namespace content {
+using webcrypto::Status;
+
namespace {
class SymKeyHandle : public blink::WebCryptoKeyHandle {
public:
- SymKeyHandle(const unsigned char* key_data, unsigned key_data_size)
+ SymKeyHandle(const unsigned char* key_data, unsigned int key_data_size)
: key_(key_data, key_data + key_data_size) {}
const std::vector<unsigned char>& key() const { return key_; }
DISALLOW_COPY_AND_ASSIGN(SymKeyHandle);
};
-const EVP_CIPHER* GetAESCipherByKeyLength(unsigned key_length_bytes) {
+const EVP_CIPHER* GetAESCipherByKeyLength(unsigned int key_length_bytes) {
// OpenSSL supports AES CBC ciphers for only 3 key lengths: 128, 192, 256 bits
switch (key_length_bytes) {
case 16:
kDoEncrypt = 1
};
-bool AesCbcEncryptDecrypt(CipherOperation cipher_operation,
- const blink::WebCryptoAlgorithm& algorithm,
- const blink::WebCryptoKey& key,
- const unsigned char* data,
- unsigned data_size,
- blink::WebArrayBuffer* buffer) {
-
- // TODO(padolph): Handle other encrypt operations and then remove this gate
- if (algorithm.id() != blink::WebCryptoAlgorithmIdAesCbc)
- return false;
-
+Status AesCbcEncryptDecrypt(CipherOperation cipher_operation,
+ const blink::WebCryptoAlgorithm& algorithm,
+ const blink::WebCryptoKey& key,
+ const unsigned char* data,
+ unsigned int data_size,
+ blink::WebArrayBuffer* buffer) {
+ DCHECK_EQ(blink::WebCryptoAlgorithmIdAesCbc, algorithm.id());
DCHECK_EQ(algorithm.id(), key.algorithm().id());
DCHECK_EQ(blink::WebCryptoKeyTypeSecret, key.type());
if (data_size >= INT_MAX - AES_BLOCK_SIZE) {
// TODO(padolph): Handle this by chunking the input fed into OpenSSL. Right
// now it doesn't make much difference since the one-shot API would end up
- // blowing out the memory and crashing anyway. However a newer version of
- // the spec allows for a sequence<CryptoData> so this will be relevant.
- return false;
+ // blowing out the memory and crashing anyway.
+ return Status::ErrorDataTooLarge();
}
// Note: PKCS padding is enabled by default
EVP_CIPHER_CTX_new());
if (!context.get())
- return false;
+ return Status::Error();
SymKeyHandle* const sym_key = reinterpret_cast<SymKeyHandle*>(key.handle());
const blink::WebCryptoAesCbcParams* const params = algorithm.aesCbcParams();
if (params->iv().size() != AES_BLOCK_SIZE)
- return false;
+ return Status::ErrorIncorrectSizeAesCbcIv();
if (!EVP_CipherInit_ex(context.get(),
cipher,
&sym_key->key()[0],
params->iv().data(),
cipher_operation)) {
- return false;
+ return Status::Error();
}
// According to the openssl docs, the amount of data written may be as large
// as (data_size + cipher_block_size - 1), constrained to a multiple of
// cipher_block_size.
- unsigned output_max_len = data_size + AES_BLOCK_SIZE - 1;
+ unsigned int output_max_len = data_size + AES_BLOCK_SIZE - 1;
const unsigned remainder = output_max_len % AES_BLOCK_SIZE;
if (remainder != 0)
output_max_len += AES_BLOCK_SIZE - remainder;
int output_len = 0;
if (!EVP_CipherUpdate(
context.get(), buffer_data, &output_len, data, data_size))
- return false;
+ return Status::Error();
int final_output_chunk_len = 0;
if (!EVP_CipherFinal_ex(
- context.get(), buffer_data + output_len, &final_output_chunk_len))
- return false;
+ context.get(), buffer_data + output_len, &final_output_chunk_len)) {
+ return Status::Error();
+ }
- const unsigned final_output_len =
- static_cast<unsigned>(output_len) +
- static_cast<unsigned>(final_output_chunk_len);
+ const unsigned int final_output_len =
+ static_cast<unsigned int>(output_len) +
+ static_cast<unsigned int>(final_output_chunk_len);
DCHECK_LE(final_output_len, output_max_len);
webcrypto::ShrinkBuffer(buffer, final_output_len);
- return true;
+ return Status::Success();
}
-bool ExportKeyInternalRaw(
+Status ExportKeyInternalRaw(
const blink::WebCryptoKey& key,
blink::WebArrayBuffer* buffer) {
DCHECK(key.handle());
DCHECK(buffer);
- if (key.type() != blink::WebCryptoKeyTypeSecret || !key.extractable())
- return false;
+ if (key.type() != blink::WebCryptoKeyTypeSecret)
+ return Status::ErrorUnexpectedKeyType();
+
+ // TODO(eroman): This should be in a more generic location.
+ if (!key.extractable())
+ return Status::ErrorKeyNotExtractable();
const SymKeyHandle* sym_key = reinterpret_cast<SymKeyHandle*>(key.handle());
*buffer = webcrypto::CreateArrayBuffer(
webcrypto::Uint8VectorStart(sym_key->key()), sym_key->key().size());
- return true;
+ return Status::Success();
}
} // namespace
void WebCryptoImpl::Init() { crypto::EnsureOpenSSLInit(); }
-bool WebCryptoImpl::EncryptInternal(const blink::WebCryptoAlgorithm& algorithm,
- const blink::WebCryptoKey& key,
- const unsigned char* data,
- unsigned data_size,
- blink::WebArrayBuffer* buffer) {
+Status WebCryptoImpl::EncryptInternal(
+ const blink::WebCryptoAlgorithm& algorithm,
+ const blink::WebCryptoKey& key,
+ const unsigned char* data,
+ unsigned int data_size,
+ blink::WebArrayBuffer* buffer) {
if (algorithm.id() == blink::WebCryptoAlgorithmIdAesCbc) {
return AesCbcEncryptDecrypt(
kDoEncrypt, algorithm, key, data, data_size, buffer);
}
- return false;
+ return Status::ErrorUnsupported();
}
-bool WebCryptoImpl::DecryptInternal(const blink::WebCryptoAlgorithm& algorithm,
- const blink::WebCryptoKey& key,
- const unsigned char* data,
- unsigned data_size,
- blink::WebArrayBuffer* buffer) {
+Status WebCryptoImpl::DecryptInternal(
+ const blink::WebCryptoAlgorithm& algorithm,
+ const blink::WebCryptoKey& key,
+ const unsigned char* data,
+ unsigned int data_size,
+ blink::WebArrayBuffer* buffer) {
if (algorithm.id() == blink::WebCryptoAlgorithmIdAesCbc) {
return AesCbcEncryptDecrypt(
kDoDecrypt, algorithm, key, data, data_size, buffer);
}
- return false;
+ return Status::ErrorUnsupported();
}
-bool WebCryptoImpl::DigestInternal(const blink::WebCryptoAlgorithm& algorithm,
- const unsigned char* data,
- unsigned data_size,
- blink::WebArrayBuffer* buffer) {
+Status WebCryptoImpl::DigestInternal(const blink::WebCryptoAlgorithm& algorithm,
+ const unsigned char* data,
+ unsigned int data_size,
+ blink::WebArrayBuffer* buffer) {
crypto::OpenSSLErrStackTracer(FROM_HERE);
break;
default:
// Not a digest algorithm.
- return false;
+ return Status::ErrorUnsupported();
}
crypto::ScopedOpenSSL<EVP_MD_CTX, EVP_MD_CTX_destroy> digest_context(
EVP_MD_CTX_create());
- if (!digest_context.get()) {
- return false;
- }
+ if (!digest_context.get())
+ return Status::Error();
if (!EVP_DigestInit_ex(digest_context.get(), digest_algorithm, NULL) ||
!EVP_DigestUpdate(digest_context.get(), data, data_size)) {
- return false;
+ return Status::Error();
}
const int hash_expected_size = EVP_MD_CTX_size(digest_context.get());
if (hash_expected_size <= 0) {
- return false;
+ return Status::ErrorUnexpected();
}
DCHECK_LE(hash_expected_size, EVP_MAX_MD_SIZE);
unsigned char* const hash_buffer =
reinterpret_cast<unsigned char* const>(buffer->data());
- unsigned hash_size = 0;
+ unsigned int hash_size = 0;
if (!EVP_DigestFinal_ex(digest_context.get(), hash_buffer, &hash_size) ||
static_cast<int>(hash_size) != hash_expected_size) {
buffer->reset();
- return false;
+ return Status::Error();
}
- return true;
+ return Status::Success();
}
-bool WebCryptoImpl::GenerateKeyInternal(
+Status WebCryptoImpl::GenerateSecretKeyInternal(
const blink::WebCryptoAlgorithm& algorithm,
bool extractable,
blink::WebCryptoKeyUsageMask usage_mask,
blink::WebCryptoKey* key) {
- unsigned keylen_bytes = 0;
+ unsigned int keylen_bytes = 0;
blink::WebCryptoKeyType key_type;
switch (algorithm.id()) {
case blink::WebCryptoAlgorithmIdAesCbc: {
algorithm.aesKeyGenParams();
DCHECK(params);
if (params->lengthBits() % 8)
- return false;
+ return Status::ErrorGenerateKeyLength();
keylen_bytes = params->lengthBits() / 8;
- if (!GetAESCipherByKeyLength(keylen_bytes)) {
- return false;
- }
+ if (!GetAESCipherByKeyLength(keylen_bytes))
+ return Status::Error();
key_type = blink::WebCryptoKeyTypeSecret;
break;
}
case blink::WebCryptoAlgorithmIdHmac: {
const blink::WebCryptoHmacKeyParams* params = algorithm.hmacKeyParams();
DCHECK(params);
- if (params->hasLengthBytes()) {
+ if (params->hasLengthBytes())
keylen_bytes = params->optionalLengthBytes();
- } else {
+ else
keylen_bytes = webcrypto::ShaBlockSizeBytes(params->hash().id());
- }
key_type = blink::WebCryptoKeyTypeSecret;
break;
}
- default: { return false; }
+ default: { return Status::ErrorUnsupported(); }
}
- if (keylen_bytes == 0) {
- return false;
- }
+ if (keylen_bytes == 0)
+ return Status::ErrorGenerateKeyLength();
crypto::OpenSSLErrStackTracer(FROM_HERE);
std::vector<unsigned char> random_bytes(keylen_bytes, 0);
- if (!(RAND_bytes(&random_bytes[0], keylen_bytes))) {
- return false;
- }
+ if (!(RAND_bytes(&random_bytes[0], keylen_bytes)))
+ return Status::Error();
*key = blink::WebCryptoKey::create(
new SymKeyHandle(&random_bytes[0], random_bytes.size()),
key_type, extractable, algorithm, usage_mask);
- return true;
+ return Status::Success();
}
-bool WebCryptoImpl::GenerateKeyPairInternal(
+Status WebCryptoImpl::GenerateKeyPairInternal(
const blink::WebCryptoAlgorithm& algorithm,
bool extractable,
blink::WebCryptoKeyUsageMask usage_mask,
blink::WebCryptoKey* private_key) {
// TODO(padolph): Placeholder for OpenSSL implementation.
// Issue http://crbug.com/267888.
- return false;
+ return Status::ErrorUnsupported();
}
-bool WebCryptoImpl::ImportKeyInternal(
+Status WebCryptoImpl::ImportKeyInternal(
blink::WebCryptoKeyFormat format,
const unsigned char* key_data,
- unsigned key_data_size,
+ unsigned int key_data_size,
const blink::WebCryptoAlgorithm& algorithm_or_null,
bool extractable,
blink::WebCryptoKeyUsageMask usage_mask,
// TODO(eroman): Currently expects algorithm to always be specified, as it is
// required for raw format.
if (algorithm_or_null.isNull())
- return false;
+ return Status::ErrorMissingAlgorithmImportRawKey();
const blink::WebCryptoAlgorithm& algorithm = algorithm_or_null;
// TODO(padolph): Support all relevant alg types and then remove this gate.
if (algorithm.id() != blink::WebCryptoAlgorithmIdHmac &&
algorithm.id() != blink::WebCryptoAlgorithmIdAesCbc) {
- return false;
+ return Status::ErrorUnsupported();
}
// TODO(padolph): Need to split handling for symmetric (raw format) and
blink::WebCryptoKeyType type = blink::WebCryptoKeyTypeSecret;
const unsigned char* raw_key_data;
- unsigned raw_key_data_size;
+ unsigned int raw_key_data_size;
switch (format) {
case blink::WebCryptoKeyFormatRaw:
raw_key_data = key_data;
// incompatible with AES. The line below is to match this behavior.
if (algorithm.id() == blink::WebCryptoAlgorithmIdAesCbc &&
!GetAESCipherByKeyLength(raw_key_data_size)) {
- return false;
+ return Status::Error();
}
break;
case blink::WebCryptoKeyFormatJwk:
- // TODO(padolph): Handle jwk format; need simple JSON parser.
- // break;
- return false;
+ return Status::ErrorUnexpected();
default:
- return false;
+ return Status::ErrorUnsupported();
}
*key = blink::WebCryptoKey::create(
new SymKeyHandle(raw_key_data, raw_key_data_size),
type, extractable, algorithm, usage_mask);
- return true;
+ return Status::Success();
}
-bool WebCryptoImpl::ExportKeyInternal(
+Status WebCryptoImpl::ExportKeyInternal(
blink::WebCryptoKeyFormat format,
const blink::WebCryptoKey& key,
blink::WebArrayBuffer* buffer) {
return ExportKeyInternalRaw(key, buffer);
case blink::WebCryptoKeyFormatSpki:
// TODO(padolph): Implement spki export
- return false;
+ return Status::ErrorUnsupported();
case blink::WebCryptoKeyFormatPkcs8:
// TODO(padolph): Implement pkcs8 export
- return false;
+ return Status::ErrorUnsupported();
default:
- return false;
+ return Status::ErrorUnsupported();
}
- return false;
+ return Status::ErrorUnsupported();
}
-bool WebCryptoImpl::SignInternal(
+Status WebCryptoImpl::SignInternal(
const blink::WebCryptoAlgorithm& algorithm,
const blink::WebCryptoKey& key,
const unsigned char* data,
- unsigned data_size,
+ unsigned int data_size,
blink::WebArrayBuffer* buffer) {
blink::WebArrayBuffer result;
const blink::WebCryptoHmacParams* const params = algorithm.hmacParams();
if (!params)
- return false;
+ return Status::ErrorUnexpected();
const EVP_MD* evp_sha = 0;
unsigned int hmac_expected_length = 0;
break;
default:
// Not a digest algorithm.
- return false;
+ return Status::ErrorUnsupported();
}
SymKeyHandle* const sym_key =
hmac_result.safe_buffer(),
&hmac_actual_length);
if (!success || hmac_actual_length != hmac_expected_length)
- return false;
+ return Status::Error();
break;
}
default:
- return false;
+ return Status::ErrorUnsupported();
}
*buffer = result;
- return true;
+ return Status::Success();
}
-bool WebCryptoImpl::VerifySignatureInternal(
+Status WebCryptoImpl::VerifySignatureInternal(
const blink::WebCryptoAlgorithm& algorithm,
const blink::WebCryptoKey& key,
const unsigned char* signature,
- unsigned signature_size,
+ unsigned int signature_size,
const unsigned char* data,
- unsigned data_size,
+ unsigned int data_size,
bool* signature_match) {
switch (algorithm.id()) {
case blink::WebCryptoAlgorithmIdHmac: {
blink::WebArrayBuffer result;
- if (!SignInternal(algorithm, key, data, data_size, &result)) {
- return false;
- }
+ Status status = SignInternal(algorithm, key, data, data_size, &result);
+ if (status.IsError())
+ return status;
// Handling of truncated signatures is underspecified in the WebCrypto
// spec, so here we fail verification if a truncated signature is being
break;
}
default:
- return false;
+ return Status::ErrorUnsupported();
}
- return true;
+ return Status::Success();
}
-bool WebCryptoImpl::ImportRsaPublicKeyInternal(
+Status WebCryptoImpl::ImportRsaPublicKeyInternal(
const unsigned char* modulus_data,
- unsigned modulus_size,
+ unsigned int modulus_size,
const unsigned char* exponent_data,
- unsigned exponent_size,
+ unsigned int exponent_size,
const blink::WebCryptoAlgorithm& algorithm,
bool extractable,
blink::WebCryptoKeyUsageMask usage_mask,
blink::WebCryptoKey* key) {
// TODO(padolph): Placeholder for OpenSSL implementation.
// Issue http://crbug.com/267888.
- return false;
+ return Status::ErrorUnsupported();
}
} // namespace content