1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
|
use super::{Command, CommandError, RequestCtap2, StatusCode};
use crate::transport::errors::HIDError;
use crate::transport::{FidoDevice, VirtualFidoDevice};
use serde_cbor::{de::from_slice, Value};
#[derive(Debug, Default)]
pub struct Reset {}
impl RequestCtap2 for Reset {
type Output = ();
fn command(&self) -> Command {
Command::Reset
}
fn wire_format(&self) -> Result<Vec<u8>, HIDError> {
Ok(Vec::new())
}
fn handle_response_ctap2<Dev: FidoDevice>(
&self,
_dev: &mut Dev,
input: &[u8],
) -> Result<Self::Output, HIDError> {
if input.is_empty() {
return Err(CommandError::InputTooSmall.into());
}
let status: StatusCode = input[0].into();
if status.is_ok() {
Ok(())
} else {
let msg = if input.len() > 1 {
let data: Value = from_slice(&input[1..]).map_err(CommandError::Deserializing)?;
Some(data)
} else {
None
};
Err(CommandError::StatusCode(status, msg).into())
}
}
fn send_to_virtual_device<Dev: VirtualFidoDevice>(
&self,
dev: &mut Dev,
) -> Result<Self::Output, HIDError> {
dev.reset(self)
}
}
#[cfg(test)]
pub mod tests {
use super::*;
use crate::consts::HIDCmd;
use crate::transport::device_selector::Device;
use crate::transport::{hid::HIDDevice, FidoDevice, FidoDeviceIO, FidoProtocol};
use rand::{thread_rng, RngCore};
use serde_cbor::{de::from_slice, Value};
fn issue_command_and_get_response(cmd: u8, add: &[u8]) -> Result<(), HIDError> {
let mut device = Device::new("commands/Reset").unwrap();
assert_eq!(device.get_protocol(), FidoProtocol::CTAP2);
// ctap2 request
let mut cid = [0u8; 4];
thread_rng().fill_bytes(&mut cid);
device.set_cid(cid);
let mut msg = cid.to_vec();
msg.extend(vec![HIDCmd::Cbor.into(), 0x00, 0x1]); // cmd + bcnt
msg.extend(vec![0x07]); // authenticatorReset
device.add_write(&msg, 0);
// ctap2 response
let len = 0x1 + add.len() as u8;
let mut msg = cid.to_vec();
msg.extend(vec![HIDCmd::Cbor.into(), 0x00, len]); // cmd + bcnt
msg.push(cmd); // Status code
msg.extend(add); // + maybe additional data
device.add_read(&msg, 0);
device.send_cbor(&Reset {})
}
#[test]
fn test_select_ctap2_only() {
// Test, if we can parse the status codes specified by the spec
// Ok()
issue_command_and_get_response(0, &[]).expect("Unexpected error");
// Denied by the user
let response = issue_command_and_get_response(0x27, &[]).expect_err("Not an error!");
assert!(matches!(
response,
HIDError::Command(CommandError::StatusCode(StatusCode::OperationDenied, None))
));
// Timeout
let response = issue_command_and_get_response(0x2F, &[]).expect_err("Not an error!");
assert!(matches!(
response,
HIDError::Command(CommandError::StatusCode(
StatusCode::UserActionTimeout,
None
))
));
// Unexpected error with more random CBOR-data
let add_data = vec![
0x63, // text(3)
0x61, 0x6c, 0x67, // "alg"
];
let response = issue_command_and_get_response(0x02, &add_data).expect_err("Not an error!");
match response {
HIDError::Command(CommandError::StatusCode(StatusCode::InvalidParameter, Some(d))) => {
let expected: Value = from_slice(&add_data).unwrap();
assert_eq!(d, expected)
}
e => panic!("Not the expected response: {:?}", e),
}
}
}
|
