Added first step to Enterprise Attestation.

Once enabled, it allows to generate a CSR in the device, which is sent to our PKI. If valid, it returns a signed certificate by an intermediate CA that will be used for attestation. Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
2022-11-30 23:41:05 +01:00
parent a355f87f82
commit bae8450a8d
3 changed files with 81 additions and 1 deletions
--- a/src/fido/ctap.h
+++ b/src/fido/ctap.h
@@ -124,6 +124,7 @@ typedef struct {
 #define CTAP_VENDOR_BACKUP              0x01
 #define CTAP_VENDOR_MSE                 0x02
 #define CTAP_VENDOR_UNLOCK              0x03
+#define CTAP_VENDOR_EA                  0x04

 #define CTAP_PERMISSION_MC              0x01  // MakeCredential
 #define CTAP_PERMISSION_GA              0x02  // GetAssertion