Skip to content

Latest commit

 

History

History

fido

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
ctap_response_fuzzer_corpus
ctap_response_fuzzer_corpus
 
 
response_data_fuzzer_corpus
response_data_fuzzer_corpus
 
 
BUILD.gn
BUILD.gn
 
 
DEPS
DEPS
 
 
OWNERS
OWNERS
 
 
README.md
README.md
 
 
attestation_object.cc
attestation_object.cc
 
 
attestation_object.h
attestation_object.h
 
 
attestation_statement.cc
attestation_statement.cc
 
 
attestation_statement.h
attestation_statement.h
 
 
attested_credential_data.cc
attested_credential_data.cc
 
 
attested_credential_data.h
attested_credential_data.h
 
 
authenticator_data.cc
authenticator_data.cc
 
 
authenticator_data.h
authenticator_data.h
 
 
authenticator_get_assertion_response.cc
authenticator_get_assertion_response.cc
 
 
authenticator_get_assertion_response.h
authenticator_get_assertion_response.h
 
 
authenticator_get_info_response.cc
authenticator_get_info_response.cc
 
 
authenticator_get_info_response.h
authenticator_get_info_response.h
 
 
authenticator_make_credential_response.cc
authenticator_make_credential_response.cc
 
 
authenticator_make_credential_response.h
authenticator_make_credential_response.h
 
 
authenticator_supported_options.cc
authenticator_supported_options.cc
 
 
authenticator_supported_options.h
authenticator_supported_options.h
 
 
ctap_constants.cc
ctap_constants.cc
 
 
ctap_constants.h
ctap_constants.h
 
 
ctap_empty_authenticator_request.cc
ctap_empty_authenticator_request.cc
 
 
ctap_empty_authenticator_request.h
ctap_empty_authenticator_request.h
 
 
ctap_get_assertion_request.cc
ctap_get_assertion_request.cc
 
 
ctap_get_assertion_request.h
ctap_get_assertion_request.h
 
 
ctap_make_credential_request.cc
ctap_make_credential_request.cc
 
 
ctap_make_credential_request.h
ctap_make_credential_request.h
 
 
ctap_request_unittest.cc
ctap_request_unittest.cc
 
 
ctap_response_fuzzer.cc
ctap_response_fuzzer.cc
 
 
ctap_response_unittest.cc
ctap_response_unittest.cc
 
 
device_response_converter.cc
device_response_converter.cc
 
 
device_response_converter.h
device_response_converter.h
 
 
ec_public_key.cc
ec_public_key.cc
 
 
ec_public_key.h
ec_public_key.h
 
 
fake_hid_impl_for_testing.cc
fake_hid_impl_for_testing.cc
 
 
fake_hid_impl_for_testing.h
fake_hid_impl_for_testing.h
 
 
fido_attestation_statement.cc
fido_attestation_statement.cc
 
 
fido_attestation_statement.h
fido_attestation_statement.h
 
 
fido_hid_message.cc
fido_hid_message.cc
 
 
fido_hid_message.h
fido_hid_message.h
 
 
fido_hid_message_fuzzer.cc
fido_hid_message_fuzzer.cc
 
 
fido_hid_message_unittest.cc
fido_hid_message_unittest.cc
 
 
fido_hid_packet.cc
fido_hid_packet.cc
 
 
fido_hid_packet.h
fido_hid_packet.h
 
 
mock_u2f_ble_connection.cc
mock_u2f_ble_connection.cc
 
 
mock_u2f_ble_connection.h
mock_u2f_ble_connection.h
 
 
mock_u2f_device.cc
mock_u2f_device.cc
 
 
mock_u2f_device.h
mock_u2f_device.h
 
 
mock_u2f_discovery.cc
mock_u2f_discovery.cc
 
 
mock_u2f_discovery.h
mock_u2f_discovery.h
 
 
public_key.cc
public_key.cc
 
 
public_key.h
public_key.h
 
 
public_key_credential_descriptor.cc
public_key_credential_descriptor.cc
 
 
public_key_credential_descriptor.h
public_key_credential_descriptor.h
 
 
public_key_credential_params.cc
public_key_credential_params.cc
 
 
public_key_credential_params.h
public_key_credential_params.h
 
 
public_key_credential_rp_entity.cc
public_key_credential_rp_entity.cc
 
 
public_key_credential_rp_entity.h
public_key_credential_rp_entity.h
 
 
public_key_credential_user_entity.cc
public_key_credential_user_entity.cc
 
 
public_key_credential_user_entity.h
public_key_credential_user_entity.h
 
 
register_response_data.cc
register_response_data.cc
 
 
register_response_data.h
register_response_data.h
 
 
register_response_data_fuzzer.cc
register_response_data_fuzzer.cc
 
 
response_data.cc
response_data.cc
 
 
response_data.h
response_data.h
 
 
sign_response_data.cc
sign_response_data.cc
 
 
sign_response_data.h
sign_response_data.h
 
 
sign_response_data_fuzzer.cc
sign_response_data_fuzzer.cc
 
 
u2f_apdu_command.cc
u2f_apdu_command.cc
 
 
u2f_apdu_command.h
u2f_apdu_command.h
 
 
u2f_apdu_fuzzer.cc
u2f_apdu_fuzzer.cc
 
 
u2f_apdu_response.cc
u2f_apdu_response.cc
 
 
u2f_apdu_response.h
u2f_apdu_response.h
 
 
u2f_apdu_unittest.cc
u2f_apdu_unittest.cc
 
 
u2f_ble_connection.cc
u2f_ble_connection.cc
 
 
u2f_ble_connection.h
u2f_ble_connection.h
 
 
u2f_ble_connection_unittest.cc
u2f_ble_connection_unittest.cc
 
 
u2f_ble_device.cc
u2f_ble_device.cc
 
 
u2f_ble_device.h
u2f_ble_device.h
 
 
u2f_ble_device_unittest.cc
u2f_ble_device_unittest.cc
 
 
u2f_ble_discovery.cc
u2f_ble_discovery.cc
 
 
u2f_ble_discovery.h
u2f_ble_discovery.h
 
 
u2f_ble_discovery_unittest.cc
u2f_ble_discovery_unittest.cc
 
 
u2f_ble_frames.cc
u2f_ble_frames.cc
 
 
u2f_ble_frames.h
u2f_ble_frames.h
 
 
u2f_ble_frames_fuzzer.cc
u2f_ble_frames_fuzzer.cc
 
 
u2f_ble_frames_unittest.cc
u2f_ble_frames_unittest.cc
 
 
u2f_ble_transaction.cc
u2f_ble_transaction.cc
 
 
u2f_ble_transaction.h
u2f_ble_transaction.h
 
 
u2f_ble_uuids.cc
u2f_ble_uuids.cc
 
 
u2f_ble_uuids.h
u2f_ble_uuids.h
 
 
u2f_command_type.h
u2f_command_type.h
 
 
u2f_device.cc
u2f_device.cc
 
 
u2f_device.h
u2f_device.h
 
 
u2f_discovery.cc
u2f_discovery.cc
 
 
u2f_discovery.h
u2f_discovery.h
 
 
u2f_discovery_unittest.cc
u2f_discovery_unittest.cc
 
 

README.md

FIDO

//device/fido contains abstractions for FIDO security keys across multiple platforms.

U2F Security Keys

Support for U2F (FIDO 1.2) security keys is present for both USB Human Interface Devices (USB HID) and Bluetooth Low Energy (BLE) devices. Clients can perform U2F operations using the U2fRegister and U2fSign classes. These abstractions automatically perform device discovery and handle communication with the underlying devices. Talking to HID devices is done using the HID Mojo service, while communication with BLE devices is done using abstractions found in //device/bluetooth. HID is supported on all desktop platforms, while BLE lacks some support on Windows (see //device/bluetooth/README.md for details).

CTAP Security Keys

Support for CTAP2 (FIDO 2.0) security keys is in active development and aims to unify the implementations for both U2F and CTAP keys.

Testing

Unit Tests

Standard use of *_unittest.cc files for must code coverage. Files prefixed with mock_ provide GoogleMock based fake objects for easy mocking of dependencies during testing.

Fuzzers

libFuzzer tests are in *_fuzzer.cc files. They test for bad input from devices, e.g. when parsing responses to register or sign operations.