dont return index >= ctap_rk_size()

Fixes issue found by @My1: https://github.com/solokeys/solo/issues/407
2020-03-28 13:23:40 -04:00
1 changed files with 3 additions and 12 deletions
--- a/fido2/ctap.c
+++ b/fido2/ctap.c
@ -31,7 +31,6 @@ uint8_t PIN_TOKEN[PIN_TOKEN_SIZE];
 uint8_t KEY_AGREEMENT_PUB[64];
 static uint8_t KEY_AGREEMENT_PRIV[32];
 static int8_t PIN_BOOT_ATTEMPTS_LEFT = PIN_BOOT_ATTEMPTS;
-static uint32_t BOOT_TIME = 0;

 AuthenticatorState STATE;

@ -2286,17 +2285,10 @@ uint8_t ctap_request(uint8_t * pkt_raw, int length, CTAP_RESPONSE * resp)
            break;
        case CTAP_RESET:
            printf1(TAG_CTAP,"CTAP_RESET\n");
-            if ((millis() - BOOT_TIME) > 10 * 1000)
+            status = ctap2_user_presence_test();
+            if (status == CTAP1_ERR_SUCCESS)
            {
-                status = CTAP2_ERR_NOT_ALLOWED;
-            }
-            else
-            {
-                status = ctap2_user_presence_test();
-                if (status == CTAP1_ERR_SUCCESS)
-                {
-                    ctap_reset();
-                }
+                ctap_reset();
            }
            break;
        case GET_NEXT_ASSERTION:
@ -2390,7 +2382,6 @@ void ctap_init()
            firmware_version.major, firmware_version.minor, firmware_version.patch, firmware_version.reserved,
            firmware_version.major, firmware_version.minor, firmware_version.patch, firmware_version.reserved
            );
-    BOOT_TIME = millis();
    crypto_ecc256_init();

    int is_init = authenticator_read_state(&STATE);