[Webkit-unassigned] [Bug 220415] [WebAuthn] Safari ignores maxMsgSize in Message encoding

Mon Jul 22 22:35:31 PDT 2024

https://bugs.webkit.org/show_bug.cgi?id=220415

--- Comment #6 from nuno.sung <nuno.sung at authentrend.com> ---
Not only with excludeList/allowList cases, some rp add all supported algo when doing make() also will trigger this issue, e.g.
---
{ "attestation": "direct", "authenticatorSelection": { "residentKey": "discouraged", "userVerification": "preferred" }, "challenge": "a0oPIQ4k5mF15rK1WKnUxqGsRYvsC-0tHf3er8i0LZHTv8f4KGUMRQ1ys- aJiFg0_OuIPhKA8ecaRuUmfHN3EQ", "excludeCredentials": [ {"id": "iNRyobHFV_khWBgdUXpkeNxVFjRh2MIZI7YSJt4qBDTsK1kwQ8H6DmqixmZM2jRIbhXpbSV_UN_9GK4PcuMYv4EMReqzRhIPAgggCK21ouy4fHE HUFHHAYdMTC6d8Q", "transports": [ "usb", "nfc", "ble", "hybrid", "internal" ], "type": "public-key" }, { "id": "vxwsDOgJ08syZrS13YAEXS7UV51B0rb8гBTm92NJvWaxMEQOUkc2L_Nvs Se6Cprd at VG5Wt-0WUcuDx5xdomaIA", "transports": [ "usb", "nfc", "ble", "hybrid", "internal" ], "type": "public-key" } ], "extensions": { "credProps": true }, "pubKeyCredParams": [ { "alg":-65535, "type": "public-key" }, { "alg":-257, "type": "public-key" }, { "alg": -258, "type": "public-key" }, { "alg": -259, "type": "public-key" }, { "alg": -37, "type": "public-key" }, { "alg": -38, "type": "public-key" }, { "alg":-39, "type": "public-key" }, { "alg": 7, "type": "public-key" }, { "alg":-35, "type": "public-key" }, { "alg": -36, "type": "public-key" }, { "alg": -8, "type": "public-key" }, { "alg": -43, "type": "public-key" } ], "rp": { "id": "binance.com", "name": "Binance" }, "user": { "displayName": "Chrome V126.0.0.0 (Windows)", "id": "NDg2MTA4NDIz", "name": "xxxxxx.user1 at gmail.com" } } 
---

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20240723/f6c9a986/attachment-0001.htm>