1.\" Copyright (c) 2018-2022 Yubico AB. All rights reserved. 2.\" 3.\" Redistribution and use in source and binary forms, with or without 4.\" modification, are permitted provided that the following conditions are 5.\" met: 6.\" 7.\" 1. Redistributions of source code must retain the above copyright 8.\" notice, this list of conditions and the following disclaimer. 9.\" 2. Redistributions in binary form must reproduce the above copyright 10.\" notice, this list of conditions and the following disclaimer in 11.\" the documentation and/or other materials provided with the 12.\" distribution. 13.\" 14.\" THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS 15.\" "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT 16.\" LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR 17.\" A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT 18.\" HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, 19.\" SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT 20.\" LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, 21.\" DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY 22.\" THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 23.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE 24.\" OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 25.\" 26.\" SPDX-License-Identifier: BSD-2-Clause 27.\" 28.Dd $Mdocdate: December 1 2022 $ 29.Dt FIDO_ASSERT_ALLOW_CRED 3 30.Os 31.Sh NAME 32.Nm fido_assert_allow_cred , 33.Nm fido_assert_empty_allow_list 34.Nd manage allow lists in a FIDO2 assertion 35.Sh SYNOPSIS 36.In fido.h 37.Ft int 38.Fn fido_assert_allow_cred "fido_assert_t *assert" "const unsigned char *ptr" "size_t len" 39.Ft int 40.Fn fido_assert_empty_allow_list "fido_assert_t *assert" 41.Sh DESCRIPTION 42The 43.Fn fido_assert_allow_cred 44function adds 45.Fa ptr 46to the list of credentials allowed in 47.Fa assert , 48where 49.Fa ptr 50points to a credential ID of 51.Fa len 52bytes. 53A copy of 54.Fa ptr 55is made, and no references to the passed pointer are kept. 56If 57.Fn fido_assert_allow_cred 58fails, the existing list of allowed credentials is preserved. 59.Pp 60For the format of a FIDO2 credential ID, please refer to the 61Web Authentication (webauthn) standard. 62.Pp 63The 64.Fn fido_assert_empty_allow_list 65function empties the list of credentials allowed in 66.Fa assert . 67.Sh RETURN VALUES 68The error codes returned by 69.Fn fido_assert_allow_cred 70and 71.Fn fido_assert_empty_allow_list 72are defined in 73.In fido/err.h . 74On success, 75.Dv FIDO_OK 76is returned. 77.Sh SEE ALSO 78.Xr fido_assert_new 3 , 79.Xr fido_assert_set_authdata 3 , 80.Xr fido_dev_get_assert 3 81