*** UNIX MANUAL PAGE BROWSER ***

A Nergahak database for man pages research.

Navigation

Location: Home > OpenBSD > Section 3 > fido_cred_verify
Quick Actions: [Home] [Up]

Directory Browser

1Browse 4.4BSD4.4BSD
1Browse Digital UNIXDigital UNIX 4.0e
1Browse FreeBSDFreeBSD 14.3
1Browse MINIXMINIX 3.4.0rc6-d5e4fc0
1Browse NetBSDNetBSD 10.1
1Browse OpenBSDOpenBSD 7.7
1Browse UNIX v7Version 7 UNIX
1Browse UNIX v10Version 10 UNIX

Manual Page Search

Manual Page Result

0 Command: fido_cred_verify | Section: 3 | Source: OpenBSD | File: fido_cred_verify.3
FIDO_CRED_VERIFY(3) FreeBSD Library Functions Manual FIDO_CRED_VERIFY(3) NAME fido_cred_verify, fido_cred_verify_self - verify the attestation signature of a FIDO2 credential SYNOPSIS #include <fido.h> int fido_cred_verify(const fido_cred_t *cred); int fido_cred_verify_self(const fido_cred_t *cred); DESCRIPTION The fido_cred_verify() and fido_cred_verify_self() functions verify whether the attestation signature contained in cred matches the attributes of the credential. Before using fido_cred_verify() or fido_cred_verify_self() in a sensitive context, the reader is strongly encouraged to make herself familiar with the FIDO2 credential attestation process as defined in the Web Authentication (webauthn) standard. The fido_cred_verify() function verifies whether the client data hash, relying party ID, credential ID, type, protection policy, minimum PIN length, and resident/discoverable key and user verification attributes of cred have been attested by the holder of the private counterpart of the public key contained in the credential's x509 certificate. Please note that the x509 certificate itself is not verified. The attestation statement formats supported by fido_cred_verify() are packed, fido-u2f, and tpm. The attestation type implemented by fido_cred_verify() is Basic Attestation. The fido_cred_verify_self() function verifies whether the client data hash, relying party ID, credential ID, type, protection policy, minimum PIN length, and resident/discoverable key and user verification attributes of cred have been attested by the holder of the credential's private key. The attestation statement formats supported by fido_cred_verify_self() are packed and fido-u2f. The attestation type implemented by fido_cred_verify_self() is Self Attestation. Other attestation formats and types are not supported. RETURN VALUES The error codes returned by fido_cred_verify() and fido_cred_verify_self() are defined in <fido/err.h>. If cred passes verification, then FIDO_OK is returned. SEE ALSO fido_cred_new(3), fido_cred_set_authdata(3) FreeBSD 14.1-RELEASE-p8 August 29, 2022 FreeBSD 14.1-RELEASE-p8

Navigation Options

Actions: [Home] [Back] [New Search]
Browse: [Browse OpenBSD] [Section 3]
Print/Export: [Print] [Raw Text]
Date: 2025-08-18 Time: 21:50:48 SAST |
Page generated in 0.3926 seconds
Nergahak ManpageViewer v1.4
[Back to Top]