Error: tpm attestation: only TPM_ALG_RSA supported

webauthn-open-source / fido2-lib

A node.js library for performing FIDO 2.0 / WebAuthn server functionality

https://webauthn.io

MIT License

394 stars 118 forks source link

Error: tpm attestation: only TPM_ALG_RSA supported #119

Open craigbilner opened 1 year ago

craigbilner commented 1 year ago

Hi,

I'm using Windows Hello, if I use -7 (ECDSA w/ SHA-256) as the first crypto param which Chrome suggests should always be there, I get the above error from parsePubArea. However if I use [-257, -7] then Chrome is happy and Fido is happy, however I don't know the impact of this?

tmikaeld commented 1 year ago

Shouldn't make any difference other than MS working.

-7 is "ES256" and -257 is "RS256".

Seems like a bug on Windows part.