зеркало из https://github.com/mozilla/gecko-dev.git
deb78e0cce
The semantics of what Firefox implemented for the AppID extension for WebAuthn were wrong. Notably: It was always emitted if the extension were used, and always set to `true`. The specification has more nuance so that RPs can use that result to determine what to validate against. As a reminder since it's been a while, this change has impacts to the WebAuthn Token Manager layer, so there's duplicative changes in the soft token and in the HID token, _and the automated tests only test the soft token_. Manual testing using webauthn.bin.coffee and other test sites are needed to verify behavior in U2FHIDTokenManager. Differential Revision: https://phabricator.services.mozilla.com/D79568 |
||
|---|---|---|
| .. | ||
| cbor-cpp | ||
| libudev-sys | ||
| tests | ||
| winwebauthn | ||
| AndroidWebAuthnTokenManager.cpp | ||
| AndroidWebAuthnTokenManager.h | ||
| AuthenticatorAssertionResponse.cpp | ||
| AuthenticatorAssertionResponse.h | ||
| AuthenticatorAttestationResponse.cpp | ||
| AuthenticatorAttestationResponse.h | ||
| AuthenticatorResponse.cpp | ||
| AuthenticatorResponse.h | ||
| PWebAuthnTransaction.ipdl | ||
| PublicKeyCredential.cpp | ||
| PublicKeyCredential.h | ||
| U2FHIDTokenManager.cpp | ||
| U2FHIDTokenManager.h | ||
| U2FSoftTokenManager.cpp | ||
| U2FSoftTokenManager.h | ||
| U2FTokenManager.cpp | ||
| U2FTokenManager.h | ||
| U2FTokenTransport.h | ||
| WebAuthnCBORUtil.cpp | ||
| WebAuthnCBORUtil.h | ||
| WebAuthnCoseIdentifiers.h | ||
| WebAuthnManager.cpp | ||
| WebAuthnManager.h | ||
| WebAuthnManagerBase.cpp | ||
| WebAuthnManagerBase.h | ||
| WebAuthnTransactionChild.cpp | ||
| WebAuthnTransactionChild.h | ||
| WebAuthnTransactionParent.cpp | ||
| WebAuthnTransactionParent.h | ||
| WebAuthnUtil.cpp | ||
| WebAuthnUtil.h | ||
| WinWebAuthnManager.cpp | ||
| WinWebAuthnManager.h | ||
| moz.build | ||
| nsIU2FTokenManager.idl | ||