Skip to content

Commit

Permalink
Link design document to DESIGN comments
Browse files Browse the repository at this point in the history
  • Loading branch information
szszszsz committed Aug 18, 2023
1 parent 62b99ca commit 6732811
Showing 1 changed file with 10 additions and 10 deletions.
20 changes: 10 additions & 10 deletions src/authenticator.rs
Original file line number Diff line number Diff line change
Expand Up @@ -304,7 +304,7 @@ where
self.state.runtime.previously = None;
}

// DESIGN Allow all commands to be called without PIN verification
// DESIGN (see design.md): Allow all commands to be called without PIN verification

// Lazy init: make sure hardware key is initialized
self.init()?;
Expand Down Expand Up @@ -342,7 +342,7 @@ where
};

// Call logout after processing, so the PIN-based KEK would not be kept in the memory
// DESIGN -> Per-request authorization
// DESIGN (see design.md): -> Per-request authorization
if self.state.runtime.encryption_key.is_some() {
// Do not call automatic logout after these commands
match command {
Expand Down Expand Up @@ -411,7 +411,7 @@ where
}

fn reset(&mut self) -> Result {
// DESIGN Reset: always confirm with touch button
// DESIGN (see design.md): Reset: always confirm with touch button
self.user_present()?;

// Run any structured cleanup we have
Expand Down Expand Up @@ -625,7 +625,7 @@ where
}

fn register(&mut self, register: command::Register<'_>) -> Result {
// DESIGN Registration: require touch button if set on the credential, but not if the PIN was already checked
// DESIGN (see design.md): Registration: require touch button if set on the credential, but not if the PIN was already checked
if register.credential.touch_required
&& register.credential.encryption_key_type != EncryptionKeyType::PinBased
{
Expand Down Expand Up @@ -821,10 +821,10 @@ where
update_req: command::UpdateCredential<'_>,
_reply: &mut Data<R>,
) -> Result {
// DESIGN Get operation confirmation from user before proceeding
// DESIGN (see design.md): Get operation confirmation from user before proceeding
self.user_present()?;

// DESIGN check if the target name is occupied already
// DESIGN (see design.md): check if the target name is occupied already
if let Some(new_label) = update_req.new_label {
self.err_if_credential_with_label_exists(new_label)?;
}
Expand Down Expand Up @@ -879,7 +879,7 @@ where
}

fn require_touch_if_needed(&mut self, credential: &CredentialFlat) -> Result<()> {
// DESIGN Daily use: require touch button if set on the credential, but not if the PIN was already checked
// DESIGN (see design.md): Daily use: require touch button if set on the credential, but not if the PIN was already checked
// Safety: encryption_key_type should be set for credential during loading in load_credential
if credential.touch_required
&& credential.encryption_key_type.unwrap() != EncryptionKeyType::PinBased
Expand Down Expand Up @@ -1388,7 +1388,7 @@ where

self._extension_logout()?;

// DESIGN Always ask for touch button confirmation before verifying PIN, to prevent
// DESIGN (see design.md): Always ask for touch button confirmation before verifying PIN, to prevent
// non-intentional attempt counter use up
self.user_present()?;

Expand All @@ -1408,7 +1408,7 @@ where
if self._extension_is_pin_set()? {
return Err(Status::SecurityStatusNotSatisfied);
}
// DESIGN Set PIN: always confirm with touch button
// DESIGN (see design.md): Set PIN: always confirm with touch button
self.user_present()?;

let command::SetPin { password } = set_pin;
Expand All @@ -1427,7 +1427,7 @@ where
if !self._extension_is_pin_set()? {
return Err(Status::SecurityStatusNotSatisfied);
}
// DESIGN Change PIN: always confirm with touch button
// DESIGN (see design.md): Change PIN: always confirm with touch button
self.user_present()?;

let command::ChangePin {
Expand Down

0 comments on commit 6732811

Please sign in to comment.