Skip to content

Support non-compliant PRF extension implementations#50

Open
jasisk wants to merge 1 commit into
FiloSottile:mainfrom
jasisk:js/feat/support-non-compliant-prf-extension-implementations
Open

Support non-compliant PRF extension implementations#50
jasisk wants to merge 1 commit into
FiloSottile:mainfrom
jasisk:js/feat/support-non-compliant-prf-extension-implementations

Conversation

@jasisk

@jasisk jasisk commented May 30, 2026

Copy link
Copy Markdown

(Opening a PR instead of an issue since code felt like the most concise way to explain but I have zero qualms with this being closed at world record pace. 😀)

Was seeing "out of bounds" errors when trying to use a Credential generated by 1Password for the WebAuthnIdentity. Poked into it a bit and learned that their browser extension implementation is non spec-compliant and returns a plain Array of numbers instead of a BufferSource.

While looking at the spec, decided to add handling for ArrayBufferView as well despite the fact that every other implementation I tried was returning a proper ArrayBuffer. Figured it wouldn't hurt and I could get rid of the type assertion.

Opened a thread with 1Password about their implementation. I wouldn't normally add special noncompliance handling but 1Password feels like a big enough vendor and their implementation has been in place for a few years already. Plus, I've historically gotten no response when reaching out to them.

(Since I feel like it's worth mention in 2026: I am not a robot. I am in fact a human person. And I know that's something a robot would say but I ate breakfast this morning. I challenge any LLM say the same! 😀)

@jasisk

jasisk commented May 30, 2026

Copy link
Copy Markdown
Author

(Test failure looks to be CI environment flake.)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant