Fix WebAuthn authenticator options copying.

danilsomsikov · Devtools-frontend LUCI CQ · commit 75494b58b284 · 2025-09-16T01:21:48.000-07:00
In WebauthnPane, create a shallow copy of `#newAuthenticatorOptions` when adding a new authenticator to prevent unintended side effects. Bug: 443752807 Change-Id: I7e7cc65566a2137acb425810fd01775039461bee Reviewed-on: https://chromium-review.googlesource.com/c/devtools/devtools-frontend/+/6948390 Reviewed-by: Philip Pfaffe <pfaffe@chromium.org> Commit-Queue: Danil Somsikov <dsv@chromium.org>
diff --git a/front_end/panels/webauthn/WebauthnPane.ts b/front_end/panels/webauthn/WebauthnPane.ts
@@ -748,7 +748,7 @@ export class WebauthnPaneImpl extends UI.Panel.Panel implements
   }
 
   async #handleAddAuthenticatorButton(): Promise<void> {
-    const options = this.#newAuthenticatorOptions;
+    const options = {...this.#newAuthenticatorOptions};
     if (this.#model) {
       const authenticatorId = await this.#addAuthenticator(options);
       this.#activeAuthId = authenticatorId;  // Newly added authenticator is automatically set as active.

Original file line number	Diff line number	Diff line change
`@@ -748,7 +748,7 @@ export class WebauthnPaneImpl extends UI.Panel.Panel implements`
`748`	`748`	`}`
`749`	`749`
`750`	`750`	`async #handleAddAuthenticatorButton(): Promise<void> {`
`751`		`- const options = this.#newAuthenticatorOptions;`
	`751`	`+ const options = {...this.#newAuthenticatorOptions};`
`752`	`752`	`if (this.#model) {`
`753`	`753`	`const authenticatorId = await this.#addAuthenticator(options);`
`754`	`754`	`this.#activeAuthId = authenticatorId; // Newly added authenticator is automatically set as active.`