Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

🐛 WebAuthn Authentication Fails After Device Removal on pico-fido #110

Open
afterow opened this issue Feb 13, 2025 · 8 comments
Open

🐛 WebAuthn Authentication Fails After Device Removal on pico-fido #110

afterow opened this issue Feb 13, 2025 · 8 comments

Comments

@afterow
Copy link

afterow commented Feb 13, 2025

Description

After flashing pico-fido, the first WebAuthn authentication succeeds, but authentication fails after removing the device. Testing revealed that re-setting the PIN using Windows Hello miraculously restored WebAuthn authentication to normal.

Environment

  • Operating System: Windows 11
  • Firmware Version: esp32-s3_6.2
  • Browser: Chrome 133.0.6943.60
  • Chip Model: ESP32-S3 (QFN56)

Steps to Reproduce

  1. Flash pico-fido
  2. Bind the security key
  3. Remove the device
  4. WebAuthn authentication

Expected Behavior

Successful WebAuthn authentication.

Actual Behavior

Login fails.

Error Screenshot
@polhenarejos
Copy link
Owner

Can you flash the nightly development build?

@afterow
Copy link
Author

afterow commented Feb 13, 2025

I also flashed the nightly development build version, but the effect is the same.

@afterow
Copy link
Author

afterow commented Feb 13, 2025

#91 I think my situation is the same as his

I believe this commit is the cause: commit 6a67800.

@polhenarejos
Copy link
Owner

But it is solved in the last development commit. Did you enrolled again the key after the development flash?

@afterow
Copy link
Author

afterow commented Feb 13, 2025

But it is solved in the last development commit. Did you enrolled again the key after the development flash?

Could you release a 6.2rc version? Your regular release versions do not have firmware for ESP32. I have tested nightly builds and other versions, but they do not work.

@polhenarejos
Copy link
Owner

It’d the same as nightly builds.

This the last https://github.com/polhenarejos/pico-fido/releases/download/nightly-development/pico_fido_esp32-s3.bin

Be sure you register again the key in Windows hello. It will not work with the previous one.

@afterow
Copy link
Author

afterow commented Feb 13, 2025
edited
Loading

I flashed the version you sent and it's still the same after unplugging it

Wait, I found something new. After entering the pin, you can log in normally.

Image

@polhenarejos
Copy link
Owner

I don't understand clearly the problem. Are you trying to register and login to Github or Windows?
Your key is PIN protected. So, it is normal that if you don't introduce the PIN it will not work. From the GIF you upload, I don't see Github asking you for a PIN.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@polhenarejos @afterow