device/u2f/attested_credential_data.h

// Copyright 2017 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.

#ifndef DEVICE_U2F_ATTESTED_CREDENTIAL_DATA_H_
#define DEVICE_U2F_ATTESTED_CREDENTIAL_DATA_H_

#include <stdint.h>
#include <memory>
#include <vector>

#include "base/containers/span.h"
#include "base/macros.h"
#include "base/optional.h"

namespace device {

class PublicKey;

// https://www.w3.org/TR/2017/WD-webauthn-20170505/#sec-attestation-data
class AttestedCredentialData {
 public:
  static base::Optional<AttestedCredentialData> CreateFromU2fRegisterResponse(
      base::span<const uint8_t> u2f_data,
      std::vector<uint8_t> aaguid,
      std::unique_ptr<PublicKey> public_key);

  AttestedCredentialData(std::vector<uint8_t> aaguid,
                         std::vector<uint8_t> length,
                         std::vector<uint8_t> credential_id,
                         std::unique_ptr<PublicKey> public_key);

  // Moveable.
  AttestedCredentialData(AttestedCredentialData&& other);
  AttestedCredentialData& operator=(AttestedCredentialData&& other);

  ~AttestedCredentialData();

  const std::vector<uint8_t>& credential_id() { return credential_id_; }

  // Produces a byte array consisting of:
  // * AAGUID (16 bytes)
  // * Len (2 bytes)
  // * Credential Id (Len bytes)
  // * Credential Public Key.
  std::vector<uint8_t> SerializeAsBytes() const;

 private:
  // The 16-byte AAGUID of the authenticator.
  std::vector<uint8_t> aaguid_;

  // Big-endian length of the credential (i.e. key handle).
  std::vector<uint8_t> credential_id_length_;
  std::vector<uint8_t> credential_id_;
  std::unique_ptr<PublicKey> public_key_;

  DISALLOW_COPY_AND_ASSIGN(AttestedCredentialData);
};

}  // namespace device

#endif  // DEVICE_U2F_ATTESTED_CREDENTIAL_DATA_H_