Implement Read/Write CHUID

[jc-m]

Ready to merge

[ericchiang]

Make raw unexported and in a future PR add whatever other field you want to be able to inspect. FASC-N, Exp. Date, etc.

Though if you want to use the signature in the API in a follow up PR, I think I'd prefer something like:

func (c *CardID) Verify(pub crypto.PublicKey) error
func (c *CardID) Sign(priv crypto.Signer) error

[jc-m]

agreed

[ericchiang]

Before doing any slice indexes you need to verify the length of the returned object.

if len(obj) < n {
    // return error
}
uuid := obj[n:]

[jc-m]

agreed

[ericchiang]

UUID length must be 16 bytes? https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-73-4.pdf#page=26

Return an error if it's not?

[jc-m]

agreed

[ericchiang]

Can this be:

func(yk *YubiKey) SetCardID(key [24], cardID *CardID) error

• All other methods in this package have the management key/PIN/PUK as their first argument
• If we ever wanted other methods to be settable (e.g. signature) then we don't need to add new APIs
• We don't return a CardID, a successful SetCardID should imply that the state on the card is equivalent to the passed CardID

[jc-m]

agreed

[ericchiang]

For the doc comment: can you call this method before calling SetCardID?

nit: for consistency with other APIs in this package, return a pointer

func (yk *YubiKey) CardID() (*CardID, error)

[jc-m]

agreed

[ericchiang]

The Defined fields is really helpful for review 😃 but should be in the doc comment. Doc comment should only document what's exposed in the API

[jc-m]

agreed

[ericchiang]

Where does this come from? Would default field values be better?

[jc-m]

This is coming straight from yubico tools. they generated that - for now, it would suggest to do the same, and later add the fields in the CardID struct and add the encoding.

[ericchiang]

Just build the fields yourself with default values instead of using a template?

data := marshalASN1(/* tag */, defaultFASCN)
data = append(data, marshalASN1(/* tag */, guid[:]))
data = append(data, marshalASN1(/* tag */, defaultExp))
data = append(data, marshalASN1(/* tag */, defaultSig))
data = append(data, marshalASN1(/* tag */, defaultErrorCorrectionCode))

That way if you ever want to make something like the signature writable, it's clear where to modify the value.

[jc-m]

can we do that in a future PR as it would be better to pass a full cardID and not have any default ?

[ericchiang]

Are these actually not settable or is that just the API that yubico's tools expose?

[jc-m]

They can be set - it's hardcoded in the yubico implementation, i was thinking of eventually add these and implement the BCD encoding too in a future PR.

[ericchiang]

endPos can still be longer than the length of obj if the card returns bad data, resulting in a crash.

Can you do the same logic for decoding the metadata instead? Iterate through the raw ASN.1 objects until you find the UUID value?

piv-go/piv/piv.go

Line 775 in e6548dd

if !bytes.HasPrefix(v.FullBytes, []byte{0x89}) {

[ericchiang]

Still plan to take this, but took some extra time off for the long weekend. Will look again when I'm back :)

[jc-m]

Any way to get this reviewed/merged ? Thanks