Addressed comments on #51

AlfioEmanueleFresta · AlfioEmanueleFresta · commit 2cbb78831108 · 2025-01-26T22:38:40.000Z
diff --git a/libwebauthn/src/proto/ctap2/cbor/response.rs b/libwebauthn/src/proto/ctap2/cbor/response.rs
@@ -14,7 +14,10 @@ impl CborResponse {
     pub fn new_success_from_slice(slice: &[u8]) -> Self {
         Self {
             status_code: CtapError::Ok,
-            data: Some(slice.to_vec()),
+            data: match slice.len() {
+                0 => None,
+                _ => Some(Vec::from(slice)),
+            },
         }
     }
 }
diff --git a/libwebauthn/src/transport/cable/crypto.rs b/libwebauthn/src/transport/cable/crypto.rs
@@ -13,7 +13,7 @@ pub enum KeyPurpose {
 }
 
 
-pub fn derive(secret: &[u8], salt: Option<&[u8]>, purpose: KeyPurpose) -> Vec<u8> {
+pub fn derive(secret: &[u8; 16], salt: Option<&[u8]>, purpose: KeyPurpose) -> Vec<u8> {
     let mut purpose32 = [0u8; 4];
     purpose32[0] = purpose as u8;
 
@@ -34,6 +34,11 @@ pub fn trial_decrypt_advert(eid_key: &[u8], candidate_advert: &[u8]) -> Option<V
         return None;
     }
 
+    if eid_key.len() != 64 {
+        warn!("EID key is not 64 bytes");
+        return None;
+    }
+
     let expected_tag = hmac_sha256(&eid_key[32..], &candidate_advert[..16]);
     if expected_tag[..4] != candidate_advert[16..] {
         warn!({ expected = ?expected_tag[..4], actual = ?candidate_advert[16..] }, 
diff --git a/libwebauthn/src/transport/cable/digit_encode.rs b/libwebauthn/src/transport/cable/digit_encode.rs
@@ -19,7 +19,7 @@ pub fn digit_encode(input: &[u8]) -> String {
         input = &input[CHUNK_SIZE..];
     }
     if !input.is_empty() {
-        let digits = 15 & (PARTIAL_CHUNK_DIGITS >> (4 * input.len()));
+        let digits = 0x0F & (PARTIAL_CHUNK_DIGITS >> (4 * input.len()));
         let mut chunk = [0u8; 8];
         chunk[..input.len()].copy_from_slice(input);
         let v = u64::from_le_bytes(chunk);
diff --git a/libwebauthn/src/transport/cable/qr_code_device.rs b/libwebauthn/src/transport/cable/qr_code_device.rs
@@ -7,7 +7,7 @@ use p256::{NonZeroScalar, SecretKey};
 use rand::rngs::OsRng;
 use rand::RngCore;
 use serde::Serialize;
-use serde_bytes::ByteBuf;
+use serde_bytes::ByteArray;
 use serde_indexed::SerializeIndexed;
 use tokio::time::sleep;
 use tracing::{debug, error, instrument, trace};
@@ -49,9 +49,9 @@ impl Serialize for QrCodeOperationHint {
 #[derive(Debug, SerializeIndexed)]
 pub struct CableQrCode {
     // Key 0: a 33-byte, P-256, X9.62, compressed public key.
-    pub public_key: ByteBuf,
+    pub public_key: ByteArray<33>,
     // Key 1: a 16-byte random QR secret.
-    pub qr_secret: ByteBuf,
+    pub qr_secret: ByteArray<16>,
     /// Key 2: the number of assigned tunnel server domains known to this implementation.
     pub known_tunnel_domains_count: u8,
     /// Key 3: (optional) the current time in epoch seconds.
@@ -144,7 +144,13 @@ impl<'d> CableQrCodeDevice<'d> {
     ) -> Self {
         let private_key_scalar = NonZeroScalar::random(&mut OsRng);
         let private_key = SecretKey::from_bytes(&private_key_scalar.to_bytes()).unwrap();
-        let public_key = private_key.public_key().as_affine().to_encoded_point(true);
+        let public_key: [u8; 33] = private_key
+            .public_key()
+            .as_affine()
+            .to_encoded_point(true)
+            .as_bytes()
+            .try_into()
+            .unwrap();
         let mut qr_secret = [0u8; 16];
         OsRng::default().fill_bytes(&mut qr_secret);
 
@@ -155,8 +161,8 @@ impl<'d> CableQrCodeDevice<'d> {
 
         Self {
             qr_code: CableQrCode {
-                public_key: ByteBuf::from(public_key.as_bytes()),
-                qr_secret: ByteBuf::from(qr_secret),
+                public_key: ByteArray::from(public_key),
+                qr_secret: ByteArray::from(qr_secret),
                 known_tunnel_domains_count: KNOWN_TUNNEL_DOMAINS.len() as u8,
                 current_time: current_unix_time,
                 operation_hint: hint,
@@ -251,11 +257,11 @@ impl<'d> Device<'d, Cable, CableChannel<'d>> for CableQrCodeDevice<'_> {
         let routing_id_str = hex::encode(&advert.routing_id);
         let _nonce_str = hex::encode(&advert.nonce);
 
-        let tunnel_id = &derive(&self.qr_code.qr_secret, None, KeyPurpose::TunnelID)[..16];
+        let tunnel_id = &derive(&self.qr_code.qr_secret.as_ref(), None, KeyPurpose::TunnelID)[..16];
         let tunnel_id_str = hex::encode(&tunnel_id);
 
         let psk: &[u8; 32] = &derive(
-            &self.qr_code.qr_secret,
+            &self.qr_code.qr_secret.as_ref(),
             Some(&advert.plaintext),
             KeyPurpose::PSK,
         )[..32]

Original file line number	Diff line number	Diff line change
`@@ -14,7 +14,10 @@ impl CborResponse {`
`14`	`14`	`pub fn new_success_from_slice(slice: &[u8]) -> Self {`
`15`	`15`	`Self {`
`16`	`16`	`status_code: CtapError::Ok,`
`17`		`- data: Some(slice.to_vec()),`
	`17`	`+ data: match slice.len() {`
	`18`	`+ 0 => None,`
	`19`	`+ _ => Some(Vec::from(slice)),`
	`20`	`+ },`
`18`	`21`	`}`
`19`	`22`	`}`
`20`	`23`	`}`
Original file line number	Diff line number	Diff line change
`@@ -19,7 +19,7 @@ pub fn digit_encode(input: &[u8]) -> String {`
`19`	`19`	`input = &input[CHUNK_SIZE..];`
`20`	`20`	`}`
`21`	`21`	`if !input.is_empty() {`
`22`		`- let digits = 15 & (PARTIAL_CHUNK_DIGITS >> (4 * input.len()));`
	`22`	`+ let digits = 0x0F & (PARTIAL_CHUNK_DIGITS >> (4 * input.len()));`
`23`	`23`	`let mut chunk = [0u8; 8];`
`24`	`24`	`chunk[..input.len()].copy_from_slice(input);`
`25`	`25`	`let v = u64::from_le_bytes(chunk);`