dearsky/pico-fido
1
0
Fork 0
Code Issues 46 Pull Requests 1 Actions Packages Projects Releases 22 Wiki Activity

credential management fails #3

New Issue
Closed
opened 2022-11-26 00:20:04 +08:00 by al-heisner · 2 comments
al-heisner commented 2022-11-26 00:20:04 +08:00 (Migrated from github.com)
Copy Link

When using fido2-token to list / manage credentials stored, I'm receiving an error from fido2-token. Same command does work with a retail token.

fido2-token -L -r /dev/hidraw0

Enter PIN for /dev/hidraw0:
fido2-token: fido_credman_get_dev_rp: FIDO_ERR_RX

other info:

lsusb | grep HSM

Bus 008 Device 108: ID cafe:4231 Pol Henarejos Pico HSM HID

fido2-token -L

/dev/hidraw0: vendor=0xcafe, product=0x4231 (Pol Henarejos Pico HSM HID)

When using fido2-token to list / manage credentials stored, I'm receiving an error from fido2-token. Same command does work with a retail token. # fido2-token -L -r /dev/hidraw0 Enter PIN for /dev/hidraw0: fido2-token: fido_credman_get_dev_rp: FIDO_ERR_RX other info: # lsusb | grep HSM Bus 008 Device 108: ID cafe:4231 Pol Henarejos Pico HSM HID # fido2-token -L /dev/hidraw0: vendor=0xcafe, product=0x4231 (Pol Henarejos Pico HSM HID)
al-heisner commented 2022-11-26 10:01:05 +08:00 (Migrated from github.com)
Copy Link

Looks like method CTAP_CREDENTIAL_MGMT (0x0A) is implemented in the token, but fido2-token is attempting to use authenticatorCredentialManagement (0x41) which is not implemented in the token.

fido2-token (libfido2) versions: 1.10.0, 1.12.0

Looks like method CTAP_CREDENTIAL_MGMT (0x0A) is implemented in the token, but fido2-token is attempting to use authenticatorCredentialManagement (0x41) which is not implemented in the token. fido2-token (libfido2) versions: 1.10.0, 1.12.0
polhenarejos commented 2022-11-29 01:28:41 +08:00 (Migrated from github.com)
Copy Link

This a preview feature, superseded in CTAP2.1. Note that the platform should return "not available" or similar, as it is not broadcasted in getInfo.

BTW, fixed in ae42e283

This a preview feature, superseded in CTAP2.1. Note that the platform should return "not available" or similar, as it is not broadcasted in getInfo. BTW, fixed in ae42e283
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
bug
Something isn't working
 documentation
Improvements or additions to documentation
 duplicate
This issue or pull request already exists
 enhancement
New feature or request
 good first issue
Good for newcomers
 help wanted
Extra attention is needed
 invalid
This doesn't seem right
 question
Further information is requested
 wontfix
This will not be worked on
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
dearsky
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: dearsky/pico-fido#3
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?