Passkeys: Create AAGUID for KeePassXC

2025-05-02 14:46:07 -04:00 · 2023-12-09 10:11:22 +02:00 · 2023-12-09 10:11:22 +02:00 · 6820400b11
commit 6820400b11
parent e28f5187bc
3 changed files with 8 additions and 4 deletions
--- a/src/browser/BrowserPasskeys.cpp
+++ b/src/browser/BrowserPasskeys.cpp
@ -37,6 +37,9 @@

 Q_GLOBAL_STATIC(BrowserPasskeys, s_browserPasskeys);

+// KeePassXC AAGUID: fdb141b2-5d84-443e-8a35-4698c205a502
+const QString BrowserPasskeys::AAGUID = QStringLiteral("fdb141b25d84443e8a354698c205a502");
+
 const QString BrowserPasskeys::PUBLIC_KEY = QStringLiteral("public-key");
 const QString BrowserPasskeys::REQUIREMENT_DISCOURAGED = QStringLiteral("discouraged");
 const QString BrowserPasskeys::REQUIREMENT_PREFERRED = QStringLiteral("preferred");
@ -181,8 +184,8 @@ PrivateKey BrowserPasskeys::buildAttestationObject(const QJsonObject& publicKey,
    const char counter[4] = {0x00, 0x00, 0x00, 0x00};
    result.append(QByteArray::fromRawData(counter, 4));

-    // AAGUID (use the default/non-set)
-    result.append("\x01\x02\x03\x04\x05\x06\x07\b\x01\x02\x03\x04\x05\x06\x07\b");
+    // AAGUID
+    result.append(browserMessageBuilder()->getArrayFromHexString(AAGUID));

    // Credential length
    const char credentialLength[2] = {0x00, 0x20};
--- a/src/browser/BrowserPasskeys.h
+++ b/src/browser/BrowserPasskeys.h
@ -94,6 +94,7 @@ public:
    int getTimeout(const QString& userVerification, int timeout) const;
    QStringList getAllowedCredentialsFromPublicKey(const QJsonObject& publicKey) const;

+    static const QString AAGUID;
    static const QString PUBLIC_KEY;
    static const QString REQUIREMENT_DISCOURAGED;
    static const QString REQUIREMENT_PREFERRED;