C>SrSSKrSSKJr SSKJr "SS\5rg)zThis module implements the low level device API. This module exposes a low level SecurityKey class, representing the physical security key device. N)apdu)errorscN\rSrSrSrSrSrS SjrSrSr Sr S r S r S r g ) SecurityKeyzLow level api for talking to a security key. This class implements the low level api specified in FIDO U2F for talking to a security key. cTXlSUl[R"S5Ulg)NFzpyu2f.hardware) transportuse_legacy_formatlogging getLoggerlogger)selfr s !lib/third_party/pyu2f/hardware.py__init__SecurityKey.__init__!s"N"D##$45DKc ^URRS5 [U5S:wd[U5S:wa[R"5e[ X-5nUR [R"S[RSSU55nUR5 UR$)aRegister security key. Ask the security key to register with a particular origin & client. Args: challenge_param: Arbitrary 32 byte challenge string. app_param: Arbitrary 32 byte applciation parameter. Returns: A binary structure containing the key handle, attestation, and a signature over that by the attestation key. The precise format is dictated by the FIDO U2F specs. Raises: TUPRequiredError: A Test of User Precense is required to proceed. ApduError: Something went wrong on the device. CmdRegister r) r debuglenrInvalidRequestError bytearrayInternalSendApdur CommandApdu CMD_REGISTERCheckSuccessOrRaisebody)rchallenge_param app_paramrresponses rrSecurityKey.CmdRegister&s$ KKm$ ?r!S^r%9  & & (( _0 1D$$T%5%5     &H    " ==rc URRS5 [U5S:wd[U5S:wa[R"5eU(aSOSn[ X-[ [U5/5-U-5nUR [R"S[RUSU55nUR5 UR$)aAttempt to obtain an authentication signature. Ask the security key to sign a challenge for a particular key handle in order to authenticate the user. Args: challenge_param: SHA-256 hash of client_data object as a bytes object. app_param: SHA-256 hash of the app id as a bytes object. key_handle: The key handle to use to issue the signature as a bytes object. check_only: If true, only check if key_handle is valid. Returns: A binary structure containing the key handle, attestation, and a signature over that by the attestation key. The precise format is dictated by the FIDO U2F specs. Raises: TUPRequiredError: If check_only is False, a Test of User Precense is required to proceed. If check_only is True, this means the key_handle is valid. InvalidKeyHandleError: The key_handle is not valid for this device. ApduError: Something else went wrong on the device. CmdAuthenticaterrr) r rrrrrrrrCMD_AUTHrr)rr r! key_handle check_onlycontrolrr"s rr%SecurityKey.CmdAuthenticateGs< KK'( ?r!S^r%9  & & (( ddG _0J0124>? @D$$T%5%5 4=='4&/0H   " ==rc<URRS5 UR[R"S[R SS55nUR 5(d+[R"URUR5eUR$)ajObtain the version of the device and test transport format. Obtains the version of the device and determines whether to use ISO 7816-4 or the U2f variant. This function should be called at least once before CmdAuthenticate or CmdRegister to make sure the object is using the proper transport for the device. Returns: The version of the U2F protocol in use. CmdVersionr) r rrrr CMD_VERSION IsSuccessr ApduErrorsw1sw2r)rr"s rr-SecurityKey.CmdVersionrsx KKl#$$T%5%5 4  T4&)*H        X\\8<< 88 ==rcpURRS5 URRU5 g)NCmdBlink)r rr SendBlink)rtimes rr5SecurityKey.CmdBlinks&KKj!NNT"rcnURRS5 URR5 g)NCmdWink)r rr SendWink)rs rr:SecurityKey.CmdWinks$KKi NNrcnURRS5 URRU5$)NCmdPing)r rr SendPing)rdatas rr>SecurityKey.CmdPings)KKi >> " "4 ((rcSnUR(dw[R"URR UR 555nUR S:Xa(URS:XaSUlURU5$U$[R"URR UR555nU$)aSend an APDU to the device. Sends an APDU to the device, possibly falling back to the legacy encoding format that is not ISO7816-4 compatible. Args: apdu_to_send: The CommandApdu object to send Returns: The ResponseApdu object constructed out of the devices reply. NgrT) r r ResponseApdur SendMsgBytes ToByteArrayr1r2rToLegacyU2FByteArray)r apdu_to_sendr"s rrSecurityKey.InternalSendApdusH  ! !""4>>#>#>  " " $$&'h  (,,$"6"&$$\22 O""4>>#>#>  + + -$/0h Or)r r r N)F)__name__ __module__ __qualname____firstlineno____doc__rrr%r-r5r:r>r__static_attributes__rrrrs6 6 J"' )V(#)rr)rNr pyu2frrobjectrrPrrrSs# P&Pr