feat(core): Don't store blank names in FIDO2 credentials.

core/src/apps/webauthn/credential.py

@@ -240,16 +240,16 @@ class Fido2Credential(Credential):
         return cred
 
     def truncate_names(self) -> None:
-        if self.rp_name:
+        for name in ("rp_name", "user_name", "user_display_name"):
-            self.rp_name = utils.truncate_utf8(self.rp_name, _NAME_MAX_LENGTH)
+            value = getattr(self, name)
-
+            if value:
-        if self.user_name:
+                if value.isspace():
-            self.user_name = utils.truncate_utf8(self.user_name, _NAME_MAX_LENGTH)
+                    # Don't store blank names.
-
+                    value = None
-        if self.user_display_name:
+                else:
-            self.user_display_name = utils.truncate_utf8(
+                    # If the name is stored then the WebAuthn spec allows truncation.
-                self.user_display_name, _NAME_MAX_LENGTH
+                    value = utils.truncate_utf8(value, _NAME_MAX_LENGTH)
-            )
+                setattr(self, name, value)
 
     def check_required_fields(self) -> bool:
         return (