shimun/solo
1
0
Fork 0
Code Issues Pull Requests Releases 1 Wiki Activity

update attestation verification

Browse Source
This commit is contained in:
Conor Patrick 2019-01-27 11:18:50 -05:00
parent 7a6abdfd0c
commit 1ffe85f083
1 changed files with 10 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
tools/solotool.py
View File

@ -41,6 +41,7 @@ from fido2.ctap import CtapError
from fido2.ctap1 import CTAP1, ApduError from fido2.ctap1 import CTAP1, ApduError
from fido2.ctap2 import CTAP2 from fido2.ctap2 import CTAP2
from fido2.utils import Timeout from fido2.utils import Timeout
from fido2.attestation import Attestation
import usb.core import usb.core
import usb.util import usb.util
@ -240,7 +241,15 @@ class SoloClient:
attest, data = self.client.make_credential( attest, data = self.client.make_credential(
rp, user, challenge, exclude_list=[] rp, user, challenge, exclude_list=[]
) )
attest.verify(data.hash) try:
attest.verify(data.hash)
except AttributeError:
verifier = Attestation.for_type(attest.fmt)
verifier().verify(
attest.att_statement,
attest.auth_data,
data.hash
)
print('Register valid') print('Register valid')
x5c = attest.att_statement['x5c'][0] x5c = attest.att_statement['x5c'][0]
cert = x509.load_der_x509_certificate(x5c, default_backend()) cert = x509.load_der_x509_certificate(x5c, default_backend())