kmwebnet/OpenSK
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

improved documentation for the PinPermission enum

Browse Source
This commit is contained in:
Fabian Kaczmarczyck
2020-07-08 18:09:04 +02:00
parent 131f876cdd
commit 25b6756d4f
1 changed files with 3 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
src/ctap/pin_protocol_v1.rs
View File

@@ -149,6 +149,7 @@ fn check_and_store_new_pin(
// TODO remove when all variants are used // TODO remove when all variants are used
#[allow(dead_code)] #[allow(dead_code)]
pub enum PinPermission { pub enum PinPermission {
// All variants should use integers with a single bit set.
MakeCredential = 0x01, MakeCredential = 0x01,
GetAssertion = 0x02, GetAssertion = 0x02,
CredentialManagement = 0x04, CredentialManagement = 0x04,
@@ -157,13 +158,6 @@ pub enum PinPermission {
AuthenticatorConfiguration = 0x20, AuthenticatorConfiguration = 0x20,
} }
#[cfg(feature = "with_ctap2_1")]
impl PinPermission {
pub fn check(self, stored_bits: u8) -> bool {
self as u8 & stored_bits != 0
}
}
pub struct PinProtocolV1 { pub struct PinProtocolV1 {
key_agreement_key: crypto::ecdh::SecKey, key_agreement_key: crypto::ecdh::SecKey,
pin_uv_auth_token: [u8; PIN_TOKEN_LENGTH], pin_uv_auth_token: [u8; PIN_TOKEN_LENGTH],
@@ -592,7 +586,8 @@ impl PinProtocolV1 {
#[cfg(feature = "with_ctap2_1")] #[cfg(feature = "with_ctap2_1")]
pub fn has_permission(&self, permission: PinPermission) -> Result<(), Ctap2StatusCode> { pub fn has_permission(&self, permission: PinPermission) -> Result<(), Ctap2StatusCode> {
if permission.check(self.permissions) { // Relies on the fact that all permissions are represented by powers of two.
if permission as u8 & self.permissions != 0 {
Ok(()) Ok(())
} else { } else {
Err(Ctap2StatusCode::CTAP2_ERR_PIN_AUTH_INVALID) Err(Ctap2StatusCode::CTAP2_ERR_PIN_AUTH_INVALID)