// Copyright 2014 The Chromium Authors // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #ifdef UNSAFE_BUFFERS_BUILD // TODO(crbug.com/40285824): Remove this and convert code to safer constructs. #pragma allow_unsafe_buffers #endif #include <stddef.h> #include <stdint.h> #include <memory> #include "base/containers/span.h" #include "components/webcrypto/algorithm_implementation.h" #include "components/webcrypto/algorithms/ec.h" #include "components/webcrypto/algorithms/util.h" #include "components/webcrypto/blink_key_handle.h" #include "components/webcrypto/generate_key_result.h" #include "components/webcrypto/status.h" #include "crypto/openssl_util.h" #include "crypto/secure_util.h" #include "third_party/blink/public/platform/web_crypto_algorithm_params.h" #include "third_party/blink/public/platform/web_crypto_key.h" #include "third_party/blink/public/platform/web_crypto_key_algorithm.h" #include "third_party/boringssl/src/include/openssl/bn.h" #include "third_party/boringssl/src/include/openssl/digest.h" #include "third_party/boringssl/src/include/openssl/ec.h" #include "third_party/boringssl/src/include/openssl/ec_key.h" #include "third_party/boringssl/src/include/openssl/ecdsa.h" #include "third_party/boringssl/src/include/openssl/evp.h" #include "third_party/boringssl/src/include/openssl/mem.h" namespace webcrypto { namespace { // Extracts the OpenSSL key and digest from a WebCrypto key + algorithm. The // returned pkey pointer will remain valid as long as |key| is alive. Status GetPKeyAndDigest(const blink::WebCryptoAlgorithm& algorithm, const blink::WebCryptoKey& key, EVP_PKEY** pkey, const EVP_MD** digest) { … } // Gets the EC key's order size in bytes. Status GetEcGroupOrderSize(EVP_PKEY* pkey, size_t* order_size_bytes) { … } // Formats a DER-encoded signature (ECDSA-Sig-Value as specified in RFC 3279) to // the signature format expected by WebCrypto (raw concatenated "r" and "s"). // // TODO(eroman): Where is the specification for WebCrypto's signature format? Status ConvertDerSignatureToWebCryptoSignature( EVP_PKEY* key, std::vector<uint8_t>* signature) { … } // Formats a WebCrypto ECDSA signature to a DER-encoded signature // (ECDSA-Sig-Value as specified in RFC 3279). // // TODO(eroman): What is the specification for WebCrypto's signature format? // // If the signature length is incorrect (not 2 * order_size), then // Status::Success() is returned and |*incorrect_length| is set to true; // // Otherwise on success, der_signature is filled with a ASN.1 encoded // ECDSA-Sig-Value. Status ConvertWebCryptoSignatureToDerSignature( EVP_PKEY* key, base::span<const uint8_t> signature, std::vector<uint8_t>* der_signature, bool* incorrect_length) { … } class EcdsaImplementation : public EcAlgorithm { … }; } // namespace std::unique_ptr<AlgorithmImplementation> CreateEcdsaImplementation() { … } } // namespace webcrypto
Codebase Browser
chromium