When converting code to remove uses of String::format, I noticed this misuse: m_connection->getUserConsent( String::format("Log into %s with %s.", requestData().requestOptions.rpId.utf8().data(), selectedCredentialAttributes[(id)kSecAttrApplicationTag]), (__bridge SecAccessControlRef)selectedCredentialAttributes[(id)kSecAttrAccessControl], WTFMove(callback)); selectedCredentialAttributes[(id)kSecAttrApplicationTag] returns an NSData *, which can't be usefully formatted with %s.
<rdar://problem/47787251>
I fixed this in r242014 <https://trac.webkit.org/changeset/242014> but it’s untested.
(In reply to Darin Adler from comment #2) > I fixed this in r242014 <https://trac.webkit.org/changeset/242014> but it’s > untested. Thanks, Darin. I will test it before closing the bug.
Verified fix by: Committed r248308: <https://trac.webkit.org/changeset/248308>