verify signature for hmac-secret

2019-07-26 23:51:39 -04:00 · 2019-07-26 23:51:39 -04:00 · ca66b6e43b
commit ca66b6e43b
parent 1cd1b3c295
2 changed files with 5 additions and 2 deletions
--- a/tools/testing/tests/fido2.py
+++ b/tools/testing/tests/fido2.py
@ -211,7 +211,7 @@ class FIDO2Tests(Tester):
            assert "hmac-secret" in reg.auth_data.extensions
            assert reg.auth_data.extensions["hmac-secret"] == True

-        reg = self.testMC(
+        self.testMC(
            "Send MC with fake extension set to true, expect SUCCESS",
            cdh,
            rp,
@ -278,6 +278,10 @@ class FIDO2Tests(Tester):
                    assert shannon_entropy(ext["hmac-secret"]) > 5.4
                    assert shannon_entropy(key) > 5.4

+            with Test("Check that the assertion is valid"):
+                credential_data = AttestedCredentialData(reg.auth_data.credential_data)
+                auth.verify(cdh, credential_data.public_key)
+
        salt_enc, salt_auth = get_salt_params((salt3,))

        auth = self.testGA(
--- a/tools/testing/tests/tester.py
+++ b/tools/testing/tests/tester.py
@ -206,7 +206,6 @@ class Tester:
            self.ctap.make_credential, test, *args, **kwargs
        )
        if attestation_object:
-            print(attestation_object)
            verifier = Attestation.for_type(attestation_object.fmt)
            client_data = args[0]
            verifier().verify(