is only used to verify the attestation provided by the
/// authenticator. When not implementing WebAuthN this can be any random
/// 32-byte array.
///
/// This method will fail if a PIN is required but the device is not
/// unlocked or if the device returns malformed data.
#[derive(Clone, Debug, Builder)]
#[builder(setter(into))]
#[builder(pattern = "owned")]
pub struct FidoCredentialRequest<'a> {
/// create resident key
#[builder(default)]
rk: bool,
/// user verification
#[builder(default)]
uv: bool,
/// relying party id
rp_id: &'a str,
/// relying party id
#[builder(default)]
rp_name: Option<&'a str>,
/// relying party icon url
#[builder(default)]
rp_icon_url: Option<&'a str>,
/// user id
#[builder(default = "&[0u8]")]
user_id: &'a [u8],
/// user name
#[builder(default)]
user_name: Option<&'a str>,
/// user icon url
#[builder(default)]
user_icon_url: Option<&'a str>,
/// user display name
#[builder(default)]
user_display_name: Option<&'a str>,
#[builder(default = "&[]")]
exclude_list: &'a [&'a FidoCredential],
#[builder(default = "&[0u8; 32]")]
client_data_hash: &'a [u8],
#[builder(default)]
extension_data: BTreeMap<&'a str, &'a cbor_codec::value::Value>,
}
impl<'a> FidoCredentialRequest<'a> {
pub fn make_credential(&self, device: &mut FidoDevice) -> FidoResult<FidoCredential> {
device.make_credential(&self)
}
}
/// Request an assertion from the authenticator for a given credential.
/// `client_data_hash` SHOULD be a SHA256 hash of provided `client_data`,
/// this is signed and verified as part of the attestation. When not
/// implementing WebAuthN this can be any random 32-byte array.
///
/// This method will return whether the assertion matches the credential
/// provided, and will fail if a PIN is required but not provided or if the
/// device returns malformed data.
#[derive(Clone, Debug, Builder)]
#[builder(setter(into))]
#[builder(pattern = "owned")]
pub struct FidoAssertionRequest<'a> {
#[builder(default)]
up: bool,
#[builder(default)]
rk: bool,
#[builder(default)]
uv: bool,
/// The Relying Party ID provided by the platform when this key was generated.
rp_id: &'a str,
credentials: &'a [&'a FidoCredential],
#[builder(default = "&[]")]
exclude_list: &'a [&'a FidoCredential],
#[builder(default = "&[0u8; 32]")]
client_data_hash: &'a [u8],
#[builder(default)]
extension_data: BTreeMap<&'a str, &'a cbor_codec::value::Value>,
}
impl<'a> FidoAssertionRequest<'a> {
pub fn get_assertion(&self, device: &mut FidoDevice) -> FidoResult<&'a FidoCredential> {
device.get_assertion(self).map(|res| res.0)
}
}
impl<'a> FidoAssertionRequestBuilder<'a> {
pub fn credential(mut self, credential: &'a &'a FidoCredential) -> Self {
self.credentials = Some(std::slice::from_ref(credential));
self
}
}
impl FidoDevice { impl FidoDevice {
/// Open and initialize a given device. DeviceInfo is provided by the `get_devices` /// Open and initialize a given device. DeviceInfo is provided by the `get_devices`
/// function. This method will allocate a channel for this application, verify that /// function. This method will allocate a channel for this application, verify that
@ -216,88 +357,72 @@ impl FidoDevice {
} }
} }
/// Request a new credential from the authenticator. The `rp_id` should be pub fn cancel_handle(&mut self) -> FidoResult<FidoCancelHandle> {
/// a stable string used to identify the party for whom the credential is Ok(self
/// created, for convenience it will be returned with the credential. .device
/// `user_id` and `user_name` are not required when requesting attestations .try_clone()
/// but they MAY be displayed to the user and MAY be stored on the device .map(|device| FidoCancelHandle {
/// to be returned with an attestation if the device supports this. device,
/// `client_data_hash` SHOULD be a SHA256 hash of provided `client_data`, packet_size: self.packet_size,
/// this is only used to verify the attestation provided by the channel_id: self.channel_id,
/// authenticator. When not implementing WebAuthN this can be any random })
/// 32-byte array. .context(FidoErrorKind::Io)?)
/// }
/// This method will fail if a PIN is required but the device is not
/// unlocked or if the device returns malformed data.
pub fn make_credential( pub fn make_credential(
&mut self, &mut self,
rp_id: &str, request: &FidoCredentialRequest<'_>,
user_id: &[u8],
user_name: &str,
client_data_hash: &[u8],
) -> FidoResult<FidoCredential> { ) -> FidoResult<FidoCredential> {
//TODO: implement all options: https://fidoalliance.org/specs/fido-v2.0-ps-20190130/fido-client-to-authenticator-protocol-v2.0-ps-20190130.html#authenticatorMakeCredential
let rp = cbor::PublicKeyCredentialRpEntity { let rp = cbor::PublicKeyCredentialRpEntity {
id: rp_id, id: request.rp_id,
name: None, name: request.rp_name,
icon: None, icon: request.rp_icon_url,
}; };
let user = cbor::PublicKeyCredentialUserEntity { let user = cbor::PublicKeyCredentialUserEntity {
id: user_id, id: request.user_id,
name: user_name, name: request.user_name.unwrap_or(""),
icon: None, icon: request.user_icon_url,
display_name: None, display_name: request.user_display_name,
}; };
let options = Some(AuthenticatorOptions { let options = Some(AuthenticatorOptions {
uv: true, up: false,
rk: false, uv: request.uv,
rk: request.rk,
}); });
self.make_credential_full(rp, user, client_data_hash, &[], &[], options)
}
/// Request a new credential from the authenticator. The `rp_id` should be
/// a stable string used to identify the party for whom the credential is
/// created, for convenience it will be returned with the credential.
/// `user_id` and `user_name` are not required when requesting attestations
/// but they MAY be displayed to the user and MAY be stored on the device
/// to be returned with an attestation if the device supports this.
/// `client_data_hash` SHOULD be a SHA256 hash of provided `client_data`,
/// this is only used to verify the attestation provided by the
/// authenticator. When not implementing WebAuthN this can be any random
/// 32-byte array.
///
/// This method will fail if a PIN is required but the device is not
/// unlocked or if the device returns malformed data.
pub fn make_credential_full(
&mut self,
rp: cbor::PublicKeyCredentialRpEntity,
user: cbor::PublicKeyCredentialUserEntity,
client_data_hash: &[u8],
exclude_list: &[cbor::PublicKeyCredentialDescriptor],
extensions: &[(&str, &cbor_codec::value::Value)],
options: Option<cbor::AuthenticatorOptions>,
) -> FidoResult<FidoCredential> {
if self.needs_pin && self.pin_token.is_none() { if self.needs_pin && self.pin_token.is_none() {
Err(FidoErrorKind::PinRequired)? Err(FidoErrorKind::PinRequired)?
} }
if client_data_hash.len() != 32 { if request.client_data_hash.len() != 32 {
Err(FidoErrorKind::CborEncode)? Err(FidoErrorKind::CborEncode)?
} }
while self.shared_secret.is_none() {
self.init_shared_secret()?;
}
let pub_key_cred_params = [("public-key", -7)]; let pub_key_cred_params = [("public-key", -7)];
let pin_auth = self let pin_auth = self
.pin_token .pin_token
.as_ref() .as_ref()
.map(|token| token.auth(&client_data_hash)); .map(|token| token.auth(&request.client_data_hash));
let rp_id = rp.id.to_owned();
let request = cbor::MakeCredentialRequest { let request = cbor::MakeCredentialRequest {
client_data_hash, client_data_hash: request.client_data_hash,
rp, rp,
user, user,
pub_key_cred_params: &pub_key_cred_params, pub_key_cred_params: &pub_key_cred_params,
exclude_list: exclude_list, exclude_list: &request
extensions: extensions, .exclude_list
options: options, .iter()
.map(|cred| PublicKeyCredentialDescriptor {
cred_type: "public-key".into(),
id: cred.id.clone(),
})
.collect::<Vec<_>>()[..],
extensions: &request
.extension_data
.iter()
.map(|(name, data)| (*name, *data))
.collect::<Vec<_>>()[..],
options,
pin_auth, pin_auth,
pin_protocol: pin_auth.and(Some(0x01)), pin_protocol: pin_auth.and(Some(0x01)),
}; };
@ -315,85 +440,103 @@ impl FidoDevice {
.bytes(); .bytes();
Ok(FidoCredential { Ok(FidoCredential {
id: response.auth_data.attested_credential_data.credential_id, id: response.auth_data.attested_credential_data.credential_id,
rp_id: rp_id, public_key: Some(Vec::from(&public_key[..])),
public_key: Vec::from(&public_key[..]),
}) })
} }
/// Request an assertion from the authenticator for a given credential. /// Request a new credential from the authenticator. The `rp_id` should be
/// a stable string used to identify the party for whom the credential is
/// created, for convenience it will be returned with the credential.
/// `user_id` and `user_name` are not required when requesting attestations
/// but they MAY be displayed to the user and MAY be stored on the device
/// to be returned with an attestation if the device supports this.
/// `client_data_hash` SHOULD be a SHA256 hash of provided `client_data`, /// `client_data_hash` SHOULD be a SHA256 hash of provided `client_data`,
/// this is signed and verified as part of the attestation. When not /// this is only used to verify the attestation provided by the
/// implementing WebAuthN this can be any random 32-byte array. /// authenticator. When not implementing WebAuthN this can be any random
/// 32-byte array.
/// ///
/// This method will return whether the assertion matches the credential /// This method will fail if a PIN is required but the device is not
/// provided, and will fail if a PIN is required but not provided or if the /// unlocked or if the device returns malformed data.
/// device returns malformed data.
pub fn get_assertion(
&mut self,
credential: &FidoCredential,
client_data_hash: &[u8],
) -> FidoResult<bool> {
self.get_assertion_multiple(&[credential], client_data_hash)
}
pub fn get_assertion_multiple( pub fn get_assertion<'a>(
&mut self, &mut self,
credentials: &[&FidoCredential], assertion: &FidoAssertionRequest<'a>,
client_data_hash: &[u8], ) -> FidoResult<(&'a FidoCredential, AuthenticatorData)> {
) -> FidoResult<bool> { while self.shared_secret.is_none() {
self.init_shared_secret()?;
}
if self.needs_pin && self.pin_token.is_none() { if self.needs_pin && self.pin_token.is_none() {
Err(FidoErrorKind::PinRequired)? Err(FidoErrorKind::PinRequired)?
} }
if client_data_hash.len() != 32 { if assertion.client_data_hash.len() != 32 {
Err(FidoErrorKind::CborEncode)? Err(FidoErrorKind::CborEncode)?
} }
let pin_auth = self let pin_auth = self
.pin_token .pin_token
.as_ref() .as_ref()
.map(|token| token.auth(&client_data_hash)); .map(|token| token.auth(&assertion.client_data_hash));
let allow_list = credentials let request = GetAssertionRequest {
.iter() rp_id: assertion.rp_id,
.map(|cred| cbor::PublicKeyCredentialDescriptor { client_data_hash: assertion.client_data_hash,
cred_type: String::from("public-key"), allow_list: &assertion
id: cred.id.clone(), .credentials
}) .iter()
.collect::<Vec<_>>(); .map(|cred| PublicKeyCredentialDescriptor {
let request = cbor::GetAssertionRequest { cred_type: "public-key".into(),
rp_id: &credentials[0].rp_id, id: cred.id.clone(),
client_data_hash: client_data_hash, })
allow_list: &allow_list, .collect::<Vec<_>>()[..],
extensions: Default::default(), extensions: &assertion
options: Some(cbor::AuthenticatorOptions { .extension_data
rk: false, .iter()
uv: true, .map(|(name, data)| (*name, *data))
.collect::<Vec<_>>()[..],
options: Some(AuthenticatorOptions {
rk: assertion.rk,
uv: assertion.uv,
up: assertion.up,
}), }),
pin_auth, pin_auth: pin_auth,
pin_protocol: pin_auth.and(Some(0x01)), pin_protocol: pin_auth.and(Some(0x01)),
}; };
let response = match self.cbor(cbor::Request::GetAssertion(request))? { let response = match self.cbor(cbor::Request::GetAssertion(request))? {
cbor::Response::GetAssertion(resp) => resp, cbor::Response::GetAssertion(resp) => resp,
_ => Err(FidoErrorKind::CborDecode)?, _ => Err(FidoErrorKind::CborDecode)?,
}; };
Ok(credentials let credential = assertion
.credentials
.iter() .iter()
.filter(|cred| { .flat_map(|cred| {
response response
.credential .credential
.as_ref() .as_ref()
.map(|cred2| cred2.id == cred.id) .filter(|rcred| rcred.id == cred.id)
.unwrap_or(true) .map(|_| *cred)
}) })
.map(|cred| { .next();
crypto::verify_signature(
&cred.public_key, credential
&client_data_hash, .and_then(|cred| {
&response.auth_data_bytes, cred.public_key
&response.signature, .as_ref()
) .map(|public_key| {
Some(crypto::verify_signature(
&public_key,
&assertion.client_data_hash,
&response.auth_data_bytes,
&response.signature,
))
.unwrap_or(true)
})
.iter()
.filter_map(|valid| match valid {
true => Some(cred),
false => None,
})
.next()
}) })
.filter(|pass| *pass) .ok_or(FidoError::from(FidoErrorKind::VerifySignature))
.next() .map(|cred| (cred, response.auth_data))
.unwrap_or(false))
} }
fn cbor(&mut self, request: cbor::Request) -> FidoResult<cbor::Response> { fn cbor(&mut self, request: cbor::Request) -> FidoResult<cbor::Response> {