Skip to content

Commit

Permalink
update device capability detection
Browse files Browse the repository at this point in the history
  • Loading branch information
@daeMOn63
daeMOn63 committed Sep 29, 2020
1 parent f3f30b5 commit eb8c635
Show file tree
Hide file tree
Showing 2 changed files with 19 additions and 7 deletions.
13 changes: 11 additions & 2 deletions u2fhid/hid.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,9 @@ const (

broadcastChannel = 0xffffffff

capabilityWink = 1
capabilityWink = 0x01
capabilityCBOR = 0x04
capabilityNMSG = 0x08

minMessageLen = 7
maxMessageLen = 7609
Expand Down Expand Up @@ -100,9 +102,14 @@ type Device struct {
RawCapabilities uint8

// CapabilityWink is true if the device advertised support for the wink
// command during initilization. Even if this flag is true, the device may
// command during initialization. Even if this flag is true, the device may
// not actually do anything if the command is called.
CapabilityWink bool
// CapabilityCBOR is true when the device support CBOR encoded messages
// used by the CTAP2 protocol
CapabilityCBOR bool
// CababilityNMSG is true when the device support CTAP1 messages
CababilityNMSG bool

info *hid.DeviceInfo
device hid.Device
Expand Down Expand Up @@ -249,6 +256,8 @@ func (d *Device) Init() error {
d.BuildDeviceVersion = res[15]
d.RawCapabilities = res[16]
d.CapabilityWink = d.RawCapabilities&capabilityWink != 0
d.CapabilityCBOR = d.RawCapabilities&capabilityCBOR == 1
d.CababilityNMSG = d.RawCapabilities&capabilityNMSG == 0
break
}

Expand Down
13 changes: 8 additions & 5 deletions webauthn/token.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -251,14 +251,17 @@ func (a *Webauthn) selectAuthenticators(opts AuthenticatorSelection) ([]Authenti
}

var current Authenticator
var isCTAP2 bool
t := ctap2.NewToken(dev)
if info, err := t.GetInfo(); err == nil {
if dev.CapabilityCBOR {
t := ctap2.NewToken(dev)
info, err := t.GetInfo()
if err != nil {
return nil, nil, err
}

current = &ctap2WebauthnToken{
t: t,
options: info.Options,
}
isCTAP2 = true
} else {
current = &ctap1WebauthnToken{
t: u2ftoken.NewToken(dev),
Expand All @@ -272,7 +275,7 @@ func (a *Webauthn) selectAuthenticators(opts AuthenticatorSelection) ([]Authenti
if opts.UserVerification == UVDiscouraged && current.RequireUV() {
continue
}
if opts.UserVerification == UVRequired && !isCTAP2 {
if opts.UserVerification == UVRequired && !dev.CapabilityCBOR {
continue
}

Expand Down

0 comments on commit eb8c635

Please sign in to comment.