Fix crash when using Windows Hello in a Remote Desktop session

share/translations/keepassxc_en.ts

@@ -1494,10 +1494,6 @@ To prevent this error from appearing, you must go to "Database Settings / S
         <source>Retry with empty password</source>
         <translation type="unfinished"></translation>
     </message>
-    <message>
-        <source>Failed to authenticate with Windows Hello</source>
-        <translation type="unfinished"></translation>
-    </message>
     <message>
         <source>Failed to authenticate with Touch ID</source>
         <translation type="unfinished"></translation>
@@ -1555,6 +1551,10 @@ If you do not have a key file, please leave the field empty.</source>
         <source>authenticate to access the database</source>
         <translation type="unfinished"></translation>
     </message>
+    <message>
+        <source>Failed to authenticate with Windows Hello: %1</source>
+        <translation type="unfinished"></translation>
+    </message>
 </context>
 <context>
     <name>DatabaseSettingWidgetMetaData</name>

src/gui/DatabaseOpenWidget.cpp

@@ -339,7 +339,12 @@ QSharedPointer<CompositeKey> DatabaseOpenWidget::buildDatabaseKey()
 #ifdef Q_CC_MSVC
         if (!getWindowsHello()->getKey(m_filename, keyData)) {
             // Failed to retrieve Quick Unlock data
-            m_ui->messageWidget->showMessage(tr("Failed to authenticate with Windows Hello"), MessageWidget::Error);
+            auto error = getWindowsHello()->errorString();
+            if (!error.isEmpty()) {
+                m_ui->messageWidget->showMessage(tr("Failed to authenticate with Windows Hello: %1").arg(error),
+                                                 MessageWidget::Error);
+                resetQuickUnlock();
+            }
             return {};
         }
 #elif defined(Q_OS_MACOS)

src/winhello/WindowsHello.cpp

@@ -64,22 +64,24 @@ namespace
             array_view<uint8_t>(reinterpret_cast<uint8_t*>(challenge.data()), challenge.size()));
 
         return AsyncTask::runAndWaitForFuture([&] {
-            // The first time this is used a key-pair will be generated using the common name
-            auto result =
-                KeyCredentialManager::RequestCreateAsync(s_winHelloKeyName, KeyCredentialCreationOption::FailIfExists)
-                    .get();
-
-            if (result.Status() == KeyCredentialStatus::CredentialAlreadyExists) {
-                result = KeyCredentialManager::OpenAsync(s_winHelloKeyName).get();
-            } else if (result.Status() != KeyCredentialStatus::Success) {
-                error = QObject::tr("Failed to create Windows Hello credential.");
-                return false;
-            }
-
             try {
+                // The first time this is used a key-pair will be generated using the common name
+                auto result = KeyCredentialManager::RequestCreateAsync(s_winHelloKeyName,
+                                                                       KeyCredentialCreationOption::FailIfExists)
+                                  .get();
+
+                if (result.Status() == KeyCredentialStatus::CredentialAlreadyExists) {
+                    result = KeyCredentialManager::OpenAsync(s_winHelloKeyName).get();
+                } else if (result.Status() != KeyCredentialStatus::Success) {
+                    error = QObject::tr("Failed to create Windows Hello credential.");
+                    return false;
+                }
+
                 const auto signature = result.Credential().RequestSignAsync(challengeBuffer).get();
                 if (signature.Status() != KeyCredentialStatus::Success) {
-                    error = QObject::tr("Failed to sign challenge using Windows Hello.");
+                    if (signature.Status() != KeyCredentialStatus::UserCanceled) {
+                        error = QObject::tr("Failed to sign challenge using Windows Hello.");
+                    }
                     return false;
                 }