OLD | NEW |
1 <!DOCTYPE html> | 1 <!DOCTYPE html> |
2 <html> | 2 <html> |
3 <head> | 3 <head> |
4 <script src="../resources/js-test.js"></script> | 4 <script src="../resources/js-test.js"></script> |
5 <script src="resources/common.js"></script> | 5 <script src="resources/common.js"></script> |
6 </head> | 6 </head> |
7 <body> | 7 <body> |
8 <p id="description"></p> | 8 <p id="description"></p> |
9 <div id="console"></div> | 9 <div id="console"></div> |
10 | 10 |
11 <script> | 11 <script> |
12 description("Call encrypt using the wrong AES key"); | 12 description("Tests that an unextractable key cannot be wrapped."); |
13 | 13 |
14 jsTestIsAsync = true; | 14 jsTestIsAsync = true; |
15 | 15 |
16 var keyData = hexStringToUint8Array("2b7e151628aed2a6abf7158809cf4f3c"); | 16 function importWrappingKey() |
17 var data = asciiToUint8Array("hello"); | 17 { |
18 var aesCbcKey = null; | 18 var data = new Uint8Array(16); |
| 19 var extractable = true; |
| 20 var keyUsages = ['wrapKey']; |
19 | 21 |
20 Promise.resolve(null).then(function(result) { | 22 return crypto.subtle.importKey('raw', data, {name: 'AES-CBC'}, extractable,
keyUsages); |
21 var usages = ['encrypt', 'decrypt']; | 23 } |
| 24 |
| 25 function importUnextractableKeyToWrap() |
| 26 { |
| 27 var data = new Uint8Array(16); |
22 var extractable = false; | 28 var extractable = false; |
23 var algorithm = {name: 'aes-gcm'}; | 29 var keyUsages = ['sign']; |
24 | 30 |
25 return crypto.subtle.importKey('raw', keyData, algorithm, extractable, usage
s); | 31 return crypto.subtle.importKey('raw', data, {name: 'HMAC', hash: {name: 'SHA
-1'}}, extractable, keyUsages); |
| 32 } |
| 33 |
| 34 importWrappingKey().then(function(result) { |
| 35 wrappingKey = result; |
| 36 return importUnextractableKeyToWrap(); |
26 }).then(function(result) { | 37 }).then(function(result) { |
27 key = result; | 38 key = result; |
28 shouldEvaluateAs("key.algorithm.name", "AES-GCM"); | |
29 | 39 |
30 // Can't use an AES-KW key for AES-CBC (even though both are AES keys). | 40 shouldEvaluateAs("key.extractable", false); |
31 return crypto.subtle.encrypt({name: 'AES-CBC', iv: new Uint8Array(16)}, key,
data); | 41 |
| 42 wrapAlgorithm = {name: 'aes-cbc', iv: new Uint8Array(16)}; |
| 43 return crypto.subtle.wrapKey('raw', key, wrappingKey, wrapAlgorithm); |
32 }).then(failAndFinishJSTest, function(result) { | 44 }).then(failAndFinishJSTest, function(result) { |
33 error = result; | 45 error = result; |
34 shouldBeNull("error"); | 46 shouldBeNull("error"); |
35 }).then(finishJSTest, failAndFinishJSTest); | 47 }).then(finishJSTest, failAndFinishJSTest); |
36 | 48 |
37 </script> | 49 </script> |
38 | 50 |
39 </body> | 51 </body> |
40 </html> | 52 </html> |
OLD | NEW |