Skip to content

Commit

Permalink
Add missing certification extension type LocalIntegerValueBlock (#156)
Browse files Browse the repository at this point in the history
* Add missing certification extension type LocalIntegerValueBlock

* Bump version

---------

Co-authored-by: James Cullum (Pseudonym) <[email protected]>
  • Loading branch information
wparad and JamesCullum authored Feb 10, 2024
1 parent ad1566e commit a7d1bdf
Show file tree
Hide file tree
Showing 4 changed files with 15 additions and 3 deletions.
8 changes: 6 additions & 2 deletions lib/certUtils.js
Original file line number Diff line number Diff line change
Expand Up @@ -125,8 +125,10 @@ class Certificate {
let kv;

let v = ext.parsedValue || ext.extnValue;
if (v.valueBlock) v = decodeValue(v.valueBlock);
try {
if (v.valueBlock) {
v = decodeValue(v.valueBlock);
}
kv = resolveOid(ext.extnID, v);
} catch (err) {
if (ext.critical === false) {
Expand Down Expand Up @@ -284,6 +286,8 @@ function decodeValue(valueBlock) {
// console.log("blockType", blockType);
// console.log("valueBlock", valueBlock);
switch (blockType) {
case "LocalIntegerValueBlock":
return valueBlock.valueDec;
case "LocalOctetStringValueBlock":
return valueBlock.valueHex;
case "LocalUtf8StringValueBlock":
Expand Down Expand Up @@ -576,4 +580,4 @@ const helpers = {
resolveOid,
};

export { Certificate, CertManager, CRL, helpers };
export { Certificate, CertManager, CRL, helpers };
2 changes: 1 addition & 1 deletion package.json
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"name": "fido2-lib",
"version": "3.4.4",
"version": "3.5.0",
"description": "A library for performing FIDO 2.0 / WebAuthn functionality",
"type": "module",
"main": "dist/main.cjs",
Expand Down
5 changes: 5 additions & 0 deletions test/certUtils.test.js
Original file line number Diff line number Diff line change
Expand Up @@ -189,6 +189,11 @@ describe("cert utils", function() {
assert.isTrue(u2fTransports.has("usb"));
});

it("does not throw for non-critical extensions, when unknown extension types are included", function() {
const cert = new Certificate(h.certs.certificateWithIntegerExtension);
const extensions = cert.getExtensions();
});

it("returns correct extensions for root", function() {
const cert = new Certificate(h.certs.yubicoRoot);
const extensions = cert.getExtensions();
Expand Down
3 changes: 3 additions & 0 deletions test/helpers/fido2-helpers.js
Original file line number Diff line number Diff line change
Expand Up @@ -3784,12 +3784,15 @@ const tpmAttestation = new Uint8Array([

const truUCert = "LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUNTekNDQWZLZ0F3SUJBZ0lVVzNYSzh5eXdiQVdsaWdsaXhJRjYzZHZxWXk4d0NnWUlLb1pJemowRUF3SXcKZkRFTE1Ba0dBMVVFQmhNQ1ZWTXhFVEFQQmdOVkJBZ01DRU52Ykc5eVlXUnZNUTh3RFFZRFZRUUhEQVpFWlc1MgpaWEl4RXpBUkJnTlZCQW9NQ2xSeWRWVXNJRWx1WXk0eElqQWdCZ05WQkFzTUdVRjFkR2hsYm5ScFkyRjBiM0lnClFYUjBaWE4wWVhScGIyNHhFREFPQmdOVkJBTU1CM1J5ZFhVdVlXa3dJQmNOTWpNeE1UQXpNakF6TmpVeFdoZ1AKTWpBMU16RXdNall5TURNMk5URmFNSHd4Q3pBSkJnTlZCQVlUQWxWVE1SRXdEd1lEVlFRSURBaERiMnh2Y21GawpiekVQTUEwR0ExVUVCd3dHUkdWdWRtVnlNUk13RVFZRFZRUUtEQXBVY25WVkxDQkpibU11TVNJd0lBWURWUVFMCkRCbEJkWFJvWlc1MGFXTmhkRzl5SUVGMGRHVnpkR0YwYVc5dU1SQXdEZ1lEVlFRRERBZDBjblYxTG1GcE1Ga3cKRXdZSEtvWkl6ajBDQVFZSUtvWkl6ajBEQVFjRFFnQUVOQXZidGNjTXI3ai9TUldtcUlFWlRSV05KeWo2bXNZcgo1bEdlQWdkU0d5QzlPMDM1NlJJZWN1YVZpT3F6MER4Z1MxZi81S1BiWnAxdDB5RDJmVlJYOTZOUU1FNHdIUVlEClZSME9CQllFRkE1dEwxMGc4OHQycVhsUGxoSVNJMmRJemxhVk1COEdBMVVkSXdRWU1CYUFGQTV0TDEwZzg4dDIKcVhsUGxoSVNJMmRJemxhVk1Bd0dBMVVkRXdFQi93UUNNQUF3Q2dZSUtvWkl6ajBFQXdJRFJ3QXdSQUlnWGZ1dgpqc3ArNHY1aUdPcW5nVWdPZzFobWJnRlBGTWdJanlXeENLcXcvZDhDSUZpbUxOWExESXdBK29JYlAxeU9mcUU4CnhrNnE3LzRMV09WWWtSQUxvQkMyCi0tLS0tRU5EIENFUlRJRklDQVRFLS0tLS0=";

const certificateWithIntegerExtension = "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";

const certs = {
yubiKeyAttestation,
yubicoRoot,
feitianFido2,
tpmAttestation,
truUCert,
certificateWithIntegerExtension,
};

/** ******************************************************************************
Expand Down

0 comments on commit a7d1bdf

Please sign in to comment.