Changeset 237983 in webkit

Timestamp:

Nov 8, 2018 2:29:58 AM (5 years ago)

Author:

jiewen_tan@apple.com

Message:

[WebAuthN] Import CTAP device request/response converters from Chromium
​https://bugs.webkit.org/show_bug.cgi?id=190784
<rdar://problem/45460333>

Reviewed by Brent Fulgham.

Source/WebCore:

This patch imports Chromium's CTAP device request/response converters:
​https://fidoalliance.org/specs/fido-v2.0-ps-20170927/fido-client-to-authenticator-protocol-v2.0-ps-20170927.html#message-encoding

1. It directly imports the following files and suit them to WebKit's coding style:

​https://cs.chromium.org/chromium/src/device/fido/device_response_converter.cc?l=20&rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
​https://cs.chromium.org/chromium/src/device/fido/device_response_converter.h?rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
​https://cs.chromium.org/chromium/src/device/fido/authenticator_get_info_response.cc?rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
​https://cs.chromium.org/chromium/src/device/fido/authenticator_get_info_response.h?rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
​https://cs.chromium.org/chromium/src/device/fido/authenticator_supported_options.cc?rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
​https://cs.chromium.org/chromium/src/device/fido/authenticator_supported_options.h?rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
​https://cs.chromium.org/chromium/src/device/fido/ctap_request_unittest.cc?rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
​https://cs.chromium.org/chromium/src/device/fido/ctap_response_unittest.cc?rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
​https://cs.chromium.org/chromium/src/device/fido/fido_test_data.h?l=1&rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45

2. It gathers the following methods into DeviceRequestConverter:

CtapGetAssertionRequest::EncodeAsCBOR()
CtapMakeCredentialRequest::EncodeAsCBOR()
PublicKeyCredentialDescriptor::ConvertToCBOR()
PublicKeyCredentialParams::ConvertToCBOR()
PublicKeyCredentialRpEntity::ConvertToCBOR()
PublicKeyCredentialUserEntity::ConvertToCBOR()

3. It also apply a patch from Chromium to CBORValue:

​https://chromium.googlesource.com/chromium/src/+/7b6fbff35cd8e4d508f08e1cd93b4aa0a0dc402c%5E%21/

Besides importing things from Chromium, it also implements UserVerificationRequirement for both
PublicKeyCredentialCreationOptions and PublicKeyCredentialRequestOptions such that both options
can specify more dimensions of a desired authenticator.

Covered by API tests.

• CMakeLists.txt:
• DerivedSources.make:
• Modules/webauthn/PublicKeyCredentialCreationOptions.h:

(WebCore::PublicKeyCredentialCreationOptions::AuthenticatorSelectionCriteria::encode const):
(WebCore::PublicKeyCredentialCreationOptions::AuthenticatorSelectionCriteria::decode):

• Modules/webauthn/PublicKeyCredentialCreationOptions.idl:
• Modules/webauthn/PublicKeyCredentialRequestOptions.h:

(WebCore::PublicKeyCredentialRequestOptions::encode const):
(WebCore::PublicKeyCredentialRequestOptions::decode):

• Modules/webauthn/PublicKeyCredentialRequestOptions.idl:
• Modules/webauthn/UserVerificationRequirement.h: Copied from Source/WebCore/Modules/webauthn/PublicKeyCredentialRequestOptions.idl.
• Modules/webauthn/UserVerificationRequirement.idl: Copied from Source/WebCore/Modules/webauthn/PublicKeyCredentialRequestOptions.idl.
• Modules/webauthn/cbor/CBORValue.cpp:

(cbor::CBORValue::CBORValue):
(cbor::CBORValue::getBool const):

• Modules/webauthn/cbor/CBORValue.h:
• Modules/webauthn/fido/AuthenticatorGetInfoResponse.cpp: Added.

(fido::toArrayValue):
(fido::AuthenticatorGetInfoResponse::AuthenticatorGetInfoResponse):
(fido::AuthenticatorGetInfoResponse::setMaxMsgSize):
(fido::AuthenticatorGetInfoResponse::setPinProtocols):
(fido::AuthenticatorGetInfoResponse::setExtensions):
(fido::AuthenticatorGetInfoResponse::setOptions):
(fido::encodeAsCBOR):

• Modules/webauthn/fido/AuthenticatorGetInfoResponse.h: Added.
• Modules/webauthn/fido/AuthenticatorSupportedOptions.cpp: Added.

(fido::AuthenticatorSupportedOptions::setSupportsResidentKey):
(fido::AuthenticatorSupportedOptions::setUserVerificationAvailability):
(fido::AuthenticatorSupportedOptions::setUserPresenceRequired):
(fido::AuthenticatorSupportedOptions::setClientPinAvailability):
(fido::AuthenticatorSupportedOptions::setIsPlatformDevice):
(fido::convertToCBOR):

• Modules/webauthn/fido/AuthenticatorSupportedOptions.h: Added.
• Modules/webauthn/fido/DeviceRequestConverter.cpp: Added.

(fido::convertRpEntityToCBOR):
(fido::convertUserEntityToCBOR):
(fido::convertParametersToCBOR):
(fido::convertDescriptorToCBOR):
(fido::encodeMakeCredenitalRequestAsCBOR):
(fido::encodeGetAssertionRequestAsCBOR):
(fido::encodeEmptyAuthenticatorRequest):

• Modules/webauthn/fido/DeviceRequestConverter.h: Copied from Source/WebCore/Modules/webauthn/fido/FidoConstants.h.
• Modules/webauthn/fido/DeviceResponseConverter.cpp: Added.

(fido::convertStringToProtocolVersion):
(fido::getResponseCode):
(fido::getCredentialId):
(fido::readCTAPMakeCredentialResponse):
(fido::readCTAPGetAssertionResponse):
(fido::readCTAPGetInfoResponse):

• Modules/webauthn/fido/DeviceResponseConverter.h: Copied from Source/WebCore/Modules/webauthn/fido/FidoConstants.cpp.
• Modules/webauthn/fido/FidoConstants.cpp:

(fido::isCtapDeviceResponseCode):
(fido::publicKeyCredentialTypeToString):

• Modules/webauthn/fido/FidoConstants.h:
• Sources.txt:
• WebCore.xcodeproj/project.pbxproj:

Tools:

• TestWebKitAPI/TestWebKitAPI.xcodeproj/project.pbxproj:
• TestWebKitAPI/Tests/WebCore/CBORValueTest.cpp:

(TestWebKitAPI::TEST):

• TestWebKitAPI/Tests/WebCore/CtapRequestTest.cpp: Added.

(TestWebKitAPI::TEST):

• TestWebKitAPI/Tests/WebCore/CtapResponseTest.cpp: Added.

(TestWebKitAPI::getTestCorruptedSignResponse):
(TestWebKitAPI::getTestCredentialRawIdBytes):
(TestWebKitAPI::convertToVector):
(TestWebKitAPI::TEST):

• TestWebKitAPI/Tests/WebCore/FidoTestData.h: Added.

Location:

trunk

Files:

• Source/WebCore/CMakeLists.txt (modified) (1 diff)
• Source/WebCore/ChangeLog (modified) (1 diff)
• Source/WebCore/DerivedSources.make (modified) (1 diff)
• Source/WebCore/Modules/webauthn/PublicKeyCredentialCreationOptions.h (modified) (4 diffs)
• Source/WebCore/Modules/webauthn/PublicKeyCredentialCreationOptions.idl (modified) (1 diff)
• Source/WebCore/Modules/webauthn/PublicKeyCredentialRequestOptions.h (modified) (4 diffs)
• Source/WebCore/Modules/webauthn/PublicKeyCredentialRequestOptions.idl (modified) (1 diff)
• Source/WebCore/Modules/webauthn/UserVerificationRequirement.h (copied) (copied from trunk/Source/WebCore/Modules/webauthn/PublicKeyCredentialRequestOptions.idl) (1 diff)
• Source/WebCore/Modules/webauthn/UserVerificationRequirement.idl (copied) (copied from trunk/Source/WebCore/Modules/webauthn/PublicKeyCredentialRequestOptions.idl) (1 diff)
• Source/WebCore/Modules/webauthn/cbor/CBORValue.cpp (modified) (2 diffs)
• Source/WebCore/Modules/webauthn/cbor/CBORValue.h (modified) (2 diffs)
• Source/WebCore/Modules/webauthn/fido/AuthenticatorGetInfoResponse.cpp (added)
• Source/WebCore/Modules/webauthn/fido/AuthenticatorGetInfoResponse.h (added)
• Source/WebCore/Modules/webauthn/fido/AuthenticatorSupportedOptions.cpp (added)
• Source/WebCore/Modules/webauthn/fido/AuthenticatorSupportedOptions.h (added)
• Source/WebCore/Modules/webauthn/fido/DeviceRequestConverter.cpp (added)
• Source/WebCore/Modules/webauthn/fido/DeviceRequestConverter.h (copied) (copied from trunk/Source/WebCore/Modules/webauthn/fido/FidoConstants.h) (2 diffs)
• Source/WebCore/Modules/webauthn/fido/DeviceResponseConverter.cpp (added)
• Source/WebCore/Modules/webauthn/fido/DeviceResponseConverter.h (copied) (copied from trunk/Source/WebCore/Modules/webauthn/fido/FidoConstants.cpp) (1 diff)
• Source/WebCore/Modules/webauthn/fido/FidoConstants.cpp (modified) (2 diffs)
• Source/WebCore/Modules/webauthn/fido/FidoConstants.h (modified) (3 diffs)
• Source/WebCore/Sources.txt (modified) (2 diffs)
• Source/WebCore/WebCore.xcodeproj/project.pbxproj (modified) (9 diffs)
• Tools/ChangeLog (modified) (1 diff)
• Tools/TestWebKitAPI/TestWebKitAPI.xcodeproj/project.pbxproj (modified) (5 diffs)
• Tools/TestWebKitAPI/Tests/WebCore/CBORValueTest.cpp (modified) (1 diff)
• Tools/TestWebKitAPI/Tests/WebCore/CtapRequestTest.cpp (added)
• Tools/TestWebKitAPI/Tests/WebCore/CtapResponseTest.cpp (added)
• Tools/TestWebKitAPI/Tests/WebCore/FidoTestData.h (added)

trunk/Source/WebCore/CMakeLists.txt

@@ -439 +439 @@
     Modules/webauthn/PublicKeyCredentialRequestOptions.idl
     Modules/webauthn/PublicKeyCredentialType.idl
+    Modules/webauthn/UserVerificationRequirement.idl
 
     Modules/webdatabase/DOMWindowWebDatabase.idl

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2018-11-08  Jiewen Tan  <jiewen_tan@apple.com>
+
+        [WebAuthN] Import CTAP device request/response converters from Chromium
+        https://bugs.webkit.org/show_bug.cgi?id=190784
+        <rdar://problem/45460333>
+
+        Reviewed by Brent Fulgham.
+
+        This patch imports Chromium's CTAP device request/response converters:
+        https://fidoalliance.org/specs/fido-v2.0-ps-20170927/fido-client-to-authenticator-protocol-v2.0-ps-20170927.html#message-encoding
+        1. It directly imports the following files and suit them to WebKit's coding style:
+        https://cs.chromium.org/chromium/src/device/fido/device_response_converter.cc?l=20&rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
+        https://cs.chromium.org/chromium/src/device/fido/device_response_converter.h?rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
+        https://cs.chromium.org/chromium/src/device/fido/authenticator_get_info_response.cc?rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
+        https://cs.chromium.org/chromium/src/device/fido/authenticator_get_info_response.h?rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
+        https://cs.chromium.org/chromium/src/device/fido/authenticator_supported_options.cc?rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
+        https://cs.chromium.org/chromium/src/device/fido/authenticator_supported_options.h?rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
+        https://cs.chromium.org/chromium/src/device/fido/ctap_request_unittest.cc?rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
+        https://cs.chromium.org/chromium/src/device/fido/ctap_response_unittest.cc?rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
+        https://cs.chromium.org/chromium/src/device/fido/fido_test_data.h?l=1&rcl=098dfd90850ffa84c27a884ab75edd2d99c4ec45
+        2. It gathers the following methods into DeviceRequestConverter:
+        CtapGetAssertionRequest::EncodeAsCBOR()
+        CtapMakeCredentialRequest::EncodeAsCBOR()
+        PublicKeyCredentialDescriptor::ConvertToCBOR()
+        PublicKeyCredentialParams::ConvertToCBOR()
+        PublicKeyCredentialRpEntity::ConvertToCBOR()
+        PublicKeyCredentialUserEntity::ConvertToCBOR()
+        3. It also apply a patch from Chromium to CBORValue:
+        https://chromium.googlesource.com/chromium/src/+/7b6fbff35cd8e4d508f08e1cd93b4aa0a0dc402c%5E%21/
+
+        Besides importing things from Chromium, it also implements UserVerificationRequirement for both
+        PublicKeyCredentialCreationOptions and PublicKeyCredentialRequestOptions such that both options
+        can specify more dimensions of a desired authenticator.
+
+        Covered by API tests.
+
+        * CMakeLists.txt:
+        * DerivedSources.make:
+        * Modules/webauthn/PublicKeyCredentialCreationOptions.h:
+        (WebCore::PublicKeyCredentialCreationOptions::AuthenticatorSelectionCriteria::encode const):
+        (WebCore::PublicKeyCredentialCreationOptions::AuthenticatorSelectionCriteria::decode):
+        * Modules/webauthn/PublicKeyCredentialCreationOptions.idl:
+        * Modules/webauthn/PublicKeyCredentialRequestOptions.h:
+        (WebCore::PublicKeyCredentialRequestOptions::encode const):
+        (WebCore::PublicKeyCredentialRequestOptions::decode):
+        * Modules/webauthn/PublicKeyCredentialRequestOptions.idl:
+        * Modules/webauthn/UserVerificationRequirement.h: Copied from Source/WebCore/Modules/webauthn/PublicKeyCredentialRequestOptions.idl.
+        * Modules/webauthn/UserVerificationRequirement.idl: Copied from Source/WebCore/Modules/webauthn/PublicKeyCredentialRequestOptions.idl.
+        * Modules/webauthn/cbor/CBORValue.cpp:
+        (cbor::CBORValue::CBORValue):
+        (cbor::CBORValue::getBool const):
+        * Modules/webauthn/cbor/CBORValue.h:
+        * Modules/webauthn/fido/AuthenticatorGetInfoResponse.cpp: Added.
+        (fido::toArrayValue):
+        (fido::AuthenticatorGetInfoResponse::AuthenticatorGetInfoResponse):
+        (fido::AuthenticatorGetInfoResponse::setMaxMsgSize):
+        (fido::AuthenticatorGetInfoResponse::setPinProtocols):
+        (fido::AuthenticatorGetInfoResponse::setExtensions):
+        (fido::AuthenticatorGetInfoResponse::setOptions):
+        (fido::encodeAsCBOR):
+        * Modules/webauthn/fido/AuthenticatorGetInfoResponse.h: Added.
+        * Modules/webauthn/fido/AuthenticatorSupportedOptions.cpp: Added.
+        (fido::AuthenticatorSupportedOptions::setSupportsResidentKey):
+        (fido::AuthenticatorSupportedOptions::setUserVerificationAvailability):
+        (fido::AuthenticatorSupportedOptions::setUserPresenceRequired):
+        (fido::AuthenticatorSupportedOptions::setClientPinAvailability):
+        (fido::AuthenticatorSupportedOptions::setIsPlatformDevice):
+        (fido::convertToCBOR):
+        * Modules/webauthn/fido/AuthenticatorSupportedOptions.h: Added.
+        * Modules/webauthn/fido/DeviceRequestConverter.cpp: Added.
+        (fido::convertRpEntityToCBOR):
+        (fido::convertUserEntityToCBOR):
+        (fido::convertParametersToCBOR):
+        (fido::convertDescriptorToCBOR):
+        (fido::encodeMakeCredenitalRequestAsCBOR):
+        (fido::encodeGetAssertionRequestAsCBOR):
+        (fido::encodeEmptyAuthenticatorRequest):
+        * Modules/webauthn/fido/DeviceRequestConverter.h: Copied from Source/WebCore/Modules/webauthn/fido/FidoConstants.h.
+        * Modules/webauthn/fido/DeviceResponseConverter.cpp: Added.
+        (fido::convertStringToProtocolVersion):
+        (fido::getResponseCode):
+        (fido::getCredentialId):
+        (fido::readCTAPMakeCredentialResponse):
+        (fido::readCTAPGetAssertionResponse):
+        (fido::readCTAPGetInfoResponse):
+        * Modules/webauthn/fido/DeviceResponseConverter.h: Copied from Source/WebCore/Modules/webauthn/fido/FidoConstants.cpp.
+        * Modules/webauthn/fido/FidoConstants.cpp:
+        (fido::isCtapDeviceResponseCode):
+        (fido::publicKeyCredentialTypeToString):
+        * Modules/webauthn/fido/FidoConstants.h:
+        * Sources.txt:
+        * WebCore.xcodeproj/project.pbxproj:
+
 2018-11-07  Justin Michaud  <justin_michaud@apple.com>
 

trunk/Source/WebCore/DerivedSources.make

@@ -359 +359 @@
     $(WebCore)/Modules/webauthn/PublicKeyCredentialRequestOptions.idl \
     $(WebCore)/Modules/webauthn/PublicKeyCredentialType.idl \
+    $(WebCore)/Modules/webauthn/UserVerificationRequirement.idl \
     $(WebCore)/Modules/webdatabase/DOMWindowWebDatabase.idl \
     $(WebCore)/Modules/webdatabase/Database.idl \

trunk/Source/WebCore/Modules/webauthn/PublicKeyCredentialCreationOptions.h

@@ -31 +31 @@
 #include "PublicKeyCredentialDescriptor.h"
 #include "PublicKeyCredentialType.h"
+#include "UserVerificationRequirement.h"
 #include <wtf/CrossThreadCopier.h>
 #include <wtf/Forward.h>
@@ -66 +67 @@
 
     struct AuthenticatorSelectionCriteria {
-        AuthenticatorAttachment authenticatorAttachment;
+        std::optional<AuthenticatorAttachment> authenticatorAttachment;
+        bool requireResidentKey { false };
+        UserVerificationRequirement userVerification { UserVerificationRequirement::Preferred };
 
         template<class Encoder> void encode(Encoder&) const;
@@ -106 +109 @@
 void PublicKeyCredentialCreationOptions::AuthenticatorSelectionCriteria::encode(Encoder& encoder) const
 {
-    encoder << authenticatorAttachment;
+    encoder << authenticatorAttachment << requireResidentKey << userVerification;
 }
 
@@ -113 +116 @@
 {
     PublicKeyCredentialCreationOptions::AuthenticatorSelectionCriteria result;
-    if (!decoder.decodeEnum(result.authenticatorAttachment))
+
+    std::optional<std::optional<AuthenticatorAttachment>> authenticatorAttachment;
+    decoder >> authenticatorAttachment;
+    if (!authenticatorAttachment)
+        return std::nullopt;
+    result.authenticatorAttachment = WTFMove(*authenticatorAttachment);
+
+    std::optional<bool> requireResidentKey;
+    decoder >> requireResidentKey;
+    if (!requireResidentKey)
+        return std::nullopt;
+    result.requireResidentKey = *requireResidentKey;
+
+    if (!decoder.decodeEnum(result.userVerification))
         return std::nullopt;
     return result;

trunk/Source/WebCore/Modules/webauthn/PublicKeyCredentialCreationOptions.idl

@@ -75 +75 @@
 ] dictionary AuthenticatorSelectionCriteria {
     AuthenticatorAttachment      authenticatorAttachment;
-    // We don't allow RPs to set the following values at this stage.
-    // Hence, those options are always { true, "required" }.
-    // boolean                      requireResidentKey = false;
-    // UserVerificationRequirement  userVerification = "preferred";
+    boolean                      requireResidentKey = false;
+    UserVerificationRequirement  userVerification = "preferred";
 };
 

trunk/Source/WebCore/Modules/webauthn/PublicKeyCredentialRequestOptions.h

@@ -30 +30 @@
 #include "BufferSource.h"
 #include "PublicKeyCredentialDescriptor.h"
+#include "UserVerificationRequirement.h"
 #include <wtf/Forward.h>
 
@@ -39 +40 @@
     mutable String rpId;
     Vector<PublicKeyCredentialDescriptor> allowCredentials;
+    UserVerificationRequirement userVerification { UserVerificationRequirement::Preferred };
 
     template<class Encoder> void encode(Encoder&) const;
@@ -48 +50 @@
 void PublicKeyCredentialRequestOptions::encode(Encoder& encoder) const
 {
-    encoder << timeout << rpId << allowCredentials;
+    encoder << timeout << rpId << allowCredentials << userVerification;
 }
 
@@ -66 +68 @@
     if (!decoder.decode(result.allowCredentials))
         return std::nullopt;
+
+    std::optional<UserVerificationRequirement> userVerification;
+    decoder >> userVerification;
+    if (!userVerification)
+        return std::nullopt;
+    result.userVerification = WTFMove(*userVerification);
+
     return result;
 }

trunk/Source/WebCore/Modules/webauthn/PublicKeyCredentialRequestOptions.idl

@@ -31 +31 @@
     USVString rpId;
     sequence<PublicKeyCredentialDescriptor> allowCredentials = [];
-    // Always "required" at this stage
-    // UserVerificationRequirement userVerification = "preferred";
+    UserVerificationRequirement userVerification = "preferred";
     // Not support yet.
     // AuthenticationExtensions extensions;

trunk/Source/WebCore/Modules/webauthn/UserVerificationRequirement.h

@@ -24 +24 @@
  */
 
-[
-    Conditional=WEB_AUTHN,
-] dictionary PublicKeyCredentialRequestOptions {
-    required BufferSource challenge;
-    unsigned long timeout;
-    USVString rpId;
-    sequence<PublicKeyCredentialDescriptor> allowCredentials = [];
-    // Always "required" at this stage
-    // UserVerificationRequirement userVerification = "preferred";
-    // Not support yet.
-    // AuthenticationExtensions extensions;
+#pragma once
+
+#if ENABLE(WEB_AUTHN)
+
+#include <wtf/EnumTraits.h>
+
+namespace WebCore {
+
+enum class UserVerificationRequirement {
+    Required,
+    Preferred,
+    Discouraged
 };
+
+} // namespace WebCore
+
+namespace WTF {
+
+template<> struct EnumTraits<WebCore::UserVerificationRequirement> {
+    using values = EnumValues<
+        WebCore::UserVerificationRequirement,
+        WebCore::UserVerificationRequirement::Required,
+        WebCore::UserVerificationRequirement::Preferred,
+        WebCore::UserVerificationRequirement::Discouraged
+    >;
+};
+
+} // namespace WTF
+
+#endif // ENABLE(WEB_AUTHN)

trunk/Source/WebCore/Modules/webauthn/UserVerificationRequirement.idl

@@ -26 +26 @@
 [
     Conditional=WEB_AUTHN,
-] dictionary PublicKeyCredentialRequestOptions {
-    required BufferSource challenge;
-    unsigned long timeout;
-    USVString rpId;
-    sequence<PublicKeyCredentialDescriptor> allowCredentials = [];
-    // Always "required" at this stage
-    // UserVerificationRequirement userVerification = "preferred";
-    // Not support yet.
-    // AuthenticationExtensions extensions;
+    ImplementedAs=UserVerificationRequirement
+] enum UserVerificationRequirement {
+    "required",
+    "preferred",
+    "discouraged"
 };

trunk/Source/WebCore/Modules/webauthn/cbor/CBORValue.cpp

@@ -154 +154 @@
 }
 
+CBORValue::CBORValue(bool inBool)
+    : m_type(Type::SimpleValue)
+{
+    m_simpleValue = inBool ? CBORValue::SimpleValue::TrueValue : CBORValue::SimpleValue::FalseValue;
+}
+
 CBORValue& CBORValue::operator=(CBORValue&& that)
 {
@@ -241 +247 @@
 }
 
+bool CBORValue::getBool() const
+{
+    ASSERT(isBool());
+    return m_simpleValue == SimpleValue::TrueValue;
+}
+
 void CBORValue::internalMoveConstructFrom(CBORValue&& that)
 {

trunk/Source/WebCore/Modules/webauthn/cbor/CBORValue.h

@@ -139 +139 @@
 
     explicit CBORValue(SimpleValue);
+    explicit CBORValue(bool);
 
     CBORValue& operator=(CBORValue&&);
@@ -162 +163 @@
     bool isMap() const { return type() == Type::Map; }
     bool isSimple() const { return type() == Type::SimpleValue; }
+    bool isBool() const { return isSimple() && (m_simpleValue == SimpleValue::TrueValue || m_simpleValue == SimpleValue::FalseValue); }
 
     // These will all fatally assert if the type doesn't match.
     SimpleValue getSimpleValue() const;
+    bool getBool() const;
     const int64_t& getInteger() const;
     const int64_t& getUnsigned() const;

trunk/Source/WebCore/Modules/webauthn/fido/DeviceRequestConverter.h

@@ -1 @@
-// Copyright 2018 The Chromium Authors. All rights reserved.
+// Copyright 2017 The Chromium Authors. All rights reserved.
 // Copyright (C) 2018 Apple Inc. All rights reserved.
 //
@@ -32 +32 @@
 #if ENABLE(WEB_AUTHN)
 
+#include "AuthenticatorSupportedOptions.h"
+#include "FidoConstants.h"
+#include <wtf/Forward.h>
+
+namespace WebCore {
+struct PublicKeyCredentialCreationOptions;
+struct PublicKeyCredentialRequestOptions;
+}
+
 namespace fido {
 
-// Commands supported by CTAPHID device as specified in
-// https://fidoalliance.org/specs/fido-v2.0-ps-20170927/fido-client-to-authenticator-protocol-v2.0-ps-20170927.html#ctaphid-commands
-enum class FidoHidDeviceCommand : uint8_t {
-    kMsg = 0x03,
-    kCbor = 0x10,
-    kInit = 0x06,
-    kPing = 0x01,
-    kCancel = 0x11,
-    kError = 0x3F,
-    kKeepAlive = 0x3B,
-    kWink = 0x08,
-    kLock = 0x04,
-};
+// Serializes MakeCredential request parameter into CBOR encoded map with
+// integer keys and CBOR encoded values as defined by the CTAP spec.
+// https://fidoalliance.org/specs/fido-v2.0-ps-20170927/fido-client-to-authenticator-protocol-v2.0-ps-20170927.html#authenticatorMakeCredential
+WEBCORE_EXPORT Vector<uint8_t> encodeMakeCredenitalRequestAsCBOR(const Vector<uint8_t>& hash, const WebCore::PublicKeyCredentialCreationOptions&, AuthenticatorSupportedOptions::UserVerificationAvailability);
 
-bool isFidoHidDeviceCommand(FidoHidDeviceCommand cmd);
+// Serializes GetAssertion request parameter into CBOR encoded map with
+// integer keys and CBOR encoded values as defined by the CTAP spec.
+// https://fidoalliance.org/specs/fido-v2.0-ps-20170927/fido-client-to-authenticator-protocol-v2.0-ps-20170927.html#authenticatorGetAssertion
+WEBCORE_EXPORT Vector<uint8_t> encodeGetAssertionRequestAsCBOR(const Vector<uint8_t>& hash, const WebCore::PublicKeyCredentialRequestOptions&, AuthenticatorSupportedOptions::UserVerificationAvailability);
 
-// HID transport specific constants.
-const size_t kHidPacketSize = 64;
-const uint32_t kHidBroadcastChannel = 0xffffffff;
-const size_t kHidInitPacketHeaderSize = 7;
-const size_t kHidContinuationPacketHeader = 5;
-const size_t kHidMaxPacketSize = 64;
-const size_t kHidInitPacketDataSize = kHidMaxPacketSize - kHidInitPacketHeaderSize;
-const size_t kHidContinuationPacketDataSize = kHidMaxPacketSize - kHidContinuationPacketHeader;
-
-const uint8_t kHidMaxLockSeconds = 10;
-
-// Messages are limited to an initiation packet and 128 continuation packets.
-const size_t kHidMaxMessageSize = 7609;
+// Represents CTAP requests with empty parameters, including
+// AuthenticatorGetInfo, AuthenticatorCancel, AuthenticatorReset and
+// AuthenticatorGetNextAssertion commands.
+WEBCORE_EXPORT Vector<uint8_t> encodeEmptyAuthenticatorRequest(CtapRequestCommand);
 
 } // namespace fido

trunk/Source/WebCore/Modules/webauthn/fido/DeviceResponseConverter.h

@@ -28 +28 @@
 // OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 
-#include "config.h"
-#include "FidoConstants.h"
+#pragma once
 
 #if ENABLE(WEB_AUTHN)
 
+#include "AuthenticatorGetInfoResponse.h"
+#include "FidoConstants.h"
+#include "PublicKeyCredentialData.h"
+
+// Converts response from authenticators to CTAPResponse objects. If the
+// response of the authenticator does not conform to format specified by the
+// CTAP protocol, null optional is returned.
 namespace fido {
 
-bool isFidoHidDeviceCommand(FidoHidDeviceCommand cmd)
-{
-    switch (cmd) {
-    case FidoHidDeviceCommand::kMsg:
-    case FidoHidDeviceCommand::kCbor:
-    case FidoHidDeviceCommand::kInit:
-    case FidoHidDeviceCommand::kPing:
-    case FidoHidDeviceCommand::kCancel:
-    case FidoHidDeviceCommand::kError:
-    case FidoHidDeviceCommand::kKeepAlive:
-    case FidoHidDeviceCommand::kWink:
-    case FidoHidDeviceCommand::kLock:
-        return true;
-    default:
-        return false;
-    }
-}
+// Parses response code from response received from the authenticator. If
+// unknown response code value is received, then CTAP2_ERR_OTHER is returned.
+WEBCORE_EXPORT CtapDeviceResponseCode getResponseCode(const Vector<uint8_t>&);
+
+// De-serializes CBOR encoded response, checks for valid CBOR map formatting,
+// and converts response to AuthenticatorMakeCredentialResponse object with
+// CBOR map keys that conform to format of attestation object defined by the
+// WebAuthN spec : https://w3c.github.io/webauthn/#fig-attStructs
+WEBCORE_EXPORT std::optional<WebCore::PublicKeyCredentialData> readCTAPMakeCredentialResponse(const Vector<uint8_t>&);
+
+// De-serializes CBOR encoded response to AuthenticatorGetAssertion /
+// AuthenticatorGetNextAssertion request to AuthenticatorGetAssertionResponse
+// object.
+// FIXME(190783): Probably need to remake AuthenticatorResponse to include more fields like numberOfCredentials,
+// and use it here instead of PublicKeyCredentialData.
+WEBCORE_EXPORT std::optional<WebCore::PublicKeyCredentialData> readCTAPGetAssertionResponse(const Vector<uint8_t>&);
+
+// De-serializes CBOR encoded response to AuthenticatorGetInfo request to
+// AuthenticatorGetInfoResponse object.
+WEBCORE_EXPORT std::optional<AuthenticatorGetInfoResponse> readCTAPGetInfoResponse(const Vector<uint8_t>&);
 
 } // namespace fido

trunk/Source/WebCore/Modules/webauthn/fido/FidoConstants.cpp

@@ -34 +34 @@
 
 namespace fido {
+using namespace WebCore;
+
+bool isCtapDeviceResponseCode(CtapDeviceResponseCode code)
+{
+    switch (code) {
+    case CtapDeviceResponseCode::kSuccess:
+    case CtapDeviceResponseCode::kCtap1ErrInvalidCommand:
+    case CtapDeviceResponseCode::kCtap1ErrInvalidParameter:
+    case CtapDeviceResponseCode::kCtap1ErrInvalidLength:
+    case CtapDeviceResponseCode::kCtap1ErrInvalidSeq:
+    case CtapDeviceResponseCode::kCtap1ErrTimeout:
+    case CtapDeviceResponseCode::kCtap1ErrChannelBusy:
+    case CtapDeviceResponseCode::kCtap1ErrLockRequired:
+    case CtapDeviceResponseCode::kCtap1ErrInvalidChannel:
+    case CtapDeviceResponseCode::kCtap2ErrCBORParsing:
+    case CtapDeviceResponseCode::kCtap2ErrUnexpectedType:
+    case CtapDeviceResponseCode::kCtap2ErrInvalidCBOR:
+    case CtapDeviceResponseCode::kCtap2ErrInvalidCBORType:
+    case CtapDeviceResponseCode::kCtap2ErrMissingParameter:
+    case CtapDeviceResponseCode::kCtap2ErrLimitExceeded:
+    case CtapDeviceResponseCode::kCtap2ErrUnsupportedExtension:
+    case CtapDeviceResponseCode::kCtap2ErrTooManyElements:
+    case CtapDeviceResponseCode::kCtap2ErrExtensionNotSupported:
+    case CtapDeviceResponseCode::kCtap2ErrCredentialExcluded:
+    case CtapDeviceResponseCode::kCtap2ErrProcesssing:
+    case CtapDeviceResponseCode::kCtap2ErrInvalidCredential:
+    case CtapDeviceResponseCode::kCtap2ErrUserActionPending:
+    case CtapDeviceResponseCode::kCtap2ErrOperationPending:
+    case CtapDeviceResponseCode::kCtap2ErrNoOperations:
+    case CtapDeviceResponseCode::kCtap2ErrUnsupportedAlgorithms:
+    case CtapDeviceResponseCode::kCtap2ErrOperationDenied:
+    case CtapDeviceResponseCode::kCtap2ErrKeyStoreFull:
+    case CtapDeviceResponseCode::kCtap2ErrNotBusy:
+    case CtapDeviceResponseCode::kCtap2ErrNoOperationPending:
+    case CtapDeviceResponseCode::kCtap2ErrUnsupportedOption:
+    case CtapDeviceResponseCode::kCtap2ErrInvalidOption:
+    case CtapDeviceResponseCode::kCtap2ErrKeepAliveCancel:
+    case CtapDeviceResponseCode::kCtap2ErrNoCredentials:
+    case CtapDeviceResponseCode::kCtap2ErrUserActionTimeout:
+    case CtapDeviceResponseCode::kCtap2ErrNotAllowed:
+    case CtapDeviceResponseCode::kCtap2ErrPinInvalid:
+    case CtapDeviceResponseCode::kCtap2ErrPinBlocked:
+    case CtapDeviceResponseCode::kCtap2ErrPinAuthInvalid:
+    case CtapDeviceResponseCode::kCtap2ErrPinAuthBlocked:
+    case CtapDeviceResponseCode::kCtap2ErrPinNotSet:
+    case CtapDeviceResponseCode::kCtap2ErrPinRequired:
+    case CtapDeviceResponseCode::kCtap2ErrPinPolicyViolation:
+    case CtapDeviceResponseCode::kCtap2ErrPinTokenExpired:
+    case CtapDeviceResponseCode::kCtap2ErrRequestTooLarge:
+    case CtapDeviceResponseCode::kCtap2ErrOther:
+    case CtapDeviceResponseCode::kCtap2ErrSpecLast:
+    case CtapDeviceResponseCode::kCtap2ErrExtensionFirst:
+    case CtapDeviceResponseCode::kCtap2ErrExtensionLast:
+    case CtapDeviceResponseCode::kCtap2ErrVendorFirst:
+    case CtapDeviceResponseCode::kCtap2ErrVendorLast:
+        return true;
+    default:
+        return false;
+    }
+}
 
 bool isFidoHidDeviceCommand(FidoHidDeviceCommand cmd)
@@ -53 +113 @@
 }
 
+const char* publicKeyCredentialTypeToString(PublicKeyCredentialType type)
+{
+    switch (type) {
+    case PublicKeyCredentialType::PublicKey:
+        return kPublicKey;
+    }
+    ASSERT_NOT_REACHED();
+    return kPublicKey;
+}
+
 } // namespace fido
 

trunk/Source/WebCore/Modules/webauthn/fido/FidoConstants.h

@@ -32 +32 @@
 #if ENABLE(WEB_AUTHN)
 
+#include "PublicKeyCredentialType.h"
+
 namespace fido {
+
+enum class ProtocolVersion {
+    kCtap,
+    kU2f,
+    kUnknown,
+};
+
+// Length of the SHA-256 hash of the RP ID asssociated with the credential:
+// https://www.w3.org/TR/webauthn/#sec-authenticator-data
+constexpr size_t kRpIdHashLength = 32;
+
+// Length of the flags:
+// https://www.w3.org/TR/webauthn/#sec-authenticator-data
+constexpr size_t kFlagsLength = 1;
+
+// Length of the signature counter, 32-bit unsigned big-endian integer:
+// https://www.w3.org/TR/webauthn/#sec-authenticator-data
+constexpr size_t kSignCounterLength = 4;
+
+// Length of the AAGUID of the authenticator:
+// https://www.w3.org/TR/webauthn/#sec-attested-credential-data
+constexpr size_t kAaguidLength = 16;
+
+// Length of the byte length L of Credential ID, 16-bit unsigned big-endian
+// integer: https://www.w3.org/TR/webauthn/#sec-attested-credential-data
+constexpr size_t kCredentialIdLengthLength = 2;
+
+// CTAP protocol device response code, as specified in
+// https://fidoalliance.org/specs/fido-v2.0-ps-20170927/fido-client-to-authenticator-protocol-v2.0-ps-20170927.html#error-responses
+enum class CtapDeviceResponseCode : uint8_t {
+    kSuccess = 0x00,
+    kCtap1ErrInvalidCommand = 0x01,
+    kCtap1ErrInvalidParameter = 0x02,
+    kCtap1ErrInvalidLength = 0x03,
+    kCtap1ErrInvalidSeq = 0x04,
+    kCtap1ErrTimeout = 0x05,
+    kCtap1ErrChannelBusy = 0x06,
+    kCtap1ErrLockRequired = 0x0A,
+    kCtap1ErrInvalidChannel = 0x0B,
+    kCtap2ErrCBORParsing = 0x10,
+    kCtap2ErrUnexpectedType = 0x11,
+    kCtap2ErrInvalidCBOR = 0x12,
+    kCtap2ErrInvalidCBORType = 0x13,
+    kCtap2ErrMissingParameter = 0x14,
+    kCtap2ErrLimitExceeded = 0x15,
+    kCtap2ErrUnsupportedExtension = 0x16,
+    kCtap2ErrTooManyElements = 0x17,
+    kCtap2ErrExtensionNotSupported = 0x18,
+    kCtap2ErrCredentialExcluded = 0x19,
+    kCtap2ErrProcesssing = 0x21,
+    kCtap2ErrInvalidCredential = 0x22,
+    kCtap2ErrUserActionPending = 0x23,
+    kCtap2ErrOperationPending = 0x24,
+    kCtap2ErrNoOperations = 0x25,
+    kCtap2ErrUnsupportedAlgorithms = 0x26,
+    kCtap2ErrOperationDenied = 0x27,
+    kCtap2ErrKeyStoreFull = 0x28,
+    kCtap2ErrNotBusy = 0x29,
+    kCtap2ErrNoOperationPending = 0x2A,
+    kCtap2ErrUnsupportedOption = 0x2B,
+    kCtap2ErrInvalidOption = 0x2C,
+    kCtap2ErrKeepAliveCancel = 0x2D,
+    kCtap2ErrNoCredentials = 0x2E,
+    kCtap2ErrUserActionTimeout = 0x2F,
+    kCtap2ErrNotAllowed = 0x30,
+    kCtap2ErrPinInvalid = 0x31,
+    kCtap2ErrPinBlocked = 0x32,
+    kCtap2ErrPinAuthInvalid = 0x33,
+    kCtap2ErrPinAuthBlocked = 0x34,
+    kCtap2ErrPinNotSet = 0x35,
+    kCtap2ErrPinRequired = 0x36,
+    kCtap2ErrPinPolicyViolation = 0x37,
+    kCtap2ErrPinTokenExpired = 0x38,
+    kCtap2ErrRequestTooLarge = 0x39,
+    kCtap2ErrOther = 0x7F,
+    kCtap2ErrSpecLast = 0xDF,
+    kCtap2ErrExtensionFirst = 0xE0,
+    kCtap2ErrExtensionLast = 0xEF,
+    kCtap2ErrVendorFirst = 0xF0,
+    kCtap2ErrVendorLast = 0xFF
+};
+
+bool isCtapDeviceResponseCode(CtapDeviceResponseCode);
 
 // Commands supported by CTAPHID device as specified in
@@ -48 +133 @@
 };
 
-bool isFidoHidDeviceCommand(FidoHidDeviceCommand cmd);
+bool isFidoHidDeviceCommand(FidoHidDeviceCommand);
+
+// String key values for CTAP request optional parameters and
+// AuthenticatorGetInfo response.
+const char kResidentKeyMapKey[] = "rk";
+const char kUserVerificationMapKey[] = "uv";
+const char kUserPresenceMapKey[] = "up";
+const char kClientPinMapKey[] = "clientPin";
+const char kPlatformDeviceMapKey[] = "plat";
+const char kEntityIdMapKey[] = "id";
+const char kEntityNameMapKey[] = "name";
+const char kDisplayNameMapKey[] = "displayName";
+const char kIconUrlMapKey[] = "icon";
+const char kCredentialTypeMapKey[] = "type";
+const char kCredentialAlgorithmMapKey[] = "alg";
+// Keys for storing credential descriptor information in CBOR map.
+const char kCredentialIdKey[] = "id";
+const char kCredentialTypeKey[] = "type";
 
 // HID transport specific constants.
@@ -64 +166 @@
 const size_t kHidMaxMessageSize = 7609;
 
+// Authenticator API commands supported by CTAP devices, as specified in
+// https://fidoalliance.org/specs/fido-v2.0-rd-20170927/fido-client-to-authenticator-protocol-v2.0-rd-20170927.html#authenticator-api
+enum class CtapRequestCommand : uint8_t {
+    kAuthenticatorMakeCredential = 0x01,
+    kAuthenticatorGetAssertion = 0x02,
+    kAuthenticatorGetNextAssertion = 0x08,
+    kAuthenticatorGetInfo = 0x04,
+    kAuthenticatorClientPin = 0x06,
+    kAuthenticatorReset = 0x07,
+};
+
+// String key values for attestation object as a response to MakeCredential
+// request.
+const char kFormatKey[] = "fmt";
+const char kAttestationStatementKey[] = "attStmt";
+const char kAuthDataKey[] = "authData";
+const char kNoneAttestationValue[] = "none";
+
+// String representation of public key credential enum.
+// https://w3c.github.io/webauthn/#credentialType
+const char kPublicKey[] = "public-key";
+
+const char* publicKeyCredentialTypeToString(WebCore::PublicKeyCredentialType);
+
+// FIXME: Add url to the official spec once it's standardized.
+const char kCtap2Version[] = "FIDO_2_0";
+const char kU2fVersion[] = "U2F_V2";
+
 } // namespace fido
 

trunk/Source/WebCore/Sources.txt

@@ -260 +260 @@
 Modules/webauthn/cbor/CBORValue.cpp
 Modules/webauthn/cbor/CBORWriter.cpp
+Modules/webauthn/fido/AuthenticatorGetInfoResponse.cpp
+Modules/webauthn/fido/AuthenticatorSupportedOptions.cpp
+Modules/webauthn/fido/DeviceRequestConverter.cpp
+Modules/webauthn/fido/DeviceResponseConverter.cpp
 Modules/webauthn/fido/FidoConstants.cpp
 Modules/webauthn/fido/FidoHidMessage.cpp
@@ -3180 +3184 @@
 JSUIEventInit.cpp
 JSURLSearchParams.cpp
+JSUserVerificationRequirement.cpp
 JSVRDisplay.cpp
 JSVRDisplayCapabilities.cpp

trunk/Source/WebCore/WebCore.xcodeproj/project.pbxproj

@@ -1768 +1768 @@
                 5721A98B1ECE57040081295A /* CryptoAlgorithmRsaPssParams.h in Headers */ = {isa = PBXBuildFile; fileRef = 5721A9881ECE57040081295A /* CryptoAlgorithmRsaPssParams.h */; };
                 572A7F211C6E5719009C6149 /* SimulatedClick.h in Headers */ = {isa = PBXBuildFile; fileRef = 572A7F201C6E5719009C6149 /* SimulatedClick.h */; };
+                572B401F21757A64000AD43E /* DeviceRequestConverter.h in Headers */ = {isa = PBXBuildFile; fileRef = 572B401D21757A64000AD43E /* DeviceRequestConverter.h */; settings = {ATTRIBUTES = (Private, ); }; };
+                572B402C21769020000AD43E /* JSUserVerificationRequirement.h in Headers */ = {isa = PBXBuildFile; fileRef = 572B402A2176901F000AD43E /* JSUserVerificationRequirement.h */; };
+                572B40362176A922000AD43E /* UserVerificationRequirement.h in Headers */ = {isa = PBXBuildFile; fileRef = 572B402321768D85000AD43E /* UserVerificationRequirement.h */; settings = {ATTRIBUTES = (Private, ); }; };
+                572B403A21772581000AD43E /* DeviceResponseConverter.h in Headers */ = {isa = PBXBuildFile; fileRef = 572B40372177256C000AD43E /* DeviceResponseConverter.h */; settings = {ATTRIBUTES = (Private, ); }; };
+                572B404021780171000AD43E /* AuthenticatorSupportedOptions.h in Headers */ = {isa = PBXBuildFile; fileRef = 572B403E21780170000AD43E /* AuthenticatorSupportedOptions.h */; settings = {ATTRIBUTES = (Private, ); }; };
+                572B40422178114A000AD43E /* AuthenticatorGetInfoResponse.h in Headers */ = {isa = PBXBuildFile; fileRef = 572B403C2177FB61000AD43E /* AuthenticatorGetInfoResponse.h */; settings = {ATTRIBUTES = (Private, ); }; };
                 57303BB92006C6EE00355965 /* CBORValue.h in Headers */ = {isa = PBXBuildFile; fileRef = 57303BB42006C6ED00355965 /* CBORValue.h */; settings = {ATTRIBUTES = (Private, ); }; };
                 57303BBA2006C6EE00355965 /* CBORWriter.h in Headers */ = {isa = PBXBuildFile; fileRef = 57303BB52006C6ED00355965 /* CBORWriter.h */; settings = {ATTRIBUTES = (Private, ); }; };
@@ -8617 +8623 @@
                 572A7F201C6E5719009C6149 /* SimulatedClick.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = SimulatedClick.h; sourceTree = "<group>"; };
                 572A7F221C6E5A66009C6149 /* SimulatedClick.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = SimulatedClick.cpp; sourceTree = "<group>"; };
+                572B401D21757A64000AD43E /* DeviceRequestConverter.h */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.h; path = DeviceRequestConverter.h; sourceTree = "<group>"; };
+                572B401E21757A64000AD43E /* DeviceRequestConverter.cpp */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.cpp.cpp; path = DeviceRequestConverter.cpp; sourceTree = "<group>"; };
+                572B402321768D85000AD43E /* UserVerificationRequirement.h */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.h; path = UserVerificationRequirement.h; sourceTree = "<group>"; };
+                572B402521768D85000AD43E /* UserVerificationRequirement.idl */ = {isa = PBXFileReference; lastKnownFileType = text; path = UserVerificationRequirement.idl; sourceTree = "<group>"; };
+                572B402A2176901F000AD43E /* JSUserVerificationRequirement.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = JSUserVerificationRequirement.h; sourceTree = "<group>"; };
+                572B402B2176901F000AD43E /* JSUserVerificationRequirement.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = JSUserVerificationRequirement.cpp; sourceTree = "<group>"; };
+                572B40372177256C000AD43E /* DeviceResponseConverter.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = DeviceResponseConverter.h; sourceTree = "<group>"; };
+                572B40382177256C000AD43E /* DeviceResponseConverter.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = DeviceResponseConverter.cpp; sourceTree = "<group>"; };
+                572B403B2177FB60000AD43E /* AuthenticatorGetInfoResponse.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = AuthenticatorGetInfoResponse.cpp; sourceTree = "<group>"; };
+                572B403C2177FB61000AD43E /* AuthenticatorGetInfoResponse.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = AuthenticatorGetInfoResponse.h; sourceTree = "<group>"; };
+                572B403D2178016F000AD43E /* AuthenticatorSupportedOptions.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = AuthenticatorSupportedOptions.cpp; sourceTree = "<group>"; };
+                572B403E21780170000AD43E /* AuthenticatorSupportedOptions.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = AuthenticatorSupportedOptions.h; sourceTree = "<group>"; };
                 57303BB42006C6ED00355965 /* CBORValue.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = CBORValue.h; sourceTree = "<group>"; };
                 57303BB52006C6ED00355965 /* CBORWriter.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = CBORWriter.h; sourceTree = "<group>"; };
@@ -19207 +19225 @@
                         isa = PBXGroup;
                         children = (
+                                572B403B2177FB60000AD43E /* AuthenticatorGetInfoResponse.cpp */,
+                                572B403C2177FB61000AD43E /* AuthenticatorGetInfoResponse.h */,
+                                572B403D2178016F000AD43E /* AuthenticatorSupportedOptions.cpp */,
+                                572B403E21780170000AD43E /* AuthenticatorSupportedOptions.h */,
+                                572B401E21757A64000AD43E /* DeviceRequestConverter.cpp */,
+                                572B401D21757A64000AD43E /* DeviceRequestConverter.h */,
+                                572B40382177256C000AD43E /* DeviceResponseConverter.cpp */,
+                                572B40372177256C000AD43E /* DeviceResponseConverter.h */,
                                 57BAF2872167D2F7008E954E /* FidoConstants.cpp */,
                                 578A4C0B2167D29600D08F34 /* FidoConstants.h */,
@@ -19286 +19312 @@
                                 57303BEA20097F4000355965 /* PublicKeyCredentialType.h */,
                                 57303BF02009846100355965 /* PublicKeyCredentialType.idl */,
+                                572B402321768D85000AD43E /* UserVerificationRequirement.h */,
+                                572B402521768D85000AD43E /* UserVerificationRequirement.idl */,
                         );
                         path = webauthn;
@@ -19311 +19339 @@
                                 57303BFA2009913500355965 /* JSPublicKeyCredentialType.cpp */,
                                 57303BF92009913400355965 /* JSPublicKeyCredentialType.h */,
+                                572B402B2176901F000AD43E /* JSUserVerificationRequirement.cpp */,
+                                572B402A2176901F000AD43E /* JSUserVerificationRequirement.h */,
                         );
                         name = WebAuthN;
@@ -27831 +27861 @@
                                 57303C4620105D2F00355965 /* AuthenticatorCoordinator.h in Headers */,
                                 5760827220215A5500116678 /* AuthenticatorCoordinatorClient.h in Headers */,
+                                572B40422178114A000AD43E /* AuthenticatorGetInfoResponse.h in Headers */,
                                 57303BD220087A8300355965 /* AuthenticatorResponse.h in Headers */,
+                                572B404021780171000AD43E /* AuthenticatorSupportedOptions.h in Headers */,
                                 57DCED9021487FF70016B847 /* AuthenticatorTransport.h in Headers */,
                                 A501920E132EBF2E008BFE55 /* Autocapitalize.h in Headers */,
@@ -28354 +28386 @@
                                 590E1B4911E4EF4B0069F784 /* DeviceOrientationData.h in Headers */,
                                 59A85EA4119D68EC00DEF1EF /* DeviceOrientationEvent.h in Headers */,
+                                572B401F21757A64000AD43E /* DeviceRequestConverter.h in Headers */,
+                                572B403A21772581000AD43E /* DeviceResponseConverter.h in Headers */,
                                 267725FD1A5B3AD9003C24DD /* DFA.h in Headers */,
                                 5CD9F5661AA0F73C00DA45FF /* DFABytecode.h in Headers */,
@@ -29838 +29872 @@
                                 7C73FB12191EF6F4007DE061 /* JSUserMessageHandler.h in Headers */,
                                 7C73FB0D191EF5A8007DE061 /* JSUserMessageHandlersNamespace.h in Headers */,
+                                572B402C21769020000AD43E /* JSUserVerificationRequirement.h in Headers */,
                                 15C77093100D3CA8005BA267 /* JSValidityState.h in Headers */,
                                 BE8EF04B171C9014009B48C3 /* JSVideoTrack.h in Headers */,
@@ -31495 +31530 @@
                                 BC8BF15A1058141800A40A07 /* UserStyleSheetTypes.h in Headers */,
                                 BCDF317C11F8D683003C5BF8 /* UserTypingGestureIndicator.h in Headers */,
+                                572B40362176A922000AD43E /* UserVerificationRequirement.h in Headers */,
                                 55AF14E61EAAC59B0026EEAA /* UTIRegistry.h in Headers */,
                                 1FAFBF1915A5FA7400083A20 /* UTIUtilities.h in Headers */,

trunk/Tools/ChangeLog

@@ +1 @@
+2018-11-08  Jiewen Tan  <jiewen_tan@apple.com>
+
+        [WebAuthN] Import CTAP device request/response converters from Chromium
+        https://bugs.webkit.org/show_bug.cgi?id=190784
+        <rdar://problem/45460333>
+
+        Reviewed by Brent Fulgham.
+
+        * TestWebKitAPI/TestWebKitAPI.xcodeproj/project.pbxproj:
+        * TestWebKitAPI/Tests/WebCore/CBORValueTest.cpp:
+        (TestWebKitAPI::TEST):
+        * TestWebKitAPI/Tests/WebCore/CtapRequestTest.cpp: Added.
+        (TestWebKitAPI::TEST):
+        * TestWebKitAPI/Tests/WebCore/CtapResponseTest.cpp: Added.
+        (TestWebKitAPI::getTestCorruptedSignResponse):
+        (TestWebKitAPI::getTestCredentialRawIdBytes):
+        (TestWebKitAPI::convertToVector):
+        (TestWebKitAPI::TEST):
+        * TestWebKitAPI/Tests/WebCore/FidoTestData.h: Added.
+
 2018-11-07  Caio Lima  <ticaiolima@gmail.com>
 

trunk/Tools/TestWebKitAPI/TestWebKitAPI.xcodeproj/project.pbxproj

@@ -247 +247 @@
                 5714ECBD1CA8C22A00051AC8 /* DownloadRequestOriginalURL2.html in Copy Resources */ = {isa = PBXBuildFile; fileRef = 5714ECBC1CA8C21800051AC8 /* DownloadRequestOriginalURL2.html */; };
                 571F7FD01F2961FB00946648 /* IndexedDBStructuredCloneBackwardCompatibility.sqlite3-wal in Copy Resources */ = {isa = PBXBuildFile; fileRef = 571F7FCF1F2961E100946648 /* IndexedDBStructuredCloneBackwardCompatibility.sqlite3-wal */; };
+                572B403421769A88000AD43E /* CtapRequestTest.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 572B403321769A88000AD43E /* CtapRequestTest.cpp */; };
+                572B404421781B43000AD43E /* CtapResponseTest.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 572B404321781B42000AD43E /* CtapResponseTest.cpp */; };
                 57303BC9200824D300355965 /* CBORValueTest.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 57303BAC2006C56000355965 /* CBORValueTest.cpp */; };
                 57303BCA20082C0100355965 /* CBORWriterTest.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 57303BAB2006C55400355965 /* CBORWriterTest.cpp */; };
@@ -1562 +1564 @@
                 5714ECBC1CA8C21800051AC8 /* DownloadRequestOriginalURL2.html */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = text.html; path = DownloadRequestOriginalURL2.html; sourceTree = "<group>"; };
                 571F7FCF1F2961E100946648 /* IndexedDBStructuredCloneBackwardCompatibility.sqlite3-wal */ = {isa = PBXFileReference; lastKnownFileType = file; path = "IndexedDBStructuredCloneBackwardCompatibility.sqlite3-wal"; sourceTree = "<group>"; };
+                572B403321769A88000AD43E /* CtapRequestTest.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = CtapRequestTest.cpp; sourceTree = "<group>"; };
+                572B40352176A029000AD43E /* FidoTestData.h */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.h; path = FidoTestData.h; sourceTree = "<group>"; };
+                572B404321781B42000AD43E /* CtapResponseTest.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = CtapResponseTest.cpp; sourceTree = "<group>"; };
                 57303BAB2006C55400355965 /* CBORWriterTest.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = CBORWriterTest.cpp; sourceTree = "<group>"; };
                 57303BAC2006C56000355965 /* CBORValueTest.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = CBORValueTest.cpp; sourceTree = "<group>"; };
@@ -2553 +2558 @@
                                 7CB184C41AA3F2100066EDFD /* ContentExtensions.cpp */,
                                 CD5451E919E41F9D0016936F /* CSSParser.cpp */,
+                                572B403321769A88000AD43E /* CtapRequestTest.cpp */,
+                                572B404321781B42000AD43E /* CtapResponseTest.cpp */,
                                 260BA5781B1D2E7B004FA07C /* DFACombiner.cpp */,
                                 260BA57A1B1D2EE2004FA07C /* DFAHelpers.h */,
@@ -2558 +2565 @@
                                 3151180F1DB1ADD500176304 /* ExtendedColor.cpp */,
                                 579651E6216BFD53006EBFE5 /* FidoHidMessageTest.cpp */,
+                                572B40352176A029000AD43E /* FidoTestData.h */,
                                 7A32D7491F02151500162C44 /* FileMonitor.cpp */,
                                 41973B5A1AF2286A006C7B36 /* FileSystem.cpp */,
@@ -3793 +3801 @@
                                 7AEAD47F1E20116C00416EFE /* CrossPartitionFileSchemeAccess.mm in Sources */,
                                 7CCE7EDB1A411A9200447C4C /* CSSParser.cpp in Sources */,
+                                572B403421769A88000AD43E /* CtapRequestTest.cpp in Sources */,
+                                572B404421781B43000AD43E /* CtapResponseTest.cpp in Sources */,
                                 7AC7B57020D9BA5B002C09A0 /* CustomBundleObject.mm in Sources */,
                                 7AC7B56D20D9769F002C09A0 /* CustomBundleParameter.mm in Sources */,

trunk/Tools/TestWebKitAPI/Tests/WebCore/CBORValueTest.cpp

@@ -149 +149 @@
 }
 
+TEST(CBORValueTest, ConstructSimpleBooleanValue)
+{
+    CBORValue trueValue(true);
+    ASSERT_EQ(CBORValue::Type::SimpleValue, trueValue.type());
+    EXPECT_TRUE(trueValue.getBool());
+
+    CBORValue falseValue(false);
+    ASSERT_EQ(CBORValue::Type::SimpleValue, falseValue.type());
+    EXPECT_FALSE(falseValue.getBool());
+}
+
 // Test copy constructors
 TEST(CBORValueTest, CopyUnsigned)