[webauthn] Pull Request: Fix type of AuthenticatorAttestationResponseJSON.publicKeyAlgorithm from Emil Lundberg via GitHub on 2024-05-15 (public-webauthn@w3.org from May 2024)

From: Emil Lundberg via GitHub <sysbot+gh@w3.org>
Date: Wed, 15 May 2024 20:25:50 +0000
To: public-webauthn@w3.org
Message-ID: <pull_request.opened-1871995725-1715804747-sysbot+gh@w3.org>

emlun has just submitted a new pull request for https://github.com/w3c/webauthn:

== Fix type of AuthenticatorAttestationResponseJSON.publicKeyAlgorithm ==
Fixes https://github.com/w3c/webauthn/issues/2065.

`AuthenticatorAttestationResponseJSON` was added in the L3 drafts, so we can easily change
`AuthenticatorAttestationResponseJSON.publicKeyAlgorithm` to type `long` (or `COSEAlgorithmIdentifier`) since L3 isn't formally released yet. `AuthenticatorAttestationResponseJSON.publicKeyAlgorithm` is also in output (covariant) position, so changing its type to be more restrictive is even backwards compatible.

I misspoke on the 2024-05-15 call: I said the range of [CBOR integers](https://datatracker.ietf.org/doc/html/rfc7049#section-2.1) is any value whose size in bits can be represented by uint64_t. This was incorrect - uint64_t (2^64-1) is the max value range, not a value size range.

See https://github.com/w3c/webauthn/pull/2071


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Wednesday, 15 May 2024 20:25:51 UTC