Skip to content
Permalink
Branch: master
Commits on Apr 20, 2019
  1. Fix COSE type of key-agreement keys.

    agl committed Apr 20, 2019
    The key-agreement keys in the PIN protocol use COSE type -25. I'm not
    sure if that's written down anywhere, but it's what everything else does
    and it's an ECDH type rather than an ECDSA type.
  2. Handle empty pinAuth fields.

    agl committed Apr 20, 2019
    CTAP2 specifies that an empty pinAuth field is special: it indicates
    that the device should block for touch, i.e. it's just a way of letting
    a user select from multiple authenticators[1].
    
    This change handles empty pinAuth fields in GetAssertion and
    MakeCredential commands.
    
    [1] https://fidoalliance.org/specs/fido-v2.0-ps-20190130/fido-client-to-authenticator-protocol-v2.0-ps-20190130.html#using-pinToken-in-authenticatorMakeCredential
You can’t perform that action at this time.