| OLD | NEW |
|---|
| 1 // Copyright 2013 The Chromium Authors. All rights reserved. | 1 // Copyright 2013 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 #include "content/renderer/webcrypto/webcrypto_impl.h" | 5 #include "content/renderer/webcrypto/webcrypto_impl.h" |
| 6 | 6 |
| 7 #include <vector> | 7 #include <vector> |
| 8 #include <openssl/aes.h> | 8 #include <openssl/aes.h> |
| 9 #include <openssl/evp.h> | 9 #include <openssl/evp.h> |
| 10 #include <openssl/hmac.h> | 10 #include <openssl/hmac.h> |
| 11 #include <openssl/sha.h> | 11 #include <openssl/sha.h> |
| 12 #include <openssl/evp.h> | 12 #include <openssl/evp.h> |
| 13 #include <openssl/rand.h> | 13 #include <openssl/rand.h> |
| 14 | 14 |
| 15 #include "base/logging.h" | 15 #include "base/logging.h" |
| 16 #include "content/renderer/webcrypto/webcrypto_util.h" |
| 16 #include "crypto/openssl_util.h" | 17 #include "crypto/openssl_util.h" |
| 17 #include "crypto/secure_util.h" | 18 #include "crypto/secure_util.h" |
| 18 #include "third_party/WebKit/public/platform/WebArrayBuffer.h" | 19 #include "third_party/WebKit/public/platform/WebArrayBuffer.h" |
| 19 #include "third_party/WebKit/public/platform/WebCryptoAlgorithm.h" | 20 #include "third_party/WebKit/public/platform/WebCryptoAlgorithm.h" |
| 20 #include "third_party/WebKit/public/platform/WebCryptoAlgorithmParams.h" | 21 #include "third_party/WebKit/public/platform/WebCryptoAlgorithmParams.h" |
| 21 | 22 |
| 22 namespace content { | 23 namespace content { |
| 23 | 24 |
| 24 namespace { | 25 namespace { |
| 25 | 26 |
| (...skipping 118 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 144 int final_output_chunk_len = 0; | 145 int final_output_chunk_len = 0; |
| 145 if (!EVP_CipherFinal_ex( | 146 if (!EVP_CipherFinal_ex( |
| 146 context.get(), buffer_data + output_len, &final_output_chunk_len)) | 147 context.get(), buffer_data + output_len, &final_output_chunk_len)) |
| 147 return false; | 148 return false; |
| 148 | 149 |
| 149 const unsigned final_output_len = | 150 const unsigned final_output_len = |
| 150 static_cast<unsigned>(output_len) + | 151 static_cast<unsigned>(output_len) + |
| 151 static_cast<unsigned>(final_output_chunk_len); | 152 static_cast<unsigned>(final_output_chunk_len); |
| 152 DCHECK_LE(final_output_len, output_max_len); | 153 DCHECK_LE(final_output_len, output_max_len); |
| 153 | 154 |
| 154 WebCryptoImpl::ShrinkBuffer(buffer, final_output_len); | 155 ShrinkBuffer(buffer, final_output_len); |
| 155 | 156 |
| 156 return true; | 157 return true; |
| 157 } | 158 } |
| 158 | 159 |
| 159 } // namespace | 160 } // namespace |
| 160 | 161 |
| 161 void WebCryptoImpl::Init() { crypto::EnsureOpenSSLInit(); } | 162 void WebCryptoImpl::Init() { crypto::EnsureOpenSSLInit(); } |
| 162 | 163 |
| 163 bool WebCryptoImpl::EncryptInternal(const WebKit::WebCryptoAlgorithm& algorithm, | 164 bool WebCryptoImpl::EncryptInternal(const WebKit::WebCryptoAlgorithm& algorithm, |
| 164 const WebKit::WebCryptoKey& key, | 165 const WebKit::WebCryptoKey& key, |
| (...skipping 140 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 305 WebKit::WebCryptoKeyUsageMask /*usage_mask*/, | 306 WebKit::WebCryptoKeyUsageMask /*usage_mask*/, |
| 306 scoped_ptr<WebKit::WebCryptoKeyHandle>* handle, | 307 scoped_ptr<WebKit::WebCryptoKeyHandle>* handle, |
| 307 WebKit::WebCryptoKeyType* type) { | 308 WebKit::WebCryptoKeyType* type) { |
| 308 | 309 |
| 309 // TODO(padolph): Support all relevant alg types and then remove this gate. | 310 // TODO(padolph): Support all relevant alg types and then remove this gate. |
| 310 if (algorithm.id() != WebKit::WebCryptoAlgorithmIdHmac && | 311 if (algorithm.id() != WebKit::WebCryptoAlgorithmIdHmac && |
| 311 algorithm.id() != WebKit::WebCryptoAlgorithmIdAesCbc) { | 312 algorithm.id() != WebKit::WebCryptoAlgorithmIdAesCbc) { |
| 312 return false; | 313 return false; |
| 313 } | 314 } |
| 314 | 315 |
| 315 // TODO(padolph): Need to split handling for symmetric (raw or jwk format) and | 316 // TODO(padolph): Need to split handling for symmetric (raw format) and |
| 316 // asymmetric (jwk, spki, or pkcs8 format) keys. | 317 // asymmetric (spki or pkcs8 format) keys. |
| 317 // Currently only supporting symmetric. | 318 // Currently only supporting symmetric. |
| 318 | 319 |
| 319 // TODO(padolph): jwk handling. Define precedence between jwk contents and | |
| 320 // this method's parameters, e.g. 'alg' in jwk vs algorithm.id(). Who wins if | |
| 321 // they differ? (jwk, probably) | |
| 322 | |
| 323 // Symmetric keys are always type secret | 320 // Symmetric keys are always type secret |
| 324 *type = WebKit::WebCryptoKeyTypeSecret; | 321 *type = WebKit::WebCryptoKeyTypeSecret; |
| 325 | 322 |
| 326 const unsigned char* raw_key_data; | 323 const unsigned char* raw_key_data; |
| 327 unsigned raw_key_data_size; | 324 unsigned raw_key_data_size; |
| 328 switch (format) { | 325 switch (format) { |
| 329 case WebKit::WebCryptoKeyFormatRaw: | 326 case WebKit::WebCryptoKeyFormatRaw: |
| 330 raw_key_data = key_data; | 327 raw_key_data = key_data; |
| 331 raw_key_data_size = key_data_size; | 328 raw_key_data_size = key_data_size; |
| 332 // The NSS implementation fails when importing a raw AES key with a length | 329 // The NSS implementation fails when importing a raw AES key with a length |
| (...skipping 129 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 462 | 459 |
| 463 break; | 460 break; |
| 464 } | 461 } |
| 465 default: | 462 default: |
| 466 return false; | 463 return false; |
| 467 } | 464 } |
| 468 return true; | 465 return true; |
| 469 } | 466 } |
| 470 | 467 |
| 471 } // namespace content | 468 } // namespace content |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 25906002:
[webcrypto] Add JWK import for HMAC and AES-CBC key. (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master