According to https://www.w3.org/TR/webauthn/#createCredential, InvalidStateErrors should be reported to sites. It is the only type of error which will not result into silent failures.
<rdar://problem/48298264>
Created attachment 369585 [details] Patch
Comment on attachment 369585 [details] Patch r=me
(In reply to Brent Fulgham from comment #3) > Comment on attachment 369585 [details] > Patch > > r=me Thanks Brent for r+ this patch.
Comment on attachment 369585 [details] Patch Clearing flags on attachment: 369585 Committed r245262: <https://trac.webkit.org/changeset/245262>
All reviewed patches have been landed. Closing bug.