Changeset 163976 in webkit

Timestamp:

Feb 12, 2014 1:08:40 PM (10 years ago)

Author:

ap@apple.com

Message:

Wrap WebCrypto keys in SerializedScriptValue
​https://bugs.webkit.org/show_bug.cgi?id=128680

Reviewed by Anders Carlsson.

Source/WebCore:

Test: crypto/subtle/rsa-indexeddb.html

Added Mac code to wrap a key with AES-GCM. We then serialize it into a plist,
because more custom formats would be crazy (even the custom format in SerializedScriptValue
makes me nervous, we'll certainly need to change CryptoKey in the future).

• WebCore.exp.in:
• WebCore.xcodeproj/project.pbxproj:
• crypto/CommonCryptoUtilities.h:
• crypto/SerializedCryptoKeyWrap.h: Added.
• crypto/mac/SerializedCryptoKeyWrapMac.mm: Added.

(WebCore::vectorFromNSData):
(WebCore::wrapSerializedCryptoKey):
(WebCore::unwrapSerializedCryptoKey):

Source/WebKit/mac:

Retrieve a master key (placeholder code for now), and use it to wrap key data.

• WebCoreSupport/WebChromeClient.mm:

(WebChromeClient::wrapCryptoKey):
(WebChromeClient::unwrapCryptoKey):

Source/WebKit2:

Retrieve a master key (placeholder code for now), and use it to wrap key data.

• UIProcess/WebPageProxy.cpp:

(WebKit::WebPageProxy::wrapCryptoKey):
(WebKit::WebPageProxy::unwrapCryptoKey):

• UIProcess/mac/WebPageProxyMac.mm:

(WebKit::WebPageProxy::wrapCryptoKey):
(WebKit::WebPageProxy::unwrapCryptoKey):

LayoutTests:

• crypto/subtle/rsa-indexeddb-expected.txt: Added.
• crypto/subtle/rsa-indexeddb.html: Added.
• platform/efl/TestExpectations:
• platform/gtk/TestExpectations:
• platform/mac-wk1/TestExpectations:
• platform/win/TestExpectations:
• platform/wincairo/TestExpectations:

Location:

trunk

Files:

• LayoutTests/ChangeLog (modified) (1 diff)
• LayoutTests/crypto/subtle/rsa-indexeddb-expected.txt (added)
• LayoutTests/crypto/subtle/rsa-indexeddb.html (added)
• LayoutTests/platform/efl/TestExpectations (modified) (1 diff)
• LayoutTests/platform/gtk/TestExpectations (modified) (1 diff)
• LayoutTests/platform/mac-wk1/TestExpectations (modified) (1 diff)
• LayoutTests/platform/win/TestExpectations (modified) (1 diff)
• LayoutTests/platform/wincairo/TestExpectations (modified) (1 diff)
• Source/WebCore/ChangeLog (modified) (1 diff)
• Source/WebCore/WebCore.exp.in (modified) (2 diffs)
• Source/WebCore/WebCore.xcodeproj/project.pbxproj (modified) (6 diffs)
• Source/WebCore/crypto/CommonCryptoUtilities.h (modified) (1 diff)
• Source/WebCore/crypto/SerializedCryptoKeyWrap.h (added)
• Source/WebCore/crypto/mac/SerializedCryptoKeyWrapMac.mm (added)
• Source/WebKit/mac/ChangeLog (modified) (1 diff)
• Source/WebKit/mac/WebCoreSupport/WebChromeClient.mm (modified) (2 diffs)
• Source/WebKit2/ChangeLog (modified) (1 diff)
• Source/WebKit2/UIProcess/WebPageProxy.cpp (modified) (1 diff)
• Source/WebKit2/UIProcess/mac/WebPageProxyMac.mm (modified) (2 diffs)

trunk/LayoutTests/ChangeLog

@@ +1 @@
+2014-02-12  Alexey Proskuryakov  <ap@apple.com>
+
+        Wrap WebCrypto keys in SerializedScriptValue
+        https://bugs.webkit.org/show_bug.cgi?id=128680
+
+        Reviewed by Anders Carlsson.
+
+        * crypto/subtle/rsa-indexeddb-expected.txt: Added.
+        * crypto/subtle/rsa-indexeddb.html: Added.
+        * platform/efl/TestExpectations:
+        * platform/gtk/TestExpectations:
+        * platform/mac-wk1/TestExpectations:
+        * platform/win/TestExpectations:
+        * platform/wincairo/TestExpectations:
+
 2014-02-12  Brendan Long  <b.long@cablelabs.com>
 

trunk/LayoutTests/platform/efl/TestExpectations

@@ -272 +272 @@
 webkit.org/b/87661 http/tests/security/cross-origin-worker-indexeddb.html [ Skip ]
 webkit.org/b/87661 http/tests/security/no-indexeddb-from-sandbox.html [ Skip ]
+webkit.org/b/87661 crypto/subtle/rsa-indexeddb.html [ Skip ]
 
 #////////////////////////////////////////////////////////////////////////////////////////

trunk/LayoutTests/platform/gtk/TestExpectations

@@ -494 +494 @@
 webkit.org/b/107194 http/tests/security/cross-origin-worker-indexeddb.html [ Skip ]
 webkit.org/b/107194 http/tests/security/no-indexeddb-from-sandbox.html [ Skip ]
+crypto/subtle/rsa-indexeddb.html
 
 # crypto.subtle is not yet enabled

trunk/LayoutTests/platform/mac-wk1/TestExpectations

@@ -6 +6 @@
 http/tests/security/cross-origin-worker-indexeddb.html
 http/tests/security/no-indexeddb-from-sandbox.html
+crypto/subtle/rsa-indexeddb.html

trunk/LayoutTests/platform/win/TestExpectations

@@ -1085 +1085 @@
 http/tests/security/cross-origin-worker-indexeddb.html
 http/tests/security/no-indexeddb-from-sandbox.html
+crypto/subtle/rsa-indexeddb.html
 
 # StorageTracker is not enabled.

trunk/LayoutTests/platform/wincairo/TestExpectations

@@ -1582 +1582 @@
 http/tests/security/cross-origin-worker-indexeddb.html
 http/tests/security/no-indexeddb-from-sandbox.html
+crypto/subtle/rsa-indexeddb.html
 
 # StorageTracker is not enabled.

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2014-02-12  Alexey Proskuryakov  <ap@apple.com>
+
+        Wrap WebCrypto keys in SerializedScriptValue
+        https://bugs.webkit.org/show_bug.cgi?id=128680
+
+        Reviewed by Anders Carlsson.
+
+        Test: crypto/subtle/rsa-indexeddb.html
+
+        Added Mac code to wrap a key with AES-GCM. We then serialize it into a plist,
+        because more custom formats would be crazy (even the custom format in SerializedScriptValue
+        makes me nervous, we'll certainly need to change CryptoKey in the future).
+
+        * WebCore.exp.in:
+        * WebCore.xcodeproj/project.pbxproj:
+        * crypto/CommonCryptoUtilities.h:
+        * crypto/SerializedCryptoKeyWrap.h: Added.
+        * crypto/mac/SerializedCryptoKeyWrapMac.mm: Added.
+        (WebCore::vectorFromNSData):
+        (WebCore::wrapSerializedCryptoKey):
+        (WebCore::unwrapSerializedCryptoKey):
+
 2014-02-12  Brent Fulgham  <bfulgham@apple.com>
 

trunk/Source/WebCore/WebCore.exp.in

@@ -912 +912 @@
 __ZN7WebCore23getFileModificationTimeERKN3WTF6StringERl
 __ZN7WebCore23getHostnamesWithCookiesERKNS_21NetworkStorageSessionERN3WTF7HashSetINS3_6StringENS3_10StringHashENS3_10HashTraitsIS5_EEEE
+__ZN7WebCore23wrapSerializedCryptoKeyERKN3WTF6VectorIhLm0ENS0_15CrashOnOverflowEEES5_RS3_
 __ZN7WebCore24CachedResourceHandleBase11setResourceEPNS_14CachedResourceE
 __ZN7WebCore24DocumentMarkerController10markersForEPNS_4NodeENS_14DocumentMarker11MarkerTypesE
@@ -934 +935 @@
 __ZN7WebCore25computeViewportAttributesENS_17ViewportArgumentsEiiifNS_7IntSizeE
 __ZN7WebCore25createCanonicalUUIDStringEv
+__ZN7WebCore25unwrapSerializedCryptoKeyERKN3WTF6VectorIhLm0ENS0_15CrashOnOverflowEEES5_RS3_
 __ZN7WebCore26ContextDestructionObserver16contextDestroyedEv
 __ZN7WebCore26ContextDestructionObserverC2EPNS_22ScriptExecutionContextE

trunk/Source/WebCore/WebCore.xcodeproj/project.pbxproj

@@ -5785 +5785 @@
                 E187056316E54A0D00585E97 /* MainThreadTask.h in Headers */ = {isa = PBXBuildFile; fileRef = E187056216E54A0D00585E97 /* MainThreadTask.h */; };
                 E18772F1126E2629003DD586 /* Language.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E18772F0126E2629003DD586 /* Language.cpp */; };
+                E18DF33518AAF12C00773E59 /* SerializedCryptoKeyWrap.h in Headers */ = {isa = PBXBuildFile; fileRef = E18DF33418AAF12C00773E59 /* SerializedCryptoKeyWrap.h */; settings = {ATTRIBUTES = (Private, ); }; };
+                E18DF33818AAF14D00773E59 /* SerializedCryptoKeyWrapMac.mm in Sources */ = {isa = PBXBuildFile; fileRef = E18DF33618AAF14D00773E59 /* SerializedCryptoKeyWrapMac.mm */; };
                 E19727161820549E00592D51 /* CryptoKeyType.h in Headers */ = {isa = PBXBuildFile; fileRef = E19727151820549E00592D51 /* CryptoKeyType.h */; };
                 E19AC3EE1824DC7900349426 /* CryptoAlgorithmSHA224.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E19AC3E61824DC7900349426 /* CryptoAlgorithmSHA224.cpp */; };
@@ -13077 +13079 @@
                 E187056216E54A0D00585E97 /* MainThreadTask.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = MainThreadTask.h; sourceTree = "<group>"; };
                 E18772F0126E2629003DD586 /* Language.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = Language.cpp; sourceTree = "<group>"; };
+                E18DF33418AAF12C00773E59 /* SerializedCryptoKeyWrap.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = SerializedCryptoKeyWrap.h; sourceTree = "<group>"; };
+                E18DF33618AAF14D00773E59 /* SerializedCryptoKeyWrapMac.mm */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.objcpp; name = SerializedCryptoKeyWrapMac.mm; path = mac/SerializedCryptoKeyWrapMac.mm; sourceTree = "<group>"; };
                 E19727151820549E00592D51 /* CryptoKeyType.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = CryptoKeyType.h; sourceTree = "<group>"; };
                 E19AC3E61824DC7900349426 /* CryptoAlgorithmSHA224.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = CryptoAlgorithmSHA224.cpp; sourceTree = "<group>"; };
@@ -21036 +21040 @@
                                 E164FAA418315E1A00DB4E61 /* CryptoKeyRSAMac.cpp */,
                                 E1FE13621834351100892F13 /* CryptoDigestMac.cpp */,
+                                E18DF33618AAF14D00773E59 /* SerializedCryptoKeyWrapMac.mm */,
                         );
                         name = mac;
@@ -21237 +21242 @@
                                 E19727151820549E00592D51 /* CryptoKeyType.h */,
                                 E172AF6F180F289500FBADB9 /* CryptoKeyUsage.h */,
+                                E18DF33418AAF12C00773E59 /* SerializedCryptoKeyWrap.h */,
                                 E1FF8F5C1807364B00132674 /* SubtleCrypto.idl */,
                                 E1FF8F5D1807442100132674 /* SubtleCrypto.cpp */,
@@ -23437 +23443 @@
                                 15C770A6100D41CD005BA267 /* DOMValidityState.h in Headers */,
                                 BC1A37C0097C715F0019F3D8 /* DOMViews.h in Headers */,
+                                E18DF33518AAF12C00773E59 /* SerializedCryptoKeyWrap.h in Headers */,
                                 31C0FF490E4CEFDD007D6FE5 /* DOMWebKitAnimationEvent.h in Headers */,
                                 31C0FF4B0E4CEFDD007D6FE5 /* DOMWebKitAnimationEventInternal.h in Headers */,
@@ -26321 +26328 @@
                                 E1FE137A184D21BB00892F13 /* CryptoAlgorithmAES_KW.cpp in Sources */,
                                 512DD8F70D91E6AF000F89EE /* ArchiveResourceCollection.cpp in Sources */,
+                                E18DF33818AAF14D00773E59 /* SerializedCryptoKeyWrapMac.mm in Sources */,
                                 49B3760C15C6C6840059131D /* ArrayValue.cpp in Sources */,
                                 FD5686C913AC180200B69C68 /* AsyncAudioDecoder.cpp in Sources */,

trunk/Source/WebCore/crypto/CommonCryptoUtilities.h

@@ -90 +90 @@
 extern "C" CCCryptorStatus CCRSAGetKeyComponents(CCRSACryptorRef rsaKey, uint8_t *modulus, size_t *modulusLength, uint8_t *exponent, size_t *exponentLength, uint8_t *p, size_t *pLength, uint8_t *q, size_t *qLength);
 extern "C" CCRSAKeyType CCRSAGetKeyType(CCRSACryptorRef key);
+extern "C" CCCryptorStatus CCCryptorGCM(CCOperation op, CCAlgorithm alg, const void* key, size_t keyLength, const void* iv, size_t ivLen, const void* aData, size_t aDataLen, const void* dataIn, size_t dataInLength, void* dataOut, const void* tag, size_t* tagLength);
 
 namespace WebCore {

trunk/Source/WebKit/mac/ChangeLog

@@ +1 @@
+2014-02-12  Alexey Proskuryakov  <ap@apple.com>
+
+        Wrap WebCrypto keys in SerializedScriptValue
+        https://bugs.webkit.org/show_bug.cgi?id=128680
+
+        Reviewed by Anders Carlsson.
+
+        Retrieve a master key (placeholder code for now), and use it to wrap key data.
+
+        * WebCoreSupport/WebChromeClient.mm:
+        (WebChromeClient::wrapCryptoKey):
+        (WebChromeClient::unwrapCryptoKey):
+
 2014-02-11  Ryosuke Niwa  <rniwa@webkit.org>
 

trunk/Source/WebKit/mac/WebCoreSupport/WebChromeClient.mm

@@ -80 +80 @@
 #import <WebCore/PlatformScreen.h>
 #import <WebCore/ResourceRequest.h>
+#import <WebCore/SerializedCryptoKeyWrap.h>
 #import <WebCore/Widget.h>
 #import <WebCore/WindowFeatures.h>
@@ -1002 +1003 @@
 bool WebChromeClient::wrapCryptoKey(const Vector<uint8_t>& key, Vector<uint8_t>& wrappedKey) const
 {
-    wrappedKey = key;
-    return true;
+    Vector<uint8_t> masterKey(16);
+    memset(masterKey.data(), 0, masterKey.size()); // FIXME: Not implemented yet, will be getting a key from client.
+    return wrapSerializedCryptoKey(masterKey, key, wrappedKey);
 }
 
 bool WebChromeClient::unwrapCryptoKey(const Vector<uint8_t>& wrappedKey, Vector<uint8_t>& key) const
 {
-    key = wrappedKey;
-    return true;
-}
-#endif
+    Vector<uint8_t> masterKey(16);
+    memset(masterKey.data(), 0, masterKey.size()); // FIXME: Not implemented yet, will be getting a key from client.
+    return unwrapSerializedCryptoKey(masterKey, wrappedKey, key);
+}
+#endif

trunk/Source/WebKit2/ChangeLog

@@ +1 @@
+2014-02-12  Alexey Proskuryakov  <ap@apple.com>
+
+        Wrap WebCrypto keys in SerializedScriptValue
+        https://bugs.webkit.org/show_bug.cgi?id=128680
+
+        Reviewed by Anders Carlsson.
+
+        Retrieve a master key (placeholder code for now), and use it to wrap key data.
+
+        * UIProcess/WebPageProxy.cpp:
+        (WebKit::WebPageProxy::wrapCryptoKey):
+        (WebKit::WebPageProxy::unwrapCryptoKey):
+        * UIProcess/mac/WebPageProxyMac.mm:
+        (WebKit::WebPageProxy::wrapCryptoKey):
+        (WebKit::WebPageProxy::unwrapCryptoKey):
+
 2014-02-12  Zan Dobersek  <zdobersek@igalia.com>
 

trunk/Source/WebKit2/UIProcess/WebPageProxy.cpp

@@ -4480 +4480 @@
 }
 
-#if ENABLE(SUBTLE_CRYPTO)
+#if ENABLE(SUBTLE_CRYPTO) && !PLATFORM(COCOA)
 void WebPageProxy::wrapCryptoKey(const Vector<uint8_t>& key, bool& succeeded, Vector<uint8_t>& wrappedKey)
 {
-    // FIXME: Implement.
-    wrappedKey = key;
-    succeeded = true;
+    notImplemented();
+    succeeded = false;
 }
 
 void WebPageProxy::unwrapCryptoKey(const Vector<uint8_t>& wrappedKey, bool& succeeded, Vector<uint8_t>& key)
 {
-    // FIXME: Implement.
-    key = wrappedKey;
-    succeeded = true;
+    notImplemented();
+    succeeded = false;
 }
 #endif

trunk/Source/WebKit2/UIProcess/mac/WebPageProxyMac.mm

@@ -45 +45 @@
 #import <WebCore/GraphicsLayer.h>
 #import <WebCore/RuntimeApplicationChecks.h>
+#import <WebCore/SerializedCryptoKeyWrap.h>
 #import <WebCore/SharedBuffer.h>
 #import <WebCore/TextAlternativeWithRange.h>
@@ -573 +574 @@
 }
 
+#if ENABLE(SUBTLE_CRYPTO)
+void WebPageProxy::wrapCryptoKey(const Vector<uint8_t>& key, bool& succeeded, Vector<uint8_t>& wrappedKey)
+{
+    Vector<uint8_t> masterKey(16);
+    memset(masterKey.data(), 0, masterKey.size()); // FIXME: Not implemented yet, will be getting a key from client.
+    succeeded = wrapSerializedCryptoKey(masterKey, key, wrappedKey);
+}
+
+void WebPageProxy::unwrapCryptoKey(const Vector<uint8_t>& wrappedKey, bool& succeeded, Vector<uint8_t>& key)
+{
+    Vector<uint8_t> masterKey(16);
+    memset(masterKey.data(), 0, masterKey.size()); // FIXME: Not implemented yet, will be getting a key from client.
+    succeeded = unwrapSerializedCryptoKey(masterKey, wrappedKey, key);
+}
+#endif
+
 } // namespace WebKit