Crate ctap_fido2 

ctap-fido2 is a CTAP2 client for FIDO2 hmac-secret over USB HID.

Typically, one might want to use the following:

• device::list_devices to enumerate eligible authenticators.
• device::DeviceInfo for the descriptor of each.
• cmd::Authenticator::open to acquire an open handle.
• cmd::Authenticator::make_credential and cmd::Authenticator::get_hmac_secret for the headline operations.
• error::Error / error::Result / error::CtapStatus for the typed error tree.

The following modules are also exposed:

• cose — CredentialPublicKey and signature verification.
• hid — Transport for raw CTAPHID frames and hid::Transport::vendor_command for vendor-specific probes.
• pin — PinSession / PinToken for callers building their own PIN-protected commands on top of hid::Transport.
• cbor — CBOR helpers used by the command parsers.

Modules

cbor

Thin wrappers around ciborium for CTAP-flavored CBOR.

cmd

Public-facing command API. Submodules carry the wire encoding/parsing.

cose

COSE_Key parsing for credential public keys plus signature verification.

device

USB HID enumeration. Filters by FIDO usage page and hmac-secret extension support. Probe handles close before list_devices returns.

error

Typed errors for every CTAP status byte.

hid

CTAP-HID transport. Owns the hidapi::HidDevice and negotiated CID; exposes Transport::transact for CBOR commands.

pin

CTAP authenticatorClientPIN.