CTAP2-test-tool icon indicating copy to clipboard operation
CTAP2-test-tool copied to clipboard

Published 20 hours ago verified publisher icon google

Test item MakeCredentialCredParamsTest

Open nuno0529 opened this issue 4 years ago • 10 comments

test item: MakeCredentialCredParamsTest { "description": "Tests entries in the credential parameters list.", "error_message": "Falsely rejected cred params list with 1 good and 1 bad element.", "id": "make_credential_cred_params", "observations": [ "A prompt was expected, but not performed. Sometimes it is just not recognized if performed too fast.", "The failing error code is CTAP2_ERR_UNSUPPORTED_ALGORITHM." ], "result": "fail", "tags": [] },

Webauthn specs says below in https://www.w3.org/TR/webauthn-2/#dom-publickeycredentialdescriptor-type

client platforms MUST ignore any PublicKeyCredentialDescriptor with an unknown type.

ctap2 spec has description for pubKeyCredParams(0x04) of authenticatorMakeCredential's command

PublicKeyCredentialParameters' algorithm identifiers are values that SHOULD be registered in the IANA COSE Algorithms registry

So authenticator should not accept type="non-existing type" with the alg value of COSE.

nuno0529 avatar Nov 18 '20 13:11 nuno0529