ladybird/Libraries/LibWeb/Crypto/CryptoKey.h

/*
 * Copyright (c) 2023, stelar7 <dudedbz@gmail.com>
 *
 * SPDX-License-Identifier: BSD-2-Clause
 */

#pragma once

#include <LibCrypto/PK/EC.h>
#include <LibCrypto/PK/RSA.h>
#include <LibGC/Ptr.h>
#include <LibJS/Forward.h>
#include <LibWeb/Bindings/CryptoKeyPrototype.h>
#include <LibWeb/Bindings/Intrinsics.h>
#include <LibWeb/Bindings/PlatformObject.h>
#include <LibWeb/Bindings/Serializable.h>
#include <LibWeb/Crypto/CryptoBindings.h>

namespace Web::Crypto {

class CryptoKey final
    : public Bindings::PlatformObject
    , public Bindings::Serializable {
    WEB_PLATFORM_OBJECT(CryptoKey, Bindings::PlatformObject);
    GC_DECLARE_ALLOCATOR(CryptoKey);

public:
    using InternalKeyData = Variant<ByteBuffer, Bindings::JsonWebKey, ::Crypto::PK::RSAPublicKey, ::Crypto::PK::RSAPrivateKey, ::Crypto::PK::ECPublicKey, ::Crypto::PK::ECPrivateKey>;

    [[nodiscard]] static GC::Ref<CryptoKey> create(JS::Realm&, InternalKeyData);
    [[nodiscard]] static GC::Ref<CryptoKey> create(JS::Realm&);

    virtual ~CryptoKey() override;

    bool extractable() const { return m_extractable; }
    Bindings::KeyType type() const { return m_type; }
    JS::Object const* algorithm() const { return m_algorithm; }
    JS::Object const* usages() const { return m_usages; }

    Vector<Bindings::KeyUsage> internal_usages() const { return m_key_usages; }

    void set_extractable(bool extractable) { m_extractable = extractable; }
    void set_type(Bindings::KeyType type) { m_type = type; }
    void set_algorithm(GC::Ref<Object> algorithm) { m_algorithm = move(algorithm); }
    void set_usages(Vector<Bindings::KeyUsage>);

    InternalKeyData const& handle() const { return m_key_data; }
    String algorithm_name() const;

    virtual HTML::SerializeType serialize_type() const override { return HTML::SerializeType::CryptoKey; }
    virtual WebIDL::ExceptionOr<void> serialization_steps(HTML::TransferDataEncoder&, bool for_storage, HTML::SerializationMemory&) override;
    virtual WebIDL::ExceptionOr<void> deserialization_steps(HTML::TransferDataDecoder&, HTML::DeserializationMemory&) override;

private:
    CryptoKey(JS::Realm&, InternalKeyData);
    explicit CryptoKey(JS::Realm&);

    virtual void initialize(JS::Realm&) override;
    virtual void visit_edges(Visitor&) override;

    Bindings::KeyType m_type;
    bool m_extractable { false };
    GC::Ref<Object> m_algorithm;
    GC::Ref<Object> m_usages;

    Vector<Bindings::KeyUsage> m_key_usages;
    InternalKeyData m_key_data; // [[handle]]
    mutable String m_algorithm_name;
};

// https://w3c.github.io/webcrypto/#ref-for-dfn-CryptoKeyPair-2
class CryptoKeyPair : public JS::Object {
    JS_OBJECT(CryptoKeyPair, JS::Object);
    GC_DECLARE_ALLOCATOR(CryptoKeyPair);

public:
    static GC::Ref<CryptoKeyPair> create(JS::Realm&, GC::Ref<CryptoKey> public_key, GC::Ref<CryptoKey> private_key);
    virtual ~CryptoKeyPair() override = default;

    GC::Ref<CryptoKey> public_key() const { return m_public_key; }
    GC::Ref<CryptoKey> private_key() const { return m_private_key; }

private:
    CryptoKeyPair(JS::Realm&, GC::Ref<CryptoKey> public_key, GC::Ref<CryptoKey> private_key);
    virtual void initialize(JS::Realm&) override;
    virtual void visit_edges(Visitor&) override;

    JS_DECLARE_NATIVE_FUNCTION(public_key_getter);
    JS_DECLARE_NATIVE_FUNCTION(private_key_getter);

    GC::Ref<CryptoKey> m_public_key;
    GC::Ref<CryptoKey> m_private_key;
};

}
LibWeb: Add the CryptoKey interface 2023-12-15 20:25:35 +01:00			`/*`
			`* Copyright (c) 2023, stelar7 <dudedbz@gmail.com>`
			`*`
			`* SPDX-License-Identifier: BSD-2-Clause`
			`*/`

			`#pragma once`

LibWeb: Switch ECDH.generateKey to use internal keys instead of bytes Previously, `ECDH::generate_key` was implemented by storing a `ByteBuffer` in the `InternalKeyData`. This improves the implementation by using internal structures of already-parsed data. 2024-11-26 18:20:54 +01:00			`#include <LibCrypto/PK/EC.h>`
LibWeb: Implement SubtleCrypto.generateKey for RSA-OAEP This patch implements and tests window.crypto.sublte.generateKey with an RSA-OAEP algorithm. In order for the types to be happy, the KeyAlgorithms objects are moved to their own .h/.cpp pair, and the new KeyAlgorithms for RSA are added there. 2024-03-08 16:30:17 -07:00			`#include <LibCrypto/PK/RSA.h>`
LibGC+Everywhere: Factor out a LibGC from LibJS Resulting in a massive rename across almost everywhere! Alongside the namespace change, we now have the following names: * JS::NonnullGCPtr -> GC::Ref * JS::GCPtr -> GC::Ptr * JS::HeapFunction -> GC::Function * JS::CellImpl -> GC::Cell * JS::Handle -> GC::Root 2024-11-15 04:01:23 +13:00			`#include <LibGC/Ptr.h>`
LibWeb: Add the CryptoKey interface 2023-12-15 20:25:35 +01:00			`#include <LibJS/Forward.h>`
			`#include <LibWeb/Bindings/CryptoKeyPrototype.h>`
			`#include <LibWeb/Bindings/Intrinsics.h>`
			`#include <LibWeb/Bindings/PlatformObject.h>`
LibWeb: Add {,de}serialization steps for CryptoKey 2024-03-10 20:48:00 +01:00			`#include <LibWeb/Bindings/Serializable.h>`
LibWeb: Refactor SubtleCrypto to allow adding more algorithms easier This patch throws away some of the spec suggestions for how to implement the normalize_algorithm AO and uses a new pattern that we can actually extend in our C++. Also update CryptoKey to store the key data. 2024-03-06 16:53:50 -07:00			`#include <LibWeb/Crypto/CryptoBindings.h>`
LibWeb: Add the CryptoKey interface 2023-12-15 20:25:35 +01:00
			`namespace Web::Crypto {`

LibWeb: Add {,de}serialization steps for CryptoKey 2024-03-10 20:48:00 +01:00			`class CryptoKey final`
			`: public Bindings::PlatformObject`
			`, public Bindings::Serializable {`
LibWeb: Add the CryptoKey interface 2023-12-15 20:25:35 +01:00			`WEB_PLATFORM_OBJECT(CryptoKey, Bindings::PlatformObject);`
LibGC+Everywhere: Factor out a LibGC from LibJS Resulting in a massive rename across almost everywhere! Alongside the namespace change, we now have the following names: * JS::NonnullGCPtr -> GC::Ref * JS::GCPtr -> GC::Ptr * JS::HeapFunction -> GC::Function * JS::CellImpl -> GC::Cell * JS::Handle -> GC::Root 2024-11-15 04:01:23 +13:00			`GC_DECLARE_ALLOCATOR(CryptoKey);`
LibWeb: Add the CryptoKey interface 2023-12-15 20:25:35 +01:00
			`public:`
LibCrypto+LibWeb: De-templetize RSA and EC key types There is no need to have `RSAPrivateKey`, `RSAPublicKey`, `ECPrivateKey` and `ECPublicKey` to be templatize to utilize different implementation of numbers. 2025-05-31 19:06:51 +02:00			`using InternalKeyData = Variant<ByteBuffer, Bindings::JsonWebKey, ::Crypto::PK::RSAPublicKey, ::Crypto::PK::RSAPrivateKey, ::Crypto::PK::ECPublicKey, ::Crypto::PK::ECPrivateKey>;`
LibWeb: Refactor SubtleCrypto to allow adding more algorithms easier This patch throws away some of the spec suggestions for how to implement the normalize_algorithm AO and uses a new pattern that we can actually extend in our C++. Also update CryptoKey to store the key data. 2024-03-06 16:53:50 -07:00
LibGC+Everywhere: Factor out a LibGC from LibJS Resulting in a massive rename across almost everywhere! Alongside the namespace change, we now have the following names: * JS::NonnullGCPtr -> GC::Ref * JS::GCPtr -> GC::Ptr * JS::HeapFunction -> GC::Function * JS::CellImpl -> GC::Cell * JS::Handle -> GC::Root 2024-11-15 04:01:23 +13:00			`[[nodiscard]] static GC::Ref<CryptoKey> create(JS::Realm&, InternalKeyData);`
			`[[nodiscard]] static GC::Ref<CryptoKey> create(JS::Realm&);`
LibWeb: Add the CryptoKey interface 2023-12-15 20:25:35 +01:00
			`virtual ~CryptoKey() override;`

			`bool extractable() const { return m_extractable; }`
			`Bindings::KeyType type() const { return m_type; }`
LibWeb: Implement usages property for CryptoKey And set it from the only place we currently create a CryptoKey, in importKey. 2024-03-06 19:11:08 -07:00			`JS::Object const* algorithm() const { return m_algorithm; }`
			`JS::Object const* usages() const { return m_usages; }`

			`Vector<Bindings::KeyUsage> internal_usages() const { return m_key_usages; }`
LibWeb: Add the CryptoKey interface 2023-12-15 20:25:35 +01:00
			`void set_extractable(bool extractable) { m_extractable = extractable; }`
			`void set_type(Bindings::KeyType type) { m_type = type; }`
LibGC+Everywhere: Factor out a LibGC from LibJS Resulting in a massive rename across almost everywhere! Alongside the namespace change, we now have the following names: * JS::NonnullGCPtr -> GC::Ref * JS::GCPtr -> GC::Ptr * JS::HeapFunction -> GC::Function * JS::CellImpl -> GC::Cell * JS::Handle -> GC::Root 2024-11-15 04:01:23 +13:00			`void set_algorithm(GC::Ref<Object> algorithm) { m_algorithm = move(algorithm); }`
LibWeb: Implement usages property for CryptoKey And set it from the only place we currently create a CryptoKey, in importKey. 2024-03-06 19:11:08 -07:00			`void set_usages(Vector<Bindings::KeyUsage>);`
LibWeb: Add the CryptoKey interface 2023-12-15 20:25:35 +01:00
LibWeb: Support SubtleCrypto.exportKey for RSA-OAEP in JsonWebKey format 2024-03-13 21:19:57 -06:00			`InternalKeyData const& handle() const { return m_key_data; }`
LibWeb: Implement skeleton of SubtleCrypto.encrypt No algorithms implement this yet, but this is the high level entry point. 2024-03-14 22:39:48 -06:00			`String algorithm_name() const;`
LibWeb: Support SubtleCrypto.exportKey for RSA-OAEP in JsonWebKey format 2024-03-13 21:19:57 -06:00
LibWeb: Use enum for serialization and reimplement interface exposure Our currently implementation of structured serialization has a design flaw, where if the serialized/transferred type was not used in the destination realm, it would not be seen as exposed and thus we would not re-create the type on the other side. This is very common, for example, transferring a MessagePort to a just inserted iframe, or the just inserted iframe transferring a MessagePort to it's parent. This is what Google reCAPTCHA does. This flaw occurred due to relying on lazily populated HashMaps of constructors, namespaces and interfaces. This commit changes it so that per-type "is exposed" implementations are generated. Since it no longer relies on interface name strings, this commit changes serializable types to indicate their type with an enum, in line with how transferrable types indicate their type. This makes Google reCAPTCHA work on https://www.google.com/recaptcha/api2/demo It currently doesn't work on non-Google origins due to a separate same-origin policy bug. 2025-07-14 17:15:09 +01:00			`virtual HTML::SerializeType serialize_type() const override { return HTML::SerializeType::CryptoKey; }`
LibWeb+WebWorker: Use IPC mechanics for structured serialization Our structured serialization implementation had its own bespoke encoder and decoder to serialize JS values. It also used a u32 buffer under the hood, which made using its structures a bit awkward. We had previously worked around its data structures in transferable streams, which nested transfers of MessagePort instances. We basically had to add hooks into the MessagePort to route to the correct transfer receiving steps, and we could not invoke the correct AOs directly as the spec dictates. We now use IPC mechanics to encode and decode data. This works because, although we are encoding JS values, we are only ultimately encoding primitive and basic AK types. The resulting data structures actually enforce that we implement transferable streams exactly as the spec is worded (I had planned to do that in a separate commit, but the fallout of this patch actually required that change). 2025-07-17 09:51:04 -04:00			`virtual WebIDL::ExceptionOr<void> serialization_steps(HTML::TransferDataEncoder&, bool for_storage, HTML::SerializationMemory&) override;`
			`virtual WebIDL::ExceptionOr<void> deserialization_steps(HTML::TransferDataDecoder&, HTML::DeserializationMemory&) override;`
LibWeb: Add {,de}serialization steps for CryptoKey 2024-03-10 20:48:00 +01:00
LibWeb: Add the CryptoKey interface 2023-12-15 20:25:35 +01:00			`private:`
LibWeb: Refactor SubtleCrypto to allow adding more algorithms easier This patch throws away some of the spec suggestions for how to implement the normalize_algorithm AO and uses a new pattern that we can actually extend in our C++. Also update CryptoKey to store the key data. 2024-03-06 16:53:50 -07:00			`CryptoKey(JS::Realm&, InternalKeyData);`
LibWeb: Add {,de}serialization steps for CryptoKey 2024-03-10 20:48:00 +01:00			`explicit CryptoKey(JS::Realm&);`

LibWeb: Add the CryptoKey interface 2023-12-15 20:25:35 +01:00			`virtual void initialize(JS::Realm&) override;`
			`virtual void visit_edges(Visitor&) override;`

			`Bindings::KeyType m_type;`
			`bool m_extractable { false };`
LibGC+Everywhere: Factor out a LibGC from LibJS Resulting in a massive rename across almost everywhere! Alongside the namespace change, we now have the following names: * JS::NonnullGCPtr -> GC::Ref * JS::GCPtr -> GC::Ptr * JS::HeapFunction -> GC::Function * JS::CellImpl -> GC::Cell * JS::Handle -> GC::Root 2024-11-15 04:01:23 +13:00			`GC::Ref<Object> m_algorithm;`
			`GC::Ref<Object> m_usages;`
LibWeb: Refactor SubtleCrypto to allow adding more algorithms easier This patch throws away some of the spec suggestions for how to implement the normalize_algorithm AO and uses a new pattern that we can actually extend in our C++. Also update CryptoKey to store the key data. 2024-03-06 16:53:50 -07:00
LibWeb: Implement usages property for CryptoKey And set it from the only place we currently create a CryptoKey, in importKey. 2024-03-06 19:11:08 -07:00			`Vector<Bindings::KeyUsage> m_key_usages;`
LibWeb: Support SubtleCrypto.exportKey for RSA-OAEP in JsonWebKey format 2024-03-13 21:19:57 -06:00			`InternalKeyData m_key_data; // [[handle]]`
LibWeb: Implement skeleton of SubtleCrypto.encrypt No algorithms implement this yet, but this is the high level entry point. 2024-03-14 22:39:48 -06:00			`mutable String m_algorithm_name;`
LibWeb: Add the CryptoKey interface 2023-12-15 20:25:35 +01:00			`};`

LibWeb: Add CryptoKeyPair object for use in upcoming SubtleCrypto APIs 2024-03-06 19:14:08 -07:00			`// https://w3c.github.io/webcrypto/#ref-for-dfn-CryptoKeyPair-2`
			`class CryptoKeyPair : public JS::Object {`
LibJS+LibWeb: Fix a ton of JS_CELL-like macro issues 2024-05-19 13:48:52 -07:00			`JS_OBJECT(CryptoKeyPair, JS::Object);`
LibGC+Everywhere: Factor out a LibGC from LibJS Resulting in a massive rename across almost everywhere! Alongside the namespace change, we now have the following names: * JS::NonnullGCPtr -> GC::Ref * JS::GCPtr -> GC::Ptr * JS::HeapFunction -> GC::Function * JS::CellImpl -> GC::Cell * JS::Handle -> GC::Root 2024-11-15 04:01:23 +13:00			`GC_DECLARE_ALLOCATOR(CryptoKeyPair);`
LibWeb: Add CryptoKeyPair object for use in upcoming SubtleCrypto APIs 2024-03-06 19:14:08 -07:00
			`public:`
LibGC+Everywhere: Factor out a LibGC from LibJS Resulting in a massive rename across almost everywhere! Alongside the namespace change, we now have the following names: * JS::NonnullGCPtr -> GC::Ref * JS::GCPtr -> GC::Ptr * JS::HeapFunction -> GC::Function * JS::CellImpl -> GC::Cell * JS::Handle -> GC::Root 2024-11-15 04:01:23 +13:00			`static GC::Ref<CryptoKeyPair> create(JS::Realm&, GC::Ref<CryptoKey> public_key, GC::Ref<CryptoKey> private_key);`
LibWeb: Add CryptoKeyPair object for use in upcoming SubtleCrypto APIs 2024-03-06 19:14:08 -07:00			`virtual ~CryptoKeyPair() override = default;`

LibGC+Everywhere: Factor out a LibGC from LibJS Resulting in a massive rename across almost everywhere! Alongside the namespace change, we now have the following names: * JS::NonnullGCPtr -> GC::Ref * JS::GCPtr -> GC::Ptr * JS::HeapFunction -> GC::Function * JS::CellImpl -> GC::Cell * JS::Handle -> GC::Root 2024-11-15 04:01:23 +13:00			`GC::Ref<CryptoKey> public_key() const { return m_public_key; }`
			`GC::Ref<CryptoKey> private_key() const { return m_private_key; }`
LibWeb: Add CryptoKeyPair object for use in upcoming SubtleCrypto APIs 2024-03-06 19:14:08 -07:00
			`private:`
LibGC+Everywhere: Factor out a LibGC from LibJS Resulting in a massive rename across almost everywhere! Alongside the namespace change, we now have the following names: * JS::NonnullGCPtr -> GC::Ref * JS::GCPtr -> GC::Ptr * JS::HeapFunction -> GC::Function * JS::CellImpl -> GC::Cell * JS::Handle -> GC::Root 2024-11-15 04:01:23 +13:00			`CryptoKeyPair(JS::Realm&, GC::Ref<CryptoKey> public_key, GC::Ref<CryptoKey> private_key);`
LibWeb: Add CryptoKeyPair object for use in upcoming SubtleCrypto APIs 2024-03-06 19:14:08 -07:00			`virtual void initialize(JS::Realm&) override;`
			`virtual void visit_edges(Visitor&) override;`

			`JS_DECLARE_NATIVE_FUNCTION(public_key_getter);`
			`JS_DECLARE_NATIVE_FUNCTION(private_key_getter);`

LibGC+Everywhere: Factor out a LibGC from LibJS Resulting in a massive rename across almost everywhere! Alongside the namespace change, we now have the following names: * JS::NonnullGCPtr -> GC::Ref * JS::GCPtr -> GC::Ptr * JS::HeapFunction -> GC::Function * JS::CellImpl -> GC::Cell * JS::Handle -> GC::Root 2024-11-15 04:01:23 +13:00			`GC::Ref<CryptoKey> m_public_key;`
			`GC::Ref<CryptoKey> m_private_key;`
LibWeb: Add CryptoKeyPair object for use in upcoming SubtleCrypto APIs 2024-03-06 19:14:08 -07:00			`};`

LibWeb: Add the CryptoKey interface 2023-12-15 20:25:35 +01:00			`}`