Re: [webauthn] Attestation validation issues

The [packed][packed] format has the same issue with unclear use of `x5c`.

If we feel it's worthwhile, we could also touch up the android-key and fido-u2f verification procedures. android-key uses a verbose "the first certificate in `x5c`" wording everywhere, and fido-u2f introduces a new `attCert` name instead of reusing the `attestnCert` name defined in the syntax definition. None of these _necessitate_ a change, though. Should I do that?


GitHub Notification of comment by emlun
Please view or discuss this issue at using your GitHub account

Received on Friday, 15 June 2018 16:54:03 UTC