// Copyright 2014 The Chromium Authors. All rights reserved. // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #ifndef COMPONENTS_WEBCRYPTO_NSS_RSA_HASHED_ALGORITHM_NSS_H_ #define COMPONENTS_WEBCRYPTO_NSS_RSA_HASHED_ALGORITHM_NSS_H_ #include #include "components/webcrypto/algorithm_implementation.h" namespace webcrypto { class PublicKeyNss; class PrivateKeyNss; // Base class for an RSA algorithm whose keys additionaly have a hash parameter // bound to them. Provides functionality for generating, importing, and // exporting keys. class RsaHashedAlgorithm : public AlgorithmImplementation { public: // Constructs an RSA algorithm which will use the NSS flags |generate_flags| // when generating keys. |all_public_key_usages| and |all_private_key_usages| // are the set of WebCrypto key usages that are valid for created keys // (public and private respectively). // // For instance if public keys support encryption and wrapping, and private // keys support decryption and unwrapping callers should set: // all_public_key_usages = UsageEncrypt | UsageWrap // all_private_key_usages = UsageDecrypt | UsageUnwrap // This information is used when importing or generating keys, to enforce // that valid key usages are allowed. RsaHashedAlgorithm(CK_FLAGS generate_flags, blink::WebCryptoKeyUsageMask all_public_key_usages, blink::WebCryptoKeyUsageMask all_private_key_usages) : generate_flags_(generate_flags), all_public_key_usages_(all_public_key_usages), all_private_key_usages_(all_private_key_usages) {} // For instance "RSA-OAEP-256". virtual const char* GetJwkAlgorithm( const blink::WebCryptoAlgorithmId hash) const = 0; Status GenerateKey(const blink::WebCryptoAlgorithm& algorithm, bool extractable, blink::WebCryptoKeyUsageMask usages, GenerateKeyResult* result) const override; Status VerifyKeyUsagesBeforeImportKey( blink::WebCryptoKeyFormat format, blink::WebCryptoKeyUsageMask usages) const override; Status ImportKeyPkcs8(const CryptoData& key_data, const blink::WebCryptoAlgorithm& algorithm, bool extractable, blink::WebCryptoKeyUsageMask usages, blink::WebCryptoKey* key) const override; Status ImportKeySpki(const CryptoData& key_data, const blink::WebCryptoAlgorithm& algorithm, bool extractable, blink::WebCryptoKeyUsageMask usages, blink::WebCryptoKey* key) const override; Status ExportKeyPkcs8(const blink::WebCryptoKey& key, std::vector* buffer) const override; Status ExportKeySpki(const blink::WebCryptoKey& key, std::vector* buffer) const override; Status ImportKeyJwk(const CryptoData& key_data, const blink::WebCryptoAlgorithm& algorithm, bool extractable, blink::WebCryptoKeyUsageMask usages, blink::WebCryptoKey* key) const override; Status ExportKeyJwk(const blink::WebCryptoKey& key, std::vector* buffer) const override; Status SerializeKeyForClone( const blink::WebCryptoKey& key, blink::WebVector* key_data) const override; Status DeserializeKeyForClone(const blink::WebCryptoKeyAlgorithm& algorithm, blink::WebCryptoKeyType type, bool extractable, blink::WebCryptoKeyUsageMask usages, const CryptoData& key_data, blink::WebCryptoKey* key) const override; private: const CK_FLAGS generate_flags_; const blink::WebCryptoKeyUsageMask all_public_key_usages_; const blink::WebCryptoKeyUsageMask all_private_key_usages_; }; } // namespace webcrypto #endif // COMPONENTS_WEBCRYPTO_NSS_RSA_HASHED_ALGORITHM_NSS_H_