Changeset 158427 in webkit

Timestamp:

Nov 1, 2013 12:15:45 AM (10 years ago)

Author:

ap@apple.com

Message:

Add a Mac WebCrypto implementation of HMAC importKey/sign/verify
​https://bugs.webkit.org/show_bug.cgi?id=123598

Reviewed by Anders Carlsson.

Source/WebCore:

Test: crypto/subtle/hmac-sign-verify.html

• WebCore.xcodeproj/project.pbxproj:
• bindings/js/JSSubtleCryptoCustom.cpp: Added property svn:eol-style.

(WebCore::createAlgorithmFromJSValue):
(WebCore::cryptoOperationDataFromJSValue):
(WebCore::cryptoKeyFormatFromJSValue):
(WebCore::cryptoKeyUsagesFromJSValue):
(WebCore::JSSubtleCrypto::sign):
(WebCore::JSSubtleCrypto::verify):
(WebCore::JSSubtleCrypto::digest):
(WebCore::JSSubtleCrypto::importKey):

• crypto/SubtleCrypto.idl:
• crypto/algorithms/CryptoAlgorithmHMAC.cpp: Added.

(WebCore::CryptoAlgorithmHMAC::CryptoAlgorithmHMAC):
(WebCore::CryptoAlgorithmHMAC::~CryptoAlgorithmHMAC):
(WebCore::CryptoAlgorithmHMAC::create):
(WebCore::CryptoAlgorithmHMAC::identifier):
(WebCore::CryptoAlgorithmHMAC::importKey):
(WebCore::CryptoAlgorithmHMAC::exportKey):

• crypto/algorithms/CryptoAlgorithmHMAC.h: Added.
• crypto/keys: Added.
• crypto/keys/CryptoKeyHMAC.cpp: Added.

(WebCore::CryptoKeyHMAC::CryptoKeyHMAC):
(WebCore::CryptoKeyHMAC::~CryptoKeyHMAC):
(WebCore::CryptoKeyHMAC::buildAlgorithmDescription):

• crypto/keys/CryptoKeyHMAC.h: Added.
• crypto/mac/CryptoAlgorithmHMACMac.cpp: Added.

(WebCore::getCommonCryptoAlgorithm):
(WebCore::calculateSignature):
(WebCore::CryptoAlgorithmHMAC::sign):
(WebCore::CryptoAlgorithmHMAC::verify):
(WebCore::CryptoAlgorithmHMAC::generateKey):

• crypto/mac/CryptoAlgorithmRegistryMac.cpp:

(WebCore::CryptoAlgorithmRegistry::platformRegisterAlgorithms):

LayoutTests:

• crypto/subtle/hmac-sign-verify-expected.txt: Added.
• crypto/subtle/hmac-sign-verify.html: Added.

Location:

trunk

Files:

• LayoutTests/ChangeLog (modified) (1 diff)
• LayoutTests/crypto/subtle/hmac-sign-verify-expected.txt (added)
• LayoutTests/crypto/subtle/hmac-sign-verify.html (added)
• Source/WebCore/ChangeLog (modified) (1 diff)
• Source/WebCore/WebCore.xcodeproj/project.pbxproj (modified) (10 diffs)
• Source/WebCore/bindings/js/JSSubtleCryptoCustom.cpp (modified) (5 diffs)
• Source/WebCore/crypto/SubtleCrypto.idl (modified) (1 diff)
• Source/WebCore/crypto/algorithms/CryptoAlgorithmHMAC.cpp (copied) (copied from trunk/Source/WebCore/crypto/mac/CryptoAlgorithmRegistryMac.cpp) (1 diff)
• Source/WebCore/crypto/algorithms/CryptoAlgorithmHMAC.h (copied) (copied from trunk/Source/WebCore/crypto/mac/CryptoAlgorithmRegistryMac.cpp) (1 diff)
• Source/WebCore/crypto/keys (added)
• Source/WebCore/crypto/keys/CryptoKeyHMAC.cpp (copied) (copied from trunk/Source/WebCore/crypto/mac/CryptoAlgorithmRegistryMac.cpp) (1 diff)
• Source/WebCore/crypto/keys/CryptoKeyHMAC.h (copied) (copied from trunk/Source/WebCore/crypto/mac/CryptoAlgorithmRegistryMac.cpp) (1 diff)
• Source/WebCore/crypto/mac/CryptoAlgorithmHMACMac.cpp (added)
• Source/WebCore/crypto/mac/CryptoAlgorithmRegistryMac.cpp (modified) (2 diffs)

trunk/LayoutTests/ChangeLog

@@ +1 @@
+2013-11-01  Alexey Proskuryakov  <ap@apple.com>
+
+        Add a Mac WebCrypto implementation of HMAC importKey/sign/verify
+        https://bugs.webkit.org/show_bug.cgi?id=123598
+
+        Reviewed by Anders Carlsson.
+
+        * crypto/subtle/hmac-sign-verify-expected.txt: Added.
+        * crypto/subtle/hmac-sign-verify.html: Added.
+
 2013-10-31  Oliver Hunt  <oliver@apple.com>
 

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2013-11-01  Alexey Proskuryakov  <ap@apple.com>
+
+        Add a Mac WebCrypto implementation of HMAC importKey/sign/verify
+        https://bugs.webkit.org/show_bug.cgi?id=123598
+
+        Reviewed by Anders Carlsson.
+
+        Test: crypto/subtle/hmac-sign-verify.html
+
+        * WebCore.xcodeproj/project.pbxproj:
+        * bindings/js/JSSubtleCryptoCustom.cpp: Added property svn:eol-style.
+        (WebCore::createAlgorithmFromJSValue):
+        (WebCore::cryptoOperationDataFromJSValue):
+        (WebCore::cryptoKeyFormatFromJSValue):
+        (WebCore::cryptoKeyUsagesFromJSValue):
+        (WebCore::JSSubtleCrypto::sign):
+        (WebCore::JSSubtleCrypto::verify):
+        (WebCore::JSSubtleCrypto::digest):
+        (WebCore::JSSubtleCrypto::importKey):
+        * crypto/SubtleCrypto.idl:
+        * crypto/algorithms/CryptoAlgorithmHMAC.cpp: Added.
+        (WebCore::CryptoAlgorithmHMAC::CryptoAlgorithmHMAC):
+        (WebCore::CryptoAlgorithmHMAC::~CryptoAlgorithmHMAC):
+        (WebCore::CryptoAlgorithmHMAC::create):
+        (WebCore::CryptoAlgorithmHMAC::identifier):
+        (WebCore::CryptoAlgorithmHMAC::importKey):
+        (WebCore::CryptoAlgorithmHMAC::exportKey):
+        * crypto/algorithms/CryptoAlgorithmHMAC.h: Added.
+        * crypto/keys: Added.
+        * crypto/keys/CryptoKeyHMAC.cpp: Added.
+        (WebCore::CryptoKeyHMAC::CryptoKeyHMAC):
+        (WebCore::CryptoKeyHMAC::~CryptoKeyHMAC):
+        (WebCore::CryptoKeyHMAC::buildAlgorithmDescription):
+        * crypto/keys/CryptoKeyHMAC.h: Added.
+        * crypto/mac/CryptoAlgorithmHMACMac.cpp: Added.
+        (WebCore::getCommonCryptoAlgorithm):
+        (WebCore::calculateSignature):
+        (WebCore::CryptoAlgorithmHMAC::sign):
+        (WebCore::CryptoAlgorithmHMAC::verify):
+        (WebCore::CryptoAlgorithmHMAC::generateKey):
+        * crypto/mac/CryptoAlgorithmRegistryMac.cpp:
+        (WebCore::CryptoAlgorithmRegistry::platformRegisterAlgorithms):
+
 2013-10-31  Joseph Pecoraro  <pecoraro@apple.com>
 

trunk/Source/WebCore/WebCore.xcodeproj/project.pbxproj

@@ -5505 +5505 @@
                 E125F82C1822CFEC00D84CD9 /* CryptoAlgorithmSHA1.h in Headers */ = {isa = PBXBuildFile; fileRef = E125F82A1822CFEC00D84CD9 /* CryptoAlgorithmSHA1.h */; };
                 E125F82E1822CFFF00D84CD9 /* CryptoAlgorithmSHA1Mac.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E125F82D1822CFFF00D84CD9 /* CryptoAlgorithmSHA1Mac.cpp */; };
+                E125F8311822F11B00D84CD9 /* CryptoAlgorithmHMAC.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E125F82F1822F11B00D84CD9 /* CryptoAlgorithmHMAC.cpp */; };
+                E125F8321822F11B00D84CD9 /* CryptoAlgorithmHMAC.h in Headers */ = {isa = PBXBuildFile; fileRef = E125F8301822F11B00D84CD9 /* CryptoAlgorithmHMAC.h */; };
+                E125F8351822F18A00D84CD9 /* CryptoKeyHMAC.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E125F8331822F18A00D84CD9 /* CryptoKeyHMAC.cpp */; };
+                E125F8361822F18A00D84CD9 /* CryptoKeyHMAC.h in Headers */ = {isa = PBXBuildFile; fileRef = E125F8341822F18A00D84CD9 /* CryptoKeyHMAC.h */; };
+                E125F8381822F1EB00D84CD9 /* CryptoAlgorithmHMACMac.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E125F8371822F1EB00D84CD9 /* CryptoAlgorithmHMACMac.cpp */; };
                 E12719C70EEEC16800F61213 /* NavigatorBase.h in Headers */ = {isa = PBXBuildFile; fileRef = E12719C60EEEC16800F61213 /* NavigatorBase.h */; };
                 E12719CA0EEEC21300F61213 /* NavigatorBase.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E12719C90EEEC21300F61213 /* NavigatorBase.cpp */; };
@@ -12510 +12515 @@
                 E125F82A1822CFEC00D84CD9 /* CryptoAlgorithmSHA1.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = CryptoAlgorithmSHA1.h; sourceTree = "<group>"; };
                 E125F82D1822CFFF00D84CD9 /* CryptoAlgorithmSHA1Mac.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; name = CryptoAlgorithmSHA1Mac.cpp; path = mac/CryptoAlgorithmSHA1Mac.cpp; sourceTree = "<group>"; };
+                E125F82F1822F11B00D84CD9 /* CryptoAlgorithmHMAC.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = CryptoAlgorithmHMAC.cpp; sourceTree = "<group>"; };
+                E125F8301822F11B00D84CD9 /* CryptoAlgorithmHMAC.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = CryptoAlgorithmHMAC.h; sourceTree = "<group>"; };
+                E125F8331822F18A00D84CD9 /* CryptoKeyHMAC.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; name = CryptoKeyHMAC.cpp; path = keys/CryptoKeyHMAC.cpp; sourceTree = "<group>"; };
+                E125F8341822F18A00D84CD9 /* CryptoKeyHMAC.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; name = CryptoKeyHMAC.h; path = keys/CryptoKeyHMAC.h; sourceTree = "<group>"; };
+                E125F8371822F1EB00D84CD9 /* CryptoAlgorithmHMACMac.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; name = CryptoAlgorithmHMACMac.cpp; path = mac/CryptoAlgorithmHMACMac.cpp; sourceTree = "<group>"; };
                 E12719C60EEEC16800F61213 /* NavigatorBase.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = NavigatorBase.h; sourceTree = "<group>"; };
                 E12719C90EEEC21300F61213 /* NavigatorBase.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = NavigatorBase.cpp; sourceTree = "<group>"; };
@@ -20132 +20142 @@
                         isa = PBXGroup;
                         children = (
+                                E125F8371822F1EB00D84CD9 /* CryptoAlgorithmHMACMac.cpp */,
                                 E1BB84AC1822CA7400525043 /* CryptoAlgorithmRegistryMac.cpp */,
                                 E125F82D1822CFFF00D84CD9 /* CryptoAlgorithmSHA1Mac.cpp */,
@@ -20141 +20152 @@
                         isa = PBXGroup;
                         children = (
+                                E125F82F1822F11B00D84CD9 /* CryptoAlgorithmHMAC.cpp */,
+                                E125F8301822F11B00D84CD9 /* CryptoAlgorithmHMAC.h */,
                                 E125F8291822CFEC00D84CD9 /* CryptoAlgorithmSHA1.cpp */,
                                 E125F82A1822CFEC00D84CD9 /* CryptoAlgorithmSHA1.h */,
@@ -20150 +20163 @@
                         isa = PBXGroup;
                         children = (
+                                E125F8331822F18A00D84CD9 /* CryptoKeyHMAC.cpp */,
+                                E125F8341822F18A00D84CD9 /* CryptoKeyHMAC.h */,
                         );
                         name = keys;
@@ -22146 +22161 @@
                                 85E7118D0AC5D5350053270F /* DOMAttrInternal.h in Headers */,
                                 BC946EEF107FDBAC00857193 /* DOMBeforeLoadEvent.h in Headers */,
+                                E125F8361822F18A00D84CD9 /* CryptoKeyHMAC.h in Headers */,
                                 2E2D99E710E2BC1C00496337 /* DOMBlob.h in Headers */,
                                 2E2D99EA10E2BC3800496337 /* DOMBlobInternal.h in Headers */,
@@ -24392 +24408 @@
                                 B2227AB60D00BF220071B782 /* SVGGraphicsElement.h in Headers */,
                                 650FBF2B0D9AF047008FC292 /* SVGHKernElement.h in Headers */,
+                                E125F8321822F11B00D84CD9 /* CryptoAlgorithmHMAC.h in Headers */,
                                 51D719BA181106E00016DC51 /* IDBAny.h in Headers */,
                                 B25599A40D00D8BA00BB825C /* SVGImage.h in Headers */,
@@ -25490 +25507 @@
                                 97BC6A201505F081001B74AC /* Database.cpp in Sources */,
                                 97BC6A231505F081001B74AC /* DatabaseAuthorizer.cpp in Sources */,
+                                E125F8351822F18A00D84CD9 /* CryptoKeyHMAC.cpp in Sources */,
                                 511EF2C517F0FD3500E4FA16 /* JSIDBIndex.cpp in Sources */,
                                 FE16CFD3169D1DED00D3A0C7 /* DatabaseBackend.cpp in Sources */,
@@ -25631 +25649 @@
                                 E157A8E818184C67009F821D /* JSCryptoKeyCustom.cpp in Sources */,
                                 0705852317FDC140005F2BCB /* MediaTrackConstraints.cpp in Sources */,
+                                E125F8311822F11B00D84CD9 /* CryptoAlgorithmHMAC.cpp in Sources */,
                                 D359D792129CA3C00006E5D2 /* DOMHTMLDetailsElement.mm in Sources */,
                                 85BA4D0C0AA688680088052D /* DOMHTMLDirectoryElement.mm in Sources */,
@@ -26070 +26089 @@
                                 A8EA79F30A1916DF00A8EF5F /* HTMLUListElement.cpp in Sources */,
                                 E44613AA0CD6331000FADA75 /* HTMLVideoElement.cpp in Sources */,
+                                E125F8381822F1EB00D84CD9 /* CryptoAlgorithmHMACMac.cpp in Sources */,
                                 BCCD74E50A4C8DDF005FDA6D /* HTMLViewSourceDocument.cpp in Sources */,
                                 977B3879122883E900B81FF8 /* HTMLViewSourceParser.cpp in Sources */,

trunk/Source/WebCore/bindings/js/JSSubtleCryptoCustom.cpp

@@ -50 +50 @@
     }
 
-    std::unique_ptr<CryptoAlgorithm> result(CryptoAlgorithmRegistry::shared().create(algorithmIdentifier));
+    auto result = CryptoAlgorithmRegistry::shared().create(algorithmIdentifier);
     if (!result)
         setDOMException(exec, NOT_SUPPORTED_ERR);
@@ -79 +79 @@
 }
 
+static bool cryptoOperationDataFromJSValue(ExecState* exec, JSValue value, CryptoOperationData& result)
+{
+    if (ArrayBuffer* buffer = toArrayBuffer(value))
+        result = std::make_pair(static_cast<char*>(buffer->data()), buffer->byteLength());
+    else if (RefPtr<ArrayBufferView> bufferView = toArrayBufferView(value))
+        result = std::make_pair(static_cast<char*>(bufferView->baseAddress()), bufferView->byteLength());
+    else {
+        throwTypeError(exec, "Only ArrayBuffer and ArrayBufferView objects can be part of CryptoOperationData sequence");
+        return false;
+    }
+    return true;
+}
+
+static bool cryptoKeyFormatFromJSValue(ExecState* exec, JSValue value, CryptoKeyFormat& result)
+{
+    String keyFormatString = value.toString(exec)->value(exec);
+    if (exec->hadException())
+        return false;
+    if (keyFormatString == "raw")
+        result = CryptoKeyFormat::Raw;
+    else if (keyFormatString == "pkcs8")
+        result = CryptoKeyFormat::PKCS8;
+    else if (keyFormatString == "spki")
+        result = CryptoKeyFormat::SPKI;
+    else if (keyFormatString == "jwk")
+        result = CryptoKeyFormat::JWK;
+    else {
+        throwTypeError(exec);
+        return false;
+    }
+    return true;
+}
+
+static bool cryptoKeyUsagesFromJSValue(ExecState* exec, JSValue value, CryptoKeyUsage& result)
+{
+    if (!isJSArray(value)) {
+        throwTypeError(exec);
+        return false;
+    }
+
+    result = 0;
+
+    JSC::JSArray* array = asArray(value);
+    for (size_t i = 0; i < array->length(); ++i) {
+        JSC::JSValue element = array->getIndex(exec, i);
+        String usageString = element.toString(exec)->value(exec);
+        if (exec->hadException())
+            return false;
+        if (usageString == "encrypt")
+            result |= CryptoKeyUsageEncrypt;
+        else if (usageString == "decrypt")
+            result |= CryptoKeyUsageDecrypt;
+        else if (usageString == "sign")
+            result |= CryptoKeyUsageSign;
+        else if (usageString == "verify")
+            result |= CryptoKeyUsageVerify;
+        else if (usageString == "deriveKey")
+            result |= CryptoKeyUsageDeriveKey;
+        else if (usageString == "deriveBits")
+            result |= CryptoKeyUsageDeriveBits;
+        else if (usageString == "wrapKey")
+            result |= CryptoKeyUsageWrapKey;
+        else if (usageString == "unwrapKey")
+            result |= CryptoKeyUsageUnwrapKey;
+    }
+    return true;
+}
+
+JSValue JSSubtleCrypto::sign(ExecState* exec)
+{
+    if (exec->argumentCount() < 3)
+        return exec->vm().throwException(exec, createNotEnoughArgumentsError(exec));
+
+    auto algorithm = createAlgorithmFromJSValue(exec, exec->uncheckedArgument(0));
+    if (!algorithm) {
+        ASSERT(exec->hadException());
+        return jsUndefined();
+    }
+
+    auto parameters = JSCryptoAlgorithmDictionary::createParametersForSign(exec, algorithm->identifier(), exec->uncheckedArgument(0));
+    if (!parameters) {
+        ASSERT(exec->hadException());
+        return jsUndefined();
+    }
+
+    RefPtr<CryptoKey> key = toCryptoKey(exec->uncheckedArgument(1));
+    if (!key)
+        return throwTypeError(exec);
+
+    if (!key->allows(CryptoKeyUsageSign)) {
+        m_impl->document()->addConsoleMessage(JSMessageSource, ErrorMessageLevel, "Key usages does not include 'sign'");
+        setDOMException(exec, NOT_SUPPORTED_ERR);
+        return jsUndefined();
+    }
+
+    Vector<CryptoOperationData> data;
+    if (!sequenceOfCryptoOperationDataFromJSValue(exec, exec->uncheckedArgument(2), data)) {
+        ASSERT(exec->hadException());
+        return jsUndefined();
+    }
+
+    JSPromise* promise = JSPromise::createWithResolver(exec->vm(), globalObject());
+    auto promiseWrapper = PromiseWrapper::create(globalObject(), promise);
+
+    ExceptionCode ec = 0;
+    algorithm->sign(*parameters, *key.get(), data, std::move(promiseWrapper), ec);
+    if (ec) {
+        setDOMException(exec, ec);
+        return jsUndefined();
+    }
+
+    return promise;
+}
+
+JSValue JSSubtleCrypto::verify(ExecState* exec)
+{
+    if (exec->argumentCount() < 4)
+        return exec->vm().throwException(exec, createNotEnoughArgumentsError(exec));
+
+    auto algorithm = createAlgorithmFromJSValue(exec, exec->uncheckedArgument(0));
+    if (!algorithm) {
+        ASSERT(exec->hadException());
+        return jsUndefined();
+    }
+
+    auto parameters = JSCryptoAlgorithmDictionary::createParametersForVerify(exec, algorithm->identifier(), exec->uncheckedArgument(0));
+    if (!parameters) {
+        ASSERT(exec->hadException());
+        return jsUndefined();
+    }
+
+    RefPtr<CryptoKey> key = toCryptoKey(exec->uncheckedArgument(1));
+    if (!key)
+        return throwTypeError(exec);
+
+    if (!key->allows(CryptoKeyUsageVerify)) {
+        m_impl->document()->addConsoleMessage(JSMessageSource, ErrorMessageLevel, "Key usages does not include 'verify'");
+        setDOMException(exec, NOT_SUPPORTED_ERR);
+        return jsUndefined();
+    }
+
+    CryptoOperationData signature;
+    if (!cryptoOperationDataFromJSValue(exec, exec->uncheckedArgument(2), signature)) {
+        ASSERT(exec->hadException());
+        return jsUndefined();
+    }
+
+    Vector<CryptoOperationData> data;
+    if (!sequenceOfCryptoOperationDataFromJSValue(exec, exec->uncheckedArgument(3), data)) {
+        ASSERT(exec->hadException());
+        return jsUndefined();
+    }
+
+    JSPromise* promise = JSPromise::createWithResolver(exec->vm(), globalObject());
+    auto promiseWrapper = PromiseWrapper::create(globalObject(), promise);
+
+    ExceptionCode ec = 0;
+    algorithm->verify(*parameters, *key, signature, data, std::move(promiseWrapper), ec);
+    if (ec) {
+        setDOMException(exec, ec);
+        return jsUndefined();
+    }
+
+    return promise;
+}
+
 JSValue JSSubtleCrypto::digest(ExecState* exec)
 {
@@ -84 +250 @@
         return exec->vm().throwException(exec, createNotEnoughArgumentsError(exec));
 
-    std::unique_ptr<CryptoAlgorithm> algorithm = createAlgorithmFromJSValue(exec, exec->uncheckedArgument(0));
+    auto algorithm = createAlgorithmFromJSValue(exec, exec->uncheckedArgument(0));
     if (!algorithm) {
         ASSERT(exec->hadException());
@@ -90 +256 @@
     }
 
-    std::unique_ptr<CryptoAlgorithmParameters> parameters = JSCryptoAlgorithmDictionary::createParametersForDigest(exec, algorithm->identifier(), exec->uncheckedArgument(0));
+    auto parameters = JSCryptoAlgorithmDictionary::createParametersForDigest(exec, algorithm->identifier(), exec->uncheckedArgument(0));
     if (!parameters) {
         ASSERT(exec->hadException());
@@ -115 +281 @@
 }
 
+JSValue JSSubtleCrypto::importKey(JSC::ExecState* exec)
+{
+    if (exec->argumentCount() < 3)
+        return exec->vm().throwException(exec, createNotEnoughArgumentsError(exec));
+
+    CryptoKeyFormat keyFormat;
+    if (!cryptoKeyFormatFromJSValue(exec, exec->argument(0), keyFormat)) {
+        ASSERT(exec->hadException());
+        return jsUndefined();
+    }
+
+    CryptoOperationData data;
+    if (!cryptoOperationDataFromJSValue(exec, exec->uncheckedArgument(1), data)) {
+        ASSERT(exec->hadException());
+        return jsUndefined();
+    }
+
+    std::unique_ptr<CryptoAlgorithm> algorithm;
+    if (!exec->uncheckedArgument(2).isNull()) {
+        algorithm = createAlgorithmFromJSValue(exec, exec->uncheckedArgument(2));
+        if (!algorithm) {
+            ASSERT(exec->hadException());
+            return jsUndefined();
+        }
+    }
+    // The algorithm can presumably be null when we can deduce it from the key (JWE perhaps?)
+    // But we only support raw key format right now.
+    if (!algorithm) {
+        setDOMException(exec, NOT_SUPPORTED_ERR);
+        return jsUndefined();
+    }
+
+    auto parameters = JSCryptoAlgorithmDictionary::createParametersForImportKey(exec, algorithm->identifier(), exec->uncheckedArgument(2));
+    if (!parameters) {
+        ASSERT(exec->hadException());
+        return jsUndefined();
+    }
+
+    bool extractable = false;
+    if (exec->argumentCount() >= 4) {
+        extractable = exec->uncheckedArgument(3).toBoolean(exec);
+        if (exec->hadException())
+            return jsUndefined();
+    }
+
+    CryptoKeyUsage keyUsages = 0;
+    if (exec->argumentCount() >= 5) {
+        if (!cryptoKeyUsagesFromJSValue(exec, exec->argument(4), keyUsages)) {
+            ASSERT(exec->hadException());
+            return jsUndefined();
+        }
+    }
+
+    JSPromise* promise = JSPromise::createWithResolver(exec->vm(), globalObject());
+    auto promiseWrapper = PromiseWrapper::create(globalObject(), promise);
+
+    ExceptionCode ec = 0;
+    algorithm->importKey(*parameters, keyFormat, data, extractable, keyUsages, std::move(promiseWrapper), ec);
+    if (ec) {
+        setDOMException(exec, ec);
+        return jsUndefined();
+    }
+
+    return promise;
+}
+
 } // namespace WebCore
 

trunk/Source/WebCore/crypto/SubtleCrypto.idl

@@ -31 +31 @@
     OperationsNotDeletable
 ] interface SubtleCrypto {
+    [Custom] Promise sign(AlgorithmIdentifier algorithm, Key key, sequence<CryptoOperationData> data);
+    [Custom] Promise verify(AlgorithmIdentifier algorithm, Key key, CryptoOperationData signature, sequence<CryptoOperationData> data);
     [Custom] Promise digest(AlgorithmIdentifier algorithm, sequence<CryptoOperationData> data);
+    [Custom] Promise importKey(KeyFormat format, CryptoOperationData keyData, AlgorithmIdentifier? algorithm, optional boolean extractable, optional KeyUsage[] keyUsages);
 };

trunk/Source/WebCore/crypto/algorithms/CryptoAlgorithmHMAC.cpp

@@ -25 +25 @@
 
 #include "config.h"
-#include "CryptoAlgorithmRegistry.h"
+#include "CryptoAlgorithmHMAC.h"
 
 #if ENABLE(SUBTLE_CRYPTO)
 
-//#include "CryptoAlgorithmHMAC.h"
-#include "CryptoAlgorithmSHA1.h"
+#include "CryptoAlgorithmHmacParams.h"
+#include "CryptoKeyHMAC.h"
+#include "ExceptionCode.h"
+#include "JSDOMPromise.h"
 
 namespace WebCore {
 
-void CryptoAlgorithmRegistry::platformRegisterAlgorithms()
+const char* const CryptoAlgorithmHMAC::s_name = "hmac";
+
+CryptoAlgorithmHMAC::CryptoAlgorithmHMAC()
 {
-//    registerAlgorithm(CryptoAlgorithmHMAC::s_name, CryptoAlgorithmHMAC::s_identifier, CryptoAlgorithmHMAC::create);
-    registerAlgorithm(CryptoAlgorithmSHA1::s_name, CryptoAlgorithmSHA1::s_identifier, CryptoAlgorithmSHA1::create);
+}
+
+CryptoAlgorithmHMAC::~CryptoAlgorithmHMAC()
+{
+}
+
+std::unique_ptr<CryptoAlgorithm> CryptoAlgorithmHMAC::create()
+{
+    return std::unique_ptr<CryptoAlgorithm>(new CryptoAlgorithmHMAC);
+}
+
+CryptoAlgorithmIdentifier CryptoAlgorithmHMAC::identifier() const
+{
+    return s_identifier;
+}
+
+void CryptoAlgorithmHMAC::importKey(const CryptoAlgorithmParameters& parameters, CryptoKeyFormat format, const CryptoOperationData& data, bool extractable, CryptoKeyUsage usage, std::unique_ptr<PromiseWrapper> promise, ExceptionCode& ec)
+{
+    if (format != CryptoKeyFormat::Raw) {
+        ec = NOT_SUPPORTED_ERR;
+        return;
+    }
+    const CryptoAlgorithmHmacParams& hmacParameters = static_cast<const CryptoAlgorithmHmacParams&>(parameters);
+    Vector<char> keyData;
+    keyData.append(data.first, data.second);
+    RefPtr<CryptoKeyHMAC> result = CryptoKeyHMAC::create(keyData, hmacParameters.hash, extractable, usage);
+    promise->fulfill(result.release());
+}
+
+void CryptoAlgorithmHMAC::exportKey(const CryptoAlgorithmParameters&, CryptoKeyFormat, const CryptoKey&, std::unique_ptr<PromiseWrapper>, ExceptionCode& ec)
+{
+    // Not implemented yet.
+    ec = NOT_SUPPORTED_ERR;
 }
 

trunk/Source/WebCore/crypto/algorithms/CryptoAlgorithmHMAC.h

@@ -24 +24 @@
  */
 
-#include "config.h"
-#include "CryptoAlgorithmRegistry.h"
+#ifndef CryptoAlgorithmHMAC_h
+#define CryptoAlgorithmHMAC_h
+
+#include "CryptoAlgorithm.h"
 
 #if ENABLE(SUBTLE_CRYPTO)
 
-//#include "CryptoAlgorithmHMAC.h"
-#include "CryptoAlgorithmSHA1.h"
-
 namespace WebCore {
 
-void CryptoAlgorithmRegistry::platformRegisterAlgorithms()
-{
-//    registerAlgorithm(CryptoAlgorithmHMAC::s_name, CryptoAlgorithmHMAC::s_identifier, CryptoAlgorithmHMAC::create);
-    registerAlgorithm(CryptoAlgorithmSHA1::s_name, CryptoAlgorithmSHA1::s_identifier, CryptoAlgorithmSHA1::create);
-}
+class CryptoAlgorithmHMAC FINAL : public CryptoAlgorithm {
+public:
+    static const char* const s_name;
+    static const CryptoAlgorithmIdentifier s_identifier = CryptoAlgorithmIdentifier::HMAC;
+
+    static std::unique_ptr<CryptoAlgorithm> create();
+
+    virtual CryptoAlgorithmIdentifier identifier() const OVERRIDE;
+
+    virtual void sign(const CryptoAlgorithmParameters&, const CryptoKey&, const Vector<CryptoOperationData>&, std::unique_ptr<PromiseWrapper>, ExceptionCode&) OVERRIDE;
+    virtual void verify(const CryptoAlgorithmParameters&, const CryptoKey&, const CryptoOperationData& signature, const Vector<CryptoOperationData>& data, std::unique_ptr<PromiseWrapper>, ExceptionCode&) OVERRIDE;
+    virtual void generateKey(const CryptoAlgorithmParameters&, bool extractable, CryptoKeyUsage, std::unique_ptr<PromiseWrapper>, ExceptionCode&) OVERRIDE;
+    virtual void importKey(const CryptoAlgorithmParameters&, CryptoKeyFormat, const CryptoOperationData&, bool extractable, CryptoKeyUsage, std::unique_ptr<PromiseWrapper>, ExceptionCode&) OVERRIDE;
+    virtual void exportKey(const CryptoAlgorithmParameters&, CryptoKeyFormat, const CryptoKey&, std::unique_ptr<PromiseWrapper>, ExceptionCode&) OVERRIDE;
+
+private:
+    CryptoAlgorithmHMAC();
+    virtual ~CryptoAlgorithmHMAC();
+};
 
 }
 
 #endif // ENABLE(SUBTLE_CRYPTO)
+
+
+#endif // CryptoAlgorithmHMAC_h

trunk/Source/WebCore/crypto/keys/CryptoKeyHMAC.cpp

@@ -25 +25 @@
 
 #include "config.h"
-#include "CryptoAlgorithmRegistry.h"
+#include "CryptoKeyHMAC.h"
 
 #if ENABLE(SUBTLE_CRYPTO)
 
-//#include "CryptoAlgorithmHMAC.h"
-#include "CryptoAlgorithmSHA1.h"
+#include "CryptoAlgorithmDescriptionBuilder.h"
+#include "CryptoAlgorithmRegistry.h"
+#include <wtf/text/WTFString.h>
 
 namespace WebCore {
 
-void CryptoAlgorithmRegistry::platformRegisterAlgorithms()
+CryptoKeyHMAC::CryptoKeyHMAC(const Vector<char>& key, CryptoAlgorithmIdentifier hash, bool extractable, CryptoKeyUsage usage)
+    : CryptoKey(CryptoAlgorithmIdentifier::HMAC, CryptoKeyType::Secret, extractable, usage)
+    , m_hash(hash)
+    , m_key(key)
 {
-//    registerAlgorithm(CryptoAlgorithmHMAC::s_name, CryptoAlgorithmHMAC::s_identifier, CryptoAlgorithmHMAC::create);
-    registerAlgorithm(CryptoAlgorithmSHA1::s_name, CryptoAlgorithmSHA1::s_identifier, CryptoAlgorithmSHA1::create);
 }
 
+CryptoKeyHMAC::~CryptoKeyHMAC()
+{
 }
 
+void CryptoKeyHMAC::buildAlgorithmDescription(CryptoAlgorithmDescriptionBuilder& builder) const
+{
+    CryptoKey::buildAlgorithmDescription(builder);
+
+    auto hashDescriptionBuilder = builder.createEmptyClone();
+    hashDescriptionBuilder->add("name", CryptoAlgorithmRegistry::shared().nameForIdentifier(m_hash));
+    builder.add("hash", *hashDescriptionBuilder);
+
+    builder.add("length", m_key.size());
+}
+
+} // namespace WebCore
+
 #endif // ENABLE(SUBTLE_CRYPTO)

trunk/Source/WebCore/crypto/keys/CryptoKeyHMAC.h

@@ -24 +24 @@
  */
 
-#include "config.h"
-#include "CryptoAlgorithmRegistry.h"
+#ifndef CryptoKeyHMAC_h
+#define CryptoKeyHMAC_h
+
+#include "CryptoKey.h"
+#include <wtf/Ref.h>
+#include <wtf/Vector.h>
 
 #if ENABLE(SUBTLE_CRYPTO)
 
-//#include "CryptoAlgorithmHMAC.h"
-#include "CryptoAlgorithmSHA1.h"
-
 namespace WebCore {
 
-void CryptoAlgorithmRegistry::platformRegisterAlgorithms()
-{
-//    registerAlgorithm(CryptoAlgorithmHMAC::s_name, CryptoAlgorithmHMAC::s_identifier, CryptoAlgorithmHMAC::create);
-    registerAlgorithm(CryptoAlgorithmSHA1::s_name, CryptoAlgorithmSHA1::s_identifier, CryptoAlgorithmSHA1::create);
-}
+class CryptoKeyHMAC FINAL : public CryptoKey {
+public:
+    static PassRefPtr<CryptoKeyHMAC> create(const Vector<char>& key, CryptoAlgorithmIdentifier hash, bool extractable, CryptoKeyUsage usage)
+    {
+        return adoptRef(new CryptoKeyHMAC(key, hash, extractable, usage));
+    }
+    virtual ~CryptoKeyHMAC();
 
-}
+    const Vector<char>& key() const { return m_key; }
+
+    virtual void buildAlgorithmDescription(CryptoAlgorithmDescriptionBuilder&) const OVERRIDE;
+
+private:
+    CryptoKeyHMAC(const Vector<char>& key, CryptoAlgorithmIdentifier hash, bool extractable, CryptoKeyUsage);
+
+    CryptoAlgorithmIdentifier m_hash;
+    Vector<char> m_key;
+};
+
+} // namespace WebCore
 
 #endif // ENABLE(SUBTLE_CRYPTO)
+#endif // CryptoKeyHMAC_h

trunk/Source/WebCore/crypto/mac/CryptoAlgorithmRegistryMac.cpp

@@ -29 +29 @@
 #if ENABLE(SUBTLE_CRYPTO)
 
-//#include "CryptoAlgorithmHMAC.h"
+#include "CryptoAlgorithmHMAC.h"
 #include "CryptoAlgorithmSHA1.h"
 
@@ -36 +36 @@
 void CryptoAlgorithmRegistry::platformRegisterAlgorithms()
 {
-//    registerAlgorithm(CryptoAlgorithmHMAC::s_name, CryptoAlgorithmHMAC::s_identifier, CryptoAlgorithmHMAC::create);
+    registerAlgorithm(CryptoAlgorithmHMAC::s_name, CryptoAlgorithmHMAC::s_identifier, CryptoAlgorithmHMAC::create);
     registerAlgorithm(CryptoAlgorithmSHA1::s_name, CryptoAlgorithmSHA1::s_identifier, CryptoAlgorithmSHA1::create);
 }