Strongly type AaGuid

Author: iamcarbon

Src/Fido2.AspNet/DistributedCacheMetadataService.cs

@@ -182,18 +182,16 @@ protected virtual async Task<MetadataBLOBPayload> GetMemoryCachedPayload(IMetada
 
     public async Task<MetadataBLOBPayloadEntry> GetEntryAsync(Guid aaguid, CancellationToken cancellationToken = default)
     {
-        var aaguidComparisonString = aaguid.ToString("D");
-
         var memCacheEntry = await _memoryCache.GetOrCreateAsync<MetadataBLOBPayloadEntry>(
-            $"{CACHE_PREFIX}:{aaguidComparisonString}",
+            $"{CACHE_PREFIX}:{aaguid}",
             async entry =>
             {
                 foreach (var repo in _repositories)
                 {
                     var cachedPayload = await GetMemoryCachedPayload(repo, cancellationToken);
                     if (cachedPayload != null)
                     {
-                        var matchingEntry = cachedPayload.Entries?.FirstOrDefault(o => o.AaGuid == aaguidComparisonString);
+                        var matchingEntry = cachedPayload.Entries?.FirstOrDefault(o => o.AaGuid == aaguid);
                         if (matchingEntry != null)
                         {
                             entry.AbsoluteExpiration = GetMemoryCacheAbsoluteExpiryTime(GetNextUpdateTimeFromPayload(cachedPayload));

Src/Fido2.Models/Metadata/MetadataBLOBPayloadEntry.cs

@@ -1,4 +1,5 @@
-using System.ComponentModel.DataAnnotations;
+using System;
+using System.ComponentModel.DataAnnotations;
 using System.Linq;
 using System.Text.Json.Serialization;
 
@@ -24,7 +25,7 @@ public sealed class MetadataBLOBPayloadEntry
     /// <para>The Authenticator Attestation GUID.</para>
     /// </summary>
     [JsonPropertyName("aaguid")]
-    public string AaGuid { get; set; }
+    public Guid? AaGuid { get; set; }
 
     /// <summary>
     /// Gets or sets a list of the attestation certificate public key identifiers encoded as hex string.

Src/Fido2.Models/Metadata/MetadataStatement.cs

@@ -1,4 +1,5 @@
-using System.ComponentModel.DataAnnotations;
+using System;
+using System.ComponentModel.DataAnnotations;
 using System.Text.Json.Serialization;
 
 namespace Fido2NetLib;
@@ -34,7 +35,7 @@ public class MetadataStatement
     /// <para>Note: FIDO 2 Authenticators support AAGUID, but they don't support AAID.</para>
     /// </remarks>
     [JsonPropertyName("aaguid")]
-    public string AaGuid { get; set; }
+    public Guid? AaGuid { get; set; }
 
     /// <summary>
     /// Gets or sets a list of the attestation certificate public key identifiers encoded as hex string.

Src/Fido2.Models/Objects/AttestationVerificationSuccess.cs

@@ -1,4 +1,5 @@
-using System.Security.Cryptography.X509Certificates;
+using System;
+using System.Security.Cryptography.X509Certificates;
 using System.Text.Json.Serialization;
 
 namespace Fido2NetLib.Objects;
@@ -12,10 +13,14 @@ public class AttestationVerificationSuccess : AssertionVerificationResult
     public byte[] PublicKey { get; set; }
 
     public Fido2User User { get; set; }
+
     public string CredType { get; set; }
-    public System.Guid Aaguid { get; set; }
+
+    public Guid AaGuid { get; set; }
+
 #nullable enable
     public X509Certificate2? AttestationCertificate { get; set; }
 #nullable disable
+
     public X509Certificate2[] AttestationCertificateChain { get; set; }
 }

Src/Fido2/ConformanceMetadataService.cs

@@ -48,13 +48,13 @@ public bool ConformanceTesting()
 
     protected virtual async Task LoadEntryStatementAsync(IMetadataRepository repository, MetadataBLOBPayload blob, MetadataBLOBPayloadEntry entry, CancellationToken cancellationToken)
     {
-        if (entry.AaGuid != null)
+        if (entry.AaGuid.HasValue)
         {
             var statement = await repository.GetMetadataStatementAsync(blob, entry, cancellationToken);
 
-            if (!string.IsNullOrWhiteSpace(statement?.AaGuid))
+            if (statement?.AaGuid is Guid aaGuid)
             {
-                _metadataStatements.TryAdd(Guid.Parse(statement.AaGuid), statement);
+                _metadataStatements.TryAdd(aaGuid, statement);
             }
         }
     }
@@ -65,9 +65,9 @@ protected virtual async Task InitializeRepositoryAsync(IMetadataRepository repos
 
         foreach (var entry in blob.Entries)
         {
-            if (!string.IsNullOrEmpty(entry.AaGuid))
+            if (entry.AaGuid is Guid aaGuid)
             {
-                if (_entries.TryAdd(Guid.Parse(entry.AaGuid), entry))
+                if (_entries.TryAdd(aaGuid, entry))
                 {
                     //Load if it doesn't already exist
                     await LoadEntryStatementAsync(repository, blob, entry, cancellationToken);

Src/Fido2/Metadata/FileSystemMetadataRepository.cs

@@ -27,10 +27,9 @@ public FileSystemMetadataRepository(string path)
         if (_blob is null)
             await GetBLOBAsync(cancellationToken);
 
-        if (!string.IsNullOrEmpty(entry.AaGuid) && Guid.TryParse(entry.AaGuid, out Guid parsedAaGuid))
+        if (entry.AaGuid is Guid aaGuid && _entries.TryGetValue(aaGuid, out var found))
         {
-            if (_entries.ContainsKey(parsedAaGuid))
-                return _entries[parsedAaGuid].MetadataStatement;
+            return found.MetadataStatement;
         }
 
         return null;
@@ -56,7 +55,7 @@ public async Task<MetadataBLOBPayload> GetBLOBAsync(CancellationToken cancellati
                         } 
                     }
                 };
-                if (null != conformanceEntry.AaGuid) _entries.Add(new Guid(conformanceEntry.AaGuid), conformanceEntry);
+                if (null != conformanceEntry.AaGuid) _entries.Add(conformanceEntry.AaGuid.Value, conformanceEntry);
             }
         }
 

Test/Fido2Tests.cs

@@ -503,13 +503,13 @@ public void MetadataBLOBPayloadEntry_Can_Be_JSON_Roundtripped()
     {
         var input = new MetadataBLOBPayloadEntry()
         {
-            AaGuid = Guid.NewGuid().ToString(),
+            AaGuid = Guid.NewGuid(),
             MetadataStatement = new MetadataStatement(),
             StatusReports = Array.Empty<StatusReport>(),
             TimeOfLastStatusChange = DateTime.UtcNow.ToString("o")
         };
 
-        input.MetadataStatement.AaGuid = Guid.NewGuid().ToString();
+        input.MetadataStatement.AaGuid = Guid.NewGuid();
         input.MetadataStatement.Description = "Test entry";
         input.MetadataStatement.AuthenticatorVersion = 1;
         input.MetadataStatement.Upv = new UafVersion[] { new UafVersion

Test/MetadataServiceTests.cs

@@ -62,10 +62,10 @@ public Task<MetadataBLOBPayload> GetBLOBAsync(CancellationToken cancellationToke
                 Number = _number,
                 Entries = new MetadataBLOBPayloadEntry[]
             {
-                new MetadataBLOBPayloadEntry()
+                new MetadataBLOBPayloadEntry
                 {
-                    AaGuid = "6d44ba9b-f6ec-2e49-b930-0c8fe920cb73",
-                    MetadataStatement = new MetadataStatement()
+                    AaGuid = Guid.Parse("6d44ba9b-f6ec-2e49-b930-0c8fe920cb73"),
+                    MetadataStatement = new MetadataStatement
                     {
                         Description = "Security Key by Yubico with NFC"
                     }
@@ -137,13 +137,13 @@ public async Task DistributeCacheMetadataService_Cache_Rollover_Works()
             currentTimeClock
         );
 
-        var entryIdString = "6d44ba9b-f6ec-2e49-b930-0c8fe920cb73";
+        var entryIdGuid = Guid.Parse("6d44ba9b-f6ec-2e49-b930-0c8fe920cb73");
 
-        var entry = await serviceInstance1.GetEntryAsync(Guid.Parse(entryIdString));
+        var entry = await serviceInstance1.GetEntryAsync(entryIdGuid);
 
         for (int x = 0; x < 10; x++)
         {
-            await serviceInstance1.GetEntryAsync(Guid.Parse(entryIdString));
+            await serviceInstance1.GetEntryAsync(entryIdGuid);
         }
 
         Assert.Equal(1, staticClient.GetBLOBAsyncCount);
@@ -152,36 +152,36 @@ public async Task DistributeCacheMetadataService_Cache_Rollover_Works()
 
         var blobEntry = await distributedCache.GetStringAsync("DistributedCacheMetadataService:V2:" + staticClient.GetType().Name + ":TOC");
 
-        var itemEntry = memCache.Get<MetadataBLOBPayloadEntry>("DistributedCacheMetadataService:V2:" + entryIdString);
+        var itemEntry = memCache.Get<MetadataBLOBPayloadEntry>($"DistributedCacheMetadataService:V2:{entryIdGuid}");
 
         Assert.NotNull(blobEntry);
 
-        Assert.Equal(itemEntry.AaGuid, entryIdString);
+        Assert.Equal(itemEntry.AaGuid, entryIdGuid);
 
         currentTimeClock.UtcNow = DateTimeOffset.Parse("2021-11-30 23:59:59.999Z"); //Before next update
 
-        await serviceInstance1.GetEntryAsync(Guid.Parse(entryIdString));
+        await serviceInstance1.GetEntryAsync(entryIdGuid);
 
         Assert.Equal(1, staticClient.GetBLOBAsyncCount);
 
         currentTimeClock.UtcNow = DateTimeOffset.Parse("2021-12-02 00:59:59.999Z"); //Before buffer period (25 hours)
 
-        await serviceInstance1.GetEntryAsync(Guid.Parse(entryIdString));
-        await serviceInstance1.GetEntryAsync(Guid.Parse(entryIdString));
+        await serviceInstance1.GetEntryAsync(entryIdGuid);
+        await serviceInstance1.GetEntryAsync(entryIdGuid);
 
         Assert.Equal(1, staticClient.GetBLOBAsyncCount);
 
         currentTimeClock.UtcNow = DateTimeOffset.Parse("2021-12-02 01:00:00.001Z"); //After buffer period (25 hours)
 
         staticClient.NextUpdate = "2021-12-30";
 
-        await serviceInstance1.GetEntryAsync(Guid.Parse(entryIdString));
+        await serviceInstance1.GetEntryAsync(entryIdGuid);
 
         Assert.Equal(2, staticClient.GetBLOBAsyncCount);
 
         currentTimeClock.UtcNow = DateTimeOffset.Parse("2021-12-29 01:00:00.001Z");
 
-        await serviceInstance1.GetEntryAsync(Guid.Parse(entryIdString));
+        await serviceInstance1.GetEntryAsync(entryIdGuid);
 
         Assert.Equal(2, staticClient.GetBLOBAsyncCount);
     }