[webcrypto] Implement structured clone of keys (blink-side).

public/platform/WebCrypto.h

 /*
  * Copyright (C) 2013 Google Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
  * modification, are permitted provided that the following conditions are
  * met:
  *
  *     * Redistributions of source code must retain the above copyright
  * notice, this list of conditions and the following disclaimer.
  *     * Redistributions in binary form must reproduce the above
@@ skipping 17 matching lines @@
  * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
  */
 
 #ifndef WebCrypto_h
 #define WebCrypto_h
 
 #include "WebCommon.h"
 #include "WebCryptoAlgorithm.h"
 #include "WebCryptoKey.h"
 #include "WebPrivatePtr.h"
+#include "WebVector.h"
 
 // FIXME: Remove this once chromium side is updated.
 #define WEBCRYPTO_HMAC_BITS 1
 
 namespace WebCore { class CryptoResult; }
 
 #if INSIDE_BLINK
 namespace WTF { template <typename T> class PassRefPtr; }
 #endif
 
@@ skipping 134 matching lines @@
     // It is possible that unwrappedKeyAlgorithm.isNull()
     virtual void unwrapKey(WebCryptoKeyFormat, const unsigned char* wrappedKey, unsigned wrappedKeySize, const WebCryptoKey&, const WebCryptoAlgorithm& unwrapAlgorithm, const WebCryptoAlgorithm& unwrappedKeyAlgorithm, bool extractable, WebCryptoKeyUsageMask, WebCryptoResult result) { result.completeWithError(); }
 
     // This is the one exception to the "Completing the request" guarantees
     // outlined above. digestSynchronous must provide the result into result
     // synchronously. It must return |true| on successful calculation of the
     // digest and |false| otherwise. This is useful for Blink internal crypto
     // and is not part of the WebCrypto standard.
     virtual bool digestSynchronous(const WebCryptoAlgorithmId algorithmId, const unsigned char* data, unsigned dataSize, WebArrayBuffer& result) { return false; }
 
+    // -----------------------
+    // Structured clone
+    // -----------------------
+    //
+    // deserializeKeyForClone() and serializeKeyForClone() are used for
+    // implementing structured cloning of WebCryptoKey.
+    //
+    // Blink is responsible for saving and restoring all of the attributes of
+    // WebCryptoKey EXCEPT for the actual key data:
+    //
+    // In other words, blink takes care of serializing:

[Ryan Sleevi, 2014/03/12 22:54:35]

s/blink/Blink/

+    //   * Key usages
+    //   * Key extractability
+    //   * Key algorithm
+    //   * Key type (public, private, secret)
+    //
+    // The embedder is responsible for saving the key data itself.
+    //
+    // For instance, an implementation might implement
+    // serializing/deserializing of the key data by reusing
+    // exportKey()/importKey() with an appropriate key format (raw, spki,
+    // pkcs8)
+    //
+    // Visibility of the serialized key data:
+    //
+    // The serialized key data will NOT be visible to web pages. So if the
+    // serialized format were to include key bytes as plain text, this wouldn't
+    // make it available to web pages. However, the serialized key data is
+    // visible to anyone with access to the user account (for instance by
+    // serializing to indexed DB). An implementation that wants to hide the

[Ryan Sleevi, 2014/03/12 22:54:35]

s/indexed DB/IndexedDB/

+    // key data could encrypt it.

[Ryan Sleevi, 2014/03/12 22:54:35]

I'd delete the remainder, starting with "However, the"

+    //
+    // Longevity of the key data:
+    //
+    // The serialized key data is intended to be long lived (years) and MUST
+    // be using a stable format. For instance a key might be persisted to
+    // indexed db and should be able to be deserialized correctly in the
+    // future.

[Ryan Sleevi, 2014/03/12 22:54:35]

s/indexed db/IndexedDB/

+    //
+    // Error handling and asynchronous completion:
+    //
+    // Serialization/deserialization must complete synchronously, and will
+    // block the javascript thread.

[Ryan Sleevi, 2014/03/12 22:54:35]

s/javascript/JavaScript/

+    //
+    // The only reasons for failing serialization/deserialization should be:
+    //   * Key serialization not yet implemented
+    //   * The bytes to deserialize were corrupted
+
+    // Creates a new key given key data which was written using
+    // serializeKeyForClone(). Returns true on success.
+    virtual bool deserializeKeyForClone(const WebCryptoKeyAlgorithm&, WebCryptoKeyType, bool extractable, WebCryptoKeyUsageMask, const unsigned char* keyData, unsigned keyDataSize, WebCryptoKey&)
+    {
+        return false;
+    }
+
+    // Writes the key data into the given WebVector.
+    // Returns true on success.
+    virtual bool serializeKeyForClone(const WebCryptoKey&, WebVector<unsigned char>&)
+    {
+        return false;
+    }
+
 protected:
     virtual ~WebCrypto() { }
 };
 
 } // namespace blink
 
 #endif