Refactor to share more code between OpenSSL and NSS implementations.

content/renderer/webcrypto/platform_crypto.h

+// Copyright (c) 2014 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#ifndef CONTENT_RENDERER_WEBCRYPTO_PLATFORM_CRYPTO_H_
+#define CONTENT_RENDERER_WEBCRYPTO_PLATFORM_CRYPTO_H_
+
+#include "base/basictypes.h"
+#include "base/compiler_specific.h"
+#include "third_party/WebKit/public/platform/WebArrayBuffer.h"
+#include "third_party/WebKit/public/platform/WebCrypto.h"
+#include "third_party/WebKit/public/platform/WebCryptoAlgorithmParams.h"
+
+namespace content {
+
+namespace webcrypto {
+
+class CryptoData;
+class Status;
+
+namespace platform {
+
+class SymKey;
+class PublicKey;
+class PrivateKey;
+
+// Do any one-time initialization. Note that this can be called MULTIPLE times
+// (once per instantiation of WebCryptoImpl).
+void Init();

[Ryan Sleevi, 2014/02/07 21:26:40]

Why does this need to be the caller's responsibility?

Can't you just do all of this internal to your methods, in the same way that the
Ensure* Init methods work?

[eroman, 2014/02/08 02:23:51]

There are a ton of places this would need to be added. I don't have confidence
that would be maintained correct. Easier (and more efficient) to just do it once
during setup.

+
+// Safely converts a WebCryptoKey to more specifc key type. If the conversion
+// failed, returns NULL.
+// The handle pointer is controlled by the implementor of PlatformCrypto.
+SymKey* ToSymKey(const blink::WebCryptoKey& key);
+PublicKey* ToPublicKey(const blink::WebCryptoKey& key);
+PrivateKey* ToPrivateKey(const blink::WebCryptoKey& key);
+
+// Guarantees:
+//   * algorithm.id() is for an RSA algorithm.
+//   * algorithm.rsaKeyGenParams() is non-null.
+Status GenerateRsaKeyPair(const blink::WebCryptoAlgorithm& algorithm,
+                          bool extractable,
+                          blink::WebCryptoKeyUsageMask usage_mask,
+                          blink::WebCryptoKey* public_key,
+                          blink::WebCryptoKey* private_key);
+
+Status ImportRsaPublicKey(const CryptoData& modulus_data,
+                          const CryptoData& exponent_data,
+                          const blink::WebCryptoAlgorithm& algorithm,
+                          bool extractable,
+                          blink::WebCryptoKeyUsageMask usage_mask,
+                          blink::WebCryptoKey* key);
+
+// |keylen_bytes| is the desired length of the key in bits.
+//
+// Guarantees:
+//  * algorithm.id() is for a symmetric key algorithm.
+//  * keylen_bytes is non-zero (TODO(eroman): revisit this).
+//  * If the algorithm is AES-CBC, the key length is either 128 bits, 192
+//    bits, 256 bits.
+Status GenerateSecretKey(const blink::WebCryptoAlgorithm& algorithm,
+                         bool extractable,
+                         blink::WebCryptoKeyUsageMask usage_mask,
+                         unsigned keylen_bytes,
+                         blink::WebCryptoKey* key);
+
+// Guarantees:
+//  * |key| is a non-null AES-CBC key.
+//  * |iv| is exactly 16 bytes long
+Status EncryptAesCbc(SymKey* key,
+                     const CryptoData& iv,
+                     const CryptoData& data,
+                     blink::WebArrayBuffer* buffer);
+
+// Guarantees:
+//  * |key| is a non-null AES-CBC key.
+//  * |iv| is exactly 16 bytes long
+Status DecryptAesCbc(SymKey* key,
+                     const CryptoData& iv,
+                     const CryptoData& data,
+                     blink::WebArrayBuffer* buffer);
+
+// Guarantees:
+//  * |key| is a non-null AES-GCM key.
+//  * |params| is non-null
+Status EncryptAesGcm(SymKey* key,
+                     const blink::WebCryptoAesGcmParams* params,
+                     const CryptoData& data,
+                     blink::WebArrayBuffer* buffer);
+
+// Guarantees:
+//  * |key| is a non-null AES-GCM key.
+//  * |params| is non-null
+Status DecryptAesGcm(SymKey* key,
+                     const blink::WebCryptoAesGcmParams* params,
+                     const CryptoData& data,
+                     blink::WebArrayBuffer* buffer);
+
+// Guarantees:
+//  * |key| is non-null.
+Status EncryptRsaEsPkcs1v1_5(PublicKey* key,
+                             const CryptoData& data,
+                             blink::WebArrayBuffer* buffer);
+
+// Guarantees:
+//  * |key| is non-null.
+Status DecryptRsaEsPkcs1v1_5(PrivateKey* key,
+                             const CryptoData& data,
+                             blink::WebArrayBuffer* buffer);
+
+// Guarantees:
+//  * |key| is a non-null HMAC key.
+//  * |hash| is a digest algorithm.
+Status SignHmac(SymKey* key,
+                const blink::WebCryptoAlgorithm& hash,
+                const CryptoData& data,
+                blink::WebArrayBuffer* buffer);
+
+// Guarantees:
+//  * |algorithm| is a Sha function.

[Ryan Sleevi, 2014/02/07 21:26:40]

s/Sha/SHA/ in the comment

That said, I don't understand why you've broken out "DigestSha" as a special
case, rather than Digest? What about non-SHA digest algorithms?

[eroman, 2014/02/08 02:23:51]

The purpose for this layer is to do the fanout which can then be implemented by
the nss/openssl versions. If non-sha digests are supported in the future they
can either have their own method (if they require other parameters), or can
rework this one to include them too.

+Status DigestSha(blink::WebCryptoAlgorithmId algorithm,
+                 const CryptoData& data,
+                 blink::WebArrayBuffer* buffer);
+
+// Guarantees:
+//  * |key| is non-null.
+//  * |hash| is a digest algorithm.
+Status SignRsaSsaPkcs1v1_5(PrivateKey* key,
+                           const blink::WebCryptoAlgorithm& hash,
+                           const CryptoData& data,
+                           blink::WebArrayBuffer* buffer);
+
+// Guarantees:
+//  * |key| is non-null.
+//  * |hash| is a digest algorithm.
+Status VerifyRsaSsaPkcs1v1_5(PublicKey* key,
+                             const blink::WebCryptoAlgorithm& hash,
+                             const CryptoData& signature,
+                             const CryptoData& data,
+                             bool* signature_match);
+
+// Guarantees:
+//  * |key| is non-null.
+//  * |algorithm.id()| is for a symmetric key algorithm.
+Status ImportKeyRaw(const CryptoData& key_data,
+                    const blink::WebCryptoAlgorithm& algorithm,
+                    bool extractable,
+                    blink::WebCryptoKeyUsageMask usage_mask,
+                    blink::WebCryptoKey* key);
+
+Status ImportKeySpki(const CryptoData& key_data,
+                     const blink::WebCryptoAlgorithm& algorithm_or_null,
+                     bool extractable,
+                     blink::WebCryptoKeyUsageMask usage_mask,
+                     blink::WebCryptoKey* key);
+
+Status ImportKeyPkcs8(const CryptoData& key_data,
+                      const blink::WebCryptoAlgorithm& algorithm_or_null,
+                      bool extractable,
+                      blink::WebCryptoKeyUsageMask usage_mask,
+                      blink::WebCryptoKey* key);
+
+// Guarantees:
+//  * |key| is non-null.
+Status ExportKeyRaw(SymKey* key, blink::WebArrayBuffer* buffer);
+
+// Guarantees:
+//  * |key| is non-null.
+Status ExportKeySpki(PublicKey* key, blink::WebArrayBuffer* buffer);
+
+}  // namespace platform
+}  // namespace webcrypto
+}  // namespace content
+
+#endif  // CONTENT_RENDERER_WEBCRYPTO_PLATFORM_CRYPTO_H_