How to use in combination with passkeys

[icidasset]

Now that the PRF extension is available in most of the browsers, I wanna take another attempt at using it as a recovery/login method. I might have forgotten a lot of the discussion around this, but there doesn't seem to be a straightforward way to do this at the moment with rs-wnfs? These are the various integrations I could come up with, but I'm not sure they would work as expected (or at all):

1. Derive AES key from key material from PRF extension w/ HKDF. Then import those bytes as a TemporalKey and pass it to PrivateDirectory::from_serializable to create a root private directory. NOTE: from_serializable is not exposed through wnfs-wasm.
2. [HACK] Derive AES key as above, but use it to encrypt the temporal key of an existing root private directory. Encrypted key must be stored publicly?
3. Store existing root temporal key using largeblob extension (used to work on Chrome, but not anymore?)
4. Derive X25519 key from ed25519 passkey. Share private directory with self using that key. NOTE: Currently not implemented nor spec'd, current implementation uses RSA-OAEP, not X25519.