Changeset 159292 in webkit

Timestamp:

Nov 14, 2013 10:26:36 AM (10 years ago)

Author:

ap@apple.com

Message:

Implement RSASSA-PKCS1-v1_5 sign/verify
​https://bugs.webkit.org/show_bug.cgi?id=124335

Reviewed by Sam Weinig.

Source/WebCore:

Test: crypto/subtle/rsassa-pkcs1-v1_5-sign-verify.html

• WebCore.xcodeproj/project.pbxproj: Added new files, removed Mac SHA algorithm files.

• crypto/CryptoAlgorithmRSASSA_PKCS1_v1_5Mac.cpp:

(WebCore::getCommonCryptoDigestAlgorithm):
(WebCore::CryptoAlgorithmRSASSA_PKCS1_v1_5::sign):
(WebCore::CryptoAlgorithmRSASSA_PKCS1_v1_5::verify):
Implemented. These take two steps, first a digest is computed, and then it's signed.

• crypto/CryptoDigest.h: Added.
• crypto/mac/CryptoDigestMac.cpp: Added.

(WebCore::CryptoDigest::CryptoDigest):
(WebCore::CryptoDigest::~CryptoDigest):
(WebCore::CryptoDigest::create):
(WebCore::CryptoDigest::addBytes):
(WebCore::CryptoDigest::computeHash):
Added a cross-platform interface and Mac implementation to compute a digest. It
should be possible to use it outside WebCrypto if we need to (perhaps even merge
with WTF SHA-1 class).
The Mac implementation is kind of ugly, but at least it encapsulates the ugliness.

• crypto/algorithms/CryptoAlgorithmSHA1.cpp: (WebCore::CryptoAlgorithmSHA1::digest):
• crypto/algorithms/CryptoAlgorithmSHA224.cpp: (WebCore::CryptoAlgorithmSHA224::digest):
• crypto/algorithms/CryptoAlgorithmSHA256.cpp: (WebCore::CryptoAlgorithmSHA256::digest):
• crypto/algorithms/CryptoAlgorithmSHA384.cpp: (WebCore::CryptoAlgorithmSHA384::digest):
• crypto/algorithms/CryptoAlgorithmSHA512.cpp: (WebCore::CryptoAlgorithmSHA512::digest):
• crypto/mac/CryptoAlgorithmSHA1Mac.cpp: Removed.
• crypto/mac/CryptoAlgorithmSHA224Mac.cpp: Removed.
• crypto/mac/CryptoAlgorithmSHA256Mac.cpp: Removed.
• crypto/mac/CryptoAlgorithmSHA384Mac.cpp: Removed.
• crypto/mac/CryptoAlgorithmSHA512Mac.cpp: Removed.

These are all cross-platform now.

LayoutTests:

• crypto/subtle/rsassa-pkcs1-v1_5-sign-verify-expected.txt: Added.
• crypto/subtle/rsassa-pkcs1-v1_5-sign-verify.html: Added.

Location:

trunk

Files:

• LayoutTests/ChangeLog (modified) (1 diff)
• LayoutTests/crypto/subtle/rsassa-pkcs1-v1_5-sign-verify-expected.txt (added)
• LayoutTests/crypto/subtle/rsassa-pkcs1-v1_5-sign-verify.html (added)
• Source/WebCore/ChangeLog (modified) (1 diff)
• Source/WebCore/WebCore.xcodeproj/project.pbxproj (modified) (15 diffs)
• Source/WebCore/crypto/CryptoAlgorithmRSASSA_PKCS1_v1_5Mac.cpp (modified) (1 diff)
• Source/WebCore/crypto/CryptoDigest.h (copied) (copied from trunk/Source/WebCore/crypto/algorithms/CryptoAlgorithmSHA512.cpp) (2 diffs)
• Source/WebCore/crypto/algorithms/CryptoAlgorithmSHA1.cpp (modified) (2 diffs)
• Source/WebCore/crypto/algorithms/CryptoAlgorithmSHA224.cpp (modified) (2 diffs)
• Source/WebCore/crypto/algorithms/CryptoAlgorithmSHA256.cpp (modified) (2 diffs)
• Source/WebCore/crypto/algorithms/CryptoAlgorithmSHA384.cpp (modified) (2 diffs)
• Source/WebCore/crypto/algorithms/CryptoAlgorithmSHA512.cpp (modified) (2 diffs)
• Source/WebCore/crypto/mac/CryptoAlgorithmSHA1Mac.cpp (deleted)
• Source/WebCore/crypto/mac/CryptoAlgorithmSHA224Mac.cpp (deleted)
• Source/WebCore/crypto/mac/CryptoAlgorithmSHA256Mac.cpp (deleted)
• Source/WebCore/crypto/mac/CryptoAlgorithmSHA384Mac.cpp (deleted)
• Source/WebCore/crypto/mac/CryptoAlgorithmSHA512Mac.cpp (deleted)
• Source/WebCore/crypto/mac/CryptoDigestMac.cpp (added)

trunk/LayoutTests/ChangeLog

@@ +1 @@
+2013-11-14  Alexey Proskuryakov  <ap@apple.com>
+
+        Implement RSASSA-PKCS1-v1_5 sign/verify
+        https://bugs.webkit.org/show_bug.cgi?id=124335
+
+        Reviewed by Sam Weinig.
+
+        * crypto/subtle/rsassa-pkcs1-v1_5-sign-verify-expected.txt: Added.
+        * crypto/subtle/rsassa-pkcs1-v1_5-sign-verify.html: Added.
+
 2013-11-14  Hans Muller  <hmuller@adobe.com>
 

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2013-11-14  Alexey Proskuryakov  <ap@apple.com>
+
+        Implement RSASSA-PKCS1-v1_5 sign/verify
+        https://bugs.webkit.org/show_bug.cgi?id=124335
+
+        Reviewed by Sam Weinig.
+
+        Test: crypto/subtle/rsassa-pkcs1-v1_5-sign-verify.html
+
+        * WebCore.xcodeproj/project.pbxproj: Added new files, removed Mac SHA algorithm files.
+
+        * crypto/CryptoAlgorithmRSASSA_PKCS1_v1_5Mac.cpp:
+        (WebCore::getCommonCryptoDigestAlgorithm):
+        (WebCore::CryptoAlgorithmRSASSA_PKCS1_v1_5::sign):
+        (WebCore::CryptoAlgorithmRSASSA_PKCS1_v1_5::verify):
+        Implemented. These take two steps, first a digest is computed, and then it's signed.
+
+        * crypto/CryptoDigest.h: Added.
+        * crypto/mac/CryptoDigestMac.cpp: Added.
+        (WebCore::CryptoDigest::CryptoDigest):
+        (WebCore::CryptoDigest::~CryptoDigest):
+        (WebCore::CryptoDigest::create):
+        (WebCore::CryptoDigest::addBytes):
+        (WebCore::CryptoDigest::computeHash):
+        Added a cross-platform interface and Mac implementation to compute a digest. It
+        should be possible to use it outside WebCrypto if we need to (perhaps even merge
+        with  WTF SHA-1 class).
+        The Mac implementation is kind of ugly, but at least it encapsulates the ugliness.
+
+        * crypto/algorithms/CryptoAlgorithmSHA1.cpp: (WebCore::CryptoAlgorithmSHA1::digest):
+        * crypto/algorithms/CryptoAlgorithmSHA224.cpp: (WebCore::CryptoAlgorithmSHA224::digest):
+        * crypto/algorithms/CryptoAlgorithmSHA256.cpp: (WebCore::CryptoAlgorithmSHA256::digest):
+        * crypto/algorithms/CryptoAlgorithmSHA384.cpp: (WebCore::CryptoAlgorithmSHA384::digest):
+        * crypto/algorithms/CryptoAlgorithmSHA512.cpp: (WebCore::CryptoAlgorithmSHA512::digest):
+        * crypto/mac/CryptoAlgorithmSHA1Mac.cpp: Removed.
+        * crypto/mac/CryptoAlgorithmSHA224Mac.cpp: Removed.
+        * crypto/mac/CryptoAlgorithmSHA256Mac.cpp: Removed.
+        * crypto/mac/CryptoAlgorithmSHA384Mac.cpp: Removed.
+        * crypto/mac/CryptoAlgorithmSHA512Mac.cpp: Removed.
+        These are all cross-platform now.
+
 2013-11-14  Hans Muller  <hmuller@adobe.com>
 

trunk/Source/WebCore/WebCore.xcodeproj/project.pbxproj

@@ -5533 +5533 @@
                 E125F82B1822CFEC00D84CD9 /* CryptoAlgorithmSHA1.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E125F8291822CFEC00D84CD9 /* CryptoAlgorithmSHA1.cpp */; };
                 E125F82C1822CFEC00D84CD9 /* CryptoAlgorithmSHA1.h in Headers */ = {isa = PBXBuildFile; fileRef = E125F82A1822CFEC00D84CD9 /* CryptoAlgorithmSHA1.h */; };
-                E125F82E1822CFFF00D84CD9 /* CryptoAlgorithmSHA1Mac.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E125F82D1822CFFF00D84CD9 /* CryptoAlgorithmSHA1Mac.cpp */; };
                 E125F8311822F11B00D84CD9 /* CryptoAlgorithmHMAC.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E125F82F1822F11B00D84CD9 /* CryptoAlgorithmHMAC.cpp */; };
                 E125F8321822F11B00D84CD9 /* CryptoAlgorithmHMAC.h in Headers */ = {isa = PBXBuildFile; fileRef = E125F8301822F11B00D84CD9 /* CryptoAlgorithmHMAC.h */; };
@@ -5627 +5626 @@
                 E18772F1126E2629003DD586 /* Language.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E18772F0126E2629003DD586 /* Language.cpp */; };
                 E19727161820549E00592D51 /* CryptoKeyType.h in Headers */ = {isa = PBXBuildFile; fileRef = E19727151820549E00592D51 /* CryptoKeyType.h */; };
-                E19AC3E21824DC6900349426 /* CryptoAlgorithmSHA224Mac.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E19AC3DE1824DC6900349426 /* CryptoAlgorithmSHA224Mac.cpp */; };
-                E19AC3E31824DC6900349426 /* CryptoAlgorithmSHA256Mac.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E19AC3DF1824DC6900349426 /* CryptoAlgorithmSHA256Mac.cpp */; };
-                E19AC3E41824DC6900349426 /* CryptoAlgorithmSHA384Mac.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E19AC3E01824DC6900349426 /* CryptoAlgorithmSHA384Mac.cpp */; };
-                E19AC3E51824DC6900349426 /* CryptoAlgorithmSHA512Mac.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E19AC3E11824DC6900349426 /* CryptoAlgorithmSHA512Mac.cpp */; };
                 E19AC3EE1824DC7900349426 /* CryptoAlgorithmSHA224.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E19AC3E61824DC7900349426 /* CryptoAlgorithmSHA224.cpp */; };
                 E19AC3EF1824DC7900349426 /* CryptoAlgorithmSHA224.h in Headers */ = {isa = PBXBuildFile; fileRef = E19AC3E71824DC7900349426 /* CryptoAlgorithmSHA224.h */; };
@@ -5722 +5717 @@
                 E1F80B8D183172B5007885C3 /* JSCryptoKeyPair.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E1F80B8B183172B5007885C3 /* JSCryptoKeyPair.cpp */; };
                 E1F80B8E183172B5007885C3 /* JSCryptoKeyPair.h in Headers */ = {isa = PBXBuildFile; fileRef = E1F80B8C183172B5007885C3 /* JSCryptoKeyPair.h */; };
+                E1FE13641834351100892F13 /* CryptoDigestMac.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E1FE13621834351100892F13 /* CryptoDigestMac.cpp */; };
+                E1FE136718343A1000892F13 /* CryptoDigest.h in Headers */ = {isa = PBXBuildFile; fileRef = E1FE136618343A1000892F13 /* CryptoDigest.h */; };
                 E1FF57A30F01255B00891EBB /* ThreadGlobalData.h in Headers */ = {isa = PBXBuildFile; fileRef = E1FF57A20F01255B00891EBB /* ThreadGlobalData.h */; settings = {ATTRIBUTES = (Private, ); }; };
                 E1FF57A60F01256B00891EBB /* ThreadGlobalData.cpp in Sources */ = {isa = PBXBuildFile; fileRef = E1FF57A50F01256B00891EBB /* ThreadGlobalData.cpp */; };
@@ -12623 +12620 @@
                 E125F8291822CFEC00D84CD9 /* CryptoAlgorithmSHA1.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = CryptoAlgorithmSHA1.cpp; sourceTree = "<group>"; };
                 E125F82A1822CFEC00D84CD9 /* CryptoAlgorithmSHA1.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = CryptoAlgorithmSHA1.h; sourceTree = "<group>"; };
-                E125F82D1822CFFF00D84CD9 /* CryptoAlgorithmSHA1Mac.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; name = CryptoAlgorithmSHA1Mac.cpp; path = mac/CryptoAlgorithmSHA1Mac.cpp; sourceTree = "<group>"; };
                 E125F82F1822F11B00D84CD9 /* CryptoAlgorithmHMAC.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = CryptoAlgorithmHMAC.cpp; sourceTree = "<group>"; };
                 E125F8301822F11B00D84CD9 /* CryptoAlgorithmHMAC.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = CryptoAlgorithmHMAC.h; sourceTree = "<group>"; };
@@ -12723 +12719 @@
                 E18772F0126E2629003DD586 /* Language.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = Language.cpp; sourceTree = "<group>"; };
                 E19727151820549E00592D51 /* CryptoKeyType.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = CryptoKeyType.h; sourceTree = "<group>"; };
-                E19AC3DE1824DC6900349426 /* CryptoAlgorithmSHA224Mac.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; name = CryptoAlgorithmSHA224Mac.cpp; path = mac/CryptoAlgorithmSHA224Mac.cpp; sourceTree = "<group>"; };
-                E19AC3DF1824DC6900349426 /* CryptoAlgorithmSHA256Mac.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; name = CryptoAlgorithmSHA256Mac.cpp; path = mac/CryptoAlgorithmSHA256Mac.cpp; sourceTree = "<group>"; };
-                E19AC3E01824DC6900349426 /* CryptoAlgorithmSHA384Mac.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; name = CryptoAlgorithmSHA384Mac.cpp; path = mac/CryptoAlgorithmSHA384Mac.cpp; sourceTree = "<group>"; };
-                E19AC3E11824DC6900349426 /* CryptoAlgorithmSHA512Mac.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; name = CryptoAlgorithmSHA512Mac.cpp; path = mac/CryptoAlgorithmSHA512Mac.cpp; sourceTree = "<group>"; };
                 E19AC3E61824DC7900349426 /* CryptoAlgorithmSHA224.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = CryptoAlgorithmSHA224.cpp; sourceTree = "<group>"; };
                 E19AC3E71824DC7900349426 /* CryptoAlgorithmSHA224.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = CryptoAlgorithmSHA224.h; sourceTree = "<group>"; };
@@ -12827 +12819 @@
                 E1F80B8B183172B5007885C3 /* JSCryptoKeyPair.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = JSCryptoKeyPair.cpp; sourceTree = "<group>"; };
                 E1F80B8C183172B5007885C3 /* JSCryptoKeyPair.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = JSCryptoKeyPair.h; sourceTree = "<group>"; };
+                E1FE13621834351100892F13 /* CryptoDigestMac.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; name = CryptoDigestMac.cpp; path = mac/CryptoDigestMac.cpp; sourceTree = "<group>"; };
+                E1FE136618343A1000892F13 /* CryptoDigest.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = CryptoDigest.h; sourceTree = "<group>"; };
                 E1FF57A20F01255B00891EBB /* ThreadGlobalData.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = ThreadGlobalData.h; sourceTree = "<group>"; };
                 E1FF57A50F01256B00891EBB /* ThreadGlobalData.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = ThreadGlobalData.cpp; sourceTree = "<group>"; };
@@ -20355 +20349 @@
                                 E125F8371822F1EB00D84CD9 /* CryptoAlgorithmHMACMac.cpp */,
                                 E1BB84AC1822CA7400525043 /* CryptoAlgorithmRegistryMac.cpp */,
-                                E125F82D1822CFFF00D84CD9 /* CryptoAlgorithmSHA1Mac.cpp */,
                                 E1C266D618317AB4003F8B33 /* CryptoAlgorithmRSASSA_PKCS1_v1_5Mac.cpp */,
-                                E19AC3DE1824DC6900349426 /* CryptoAlgorithmSHA224Mac.cpp */,
-                                E19AC3DF1824DC6900349426 /* CryptoAlgorithmSHA256Mac.cpp */,
-                                E19AC3E01824DC6900349426 /* CryptoAlgorithmSHA384Mac.cpp */,
-                                E19AC3E11824DC6900349426 /* CryptoAlgorithmSHA512Mac.cpp */,
                                 E19AC3F8182566F700349426 /* CryptoKeyMac.cpp */,
                                 E164FAA418315E1A00DB4E61 /* CryptoKeyRSAMac.cpp */,
+                                E1FE13621834351100892F13 /* CryptoDigestMac.cpp */,
                         );
                         name = mac;
@@ -20546 +20536 @@
                                 E1FF8F6A180DB5BE00132674 /* CryptoAlgorithmRegistry.cpp */,
                                 E1FF8F6B180DB5BE00132674 /* CryptoAlgorithmRegistry.h */,
+                                E1FE136618343A1000892F13 /* CryptoDigest.h */,
                                 E157A8DC18172C2C009F821D /* CryptoKey.idl */,
                                 E157A8E218173A3A009F821D /* CryptoKey.cpp */,
@@ -22880 +22871 @@
                                 0F099D0917B968A100FF84B9 /* WebCoreTypedArrayController.h in Headers */,
                                 1A88A90517553CD7000C74F9 /* FileIconLoader.h in Headers */,
+                                E1FE136718343A1000892F13 /* CryptoDigest.h in Headers */,
                                 F55B3DBE1251F12D003EF269 /* FileInputType.h in Headers */,
                                 976D6C86122B8A3D001FD1F7 /* FileList.h in Headers */,
@@ -25696 +25688 @@
                                 37C238221098C84200EF9F72 /* ComplexTextControllerCoreText.mm in Sources */,
                                 316FE1150E6E1DA700BF6088 /* CompositeAnimation.cpp in Sources */,
-                                E19AC3E31824DC6900349426 /* CryptoAlgorithmSHA256Mac.cpp in Sources */,
                                 93309DDC099E64920056E581 /* CompositeEditCommand.cpp in Sources */,
                                 79F2F5A11091939A000D87CB /* CompositionEvent.cpp in Sources */,
@@ -26391 +26382 @@
                                 A81369D7097374F600D74463 /* HTMLTextAreaElement.cpp in Sources */,
                                 9BC6C21C13CCC97B008E0337 /* HTMLTextFormControlElement.cpp in Sources */,
-                                E125F82E1822CFFF00D84CD9 /* CryptoAlgorithmSHA1Mac.cpp in Sources */,
                                 A871DC290A15205700B12A68 /* HTMLTitleElement.cpp in Sources */,
                                 977B3877122883E900B81FF8 /* HTMLTokenizer.cpp in Sources */,
@@ -27270 +27260 @@
                                 85031B490A44EFC700F992E0 /* MutationEvent.cpp in Sources */,
                                 C6F0900E14327B6100685849 /* MutationObserver.cpp in Sources */,
-                                E19AC3E51824DC6900349426 /* CryptoAlgorithmSHA512Mac.cpp in Sources */,
                                 D6E528A3149A926D00EFE1F3 /* MutationObserverInterestGroup.cpp in Sources */,
                                 E19AC3F9182566F700349426 /* CryptoKeyMac.cpp in Sources */,
@@ -27641 +27630 @@
                                 BCD0E0FA0E972C3500265DEA /* SecurityOrigin.cpp in Sources */,
                                 974D2DA4146A535D00D51F8B /* SecurityPolicy.cpp in Sources */,
-                                E19AC3E21824DC6900349426 /* CryptoAlgorithmSHA224Mac.cpp in Sources */,
                                 371F4FFD0D25E7F300ECE0D5 /* SegmentedFontData.cpp in Sources */,
                                 B2C3DA2E0D006C1D00EF6F26 /* SegmentedString.cpp in Sources */,
@@ -28151 +28139 @@
                                 FB719C4017238CAE0022DE34 /* WebKitCSSMatFunctionValue.cpp in Sources */,
                                 078E091117D14CEE00420AA1 /* RTCVoidRequestImpl.cpp in Sources */,
+                                E1FE13641834351100892F13 /* CryptoDigestMac.cpp in Sources */,
                                 498391580F1E776900C23782 /* WebKitCSSMatrix.cpp in Sources */,
                                 A24BF77C15CC3BAF003191F2 /* WebKitCSSMixFunctionValue.cpp in Sources */,
@@ -28221 +28210 @@
                                 BC772C460C4EB2C60083285F /* XMLHttpRequest.cpp in Sources */,
                                 978D07CE145A10370096908D /* XMLHttpRequestException.cpp in Sources */,
-                                E19AC3E41824DC6900349426 /* CryptoAlgorithmSHA384Mac.cpp in Sources */,
                                 A136A00C1134DBD200CC8D50 /* XMLHttpRequestProgressEventThrottle.cpp in Sources */,
                                 BCDFD48F0E305290009D10AD /* XMLHttpRequestUpload.cpp in Sources */,

trunk/Source/WebCore/crypto/CryptoAlgorithmRSASSA_PKCS1_v1_5Mac.cpp

@@ -29 +29 @@
 #if ENABLE(SUBTLE_CRYPTO)
 
+#include "CryptoAlgorithmRsaSsaParams.h"
+#include "CryptoDigest.h"
+#include "CryptoKeyRSA.h"
 #include "ExceptionCode.h"
+#include "JSDOMPromise.h"
+
+#if defined(__has_include)
+#if __has_include(<CommonCrypto/CommonRSACryptor.h>)
+#include <CommonCrypto/CommonRSACryptor.h>
+#endif
+#endif
+
+#ifndef _CC_RSACRYPTOR_H_
+enum {
+    ccPKCS1Padding = 1001
+};
+typedef uint32_t CCAsymmetricPadding;
+
+enum {
+    kCCDigestSHA1 = 8,
+    kCCDigestSHA224 = 9,
+    kCCDigestSHA256 = 10,
+    kCCDigestSHA384 = 11,
+    kCCDigestSHA512 = 12,
+};
+typedef uint32_t CCDigestAlgorithm;
+
+enum {
+    kCCNotVerified    = -4306
+};
+#endif
+
+extern "C" CCCryptorStatus CCRSACryptorSign(CCRSACryptorRef privateKey, CCAsymmetricPadding padding, const void *hashToSign, size_t hashSignLen, CCDigestAlgorithm digestType, size_t saltLen, void *signedData, size_t *signedDataLen);
+extern "C" CCCryptorStatus CCRSACryptorVerify(CCRSACryptorRef publicKey, CCAsymmetricPadding padding, const void *hash, size_t hashLen, CCDigestAlgorithm digestType, size_t saltLen, const void *signedData, size_t signedDataLen);
 
 namespace WebCore {
 
-void CryptoAlgorithmRSASSA_PKCS1_v1_5::sign(const CryptoAlgorithmParameters&, const CryptoKey&, const Vector<CryptoOperationData>&, std::unique_ptr<PromiseWrapper>, ExceptionCode& ec)
+static bool getCommonCryptoDigestAlgorithm(CryptoAlgorithmIdentifier hashFunction, CCDigestAlgorithm& algorithm)
 {
-    ec = NOT_SUPPORTED_ERR;
+    switch (hashFunction) {
+    case CryptoAlgorithmIdentifier::SHA_1:
+        algorithm = kCCDigestSHA1;
+        return true;
+    case CryptoAlgorithmIdentifier::SHA_224:
+        algorithm = kCCDigestSHA224;
+        return true;
+    case CryptoAlgorithmIdentifier::SHA_256:
+        algorithm = kCCDigestSHA256;
+        return true;
+    case CryptoAlgorithmIdentifier::SHA_384:
+        algorithm = kCCDigestSHA384;
+        return true;
+    case CryptoAlgorithmIdentifier::SHA_512:
+        algorithm = kCCDigestSHA512;
+        return true;
+    default:
+        return false;
+    }
 }
 
-void CryptoAlgorithmRSASSA_PKCS1_v1_5::verify(const CryptoAlgorithmParameters&, const CryptoKey&, const CryptoOperationData& /*signature*/, const Vector<CryptoOperationData>& /*data*/, std::unique_ptr<PromiseWrapper>, ExceptionCode& ec)
+void CryptoAlgorithmRSASSA_PKCS1_v1_5::sign(const CryptoAlgorithmParameters& parameters, const CryptoKey& key, const Vector<CryptoOperationData>& data, std::unique_ptr<PromiseWrapper> promise, ExceptionCode& ec)
 {
-    ec = NOT_SUPPORTED_ERR;
+    const CryptoAlgorithmRsaSsaParams& rsaSSAParameters = toCryptoAlgorithmRsaSsaParams(parameters);
+
+    if (!isCryptoKeyRSA(key)) {
+        ec = NOT_SUPPORTED_ERR;
+        return;
+    }
+    const CryptoKeyRSA& rsaKey = toCryptoKeyRSA(key);
+
+    CCDigestAlgorithm digestAlgorithm;
+    if (!getCommonCryptoDigestAlgorithm(rsaSSAParameters.hash, digestAlgorithm)) {
+        ec = NOT_SUPPORTED_ERR;
+        return;
+    }
+
+    std::unique_ptr<CryptoDigest> digest = CryptoDigest::create(rsaSSAParameters.hash);
+    if (!digest) {
+        ec = NOT_SUPPORTED_ERR;
+        return;
+    }
+
+    for (size_t i = 0; i != data.size(); ++i)
+        digest->addBytes(data[i].first, data[i].second);
+
+    Vector<unsigned char> digestData = digest->computeHash();
+
+    Vector<unsigned char> signature(512);
+    size_t signatureSize = signature.size();
+
+    CCCryptorStatus status = CCRSACryptorSign(rsaKey.platformKey(), ccPKCS1Padding, digestData.data(), digestData.size(), digestAlgorithm, 0, signature.data(), &signatureSize);
+    if (status) {
+        promise->reject(nullptr);
+        return;
+    }
+
+    signature.resize(signatureSize);
+    promise->fulfill(signature);
+}
+
+void CryptoAlgorithmRSASSA_PKCS1_v1_5::verify(const CryptoAlgorithmParameters& parameters, const CryptoKey& key, const CryptoOperationData& signature, const Vector<CryptoOperationData>& data, std::unique_ptr<PromiseWrapper> promise, ExceptionCode& ec)
+{
+    const CryptoAlgorithmRsaSsaParams& rsaSSAParameters = toCryptoAlgorithmRsaSsaParams(parameters);
+
+    if (!isCryptoKeyRSA(key)) {
+        ec = NOT_SUPPORTED_ERR;
+        return;
+    }
+    const CryptoKeyRSA& rsaKey = toCryptoKeyRSA(key);
+
+    CCDigestAlgorithm digestAlgorithm;
+    if (!getCommonCryptoDigestAlgorithm(rsaSSAParameters.hash, digestAlgorithm)) {
+        ec = NOT_SUPPORTED_ERR;
+        return;
+    }
+
+    std::unique_ptr<CryptoDigest> digest = CryptoDigest::create(rsaSSAParameters.hash);
+    if (!digest) {
+        ec = NOT_SUPPORTED_ERR;
+        return;
+    }
+
+    for (size_t i = 0; i != data.size(); ++i)
+        digest->addBytes(data[i].first, data[i].second);
+
+    Vector<unsigned char> digestData = digest->computeHash();
+
+    CCCryptorStatus status = CCRSACryptorVerify(rsaKey.platformKey(), ccPKCS1Padding, digestData.data(), digestData.size(), digestAlgorithm, 0, signature.first, signature.second);
+    if (!status)
+        promise->fulfill(true);
+    else if (status == kCCNotVerified || kCCDecodeError) // <rdar://problem/15464982> CCRSACryptorVerify returns kCCDecodeError instead of kCCNotVerified sometimes
+        promise->fulfill(false);
+    else
+        promise->reject(nullptr);
 }
 

trunk/Source/WebCore/crypto/CryptoDigest.h

@@ -24 +24 @@
  */
 
-#include "config.h"
-#include "CryptoAlgorithmSHA512.h"
+#ifndef CryptoDigest_h
+#define CryptoDigest_h
+
+#include "CryptoAlgorithmIdentifier.h"
+#include <wtf/Noncopyable.h>
+#include <wtf/Vector.h>
 
 #if ENABLE(SUBTLE_CRYPTO)
@@ -31 +35 @@
 namespace WebCore {
 
-const char* const CryptoAlgorithmSHA512::s_name = "sha-512";
+struct CryptoDigestContext;
 
-CryptoAlgorithmSHA512::CryptoAlgorithmSHA512()
-{
-}
+class CryptoDigest {
+    WTF_MAKE_NONCOPYABLE(CryptoDigest);
+public:
+    static std::unique_ptr<CryptoDigest> create(CryptoAlgorithmIdentifier);
+    ~CryptoDigest();
 
-CryptoAlgorithmSHA512::~CryptoAlgorithmSHA512()
-{
-}
+    void addBytes(const void* input, size_t length);
+    Vector<unsigned char> computeHash();
 
-std::unique_ptr<CryptoAlgorithm> CryptoAlgorithmSHA512::create()
-{
-    return std::unique_ptr<CryptoAlgorithm>(new CryptoAlgorithmSHA512);
-}
+private:
+    CryptoDigest();
 
-CryptoAlgorithmIdentifier CryptoAlgorithmSHA512::identifier() const
-{
-    return s_identifier;
-}
+    std::unique_ptr<CryptoDigestContext> m_context;
+};
 
-}
+} // namespace WebCore
 
 #endif // ENABLE(SUBTLE_CRYPTO)
+#endif // CryptoDigest_h

trunk/Source/WebCore/crypto/algorithms/CryptoAlgorithmSHA1.cpp

@@ -29 +29 @@
 #if ENABLE(SUBTLE_CRYPTO)
 
+#include "CryptoDigest.h"
+#include "JSDOMPromise.h"
+
 namespace WebCore {
 
@@ -51 +54 @@
 }
 
+void CryptoAlgorithmSHA1::digest(const CryptoAlgorithmParameters&, const Vector<CryptoOperationData>& data, std::unique_ptr<PromiseWrapper> promise, ExceptionCode&)
+{
+    std::unique_ptr<CryptoDigest> digest = CryptoDigest::create(CryptoAlgorithmIdentifier::SHA_1);
+    if (!digest) {
+        promise->reject(nullptr);
+        return;
+    }
+
+    for (size_t i = 0, size = data.size(); i < size; ++i)
+        digest->addBytes(data[i].first, data[i].second);
+
+    promise->fulfill(digest->computeHash());
+}
+
 }
 

trunk/Source/WebCore/crypto/algorithms/CryptoAlgorithmSHA224.cpp

@@ -29 +29 @@
 #if ENABLE(SUBTLE_CRYPTO)
 
+#include "CryptoDigest.h"
+#include "JSDOMPromise.h"
+
 namespace WebCore {
 
@@ -51 +54 @@
 }
 
+void CryptoAlgorithmSHA224::digest(const CryptoAlgorithmParameters&, const Vector<CryptoOperationData>& data, std::unique_ptr<PromiseWrapper> promise, ExceptionCode&)
+{
+    std::unique_ptr<CryptoDigest> digest = CryptoDigest::create(CryptoAlgorithmIdentifier::SHA_224);
+    if (!digest) {
+        promise->reject(nullptr);
+        return;
+    }
+
+    for (size_t i = 0, size = data.size(); i < size; ++i)
+        digest->addBytes(data[i].first, data[i].second);
+
+    promise->fulfill(digest->computeHash());
+}
+
 }
 

trunk/Source/WebCore/crypto/algorithms/CryptoAlgorithmSHA256.cpp

@@ -29 +29 @@
 #if ENABLE(SUBTLE_CRYPTO)
 
+#include "CryptoDigest.h"
+#include "JSDOMPromise.h"
+
 namespace WebCore {
 
@@ -51 +54 @@
 }
 
+void CryptoAlgorithmSHA256::digest(const CryptoAlgorithmParameters&, const Vector<CryptoOperationData>& data, std::unique_ptr<PromiseWrapper> promise, ExceptionCode&)
+{
+    std::unique_ptr<CryptoDigest> digest = CryptoDigest::create(CryptoAlgorithmIdentifier::SHA_256);
+    if (!digest) {
+        promise->reject(nullptr);
+        return;
+    }
+
+    for (size_t i = 0, size = data.size(); i < size; ++i)
+        digest->addBytes(data[i].first, data[i].second);
+
+    promise->fulfill(digest->computeHash());
+}
+
 }
 

trunk/Source/WebCore/crypto/algorithms/CryptoAlgorithmSHA384.cpp

@@ -29 +29 @@
 #if ENABLE(SUBTLE_CRYPTO)
 
+#include "CryptoDigest.h"
+#include "JSDOMPromise.h"
+
 namespace WebCore {
 
@@ -51 +54 @@
 }
 
+void CryptoAlgorithmSHA384::digest(const CryptoAlgorithmParameters&, const Vector<CryptoOperationData>& data, std::unique_ptr<PromiseWrapper> promise, ExceptionCode&)
+{
+    std::unique_ptr<CryptoDigest> digest = CryptoDigest::create(CryptoAlgorithmIdentifier::SHA_384);
+    if (!digest) {
+        promise->reject(nullptr);
+        return;
+    }
+
+    for (size_t i = 0, size = data.size(); i < size; ++i)
+        digest->addBytes(data[i].first, data[i].second);
+
+    promise->fulfill(digest->computeHash());
+}
+
 }
 

trunk/Source/WebCore/crypto/algorithms/CryptoAlgorithmSHA512.cpp

@@ -29 +29 @@
 #if ENABLE(SUBTLE_CRYPTO)
 
+#include "CryptoDigest.h"
+#include "JSDOMPromise.h"
+
 namespace WebCore {
 
@@ -51 +54 @@
 }
 
+void CryptoAlgorithmSHA512::digest(const CryptoAlgorithmParameters&, const Vector<CryptoOperationData>& data, std::unique_ptr<PromiseWrapper> promise, ExceptionCode&)
+{
+    std::unique_ptr<CryptoDigest> digest = CryptoDigest::create(CryptoAlgorithmIdentifier::SHA_512);
+    if (!digest) {
+        promise->reject(nullptr);
+        return;
+    }
+
+    for (size_t i = 0, size = data.size(); i < size; ++i)
+        digest->addBytes(data[i].first, data[i].second);
+
+    promise->fulfill(digest->computeHash());
+}
+
 }