Integrate the FIDO U2F JS API with the u2f-hid-rs library

NEW
Unassigned

Status

()

Core
DOM: Device Interfaces
P3
enhancement
2 years ago
4 days ago

People

(Reporter: jcj, Unassigned)

Tracking

(Depends on: 1 bug, Blocks: 2 bugs)

Firefox Tracking Flags

(Not tracked)

Details

(Whiteboard: [webauthn])

(Reporter)

Description

2 years ago
The FIDO U2F Token interactions require middleware between the FIDO U2F JS API (Bug 1231681) and the USB HID driver (Bug 1198330). As of the time this is being written, the expectation is for this to be implemented in the dom/u2f/USBToken.cpp file from the U2F JS API bug.

The state machines written to control this interaction must be carefully designed to protect user privacy, so that the U2F JS API does not become a mechanism for javascript fingerprinting.
(Reporter)

Updated

2 years ago
Depends on: 1198330, 1231681
(Reporter)

Updated

2 years ago
Blocks: 1065729
Component: DOM: Security → DOM: Device Interfaces
(Reporter)

Updated

a year ago
Depends on: 1298838
(Reporter)

Updated

9 months ago
Whiteboard: [webauthn]
Depends on: 1375450
Depends on: 1375512
Depends on: 1375744
Depends on: 1375828
Depends on: 1375847
Depends on: 1378762
(Reporter)

Updated

2 months ago
Blocks: 1294514
Depends on: 1379580
Depends on: 1380954
Depends on: 1385274
Depends on: 1385313
Depends on: 1388853
(Reporter)

Comment 1

12 days ago
Note to those following along: This would be to change dom/u2f/U2F.cpp to roughly function the same as dom/webauthn/U2FTokenManager.cpp [1], instead of synchronously calling mAuthenticator->Sign(), using a TokenManager and calling mTokenManagerImpl->Sign with MozPromises.

That should be what's necessary to enable FIDO U2F hardware support in Gecko and go a long way to closing out Bug 
1065729.

[1] http://searchfox.org/mozilla-central/source/dom/webauthn/U2FTokenManager.cpp
(Reporter)

Updated

12 days ago
Severity: normal → enhancement
Priority: -- → P3
Summary: Implement FIDO U2F Token State Machine → Integrate the FIDO U2F JS API with the u2f-hid-rs library
(Reporter)

Updated

4 days ago
Duplicate of this bug: 1354330
You need to log in before you can comment on or make changes to this bug.