Actually use ECDSA seed mechanism

2022-06-30 11:21:26 +02:00
parent d793a992d3
commit 9a7760f362
6 changed files with 151 additions and 118 deletions
--- a/src/ctap/ctap1.rs
+++ b/src/ctap/ctap1.rs
@@ -245,9 +245,12 @@ impl Ctap1Command {
        challenge: [u8; 32],
        application: [u8; 32],
    ) -> Result<Vec<u8>, Ctap1StatusCode> {
-        let sk = crypto::ecdsa::SecKey::gensk(env.rng());
+        let private_key = PrivateKey::new_ecdsa(env);
+        let sk = private_key
+            .ecdsa_key(env)
+            .ok_or(Ctap1StatusCode::SW_INTERNAL_EXCEPTION)?;
        let pk = sk.genpk();
-        let key_handle = encrypt_key_handle(env, &PrivateKey::from(sk), &application)
+        let key_handle = encrypt_key_handle(env, &private_key, &application)
            .map_err(|_| Ctap1StatusCode::SW_INTERNAL_EXCEPTION)?;
        if key_handle.len() > 0xFF {
            // This is just being defensive with unreachable code.
@@ -309,12 +312,10 @@ impl Ctap1Command {
        let credential_source = decrypt_credential_source(env, key_handle, &application)
            .map_err(|_| Ctap1StatusCode::SW_WRONG_DATA)?;
        if let Some(credential_source) = credential_source {
-            // CTAP1 only supports ECDSA, the default case applies if CTAP2 adds more algorithms.
-            #[allow(unreachable_patterns)]
-            let ecdsa_key = match credential_source.private_key {
-                PrivateKey::Ecdsa(k) => k,
-                _ => return Err(Ctap1StatusCode::SW_WRONG_DATA),
-            };
+            let ecdsa_key = credential_source
+                .private_key
+                .ecdsa_key(env)
+                .ok_or(Ctap1StatusCode::SW_WRONG_DATA)?;
            if flags == Ctap1Flags::CheckOnly {
                return Err(Ctap1StatusCode::SW_COND_USE_NOT_SATISFIED);
            }