Closed Molyna closed 4 months ago
Current implementation of the tests operates on an assumption that once the dialog about requiring reset is shown, the authenticator gets power cycled before continuing. Easy to do for HID authenticators, but may be troublesome in case of BLE to time it correctly.
I'll see if its possible to retry the reset procedure when it fails due to CTAP2_ERR_NOT_ALLOWED
instead of outright failing tests.
Not sure how easy it would be. Power reset on BLE is in general quite cumbersome in how much time it takes as it needs to redo the connection as well. We have in general had big issues with the ClientPin tests for example triggering timeout as they on average take about 55 seconds. So doing a power cycle would probably need to include a pause in the test running similar to ClientPin with a popup, but it might also require longer timeout then.
The solution is currently being worked on, and there are some ideas for ways to improve the experience. Unfortunately, it will take a bit more time, so it won't be ready for the next 1.7.18 version.
Improvements regarding this were introduced in the latest 1.7.19 version.
Should the reset operation return the CTAP2_ERR_NOT_ALLOWED
code, you will be prompted with a popup dialog to retry it without failing a test. Hitting this dialog will also slightly increase the timeout.
This is only the case for CTAP2_ERR_NOT_ALLOWED
. Other error codes will still cause a fail as usual.
Ran a full BLE test, the Reset test category fails with 0x30 as it takes more than 10 seconds from boot. Otherwise all works with the fix.
the Reset test category fails with 0x30 as it takes more than 10 seconds from boot.
Accidentally missed this block of tests. Should work properly in the latest 1.7.19-1 version.
By submitting this issue you are acknowledging that any information regarding this issue will be publicly available.
If you have privacy concerns, please email conformance-tools@fidoalliance.org
FIRST PRE CHECK
What protocol are you implementing?
NOTE: UAF 1.0 certification have been officially sunset. U2F 1.2 only supported version of U2F.
What is your implementation class?
If you are platform authenticator vendor, please email conformance-tools@fidoalliance.org
What is the version of the tool are you using?
1.7.17
What is the OS and the version are you running?
For desktop tools
For UAF mobile tools
Issue description
When starting the tests they will fail fairly fast when a reset command returns
CTAP2_ERR_NOT_ALLOWED
. Part of the 2.1 Specification for Reset saysSo expectation would be that the tests demand a reboot of the device when
CTAP2_ERR_NOT_ALLOWED
is returned from reset.