mirror of
https://github.com/RIOT-OS/RIOT.git
synced 2024-12-29 04:50:03 +01:00
Merge pull request #17096 from Ollrogge/fido2_follow_up
Fido2 follow up
This commit is contained in:
commit
5a8654ecab
@ -899,6 +899,7 @@ endif
|
||||
|
||||
ifneq (,$(filter fido2_ctap,$(USEMODULE)))
|
||||
FEATURES_REQUIRED += periph_flashpage
|
||||
FEATURES_REQUIRED += periph_flashpage_in_address_space
|
||||
FEATURES_REQUIRED += periph_gpio_irq
|
||||
|
||||
USEPKG += tiny-asn1
|
||||
|
@ -7,6 +7,7 @@
|
||||
menuconfig MODULE_FIDO2_CTAP
|
||||
bool "FIDO2 CTAP"
|
||||
depends on HAS_PERIPH_FLASHPAGE
|
||||
depends on HAS_PERIPH_FLASHPAGE_IN_ADDRESS_SPACE
|
||||
depends on HAS_PERIPH_GPIO
|
||||
depends on HAS_PERIPH_GPIO_IRQ
|
||||
depends on MODULE_FIDO2
|
||||
@ -27,6 +28,7 @@ menuconfig MODULE_FIDO2_CTAP
|
||||
select MODULE_CRYPTO_AES_256
|
||||
select MODULE_CIPHER_MODES
|
||||
select MODULE_HASHES
|
||||
select MODULE_PERIPH_FLASHPAGE_IN_ADDRESS_SPACE
|
||||
help
|
||||
Y to enable CTAP protocol support. The Client-to-Authenticator
|
||||
Protocol (CTAP) is an application layer protocol for the communication
|
||||
@ -108,12 +110,19 @@ config FIDO2_CTAP_UP_BUTTON_FLANK_RISING
|
||||
|
||||
endchoice
|
||||
|
||||
config FIDO2_CTAP_FLASH_START_PAGE
|
||||
int "First flash page to store data in"
|
||||
default -1
|
||||
config FIDO2_CTAP_NUM_FLASHPAGES
|
||||
int "Amount of flashpages to use"
|
||||
range 2 256
|
||||
default 4
|
||||
help
|
||||
Configuring this incorrectly can lead to firmware corruption so make sure
|
||||
the flash page is located after the firmware.
|
||||
Configure how many flashpages are used to store FIDO2 CTAP data.
|
||||
|
||||
To save a credential (rk) in flash memory, roughly 156 bytes are needed. This
|
||||
number might change slightly depending on the flash block size.
|
||||
Therefore, if one wants to e.g. save 40 credentials and the flashpage
|
||||
size is 4096 bytes roughly 156 * 40 / 4096 (2) flashpages are needed.
|
||||
To save authenticator state data one additional flashpage is needed.
|
||||
So in total one has to configure 3 to save 40 credentials.
|
||||
|
||||
rsource "transport/Kconfig"
|
||||
|
||||
|
@ -180,7 +180,7 @@ static int _ctap_decrypt_rk(ctap_resident_key_t *rk, ctap_cred_id_t *id);
|
||||
/**
|
||||
* @brief Write credential to flash
|
||||
*/
|
||||
static int _save_rk(ctap_resident_key_t *rk);
|
||||
static int _write_rk_to_flash(ctap_resident_key_t *rk);
|
||||
|
||||
/**
|
||||
* @brief Save PIN to authenticator state and write the updated state to flash
|
||||
@ -192,16 +192,6 @@ static int _save_pin(uint8_t *pin, size_t len);
|
||||
*/
|
||||
static int _write_state_to_flash(const ctap_state_t *state);
|
||||
|
||||
/**
|
||||
* @brief Read authenticator state from flash
|
||||
*/
|
||||
static int _read_state_from_flash(ctap_state_t *state);
|
||||
|
||||
/**
|
||||
* @brief Write resident key to flash
|
||||
*/
|
||||
static int _write_rk_to_flash(const ctap_resident_key_t *rk, int page, int offset);
|
||||
|
||||
/**
|
||||
* @brief Check if PIN protocol version is supported
|
||||
*/
|
||||
@ -282,7 +272,12 @@ int fido2_ctap_init(void)
|
||||
return -EPROTO;
|
||||
}
|
||||
|
||||
ret = _read_state_from_flash(&_state);
|
||||
/**
|
||||
* CTAP state information is stored at flashpage 0 of the memory area
|
||||
* dedicated for storing CTAP data
|
||||
*/
|
||||
ret = fido2_ctap_mem_read(&_state, fido2_ctap_mem_flash_page(), 0,
|
||||
sizeof(_state));
|
||||
|
||||
if (ret != CTAP2_OK) {
|
||||
return -EPROTO;
|
||||
@ -296,17 +291,13 @@ int fido2_ctap_init(void)
|
||||
}
|
||||
}
|
||||
|
||||
#if !IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)
|
||||
#ifdef CTAP_UP_BUTTON
|
||||
ret = fido2_ctap_utils_init_gpio_pin(CTAP_UP_BUTTON, CTAP_UP_BUTTON_MODE, CTAP_UP_BUTTON_FLANK);
|
||||
if (ret != CTAP2_OK) {
|
||||
return -EPROTO;
|
||||
if (!IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)) {
|
||||
ret = fido2_ctap_utils_init_gpio_pin(CTAP_UP_BUTTON, CTAP_UP_BUTTON_MODE,
|
||||
CTAP_UP_BUTTON_FLANK);
|
||||
if (ret != CTAP2_OK) {
|
||||
return -EPROTO;
|
||||
}
|
||||
}
|
||||
#else
|
||||
DEBUG("fido2_ctap: error - No button configured even though user presence is enabled \n");
|
||||
return -EIO;
|
||||
#endif /* CTAP_UP_BUTTON */
|
||||
#endif /* !IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP) */
|
||||
|
||||
ret = fido2_ctap_crypto_init();
|
||||
|
||||
@ -432,6 +423,8 @@ size_t fido2_ctap_reset(ctap_resp_t *resp)
|
||||
|
||||
static int _reset(void)
|
||||
{
|
||||
fido2_ctap_mem_erase_flash();
|
||||
|
||||
_state.initialized_marker = CTAP_INITIALIZED_MARKER;
|
||||
_state.rem_pin_att = CTAP_PIN_MAX_ATTS;
|
||||
_state.pin_is_set = false;
|
||||
@ -494,9 +487,10 @@ static int _make_credential(ctap_req_t *req_raw)
|
||||
if (req.exclude_list_len > 0) {
|
||||
if (_rks_exist(req.exclude_list, req.exclude_list_len, req.rp.id,
|
||||
req.rp.id_len)) {
|
||||
#if !IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)
|
||||
fido2_ctap_utils_user_presence_test();
|
||||
#endif
|
||||
if (!IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)) {
|
||||
fido2_ctap_utils_user_presence_test();
|
||||
}
|
||||
|
||||
ret = CTAP2_ERR_CREDENTIAL_EXCLUDED;
|
||||
goto done;
|
||||
}
|
||||
@ -516,9 +510,10 @@ static int _make_credential(ctap_req_t *req_raw)
|
||||
if (fido2_ctap_pin_is_set() && req.pin_auth_present) {
|
||||
/* CTAP specification (version 20190130) section 5.5.8.1 */
|
||||
if (req.pin_auth_len == 0) {
|
||||
#if !IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)
|
||||
fido2_ctap_utils_user_presence_test();
|
||||
#endif
|
||||
if (!IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)) {
|
||||
fido2_ctap_utils_user_presence_test();
|
||||
}
|
||||
|
||||
ret = CTAP2_ERR_PIN_INVALID;
|
||||
goto done;
|
||||
}
|
||||
@ -535,9 +530,10 @@ static int _make_credential(ctap_req_t *req_raw)
|
||||
/* CTAP specification (version 20190130) section 5.5.8.1 */
|
||||
else if (!fido2_ctap_pin_is_set() && req.pin_auth_present
|
||||
&& req.pin_auth_len == 0) {
|
||||
#if !IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)
|
||||
fido2_ctap_utils_user_presence_test();
|
||||
#endif
|
||||
if (!IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)) {
|
||||
fido2_ctap_utils_user_presence_test();
|
||||
}
|
||||
|
||||
ret = CTAP2_ERR_PIN_NOT_SET;
|
||||
goto done;
|
||||
}
|
||||
@ -552,21 +548,22 @@ static int _make_credential(ctap_req_t *req_raw)
|
||||
}
|
||||
|
||||
/* last moment where transaction can be cancelled */
|
||||
#if IS_USED(MODULE_FIDO2_CTAP_TRANSPORT_HID)
|
||||
if (fido2_ctap_transport_hid_should_cancel()) {
|
||||
ret = CTAP2_ERR_KEEPALIVE_CANCEL;
|
||||
goto done;
|
||||
if (IS_USED(MODULE_FIDO2_CTAP_TRANSPORT_HID)) {
|
||||
if (fido2_ctap_transport_hid_should_cancel()) {
|
||||
ret = CTAP2_ERR_KEEPALIVE_CANCEL;
|
||||
goto done;
|
||||
}
|
||||
}
|
||||
#endif
|
||||
|
||||
/* user presence test to create a new credential */
|
||||
#if IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)
|
||||
up = true;
|
||||
#else
|
||||
if (fido2_ctap_utils_user_presence_test() == CTAP2_OK) {
|
||||
if (IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)) {
|
||||
up = true;
|
||||
}
|
||||
#endif
|
||||
else {
|
||||
if (fido2_ctap_utils_user_presence_test() == CTAP2_OK) {
|
||||
up = true;
|
||||
}
|
||||
}
|
||||
|
||||
ret = _make_auth_data_attest(&req, &auth_data, &k, uv, up, rk);
|
||||
|
||||
@ -582,7 +579,7 @@ static int _make_credential(ctap_req_t *req_raw)
|
||||
|
||||
/* if created credential is a resident credential, save it to flash */
|
||||
if (rk) {
|
||||
ret = _save_rk(&k);
|
||||
ret = _write_rk_to_flash(&k);
|
||||
if (ret != CTAP2_OK) {
|
||||
goto done;
|
||||
}
|
||||
@ -637,9 +634,10 @@ static int _get_assertion(ctap_req_t *req_raw)
|
||||
if (fido2_ctap_pin_is_set() && req.pin_auth_present) {
|
||||
/* CTAP specification (version 20190130) section 5.5.8.2 */
|
||||
if (req.pin_auth_len == 0) {
|
||||
#if !IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)
|
||||
fido2_ctap_utils_user_presence_test();
|
||||
#endif
|
||||
if (!IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)) {
|
||||
fido2_ctap_utils_user_presence_test();
|
||||
}
|
||||
|
||||
ret = CTAP2_ERR_PIN_INVALID;
|
||||
goto done;
|
||||
}
|
||||
@ -656,9 +654,10 @@ static int _get_assertion(ctap_req_t *req_raw)
|
||||
/* CTAP specification (version 20190130) section 5.5.8.2 */
|
||||
else if (!fido2_ctap_pin_is_set() && req.pin_auth_present
|
||||
&& req.pin_auth_len == 0) {
|
||||
#if !IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)
|
||||
fido2_ctap_utils_user_presence_test();
|
||||
#endif
|
||||
if (!IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)) {
|
||||
fido2_ctap_utils_user_presence_test();
|
||||
}
|
||||
|
||||
ret = CTAP2_ERR_PIN_NOT_SET;
|
||||
goto done;
|
||||
}
|
||||
@ -673,19 +672,20 @@ static int _get_assertion(ctap_req_t *req_raw)
|
||||
}
|
||||
|
||||
if (req.options.up) {
|
||||
#if IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)
|
||||
up = true;
|
||||
_assert_state.up = true;
|
||||
#else
|
||||
if (fido2_ctap_utils_user_presence_test() == CTAP2_OK) {
|
||||
if (IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)) {
|
||||
up = true;
|
||||
_assert_state.up = true;
|
||||
}
|
||||
else {
|
||||
ret = CTAP2_ERR_OPERATION_DENIED;
|
||||
goto done;
|
||||
if (fido2_ctap_utils_user_presence_test() == CTAP2_OK) {
|
||||
up = true;
|
||||
_assert_state.up = true;
|
||||
}
|
||||
else {
|
||||
ret = CTAP2_ERR_OPERATION_DENIED;
|
||||
goto done;
|
||||
}
|
||||
}
|
||||
#endif
|
||||
}
|
||||
|
||||
if (req.options.uv) {
|
||||
@ -705,12 +705,10 @@ static int _get_assertion(ctap_req_t *req_raw)
|
||||
rk = &_assert_state.rks[_assert_state.cred_counter++];
|
||||
|
||||
/* last moment where transaction can be cancelled */
|
||||
#if IS_USED(MODULE_FIDO2_CTAP_TRANSPORT_HID)
|
||||
if (fido2_ctap_transport_hid_should_cancel()) {
|
||||
ret = CTAP2_ERR_KEEPALIVE_CANCEL;
|
||||
goto done;
|
||||
}
|
||||
#endif
|
||||
|
||||
ret = _make_auth_data_assert(req.rp_id, req.rp_id_len, &auth_data, uv,
|
||||
up,
|
||||
@ -735,7 +733,7 @@ static int _get_assertion(ctap_req_t *req_raw)
|
||||
* therefore needs to be saved on the device.
|
||||
*/
|
||||
if (!rk->cred_desc.has_nonce) {
|
||||
ret = _save_rk(rk);
|
||||
ret = _write_rk_to_flash(rk);
|
||||
|
||||
if (ret != CTAP2_OK) {
|
||||
goto done;
|
||||
@ -821,7 +819,7 @@ static int _get_next_assertion(void)
|
||||
* therefore needs to be saved on the device.
|
||||
*/
|
||||
if (!rk->cred_desc.has_nonce) {
|
||||
ret = _save_rk(rk);
|
||||
ret = _write_rk_to_flash(rk);
|
||||
|
||||
if (ret != CTAP2_OK) {
|
||||
goto done;
|
||||
@ -999,12 +997,12 @@ static int _set_pin(ctap_client_pin_req_t *req)
|
||||
}
|
||||
|
||||
/* last moment where transaction can be cancelled */
|
||||
#if IS_USED(MODULE_FIDO2_CTAP_TRANSPORT_HID)
|
||||
if (fido2_ctap_transport_hid_should_cancel()) {
|
||||
ret = CTAP2_ERR_KEEPALIVE_CANCEL;
|
||||
goto done;
|
||||
if (IS_USED(MODULE_FIDO2_CTAP_TRANSPORT_HID)) {
|
||||
if (fido2_ctap_transport_hid_should_cancel()) {
|
||||
ret = CTAP2_ERR_KEEPALIVE_CANCEL;
|
||||
goto done;
|
||||
}
|
||||
}
|
||||
#endif
|
||||
|
||||
sz = fmt_strnlen((char *)new_pin_dec, CTAP_PIN_MAX_SIZE + 1);
|
||||
if (sz < CTAP_PIN_MIN_SIZE || sz > CTAP_PIN_MAX_SIZE) {
|
||||
@ -1104,12 +1102,12 @@ static int _change_pin(ctap_client_pin_req_t *req)
|
||||
}
|
||||
|
||||
/* last moment where transaction can be cancelled */
|
||||
#if IS_USED(MODULE_FIDO2_CTAP_TRANSPORT_HID)
|
||||
if (fido2_ctap_transport_hid_should_cancel()) {
|
||||
ret = CTAP2_ERR_KEEPALIVE_CANCEL;
|
||||
goto done;
|
||||
if (IS_USED(MODULE_FIDO2_CTAP_TRANSPORT_HID)) {
|
||||
if (fido2_ctap_transport_hid_should_cancel()) {
|
||||
ret = CTAP2_ERR_KEEPALIVE_CANCEL;
|
||||
goto done;
|
||||
}
|
||||
}
|
||||
#endif
|
||||
|
||||
/* verify decrypted pinHash against LEFT(SHA-256(curPin), 16) */
|
||||
if (memcmp(pin_hash_dec, _state.pin_hash, CTAP_PIN_TOKEN_SZ) != 0) {
|
||||
@ -1193,12 +1191,12 @@ static int _get_pin_token(ctap_client_pin_req_t *req)
|
||||
}
|
||||
|
||||
/* last moment where transaction can be cancelled */
|
||||
#if IS_USED(MODULE_FIDO2_CTAP_TRANSPORT_HID)
|
||||
if (fido2_ctap_transport_hid_should_cancel()) {
|
||||
ret = CTAP2_ERR_KEEPALIVE_CANCEL;
|
||||
goto done;
|
||||
if (IS_USED(MODULE_FIDO2_CTAP_TRANSPORT_HID)) {
|
||||
if (fido2_ctap_transport_hid_should_cancel()) {
|
||||
ret = CTAP2_ERR_KEEPALIVE_CANCEL;
|
||||
goto done;
|
||||
}
|
||||
}
|
||||
#endif
|
||||
|
||||
/* sha256 of shared secret ((abG).x) to obtain shared key */
|
||||
ret = fido2_ctap_crypto_sha256(shared_secret, sizeof(shared_secret), shared_key);
|
||||
@ -1527,17 +1525,14 @@ static int _find_matching_rks(ctap_resident_key_t *rks, size_t rks_len,
|
||||
* so rk's can't be deleted, only overwritten => we can be sure that there are
|
||||
* no holes when reading keys from flash memory
|
||||
*/
|
||||
static int _save_rk(ctap_resident_key_t *rk)
|
||||
static int _write_rk_to_flash(ctap_resident_key_t *rk)
|
||||
{
|
||||
int ret;
|
||||
int page_num = CTAP_FLASH_RK_START_PAGE, offset_into_page = 0;
|
||||
int page_num = fido2_ctap_mem_flash_page() + CTAP_FLASH_RK_OFF;
|
||||
int offset_into_page = 0;
|
||||
bool equal = false;
|
||||
ctap_resident_key_t rk_tmp = { 0 };
|
||||
|
||||
if (_state.rk_amount_stored >= fido2_ctap_mem_get_max_rk_amount()) {
|
||||
return CTAP2_ERR_KEY_STORE_FULL;
|
||||
}
|
||||
|
||||
if (_state.rk_amount_stored > 0) {
|
||||
for (uint16_t i = 0; i <= _state.rk_amount_stored; i++) {
|
||||
page_num = fido2_ctap_mem_get_flashpage_number_of_rk(i);
|
||||
@ -1571,6 +1566,10 @@ static int _save_rk(ctap_resident_key_t *rk)
|
||||
}
|
||||
|
||||
if (!equal) {
|
||||
if (_state.rk_amount_stored >= CTAP_FLASH_MAX_NUM_RKS) {
|
||||
return CTAP2_ERR_KEY_STORE_FULL;
|
||||
}
|
||||
|
||||
_state.rk_amount_stored++;
|
||||
ret = _write_state_to_flash(&_state);
|
||||
|
||||
@ -1579,7 +1578,7 @@ static int _save_rk(ctap_resident_key_t *rk)
|
||||
}
|
||||
}
|
||||
|
||||
return _write_rk_to_flash(rk, page_num, offset_into_page);
|
||||
return fido2_ctap_mem_write(rk, page_num, offset_into_page, CTAP_FLASH_RK_SZ);
|
||||
}
|
||||
|
||||
static int _make_auth_data_assert(uint8_t *rp_id, size_t rp_id_len,
|
||||
@ -1792,17 +1791,13 @@ static int _ctap_decrypt_rk(ctap_resident_key_t *rk, ctap_cred_id_t *id)
|
||||
|
||||
static int _write_state_to_flash(const ctap_state_t *state)
|
||||
{
|
||||
return fido2_ctap_mem_write(state, CTAP_FLASH_STATE_PAGE, 0, CTAP_FLASH_STATE_SZ);
|
||||
}
|
||||
|
||||
static int _read_state_from_flash(ctap_state_t *state)
|
||||
{
|
||||
return fido2_ctap_mem_read(state, CTAP_FLASH_STATE_PAGE, 0, sizeof(*state));
|
||||
}
|
||||
|
||||
static int _write_rk_to_flash(const ctap_resident_key_t *rk, int page, int offset)
|
||||
{
|
||||
return fido2_ctap_mem_write(rk, page, offset, CTAP_FLASH_RK_SZ);
|
||||
/**
|
||||
* CTAP state information is stored at flashpage 0 of the memory area
|
||||
* dedicated for storing CTAP data
|
||||
*/
|
||||
return fido2_ctap_mem_write(state,
|
||||
fido2_ctap_mem_flash_page(), 0,
|
||||
CTAP_FLASH_STATE_SZ);
|
||||
}
|
||||
|
||||
int fido2_ctap_get_sig(const uint8_t *auth_data, size_t auth_data_len,
|
||||
|
@ -1574,6 +1574,7 @@ static int _parse_allow_list(CborValue *it, ctap_cred_desc_alt_t *allow_list,
|
||||
{
|
||||
size_t len2 = *allow_list_len;
|
||||
int retval = _parse_exclude_list(it, allow_list, &len2);
|
||||
|
||||
*allow_list_len = (uint8_t)len2;
|
||||
return retval;
|
||||
}
|
||||
@ -1729,6 +1730,7 @@ static int _parse_byte_array_u8len(CborValue *it, uint8_t *dst, uint8_t *len)
|
||||
{
|
||||
size_t len2 = *len;
|
||||
int retval = _parse_byte_array(it, dst, &len2);
|
||||
|
||||
*len = (uint8_t)len2;
|
||||
return retval;
|
||||
}
|
||||
@ -1757,6 +1759,7 @@ static int _parse_text_string_u8len(CborValue *it, char *dst, uint8_t *len)
|
||||
{
|
||||
size_t len2 = *len;
|
||||
int retval = _parse_text_string(it, dst, &len2);
|
||||
|
||||
*len = (uint8_t)len2;
|
||||
return retval;
|
||||
}
|
||||
|
@ -25,45 +25,39 @@
|
||||
#define ENABLE_DEBUG (0)
|
||||
#include "debug.h"
|
||||
|
||||
/**
|
||||
* @brief Reserve flash memory to store CTAP data
|
||||
*/
|
||||
FLASH_WRITABLE_INIT(_backing_memory, CONFIG_FIDO2_CTAP_NUM_FLASHPAGES);
|
||||
|
||||
/**
|
||||
* @brief MTD device descriptor initialized with flash-page driver
|
||||
*/
|
||||
static mtd_flashpage_t _mtd_flash_dev = MTD_FLASHPAGE_INIT_VAL(CTAP_FLASH_PAGES_PER_SECTOR);
|
||||
static mtd_dev_t *_mtd_dev = &_mtd_flash_dev.base;
|
||||
|
||||
/**
|
||||
* @brief Max amount of resident keys that can be stored
|
||||
*/
|
||||
static uint16_t _max_rk_amnt;
|
||||
|
||||
/**
|
||||
* @brief Check if flash region is erased
|
||||
*/
|
||||
static bool _flash_is_erased(int page, int offset, size_t len);
|
||||
|
||||
/**
|
||||
* @brief Get amount of flashpages
|
||||
* @brief Get available amount of flashpages to store resident keys
|
||||
*/
|
||||
static unsigned _amount_of_flashpages(void);
|
||||
static unsigned _amount_flashpages_rk(void);
|
||||
|
||||
int fido2_ctap_mem_init(void)
|
||||
{
|
||||
int ret;
|
||||
|
||||
ret = mtd_init(_mtd_dev);
|
||||
int ret = mtd_init(_mtd_dev);
|
||||
|
||||
if (ret < 0) {
|
||||
return ret;
|
||||
}
|
||||
|
||||
for (unsigned i = CTAP_FLASH_RK_START_PAGE; i < _amount_of_flashpages(); i++) {
|
||||
_max_rk_amnt += flashpage_size(i) / CTAP_FLASH_RK_SZ;
|
||||
}
|
||||
|
||||
return CTAP2_OK;
|
||||
}
|
||||
|
||||
static unsigned _amount_of_flashpages(void)
|
||||
static unsigned _amount_flashpages_rk(void)
|
||||
{
|
||||
return _mtd_dev->sector_count * _mtd_dev->pages_per_sector;
|
||||
}
|
||||
@ -120,16 +114,13 @@ static bool _flash_is_erased(int page, int offset, size_t len)
|
||||
return true;
|
||||
}
|
||||
|
||||
uint16_t fido2_ctap_mem_get_max_rk_amount(void)
|
||||
{
|
||||
return _max_rk_amnt;
|
||||
}
|
||||
|
||||
int fido2_ctap_mem_get_flashpage_number_of_rk(uint16_t rk_idx)
|
||||
{
|
||||
uint16_t idx = 0;
|
||||
unsigned start = fido2_ctap_mem_flash_page() + CTAP_FLASH_RK_OFF;
|
||||
unsigned amount = _amount_flashpages_rk();
|
||||
|
||||
for (unsigned i = CTAP_FLASH_RK_START_PAGE; i < _amount_of_flashpages(); i++) {
|
||||
for (unsigned i = start; i < start + amount; i++) {
|
||||
idx += flashpage_size(i) / CTAP_FLASH_RK_SZ;
|
||||
|
||||
if (idx >= rk_idx) {
|
||||
@ -143,8 +134,10 @@ int fido2_ctap_mem_get_flashpage_number_of_rk(uint16_t rk_idx)
|
||||
int fido2_ctap_mem_get_offset_of_rk_into_flashpage(uint16_t rk_idx)
|
||||
{
|
||||
uint16_t idx = 0;
|
||||
unsigned start = fido2_ctap_mem_flash_page() + CTAP_FLASH_RK_OFF;
|
||||
unsigned amount = _amount_flashpages_rk();
|
||||
|
||||
for (unsigned i = CTAP_FLASH_RK_START_PAGE; i < _amount_of_flashpages(); i++) {
|
||||
for (unsigned i = start; i < start + amount; i++) {
|
||||
uint16_t old_idx = idx;
|
||||
idx += flashpage_size(i) / CTAP_FLASH_RK_SZ;
|
||||
|
||||
@ -155,3 +148,20 @@ int fido2_ctap_mem_get_offset_of_rk_into_flashpage(uint16_t rk_idx)
|
||||
|
||||
return -1;
|
||||
}
|
||||
|
||||
unsigned fido2_ctap_mem_flash_page(void)
|
||||
{
|
||||
return flashpage_page((void *)_backing_memory);
|
||||
}
|
||||
|
||||
int fido2_ctap_mem_erase_flash(void)
|
||||
{
|
||||
unsigned start = fido2_ctap_mem_flash_page();
|
||||
unsigned end = start + CONFIG_FIDO2_CTAP_NUM_FLASHPAGES;
|
||||
|
||||
for (unsigned page = start; page < end; page++) {
|
||||
flashpage_erase(page);
|
||||
}
|
||||
|
||||
return CTAP2_OK;
|
||||
}
|
||||
|
@ -29,8 +29,6 @@
|
||||
#define ENABLE_DEBUG (0)
|
||||
#include "debug.h"
|
||||
|
||||
#if !IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)
|
||||
|
||||
/**
|
||||
* @brief Flag holding information if user is present or not
|
||||
*/
|
||||
@ -63,9 +61,9 @@ int fido2_ctap_utils_user_presence_test(void)
|
||||
|
||||
gpio_irq_enable(_pin);
|
||||
|
||||
#if !IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_LED)
|
||||
fido2_ctap_utils_led_animation();
|
||||
#endif
|
||||
if (!IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_LED)) {
|
||||
fido2_ctap_utils_led_animation();
|
||||
}
|
||||
|
||||
ret = _user_present ? CTAP2_OK : CTAP2_ERR_ACTION_TIMEOUT;
|
||||
|
||||
@ -81,7 +79,6 @@ static void _gpio_cb(void *arg)
|
||||
_user_present = true;
|
||||
}
|
||||
|
||||
#if !IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_LED)
|
||||
void fido2_ctap_utils_led_animation(void)
|
||||
{
|
||||
uint32_t start = ztimer_now(ZTIMER_MSEC);
|
||||
@ -118,5 +115,3 @@ void fido2_ctap_utils_led_animation(void)
|
||||
LED2_OFF;
|
||||
#endif
|
||||
}
|
||||
#endif /* !IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_LED) */
|
||||
#endif /* CONFIG_FIDO2_CTAP_DISABLE_UP */
|
||||
|
@ -17,6 +17,10 @@
|
||||
*
|
||||
* @warning The FIDO2 implementation currently stores private keys in plain text inside flash memory.
|
||||
*
|
||||
* @warning This implementation persists FIDO CTAP data across reboots and when unpowered;
|
||||
* any firmware update loses the data because it will be overwritten. This applies both to firmware updates through
|
||||
* bootloaders and to firmware updates through external programmers.
|
||||
*
|
||||
* FIDO2 is an authentication standard that seeks to solve the password problem
|
||||
* by enabling passwordless authentication. Instead of using passwords to
|
||||
* authenticate to web services, FIDO2 enables users to use common devices
|
||||
@ -102,6 +106,8 @@
|
||||
*
|
||||
* Abstraction for flash operations. Uses the RIOT [Flashpage MTD driver](http://api.riot-os.org/group__drivers__mtd__flashpage.html).
|
||||
*
|
||||
* Flash memory is reserved at build time using the `FLASH_WRITABLE_INIT` macro. The amount of flashpages reserved can be configured as `FIDO2_CTAP_NUM_FLASHPAGES` in KConfig. The implementation needs at least 1 flashpage to store state information and 1 flashpage to store credentials also called resident keys (rks). Therefore, the minimum amount of flashpages needed is 2. State information is stored on the first flashpage, credentials (rks) on the following flashpages.
|
||||
*
|
||||
* Adds additional functionality to speedup flash accesses (e.g. by checking if a flash page is erased to avoid unnecessary erasures of flash pages).
|
||||
*
|
||||
* **ctap_utils**
|
||||
@ -134,6 +140,8 @@
|
||||
*
|
||||
* * Resident Credentials
|
||||
* * Resident credentials are credentials stored on the authenticator.
|
||||
* * They are also called resident key (rk) credentials due to the key material
|
||||
* being stored on the device.
|
||||
* * This implementation stores resident keys in flash memory.
|
||||
* @warning As of now the credentials (containing a private key) are stored
|
||||
* in plain text inside flash memory
|
||||
|
@ -131,7 +131,6 @@ extern "C" {
|
||||
#define CTAP_STACKSIZE 15000
|
||||
#endif
|
||||
|
||||
#if !IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP)
|
||||
/**
|
||||
* @brief CTAP user presence button
|
||||
*/
|
||||
@ -142,10 +141,13 @@ extern "C" {
|
||||
/* set default button if no button is configured */
|
||||
#ifdef BTN0_PIN
|
||||
#define CTAP_UP_BUTTON BTN0_PIN
|
||||
/* if no button available disable UP test */
|
||||
#else
|
||||
#define CTAP_UP_BUTTON 0
|
||||
/**
|
||||
* @brief Disable user presence test configuration
|
||||
*/
|
||||
#define CONFIG_FIDO2_CTAP_DISABLE_UP 1
|
||||
#endif
|
||||
#endif /* BTN0_PIN */
|
||||
#endif
|
||||
|
||||
/**
|
||||
@ -174,7 +176,19 @@ extern "C" {
|
||||
#define CTAP_UP_BUTTON_FLANK GPIO_FALLING
|
||||
#endif
|
||||
|
||||
#endif /* !IS_ACTIVE(CONFIG_FIDO2_CTAP_DISABLE_UP) */
|
||||
/**
|
||||
* @brief Disable user presence test configuration
|
||||
*/
|
||||
#ifndef CONFIG_FIDO2_CTAP_DISABLE_UP
|
||||
#define CONFIG_FIDO2_CTAP_DISABLE_UP 0
|
||||
#endif
|
||||
|
||||
/**
|
||||
* @brief Disable user LED animation configuration
|
||||
*/
|
||||
#ifndef CONFIG_FIDO2_CTAP_DISABLE_LED
|
||||
#define CONFIG_FIDO2_CTAP_DISABLE_LED 0
|
||||
#endif
|
||||
|
||||
/**
|
||||
* @brief Max size of relying party name
|
||||
|
@ -227,7 +227,7 @@ int fido2_ctap_crypto_get_sig(uint8_t *hash, size_t hash_len, uint8_t *sig,
|
||||
*
|
||||
* @return @ref ctap_status_codes_t
|
||||
*/
|
||||
int fido2_ctap_crypto_aes_enc(uint8_t *out, size_t *out_len, uint8_t * in,
|
||||
int fido2_ctap_crypto_aes_enc(uint8_t * out, size_t *out_len, uint8_t * in,
|
||||
size_t in_len, const uint8_t * key, size_t key_len);
|
||||
|
||||
/**
|
||||
@ -242,7 +242,7 @@ int fido2_ctap_crypto_aes_enc(uint8_t *out, size_t *out_len, uint8_t * in,
|
||||
*
|
||||
* @return @ref ctap_status_codes_t
|
||||
*/
|
||||
int fido2_ctap_crypto_aes_dec(uint8_t *out, size_t *out_len, uint8_t * in,
|
||||
int fido2_ctap_crypto_aes_dec(uint8_t * out, size_t *out_len, uint8_t * in,
|
||||
size_t in_len, const uint8_t * key, size_t key_len);
|
||||
|
||||
/**
|
||||
|
@ -41,28 +41,15 @@ extern "C" {
|
||||
/** @} */
|
||||
|
||||
/**
|
||||
* @brief First flash page to store data in
|
||||
*
|
||||
* @note This can corrupt firmware if CTAP_FLASH_START_PAGE is set to a
|
||||
* flash page containing firmware. Therefore make sure that CTAP_FLASH_START_PAGE
|
||||
* is located after the firmware.
|
||||
* @brief Default amount of flashpages to use
|
||||
*/
|
||||
#if defined(CONFIG_FIDO2_CTAP_FLASH_START_PAGE) && \
|
||||
(CONFIG_FIDO2_CTAP_FLASH_START_PAGE >= 0)
|
||||
#define CTAP_FLASH_START_PAGE CONFIG_FIDO2_CTAP_FLASH_START_PAGE
|
||||
#else
|
||||
#define CTAP_FLASH_START_PAGE (FLASHPAGE_NUMOF - 4)
|
||||
#ifndef CONFIG_FIDO2_CTAP_NUM_FLASHPAGES
|
||||
#define CONFIG_FIDO2_CTAP_NUM_FLASHPAGES 4
|
||||
#endif
|
||||
|
||||
/**
|
||||
* @brief Start page for storing resident keys
|
||||
*/
|
||||
#define CTAP_FLASH_RK_START_PAGE CTAP_FLASH_START_PAGE
|
||||
|
||||
/**
|
||||
* @brief Page for storing authenticator state information
|
||||
*/
|
||||
#define CTAP_FLASH_STATE_PAGE CTAP_FLASH_RK_START_PAGE - 1
|
||||
#if CONFIG_FIDO2_CTAP_NUM_FLASHPAGES < 2
|
||||
#error "ctap_mem.h: Configured number of flashpages is invalid"
|
||||
#endif
|
||||
|
||||
/**
|
||||
* @brief Calculate padding needed to align struct size for saving to flash
|
||||
@ -84,6 +71,12 @@ extern "C" {
|
||||
#define CTAP_FLASH_STATE_SZ (sizeof(ctap_state_t) + \
|
||||
CTAP_FLASH_ALIGN_PAD(ctap_state_t))
|
||||
|
||||
/**
|
||||
* @brief Max amount of resident keys that can be stored on device
|
||||
*/
|
||||
#define CTAP_FLASH_MAX_NUM_RKS ((CONFIG_FIDO2_CTAP_NUM_FLASHPAGES - 1) * \
|
||||
FLASHPAGE_SIZE / CTAP_FLASH_RK_SZ)
|
||||
|
||||
/**
|
||||
* @brief Minimum flash sector size needed to hold CTAP related data
|
||||
*
|
||||
@ -96,6 +89,14 @@ extern "C" {
|
||||
*/
|
||||
#define CTAP_FLASH_PAGES_PER_SECTOR ((CTAP_FLASH_MIN_SECTOR_SZ / FLASHPAGE_SIZE) + 1)
|
||||
|
||||
/**
|
||||
* Offset of flashpage for storing resident keys
|
||||
*
|
||||
* The offset is in units of flashpages from the beginning of the flash memory
|
||||
* area dedicated for storing CTAP data.
|
||||
*/
|
||||
#define CTAP_FLASH_RK_OFF 0x1
|
||||
|
||||
/**
|
||||
* @brief Initialize memory helper
|
||||
*
|
||||
@ -127,13 +128,6 @@ int fido2_ctap_mem_write(const void *buf, uint32_t page, uint32_t offset, uint32
|
||||
*/
|
||||
int fido2_ctap_mem_read(void *buf, uint32_t page, uint32_t offset, uint32_t len);
|
||||
|
||||
/**
|
||||
* @brief Get maximum amount of resident credentials that can be stored
|
||||
*
|
||||
* @return maximum amount that can be stored
|
||||
*/
|
||||
uint16_t fido2_ctap_mem_get_max_rk_amount(void);
|
||||
|
||||
/**
|
||||
* @brief Get flashpage number resident key with index @p rk_idx.
|
||||
*
|
||||
@ -155,6 +149,27 @@ int fido2_ctap_mem_get_flashpage_number_of_rk(uint16_t rk_idx);
|
||||
*/
|
||||
int fido2_ctap_mem_get_offset_of_rk_into_flashpage(uint16_t rk_idx);
|
||||
|
||||
/**
|
||||
* @brief Get page number for storing authenticator state information
|
||||
*
|
||||
* @return page number
|
||||
*/
|
||||
unsigned fido2_ctap_mem_flash_page(void);
|
||||
|
||||
/**
|
||||
* @brief Get start page for storing resident keys
|
||||
*
|
||||
* @return page number
|
||||
*/
|
||||
unsigned fido2_ctap_mem_get_rk_start_page(void);
|
||||
|
||||
/**
|
||||
* @brief Erase all flashpages containing CTAP data
|
||||
*
|
||||
* @return @ref ctap_status_codes_t
|
||||
*/
|
||||
int fido2_ctap_mem_erase_flash(void);
|
||||
|
||||
#ifdef __cplusplus
|
||||
}
|
||||
#endif
|
||||
|
@ -25,6 +25,12 @@ Note:
|
||||
* When registering and authenticating on [Webauthn.io](https://webauthn.io/) you
|
||||
will need to push button 1 on your device in order to show user presence.
|
||||
|
||||
**Resetting the authenticator**
|
||||
* To reset the authenticator, meaning that all credentials and state information
|
||||
will be deleted, execute the `reset.py` file located in this directory.
|
||||
* This requires you to install the python fido2 package. To install run:
|
||||
`pip install fido2==0.8.1`.
|
||||
|
||||
### Unit testing
|
||||
Unit testing is based on the `fido2_tests` package.
|
||||
|
||||
|
23
tests/sys_fido2_ctap/reset.py
Normal file
23
tests/sys_fido2_ctap/reset.py
Normal file
@ -0,0 +1,23 @@
|
||||
from fido2.hid import CtapHidDevice
|
||||
from fido2.ctap2 import CTAP2
|
||||
|
||||
|
||||
def get_device():
|
||||
devs = list(CtapHidDevice.list_devices())
|
||||
assert len(devs) == 1
|
||||
return devs[0]
|
||||
|
||||
|
||||
if __name__ == '__main__':
|
||||
try:
|
||||
dev = get_device()
|
||||
except Exception:
|
||||
print("Unable to find authenticator")
|
||||
exit(-1)
|
||||
|
||||
ctap = CTAP2(dev)
|
||||
try:
|
||||
ctap.reset()
|
||||
print("Device successfully reset")
|
||||
except Exception as e:
|
||||
print(e)
|
Loading…
Reference in New Issue
Block a user