nick
/
passly
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

replace usage of Hash{Set, Map} with BTree

Browse Source
dev
Nick Zana 2 years ago
parent 852b1ef57d
commit 0b03bda84b
No known key found for this signature in database
GPG Key ID: 936524EE913D6538
10 changed files with 31 additions and 29 deletions
Show Stats Download Patch File Download Diff File

2
crates/credential-management-proto/src/credential.rs
Unescape Escape View File

@ -74,7 +74,7 @@ pub trait Container {
origin: &str, origin: &str,
options: &Self::RequestOptions, options: &Self::RequestOptions,
same_origin_with_ancestors: bool, same_origin_with_ancestors: bool,
) -> Result<std::collections::HashSet<Self::Credential>, discovery::Error>; ) -> Result<std::collections::BTreeSet<Self::Credential>, discovery::Error>;
} }
// TODO: More types of errors here // TODO: More types of errors here

6
crates/ctap2-proto/src/authenticator/assertion/get.rs
Unescape Escape View File

@ -1,7 +1,7 @@
use crate::authenticator::{client_pin::AuthProtocolVersion, Sha256Hash}; use crate::authenticator::{client_pin::AuthProtocolVersion, Sha256Hash};
use bounded_vec::BoundedVec; use bounded_vec::BoundedVec;
use fido_common::credential::public_key; use fido_common::credential::public_key;
use std::{collections::HashMap, usize}; use std::{collections::{BTreeMap}, usize};
pub enum Error { pub enum Error {
OperationDenied, OperationDenied,
@ -44,9 +44,9 @@ pub struct Request<'a> {
pub allow_list: Option<&'a BoundedVec<&'a public_key::Descriptor, 1, { usize::MAX }>>, pub allow_list: Option<&'a BoundedVec<&'a public_key::Descriptor, 1, { usize::MAX }>>,
/// > Parameters to influence authenticator operation. These parameters /// > Parameters to influence authenticator operation. These parameters
/// > might be authenticator specific. /// > might be authenticator specific.
pub extensions: Option<&'a HashMap<fido_common::extension::Identifier, &'a [u8]>>, pub extensions: Option<&'a BTreeMap<fido_common::extension::Identifier, &'a [u8]>>,
/// > Parameters to influence authenticator operation. /// > Parameters to influence authenticator operation.
pub options: Option<&'a HashMap<OptionKey, bool>>, pub options: Option<&'a BTreeMap<OptionKey, bool>>,
pub pin_uv_auth_param: Option<&'a [u8]>, pub pin_uv_auth_param: Option<&'a [u8]>,
/// > PIN/UV protocol version selected by platform. /// > PIN/UV protocol version selected by platform.
pub pin_uv_auth_protocol_version: Option<AuthProtocolVersion>, pub pin_uv_auth_protocol_version: Option<AuthProtocolVersion>,

6
crates/ctap2-proto/src/authenticator/client_pin/mod.rs
Unescape Escape View File

@ -1,4 +1,4 @@
use std::collections::HashSet; use std::collections::{BTreeSet};
use bounded_integer::BoundedUsize; use bounded_integer::BoundedUsize;
@ -44,7 +44,7 @@ pub enum Request<'a> {
GetPinUvAuthTokenUsingUvWithPermissions { GetPinUvAuthTokenUsingUvWithPermissions {
version: AuthProtocolVersion, version: AuthProtocolVersion,
key_agreement: &'a KeyAgreement, key_agreement: &'a KeyAgreement,
permissions: &'a HashSet<Permission>, // TODO: Enforce non-empty hashset? HashSet1? permissions: &'a BTreeSet<Permission>, // TODO: Enforce non-empty set?
relying_party_id: Option<usize>, relying_party_id: Option<usize>,
}, },
GetUvRetries, GetUvRetries,
@ -52,7 +52,7 @@ pub enum Request<'a> {
version: AuthProtocolVersion, version: AuthProtocolVersion,
key_agreement: &'a KeyAgreement, key_agreement: &'a KeyAgreement,
pin_hash_encrypted: usize, pin_hash_encrypted: usize,
permissions: &'a HashSet<Permission>, // TODO: Enforce non-empty hashset? HashSet1? permissions: &'a BTreeSet<Permission>, // TODO: Enforce non-empty set?
relying_party_id: Option<usize>, relying_party_id: Option<usize>,
}, },
} }

4
crates/ctap2-proto/src/authenticator/config.rs
Unescape Escape View File

@ -1,4 +1,4 @@
use std::collections::HashMap; use std::collections::{BTreeMap};
use super::client_pin::AuthProtocolVersion; use super::client_pin::AuthProtocolVersion;
@ -37,7 +37,7 @@ pub enum Request<'a> {
/// > expected to generally utilize this subCommand. /// > expected to generally utilize this subCommand.
VendorPrototype { VendorPrototype {
vendor_command_id: usize, vendor_command_id: usize,
params: &'a HashMap<Vec<u8>, Vec<u8>>, /* TODO: Is the character space of keys params: &'a BTreeMap<Vec<u8>, Vec<u8>>, /* TODO: Is the character space of keys
* restricted to UTF-8? */ * restricted to UTF-8? */
pin_uv_auth_protocol: AuthProtocolVersion, pin_uv_auth_protocol: AuthProtocolVersion,
pin_uv_auth_param: &'a [u8], // TODO: Is using a more specific type possible? pin_uv_auth_param: &'a [u8], // TODO: Is using a more specific type possible?

11
crates/ctap2-proto/src/authenticator/credential/make.rs
Unescape Escape View File

@ -1,6 +1,6 @@
use crate::authenticator::{self, client_pin, Sha256Hash}; use crate::authenticator::{self, client_pin, Sha256Hash};
use fido_common::{credential::public_key, extension}; use fido_common::{credential::public_key, extension};
use std::collections::HashMap; use std::collections::{HashMap, BTreeMap};
pub enum Error { pub enum Error {
OperationDenied, OperationDenied,
@ -21,7 +21,7 @@ pub enum Error {
/// > The following option keys are defined for use in /// > The following option keys are defined for use in
/// > `authenticatorMakeCredential`'s `options` parameter. /// > `authenticatorMakeCredential`'s `options` parameter.
#[derive(Clone, Copy, PartialEq, Eq, Hash)] #[derive(Clone, Copy, PartialEq, Eq, Hash, PartialOrd, Ord)]
pub enum OptionKey { pub enum OptionKey {
/// > Specifies whether this credential is to be discoverable or /// > Specifies whether this credential is to be discoverable or
/// > not. /// > not.
@ -51,7 +51,8 @@ pub struct Request<'a> {
/// > List of supported algorithms for credential generation, as /// > List of supported algorithms for credential generation, as
/// > specified in [WebAuthn]. The array is ordered from most preferred /// > specified in [WebAuthn]. The array is ordered from most preferred
/// > to least preferred and MUST NOT include duplicate entries. /// > to least preferred and MUST NOT include duplicate entries.
pub public_key_credential_params: &'a [public_key::Parameters], pub public_key_credential_params: &'a [public_key::Parameters], // TODO: BTreeSet? BTreeMap
// with preference as key?
/// > An array of PublicKeyCredentialDescriptor structures, as specified /// > An array of PublicKeyCredentialDescriptor structures, as specified
/// > in [WebAuthn]. The authenticator returns an error if the /// > in [WebAuthn]. The authenticator returns an error if the
/// > authenticator already contains one of the credentials enumerated /// > authenticator already contains one of the credentials enumerated
@ -61,7 +62,7 @@ pub struct Request<'a> {
/// > Parameters to influence authenticator operation, as specified in /// > Parameters to influence authenticator operation, as specified in
/// > [WebAuthn]. These parameters might be authenticator specific. /// > [WebAuthn]. These parameters might be authenticator specific.
pub extensions: Option<&'a HashMap<extension::Identifier, Vec<u8>>>, pub extensions: Option<&'a HashMap<extension::Identifier, Vec<u8>>>,
pub options: Option<&'a HashMap<OptionKey, bool>>, pub options: Option<&'a BTreeMap<OptionKey, bool>>,
pub pin_uv_auth_param: &'a [u8], pub pin_uv_auth_param: &'a [u8],
/// > PIN/UV protocol version selected by platform. /// > PIN/UV protocol version selected by platform.
pub pin_uv_auth_protocol_version: Option<client_pin::AuthProtocolVersion>, pub pin_uv_auth_protocol_version: Option<client_pin::AuthProtocolVersion>,
@ -93,5 +94,5 @@ pub struct Response {
pub large_blob_key: Option<Vec<u8>>, pub large_blob_key: Option<Vec<u8>>,
/// > A map, keyed by extension identifiers, to unsigned outputs of /// > A map, keyed by extension identifiers, to unsigned outputs of
/// > extensions, if any. /// > extensions, if any.
pub unsigned_extension_outputs: Option<HashMap<extension::Identifier, Vec<u8>>>, pub unsigned_extension_outputs: Option<BTreeMap<extension::Identifier, Vec<u8>>>,
} }

20
crates/ctap2-proto/src/authenticator/device.rs
Unescape Escape View File

@ -2,9 +2,9 @@ use crate::authenticator::client_pin::AuthProtocolVersion;
use bounded_vec::BoundedVec; use bounded_vec::BoundedVec;
use fido_common::credential::public_key; use fido_common::credential::public_key;
use fido_common::{registry, Transport}; use fido_common::{registry, Transport};
use std::collections::{BTreeSet, BTreeMap};
use std::usize; use std::usize;
use std::{ use std::{
collections::{HashMap, HashSet},
num::NonZeroUsize, num::NonZeroUsize,
}; };
@ -23,7 +23,7 @@ impl Aaguid {
} }
} }
#[derive(Debug, Hash, PartialEq, Eq, Clone, Copy)] #[derive(Debug, Hash, PartialEq, Eq, Clone, Copy, PartialOrd, Ord)]
pub enum Version { pub enum Version {
Fido2_1, Fido2_1,
Fido2_0, Fido2_0,
@ -108,7 +108,7 @@ pub enum FidoLevel {
} }
/// These options describe properties of a CTAP device. /// These options describe properties of a CTAP device.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Hash)] #[derive(Debug, Clone, Copy, PartialEq, Eq, PartialOrd, Ord, Hash)]
pub enum OptionId { pub enum OptionId {
/// > Indicates that the device is attached to the client and therefore /// > Indicates that the device is attached to the client and therefore
/// > cant be removed and used on another client. /// > cant be removed and used on another client.
@ -190,13 +190,13 @@ pub enum OptionId {
/// > information to tailor their command parameters choices. /// > information to tailor their command parameters choices.
pub struct Info { pub struct Info {
/// > List of supported CTAP versions. /// > List of supported CTAP versions.
pub versions: HashSet<Version>, pub versions: BTreeSet<Version>,
/// > List of supported extensions. /// > List of supported extensions.
pub extensions: Option<HashSet<fido_common::extension::Identifier>>, pub extensions: Option<BTreeSet<fido_common::extension::Identifier>>,
/// > The claimed AAGUID. /// > The claimed AAGUID.
pub aaguid: Aaguid, pub aaguid: Aaguid,
/// > List of supported options. /// > List of supported options.
pub options: Option<HashMap<OptionId, bool>>, pub options: Option<BTreeMap<OptionId, bool>>,
/// > Maximum message size supported by the authenticator. /// > Maximum message size supported by the authenticator.
pub max_message_size: Option<usize>, pub max_message_size: Option<usize>,
/// > List of supported PIN/UV auth protocols in order of decreasing /// > List of supported PIN/UV auth protocols in order of decreasing
@ -208,7 +208,7 @@ pub struct Info {
/// > Maximum Credential ID Length supported by the authenticator. /// > Maximum Credential ID Length supported by the authenticator.
pub max_credential_id_length: Option<NonZeroUsize>, pub max_credential_id_length: Option<NonZeroUsize>,
/// > List of supported transports. /// > List of supported transports.
pub transports: Option<HashSet<Transport>>, pub transports: Option<BTreeSet<Transport>>,
/// > List of supported algorithms for credential generation... The array is /// > List of supported algorithms for credential generation... The array is
/// > ordered from most preferred to least preferred and MUST NOT include /// > ordered from most preferred to least preferred and MUST NOT include
/// > duplicate entries... /// > duplicate entries...
@ -255,9 +255,9 @@ pub struct Info {
/// > to help the platform construct user dialogs. If `clientPin` /// > to help the platform construct user dialogs. If `clientPin`
/// > is supported it MUST NOT be included in the bit-flags, as `clientPIN` /// > is supported it MUST NOT be included in the bit-flags, as `clientPIN`
/// > is not a built-in user verification method. /// > is not a built-in user verification method.
pub uv_modality: Option<HashSet<registry::UserVerify>>, pub uv_modality: Option<BTreeSet<registry::UserVerify>>,
/// > This specifies a list of authenticator certifications. /// > This specifies a list of authenticator certifications.
pub certifications: Option<HashSet<Certification>>, pub certifications: Option<BTreeSet<Certification>>,
/// > If this member is present it indicates the estimated number of /// > If this member is present it indicates the estimated number of
/// > additional discoverable credentials that can be stored. If this value /// > additional discoverable credentials that can be stored. If this value
/// > is zero then platforms SHOULD create non-discoverable credentials if /// > is zero then platforms SHOULD create non-discoverable credentials if
@ -279,5 +279,5 @@ pub struct Info {
/// > `vendorPrototype` subcommand, and its value is a list of /// > `vendorPrototype` subcommand, and its value is a list of
/// > `authenticatorConfig` `vendorCommandId` values supported, which MAY be /// > `authenticatorConfig` `vendorCommandId` values supported, which MAY be
/// > empty. /// > empty.
pub vendor_prototype_config_commands: Option<HashSet<usize>>, pub vendor_prototype_config_commands: Option<BTreeSet<usize>>,
} }

4
crates/ctap2-proto/src/authenticator/mod.rs
Unescape Escape View File

@ -1,6 +1,6 @@
use crate::attestation; use crate::attestation;
use fido_common::extension; use fido_common::extension;
use std::collections::HashMap; use std::collections::{BTreeMap};
pub mod assertion; pub mod assertion;
pub mod bio_enrollment; pub mod bio_enrollment;
@ -31,5 +31,5 @@ pub struct Data {
pub user_is_verified: bool, pub user_is_verified: bool,
pub signature_counter: u32, pub signature_counter: u32,
pub attested_credential_data: Option<attestation::CredentialData>, pub attested_credential_data: Option<attestation::CredentialData>,
pub extensions: Option<HashMap<extension::Identifier, Vec<u8>>>, pub extensions: Option<BTreeMap<extension::Identifier, Vec<u8>>>,
} }

4
crates/fido-common/src/credential/public_key.rs
Unescape Escape View File

@ -1,7 +1,7 @@
use crate::registry::algorithms; use crate::registry::algorithms;
use crate::{credential, Transport}; use crate::{credential, Transport};
use bounded_vec::BoundedVec; use bounded_vec::BoundedVec;
use std::collections::HashSet; use std::collections::{BTreeSet};
#[cfg(feature = "serde")] #[cfg(feature = "serde")]
use serde::{Deserialize, Serialize}; use serde::{Deserialize, Serialize};
@ -39,7 +39,7 @@ pub struct Descriptor {
/// > This... member contains a hint as to how the client might /// > This... member contains a hint as to how the client might
/// > communicate with the managing authenticator of the public /// > communicate with the managing authenticator of the public
/// > key credential the caller is referring to. /// > key credential the caller is referring to.
pub transports: Option<HashSet<Transport>>, pub transports: Option<BTreeSet<Transport>>,
} }
/// > This `PublicKeyCredentialUserEntity` data structure describes the user /// > This `PublicKeyCredentialUserEntity` data structure describes the user

1
crates/fido-common/src/extension.rs
Unescape Escape View File

@ -18,6 +18,7 @@
/// > Extensions that may exist in multiple versions should take care to include /// > Extensions that may exist in multiple versions should take care to include
/// > a version in their identifier. In effect, different versions are thus /// > a version in their identifier. In effect, different versions are thus
/// > treated as different extensions, e.g., `myCompany_extension_01` /// > treated as different extensions, e.g., `myCompany_extension_01`
#[derive(PartialEq, Eq, PartialOrd, Ord)]
pub enum Identifier { pub enum Identifier {
AppId, AppId,
TransactionAuthSimple, TransactionAuthSimple,

2
crates/fido-common/src/lib.rs
Unescape Escape View File

@ -13,7 +13,7 @@ use serde::{Deserialize, Serialize};
/// > `WebAuthn` Relying Party's best belief as to how an authenticator may be /// > `WebAuthn` Relying Party's best belief as to how an authenticator may be
/// > reached. A Relying Party will typically learn of the supported transports /// > reached. A Relying Party will typically learn of the supported transports
/// > for a public key credential via getTransports(). /// > for a public key credential via getTransports().
#[derive(Clone, PartialEq, Eq, Hash, Debug)] #[derive(Clone, PartialEq, Eq, PartialOrd, Ord, Hash, Debug)]
#[cfg_attr(feature = "serde", derive(Serialize, Deserialize), serde(untagged))] #[cfg_attr(feature = "serde", derive(Serialize, Deserialize), serde(untagged))]
pub enum Transport { pub enum Transport {
/// > Indicates the respective authenticator can be contacted over removable /// > Indicates the respective authenticator can be contacted over removable

Write Preview
Loading…
Cancel
Save