kmwebnet/OpenSK
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Remove unknown fields

Browse Source
This commit is contained in:
Julien Cretin
2020-05-13 11:09:32 +02:00
parent 479de32a95
commit ca6f910c26
4 changed files with 49 additions and 75 deletions
Download Patch File Download Diff File Expand all files Collapse all files

25
libraries/cbor/src/macros.rs
View File

@@ -41,31 +41,20 @@ macro_rules! cbor_map_options {
}; };
( $( $key:expr => $value:expr ),* ) => { ( $( $key:expr => $value:expr ),* ) => {
{
let mut _map = ::alloc::collections::BTreeMap::<_, $crate::values::Value>::new();
extend_cbor_map_options! ( &mut _map, $( $key => $value, )* );
$crate::values::Value::Map(_map)
}
};
}
#[macro_export]
macro_rules! extend_cbor_map_options {
// Add trailing comma if missing.
( &mut $map:expr, $( $key:expr => $value:expr ),+ ) => {
extend_cbor_map_options! ( &mut $map, $($key => $value,)+ )
};
( &mut $map:expr, $( $key:expr => $value:expr, )* ) => {
{ {
// The import is unused if the list is empty. // The import is unused if the list is empty.
#[allow(unused_imports)] #[allow(unused_imports)]
use $crate::values::{IntoCborKey, IntoCborValueOption}; use $crate::values::{IntoCborKey, IntoCborValueOption};
let mut _map = ::alloc::collections::BTreeMap::<_, $crate::values::Value>::new();
$( $(
if let Some(val) = $value.into_cbor_value_option() { {
$map.insert($key.into_cbor_key(), val); let opt: Option<$crate::values::Value> = $value.into_cbor_value_option();
if let Some(val) = opt {
_map.insert($key.into_cbor_key(), val);
}
} }
)* )*
$crate::values::Value::Map(_map)
} }
}; };
} }

89
src/ctap/data_formats.rs
View File

@@ -433,6 +433,9 @@ impl TryFrom<&cbor::Value> for SignatureAlgorithm {
} }
// https://www.w3.org/TR/webauthn/#public-key-credential-source // https://www.w3.org/TR/webauthn/#public-key-credential-source
//
// Note that we only use the WebAuthn definition as an example. This data-structure is not specified
// by FIDO. In particular we may choose how we serialize and deserialize it.
#[derive(Clone)] #[derive(Clone)]
#[cfg_attr(test, derive(PartialEq))] #[cfg_attr(test, derive(PartialEq))]
#[cfg_attr(any(test, feature = "debug_ctap"), derive(Debug))] #[cfg_attr(any(test, feature = "debug_ctap"), derive(Debug))]
@@ -445,18 +448,10 @@ pub struct PublicKeyCredentialSource {
pub user_handle: Vec<u8>, // not optional, but nullable pub user_handle: Vec<u8>, // not optional, but nullable
pub other_ui: Option<String>, pub other_ui: Option<String>,
pub cred_random: Option<Vec<u8>>, pub cred_random: Option<Vec<u8>>,
/// Contains the unknown fields when parsing a CBOR value.
///
/// Those fields could either be deleted fields from older versions (they should have reserved
/// tags) or fields from newer versions (the tags should not be reserved). If this is empty,
/// then the parsed credential is probably from the same version (but not necessarily).
pub unknown_fields: BTreeMap<cbor::KeyType, cbor::Value>,
} }
// We serialize credentials for the persistent storage using CBOR maps. Each field of a credential // We serialize credentials for the persistent storage using CBOR maps. Each field of a credential
// is associated with a unique tag, implemented with a CBOR unsigned key. // is associated with a unique tag, implemented with a CBOR unsigned key.
#[repr(u64)]
enum PublicKeyCredentialSourceField { enum PublicKeyCredentialSourceField {
CredentialId = 0, CredentialId = 0,
PrivateKey = 1, PrivateKey = 1,
@@ -480,50 +475,48 @@ impl From<PublicKeyCredentialSource> for cbor::Value {
use PublicKeyCredentialSourceField::*; use PublicKeyCredentialSourceField::*;
let mut private_key = [0; 32]; let mut private_key = [0; 32];
credential.private_key.to_bytes(&mut private_key); credential.private_key.to_bytes(&mut private_key);
let mut result = credential.unknown_fields; cbor_map_options! {
extend_cbor_map_options! {
&mut result,
CredentialId => Some(credential.credential_id), CredentialId => Some(credential.credential_id),
PrivateKey => Some(private_key.to_vec()), PrivateKey => Some(private_key.to_vec()),
RpId => Some(credential.rp_id), RpId => Some(credential.rp_id),
UserHandle => Some(credential.user_handle), UserHandle => Some(credential.user_handle),
OtherUi => credential.other_ui, OtherUi => credential.other_ui,
CredRandom => credential.cred_random CredRandom => credential.cred_random
}; }
cbor::Value::Map(result)
} }
} }
impl PublicKeyCredentialSource { impl TryFrom<&cbor::Value> for PublicKeyCredentialSource {
pub fn parse_cbor(cbor_value: cbor::Value) -> Option<PublicKeyCredentialSource> { type Error = Ctap2StatusCode;
use PublicKeyCredentialSourceField::*;
let mut map = match cbor_value {
cbor::Value::Map(x) => x,
_ => return None,
};
let credential_id = read_byte_string(&map.remove(&CredentialId.into())?).ok()?; fn try_from(cbor_value: &cbor::Value) -> Result<Self, Ctap2StatusCode> {
let private_key = read_byte_string(&map.remove(&PrivateKey.into())?).ok()?; use PublicKeyCredentialSourceField::*;
let map = read_map(cbor_value)?;
let credential_id = read_byte_string(ok_or_missing(map.get(&CredentialId.into()))?)?;
let private_key = read_byte_string(ok_or_missing(map.get(&PrivateKey.into()))?)?;
if private_key.len() != 32 { if private_key.len() != 32 {
return None; return Err(Ctap2StatusCode::CTAP2_ERR_INVALID_CBOR);
} }
let private_key = ecdsa::SecKey::from_bytes(array_ref!(private_key, 0, 32))?; let private_key = ecdsa::SecKey::from_bytes(array_ref!(private_key, 0, 32))
let rp_id = read_text_string(&map.remove(&RpId.into())?).ok()?; .ok_or(Ctap2StatusCode::CTAP2_ERR_INVALID_CBOR)?;
let user_handle = read_byte_string(&map.remove(&UserHandle.into())?).ok()?; let rp_id = read_text_string(ok_or_missing(map.get(&RpId.into()))?)?;
let other_ui = map let user_handle = read_byte_string(ok_or_missing(map.get(&UserHandle.into()))?)?;
.remove(&OtherUi.into()) let other_ui = map.get(&OtherUi.into()).map(read_text_string).transpose()?;
.as_ref()
.map(read_text_string)
.transpose()
.ok()?;
let cred_random = map let cred_random = map
.remove(&CredRandom.into()) .get(&CredRandom.into())
.as_ref()
.map(read_byte_string) .map(read_byte_string)
.transpose() .transpose()?;
.ok()?; // We don't return whether there were unknown fields in the CBOR value. This means that
let unknown_fields = map; // deserialization is not injective. In particular deserialization is only an inverse of
Some(PublicKeyCredentialSource { // serialization at a given version of OpenSK. This is not a problem because:
// 1. When a field is deprecated, its tag is reserved and never reused in future versions,
// including to be reintroduced with the same semantics. In other words, removing a field
// is permanent.
// 2. OpenSK is never used with a more recent version of the storage. In particular, OpenSK
// is never rolled-back.
// As a consequence, the unknown fields are only reserved fields and don't need to be
// preserved.
Ok(PublicKeyCredentialSource {
key_type: PublicKeyCredentialType::PublicKey, key_type: PublicKeyCredentialType::PublicKey,
credential_id, credential_id,
private_key, private_key,
@@ -531,7 +524,6 @@ impl PublicKeyCredentialSource {
user_handle, user_handle,
other_ui, other_ui,
cred_random, cred_random,
unknown_fields,
}) })
} }
} }
@@ -1245,12 +1237,11 @@ mod test {
user_handle: b"foo".to_vec(), user_handle: b"foo".to_vec(),
other_ui: None, other_ui: None,
cred_random: None, cred_random: None,
unknown_fields: BTreeMap::new(),
}; };
assert_eq!( assert_eq!(
PublicKeyCredentialSource::parse_cbor(cbor::Value::from(credential.clone())), PublicKeyCredentialSource::try_from(&cbor::Value::from(credential.clone())),
Some(credential.clone()) Ok(credential.clone())
); );
let credential = PublicKeyCredentialSource { let credential = PublicKeyCredentialSource {
@@ -1259,8 +1250,8 @@ mod test {
}; };
assert_eq!( assert_eq!(
PublicKeyCredentialSource::parse_cbor(cbor::Value::from(credential.clone())), PublicKeyCredentialSource::try_from(&cbor::Value::from(credential.clone())),
Some(credential.clone()) Ok(credential.clone())
); );
let credential = PublicKeyCredentialSource { let credential = PublicKeyCredentialSource {
@@ -1269,15 +1260,15 @@ mod test {
}; };
assert_eq!( assert_eq!(
PublicKeyCredentialSource::parse_cbor(cbor::Value::from(credential.clone())), PublicKeyCredentialSource::try_from(&cbor::Value::from(credential.clone())),
Some(credential) Ok(credential)
); );
} }
#[test] #[test]
fn test_credential_source_invalid_cbor() { fn test_credential_source_invalid_cbor() {
assert!(PublicKeyCredentialSource::parse_cbor(cbor_false!()).is_none()); assert!(PublicKeyCredentialSource::try_from(&cbor_false!()).is_err());
assert!(PublicKeyCredentialSource::parse_cbor(cbor_array!(false)).is_none()); assert!(PublicKeyCredentialSource::try_from(&cbor_array!(false)).is_err());
assert!(PublicKeyCredentialSource::parse_cbor(cbor_array!(b"foo".to_vec())).is_none()); assert!(PublicKeyCredentialSource::try_from(&cbor_array!(b"foo".to_vec())).is_err());
} }
} }

4
src/ctap/mod.rs
View File

@@ -335,7 +335,6 @@ where
user_handle: vec![], user_handle: vec![],
other_ui: None, other_ui: None,
cred_random: None, cred_random: None,
unknown_fields: BTreeMap::new(),
}) })
} }
@@ -502,7 +501,6 @@ where
.user_display_name .user_display_name
.map(|s| truncate_to_char_boundary(&s, 64).to_string()), .map(|s| truncate_to_char_boundary(&s, 64).to_string()),
cred_random, cred_random,
unknown_fields: BTreeMap::new(),
}; };
self.persistent_store.store_credential(credential_source)?; self.persistent_store.store_credential(credential_source)?;
random_id random_id
@@ -1281,7 +1279,6 @@ mod test {
user_handle: vec![], user_handle: vec![],
other_ui: None, other_ui: None,
cred_random: None, cred_random: None,
unknown_fields: BTreeMap::new(),
}; };
assert!(ctap_state assert!(ctap_state
.persistent_store .persistent_store
@@ -1479,7 +1476,6 @@ mod test {
user_handle: vec![], user_handle: vec![],
other_ui: None, other_ui: None,
cred_random: None, cred_random: None,
unknown_fields: BTreeMap::new(),
}; };
assert!(ctap_state assert!(ctap_state
.persistent_store .persistent_store

6
src/ctap/storage.rs
View File

@@ -16,9 +16,9 @@ use crate::crypto::rng256::Rng256;
use crate::ctap::data_formats::PublicKeyCredentialSource; use crate::ctap::data_formats::PublicKeyCredentialSource;
use crate::ctap::status_code::Ctap2StatusCode; use crate::ctap::status_code::Ctap2StatusCode;
use crate::ctap::PIN_AUTH_LENGTH; use crate::ctap::PIN_AUTH_LENGTH;
use alloc::collections::BTreeMap;
use alloc::string::String; use alloc::string::String;
use alloc::vec::Vec; use alloc::vec::Vec;
use core::convert::TryFrom;
use ctap2::embedded_flash::{self, StoreConfig, StoreEntry, StoreError, StoreIndex}; use ctap2::embedded_flash::{self, StoreConfig, StoreEntry, StoreError, StoreIndex};
#[cfg(any(test, feature = "ram_storage"))] #[cfg(any(test, feature = "ram_storage"))]
@@ -420,7 +420,7 @@ impl From<StoreError> for Ctap2StatusCode {
} }
fn deserialize_credential(data: &[u8]) -> Option<PublicKeyCredentialSource> { fn deserialize_credential(data: &[u8]) -> Option<PublicKeyCredentialSource> {
PublicKeyCredentialSource::parse_cbor(cbor::read(data).ok()?) PublicKeyCredentialSource::try_from(&cbor::read(data).ok()?).ok()
} }
fn serialize_credential(credential: PublicKeyCredentialSource) -> Result<Vec<u8>, Ctap2StatusCode> { fn serialize_credential(credential: PublicKeyCredentialSource) -> Result<Vec<u8>, Ctap2StatusCode> {
@@ -453,7 +453,6 @@ mod test {
user_handle, user_handle,
other_ui: None, other_ui: None,
cred_random: None, cred_random: None,
unknown_fields: BTreeMap::new(),
} }
} }
@@ -623,7 +622,6 @@ mod test {
user_handle: vec![0x00], user_handle: vec![0x00],
other_ui: None, other_ui: None,
cred_random: None, cred_random: None,
unknown_fields: BTreeMap::new(),
}; };
assert_eq!(found_credential, Some(expected_credential)); assert_eq!(found_credential, Some(expected_credential));
} }