Skip to content
This repository has been archived by the owner on Aug 6, 2024. It is now read-only.

Test UTF-8 encoding of newPin and curPin #1

Open
geofli opened this issue Jul 2, 2020 · 1 comment
Open

Test UTF-8 encoding of newPin and curPin #1

geofli opened this issue Jul 2, 2020 · 1 comment
Assignees
@kaczmarczyck

Comments

@geofli
Copy link

geofli commented Jul 2, 2020
edited
Loading

According to CTAP 2.0 Proposed Standard: https://fidoalliance.org/specs/fido-v2.0-ps-20190130/fido-client-to-authenticator-protocol-v2.0-ps-20190130.html

and

CTAP 2.1 Review Draft: https://fidoalliance.org/specs/fido2/fido-client-to-authenticator-protocol-v2.1-rd-20191217.html

and latest working draft, to authenticatorClientPIN:

"newPin" be the UTF-8 representation of "newPinUnicode".
"curPin" be the UTF-8 representation of "curPinUnicode"

So authenticator should check newPin and curPin against UTF-8 encoding, then test tool should test this with wrong/correct UTF-8 encoding input parameters.
@kaczmarczyck kaczmarczyck self-assigned this Jul 6, 2020
@kaczmarczyck
Copy link
Contributor

As discussed in google/OpenSK#126 , UTF8 tests will be informative for CTAP2.0, whereas CTAP2.1 more thoroughly defines correct behavior.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@kaczmarczyck kaczmarczyck

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@geofli @kaczmarczyck