Bug 183881

Summary:

[WebAuthN] Implement authenticatorGetAssertion

Product:

WebKit

Reporter:

Jiewen Tan <jiewen_tan>

Component:

WebCore Misc.

Assignee:

Jiewen Tan <jiewen_tan>

Status:

RESOLVED FIXED

Severity:

Normal

CC:

bfulgham, commit-queue, dbates, ews-watchlist, jiewen_tan, webkit-bug-importer

Priority:

Keywords:

InRadar

Version:

WebKit Nightly Build

Hardware:

Unspecified

OS:

Unspecified

Bug Depends on:

Bug Blocks:

181943

Attachments:

Description	Flags
Patch	bfulgham: review+, bfulgham: commit-queue-
Patch for landing	none
Patch for landing	none

Jiewen Tan

Reported 2018-03-21 17:05:15 PDT

Implement authenticatorGetAssertion according to https://www.w3.org/TR/webauthn/#op-get-assertion as of 5 December 2017.

Attachments
Patch (56.35 KB, patch) 2018-03-21 18:03 PDT, Jiewen Tan	bfulgham: review+ bfulgham: commit-queue-	Details Formatted Diff Diff
Patch for landing (60.08 KB, patch) 2018-03-27 13:11 PDT, Jiewen Tan	no flags	Details Formatted Diff Diff
Patch for landing (59.99 KB, patch) 2018-03-27 13:25 PDT, Jiewen Tan	no flags	Details Formatted Diff Diff
Show Obsolete (1) View All Add attachment proposed patch, testcase, etc.

Jiewen Tan

Comment 1 2018-03-21 17:05:56 PDT

<rdar://problem/37258628>

Jiewen Tan

Comment 2 2018-03-21 18:03:38 PDT

Created attachment 336250 [details] Patch

EWS Watchlist

Comment 3 2018-03-21 18:06:06 PDT

Attachment 336250 [details] did not pass style-queue: ERROR: Tools/TestWebKitAPI/Tests/ios/LocalAuthenticator.mm:188: Missing spaces around : [whitespace/init] [4] ERROR: Tools/TestWebKitAPI/Tests/ios/LocalAuthenticator.mm:205: Missing spaces around : [whitespace/init] [4] ERROR: Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:157: Extra space before ( in function call [whitespace/parens] [4] ERROR: Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:430: Extra space before ( in function call [whitespace/parens] [4] Total errors found: 4 in 14 files If any of these errors are false positives, please file a bug against check-webkit-style.

Brent Fulgham

Comment 4 2018-03-26 22:13:50 PDT

Comment on attachment 336250 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=336250&action=review Looks like good progress. r=me, but please fix the minor nits (aside from the OptionSet suggestion). > Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:53 > +const uint8_t makeCredentialFlags = 69; // UP, UV and AT are set. Oh, I see -- this is a bitmap: 0d69 == 0b01000101 We often use hex for bitmaps, just to help signal that we aren't dealing with a magic number -- it's a bit pattern. Alternatively, you could use a OptionSet<> and state which bits are on using an enum, which would be much clearer to read. But no need to do so in this patch. > Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:89 > + } counterUnion; I assume this will eventually by defined in a header somewhere for use elsewhere? I'm not keen on having a bunch of local struct definitions in the code. > Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:139 > + if (!excludeCredentialIds.isEmpty()) { I think this should be an early return, unless there are future steps that might need to happen even if there are no excludeCredentialIds. > Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:148 > + CFTypeRef attributesArrayRef = NULL; nullptr? > Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:152 > + exceptionCallback({ UnknownError, ASCIILiteral("Unknown internal error.") }); This might need a bit more detail when we start trying to debug failed Keychain access. :-) > Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:159 > + if (excludeCredentialIds.contains(String(reinterpret_cast<const char*>(nsCredentialId.bytes), nsCredentialId.length))) { Could we have cases where the application label is not ASCII characters? I guess String is smart enough to recognize utf8 encodings and do the right thing. > Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:401 > + allowCredentialIds.add(String(reinterpret_cast<const char*>(allowCredential.idVector.data()), allowCredential.idVector.size())); This is the second time we've seen this code. I feel like we need a String specialization that can take an NSData and convert to string. > Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:416 > + CFTypeRef attributesArrayRef = NULL; nullptr > Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:420 > + exceptionCallback({ UnknownError, ASCIILiteral("Unknown internal error.") }); I feel like we could do a better job of error reporting here. > Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:432 > + if (allowCredentialIds.contains(String(reinterpret_cast<const char*>(nsCredentialId.bytes), nsCredentialId.length))) More NSData -> String! > Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:459 > + NSData * nsCredentialId = selectedCredentialAttributes[(id)kSecAttrApplicationLabel]; Extra space before nsCredentialId. > Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:462 > + NSData * nsUserhandle = selectedCredentialAttributes[(id)kSecAttrApplicationTag]; Ditto whitespace. > Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:488 > + CFTypeRef privateKeyRef = NULL; nullptr. > Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:500 > + CFErrorRef errorRef = NULL; nullptr.

Jiewen Tan

Comment 5 2018-03-27 13:04:56 PDT

Comment on attachment 336250 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=336250&action=review Thanks Brent for r+ my patch. >> Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:53 >> +const uint8_t makeCredentialFlags = 69; // UP, UV and AT are set. > > Oh, I see -- this is a bitmap: 0d69 == 0b01000101 > > We often use hex for bitmaps, just to help signal that we aren't dealing with a magic number -- it's a bit pattern. > > Alternatively, you could use a OptionSet<> and state which bits are on using an enum, which would be much clearer to read. But no need to do so in this patch. Got it. Fixed. >> Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:89 >> + } counterUnion; > > I assume this will eventually by defined in a header somewhere for use elsewhere? I'm not keen on having a bunch of local struct definitions in the code. Sure, I should move all constants to another header. Updated Bug 183534 to reflect this. Ideally, counter should be encoded as big endian. Since we couldn't remember counter at this moment, it is 0 all the time. It makes little and big endian no differences. >> Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:139 >> + if (!excludeCredentialIds.isEmpty()) { > > I think this should be an early return, unless there are future steps that might need to happen even if there are no excludeCredentialIds. Actually, this branch is an early return. See L160. >> Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:148 >> + CFTypeRef attributesArrayRef = NULL; > > nullptr? In conventional CFTypeRef initialization, it uses NULL following the C style. In WebKit though, occurrence of nullptr outweighs NULL for CFTypeRef initialization. Changed all initialization to use nullptr. >> Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:152 >> + exceptionCallback({ UnknownError, ASCIILiteral("Unknown internal error.") }); > > This might need a bit more detail when we start trying to debug failed Keychain access. :-) It is intentional to not report too detailed error back to Web but keep it in local logs. Maybe I am too cautious? >> Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:159 >> + if (excludeCredentialIds.contains(String(reinterpret_cast<const char*>(nsCredentialId.bytes), nsCredentialId.length))) { > > Could we have cases where the application label is not ASCII characters? I guess String is smart enough to recognize utf8 encodings and do the right thing. The way I do this is just to use the hash function of String. So I treat the whole application label as an ASCII string. It doesn't matter what encoding application label is encoded. I should detail this in the ChangeLog as well. Fixed. >> Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:401 >> + allowCredentialIds.add(String(reinterpret_cast<const char*>(allowCredential.idVector.data()), allowCredential.idVector.size())); > > This is the second time we've seen this code. I feel like we need a String specialization that can take an NSData and convert to string. Well, the algorithm the LocalAuthenticator::getAssertion and LocalAuthenticator::makeCredential find intersection are the same. However, the ways they use the algorithm is such different that it is hard, at least for me, to unify them into a helper function. I unified the way how hashset is produced. >> Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:416 >> + CFTypeRef attributesArrayRef = NULL; > > nullptr Fixed. >> Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:420 >> + exceptionCallback({ UnknownError, ASCIILiteral("Unknown internal error.") }); > > I feel like we could do a better job of error reporting here. See above. >> Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:432 >> + if (allowCredentialIds.contains(String(reinterpret_cast<const char*>(nsCredentialId.bytes), nsCredentialId.length))) > > More NSData -> String! This is probably too subtle to optimize. >> Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:459 >> + NSData * nsCredentialId = selectedCredentialAttributes[(id)kSecAttrApplicationLabel]; > > Extra space before nsCredentialId. Fixed. >> Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:462 >> + NSData * nsUserhandle = selectedCredentialAttributes[(id)kSecAttrApplicationTag]; > > Ditto whitespace. Fixed. >> Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:488 >> + CFTypeRef privateKeyRef = NULL; > > nullptr. Fixed. >> Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:500 >> + CFErrorRef errorRef = NULL; > > nullptr. Fixed.

Jiewen Tan

Comment 6 2018-03-27 13:11:10 PDT

Created attachment 336614 [details] Patch for landing

EWS Watchlist

Comment 7 2018-03-27 13:12:34 PDT Comment hidden (obsolete)

Attachment 336614 [details] did not pass style-queue: ERROR: Tools/TestWebKitAPI/Tests/ios/LocalAuthenticator.mm:188: Missing spaces around : [whitespace/init] [4] ERROR: Tools/TestWebKitAPI/Tests/ios/LocalAuthenticator.mm:205: Missing spaces around : [whitespace/init] [4] ERROR: Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:161: Extra space before ( in function call [whitespace/parens] [4] ERROR: Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:430: Extra space before ( in function call [whitespace/parens] [4] Total errors found: 4 in 14 files If any of these errors are false positives, please file a bug against check-webkit-style.

Jiewen Tan

Comment 8 2018-03-27 13:25:59 PDT

Created attachment 336615 [details] Patch for landing

EWS Watchlist

Comment 9 2018-03-27 13:27:44 PDT

Attachment 336615 [details] did not pass style-queue: ERROR: Tools/TestWebKitAPI/Tests/ios/LocalAuthenticator.mm:188: Missing spaces around : [whitespace/init] [4] ERROR: Tools/TestWebKitAPI/Tests/ios/LocalAuthenticator.mm:205: Missing spaces around : [whitespace/init] [4] ERROR: Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:160: Extra space before ( in function call [whitespace/parens] [4] ERROR: Source/WebCore/Modules/webauthn/cocoa/LocalAuthenticator.mm:427: Extra space before ( in function call [whitespace/parens] [4] Total errors found: 4 in 14 files If any of these errors are false positives, please file a bug against check-webkit-style.

WebKit Commit Bot

Comment 10 2018-03-27 15:42:50 PDT

Comment on attachment 336615 [details] Patch for landing Clearing flags on attachment: 336615 Committed r230012: <https://trac.webkit.org/changeset/230012>

Note You need to log in before you can comment on or make changes to this bug.