[Webkit-unassigned] [Bug 214849] New: iOS 14 PinProtocol falure due to removing authenticator to type password.
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Mon Jul 27 14:47:15 PDT 2020
https://bugs.webkit.org/show_bug.cgi?id=214849
Bug ID: 214849
Summary: iOS 14 PinProtocol falure due to removing
authenticator to type password.
Product: WebKit
Version: Safari Technology Preview
Hardware: iPhone / iPad
OS: Unspecified
Status: NEW
Severity: Normal
Priority: P2
Component: WebKit Misc.
Assignee: webkit-unassigned at lists.webkit.org
Reporter: loginllama at gmail.com
This is largly the same bug as the NFC one. If the power is removed from the authenticator it will generate a new ECDH keypair for the pin protocol.
iOS is continuing to use the key retrieved before the power cycle for ECDH-ES and the pin protocol fails when the pin is sent to the authenticator.
You ask why is this a problem? Just don't remove the key.
The problem is that many Fido keys support other protocols and appear to iOS as external keyboards.
For those keys, perhaps in the millions when they are used with a iPAD once they are inserted the on screen keyboard disappears.
If the user has a BLE or other keyboard they are fine, otherwise they remove the authenticator to type the pin and then reinsert to submit it, but it won't work because the key has changed.
I don't know if there is any option to ignore the external keyboard and bring up the on screen one.
The simplest thing is to make sure the fix that I think you are doing for NFC is also applied to USB.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20200727/a569a739/attachment.htm>
More information about the webkit-unassigned
mailing list