From c2e16fda410461177e17bbb3ea836ca3b0a80dda Mon Sep 17 00:00:00 2001
From: Pol Henarejos <pol.henarejos@cttc.es>
Date: Tue, 4 Oct 2022 00:00:03 +0200
Subject: [PATCH] Fix change pin for protocol v2.

Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
---
 src/fido/cbor_client_pin.c | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/fido/cbor_client_pin.c b/src/fido/cbor_client_pin.c
index 30fc6d5..199faf8 100644
--- a/src/fido/cbor_client_pin.c
+++ b/src/fido/cbor_client_pin.c
@@ -401,10 +401,10 @@ int cbor_client_pin(const uint8_t *data, size_t len) {
             mbedtls_platform_zeroize(sharedSecret, sizeof(sharedSecret));
             CBOR_ERROR(CTAP1_ERR_INVALID_PARAMETER);
         }
-        uint8_t tmp[64 + 16];
-        memcpy(tmp, newPinEnc.data, 64);
-        memcpy(tmp + 64, pinHashEnc.data, 16);
-        if (verify(pinUvAuthProtocol, sharedSecret, tmp, sizeof(tmp), pinUvAuthParam.data) != 0) {
+        uint8_t tmp[80 + 32];
+        memcpy(tmp, newPinEnc.data, newPinEnc.len);
+        memcpy(tmp + newPinEnc.len, pinHashEnc.data, pinHashEnc.len);
+        if (verify(pinUvAuthProtocol, sharedSecret, tmp, newPinEnc.len+pinHashEnc.len, pinUvAuthParam.data) != 0) {
             mbedtls_platform_zeroize(sharedSecret, sizeof(sharedSecret));
             CBOR_ERROR(CTAP2_ERR_PIN_AUTH_INVALID);
         }