| Summary: | [WebAuthn] Add credentialID to _WKWebAuthenticationAssertionResponse and userHandle in getAllLocalAuthenticatorCredentials | ||||||
|---|---|---|---|---|---|---|---|
| Product: | WebKit | Reporter: | pascoe <pascoe> | ||||
| Component: | WebKit Misc. | Assignee: | pascoe <pascoe> | ||||
| Status: | RESOLVED FIXED | ||||||
| Severity: | Normal | CC: | bfulgham, webkit-bug-importer | ||||
| Priority: | P2 | Keywords: | InRadar | ||||
| Version: | WebKit Nightly Build | ||||||
| Hardware: | Unspecified | ||||||
| OS: | Unspecified | ||||||
| Attachments: |
|
||||||
|
Description
pascoe@apple.com
2022-02-15 11:53:10 PST
Created attachment 452103 [details]
Patch
Comment on attachment 452103 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=452103&action=review r=me > Source/WebKit/UIProcess/API/Cocoa/_WKWebAuthenticationAssertionResponse.mm:73 > + return wrapper(_response->credentialID()); Is it possible for _response to be nullptr? Comment on attachment 452103 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=452103&action=review >> Source/WebKit/UIProcess/API/Cocoa/_WKWebAuthenticationAssertionResponse.mm:73 >> + return wrapper(_response->credentialID()); > > Is it possible for _response to be nullptr? Update: No, it's always dereferenced without checking. Comment on attachment 452103 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=452103&action=review >> Source/WebKit/UIProcess/API/Cocoa/_WKWebAuthenticationAssertionResponse.mm:73 >> + return wrapper(_response->credentialID()); > > Is it possible for _response to be nullptr? I don't believe so, this is similar to userHandle. The only way we initialize _WKWebAuthenticationAssertionResponse is via APIWebAuthenticationAssertionResponse, which populates the _response. Committed r290154 (247493@main): <https://commits.webkit.org/247493@main> All reviewed patches have been landed. Closing bug and clearing flags on attachment 452103 [details]. |