1 files changed, 205 insertions, 0 deletions

diff --git a/dom/crypto/WebCryptoTask.h b/dom/crypto/WebCryptoTask.h
new file mode 100644
index 0000000000..c8d6cdd402
--- /dev/null
+++ b/dom/crypto/WebCryptoTask.h
@@ -0,0 +1,205 @@
+/* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
+/* vim: set ts=8 sts=2 et sw=2 tw=80: */
+/* This Source Code Form is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
+
+#ifndef mozilla_dom_WebCryptoTask_h
+#define mozilla_dom_WebCryptoTask_h
+
+#include "ScopedNSSTypes.h"
+#include "mozilla/dom/CryptoKey.h"
+#include "mozilla/dom/DOMException.h"
+#include "mozilla/dom/Promise.h"
+#include "mozilla/dom/SubtleCryptoBinding.h"
+#include "nsIGlobalObject.h"
+
+namespace mozilla::dom {
+
+class ThreadSafeWorkerRef;
+
+typedef ArrayBufferViewOrArrayBuffer CryptoOperationData;
+typedef ArrayBufferViewOrArrayBuffer KeyData;
+
+/*
+
+The execution of a WebCryptoTask happens in several phases
+
+1. Constructor
+2. BeforeCrypto
+3. CalculateResult -> DoCrypto
+4. AfterCrypto
+5. Resolve or FailWithError
+6. Cleanup
+
+If any of these steps produces an error (setting mEarlyRv), then
+subsequent steps will not proceed.  If the constructor or BeforeCrypto
+sets mEarlyComplete to true, then we will skip step 3, saving the
+thread overhead.
+
+In general, the constructor should handle any parsing steps that
+require JS context, and otherwise just cache information for later
+steps to use.
+
+All steps besides step 3 occur on the main thread, so they should
+avoid blocking operations.
+
+Only step 3 is guarded to ensure that NSS has not been shutdown,
+so all NSS interactions should occur in DoCrypto
+
+Cleanup should execute regardless of what else happens.
+
+*/
+
+#define MAYBE_EARLY_FAIL(rv) \
+  if (NS_FAILED(rv)) {       \
+    FailWithError(rv);       \
+    return;                  \
+  }
+
+class WebCryptoTask : public CancelableRunnable {
+ public:
+  virtual void DispatchWithPromise(Promise* aResultPromise);
+
+ protected:
+  static WebCryptoTask* CreateEncryptDecryptTask(
+      JSContext* aCx, const ObjectOrString& aAlgorithm, CryptoKey& aKey,
+      const CryptoOperationData& aData, bool aEncrypt);
+
+  static WebCryptoTask* CreateSignVerifyTask(
+      JSContext* aCx, const ObjectOrString& aAlgorithm, CryptoKey& aKey,
+      const CryptoOperationData& aSignature, const CryptoOperationData& aData,
+      bool aSign);
+
+ public:
+  static WebCryptoTask* CreateEncryptTask(JSContext* aCx,
+                                          const ObjectOrString& aAlgorithm,
+                                          CryptoKey& aKey,
+                                          const CryptoOperationData& aData) {
+    return CreateEncryptDecryptTask(aCx, aAlgorithm, aKey, aData, true);
+  }
+
+  static WebCryptoTask* CreateDecryptTask(JSContext* aCx,
+                                          const ObjectOrString& aAlgorithm,
+                                          CryptoKey& aKey,
+                                          const CryptoOperationData& aData) {
+    return CreateEncryptDecryptTask(aCx, aAlgorithm, aKey, aData, false);
+  }
+
+  static WebCryptoTask* CreateSignTask(JSContext* aCx,
+                                       const ObjectOrString& aAlgorithm,
+                                       CryptoKey& aKey,
+                                       const CryptoOperationData& aData) {
+    CryptoOperationData dummy;
+    Unused << dummy.SetAsArrayBuffer(aCx);
+    return CreateSignVerifyTask(aCx, aAlgorithm, aKey, dummy, aData, true);
+  }
+
+  static WebCryptoTask* CreateVerifyTask(JSContext* aCx,
+                                         const ObjectOrString& aAlgorithm,
+                                         CryptoKey& aKey,
+                                         const CryptoOperationData& aSignature,
+                                         const CryptoOperationData& aData) {
+    return CreateSignVerifyTask(aCx, aAlgorithm, aKey, aSignature, aData,
+                                false);
+  }
+
+  static WebCryptoTask* CreateDigestTask(JSContext* aCx,
+                                         const ObjectOrString& aAlgorithm,
+                                         const CryptoOperationData& aData);
+
+  static WebCryptoTask* CreateImportKeyTask(
+      nsIGlobalObject* aGlobal, JSContext* aCx, const nsAString& aFormat,
+      JS::Handle<JSObject*> aKeyData, const ObjectOrString& aAlgorithm,
+      bool aExtractable, const Sequence<nsString>& aKeyUsages);
+  static WebCryptoTask* CreateExportKeyTask(const nsAString& aFormat,
+                                            CryptoKey& aKey);
+  static WebCryptoTask* CreateGenerateKeyTask(
+      nsIGlobalObject* aGlobal, JSContext* aCx,
+      const ObjectOrString& aAlgorithm, bool aExtractable,
+      const Sequence<nsString>& aKeyUsages);
+
+  static WebCryptoTask* CreateDeriveKeyTask(
+      nsIGlobalObject* aGlobal, JSContext* aCx,
+      const ObjectOrString& aAlgorithm, CryptoKey& aBaseKey,
+      const ObjectOrString& aDerivedKeyType, bool extractable,
+      const Sequence<nsString>& aKeyUsages);
+  static WebCryptoTask* CreateDeriveBitsTask(JSContext* aCx,
+                                             const ObjectOrString& aAlgorithm,
+                                             CryptoKey& aKey, uint32_t aLength);
+
+  static WebCryptoTask* CreateWrapKeyTask(JSContext* aCx,
+                                          const nsAString& aFormat,
+                                          CryptoKey& aKey,
+                                          CryptoKey& aWrappingKey,
+                                          const ObjectOrString& aWrapAlgorithm);
+  static WebCryptoTask* CreateUnwrapKeyTask(
+      nsIGlobalObject* aGlobal, JSContext* aCx, const nsAString& aFormat,
+      const ArrayBufferViewOrArrayBuffer& aWrappedKey,
+      CryptoKey& aUnwrappingKey, const ObjectOrString& aUnwrapAlgorithm,
+      const ObjectOrString& aUnwrappedKeyAlgorithm, bool aExtractable,
+      const Sequence<nsString>& aKeyUsages);
+
+ protected:
+  RefPtr<Promise> mResultPromise;
+  nsresult mEarlyRv;
+  bool mEarlyComplete;
+
+  WebCryptoTask();
+  virtual ~WebCryptoTask();
+
+  bool IsOnOriginalThread() {
+    return !mOriginalEventTarget || mOriginalEventTarget->IsOnCurrentThread();
+  }
+
+  // For things that need to happen on the main thread
+  // either before or after CalculateResult
+  virtual nsresult BeforeCrypto() { return NS_OK; }
+  virtual nsresult DoCrypto() { return NS_OK; }
+  virtual nsresult AfterCrypto() { return NS_OK; }
+  virtual void Resolve() {}
+  virtual void Cleanup() {}
+
+  void FailWithError(nsresult aRv);
+
+  nsresult CalculateResult();
+
+  void CallCallback(nsresult rv);
+
+ private:
+  NS_IMETHOD Run() final;
+  nsresult Cancel() final;
+
+  nsCOMPtr<nsISerialEventTarget> mOriginalEventTarget;
+  RefPtr<ThreadSafeWorkerRef> mWorkerRef;
+  nsresult mRv;
+};
+
+// XXX This class is declared here (unlike others) to enable reuse by WebRTC.
+class GenerateAsymmetricKeyTask : public WebCryptoTask {
+ public:
+  GenerateAsymmetricKeyTask(nsIGlobalObject* aGlobal, JSContext* aCx,
+                            const ObjectOrString& aAlgorithm, bool aExtractable,
+                            const Sequence<nsString>& aKeyUsages);
+
+ protected:
+  UniquePLArenaPool mArena;
+  UniquePtr<CryptoKeyPair> mKeyPair;
+  nsString mAlgName;
+  CK_MECHANISM_TYPE mMechanism;
+  PK11RSAGenParams mRsaParams;
+  SECKEYDHParams mDhParams;
+  nsString mNamedCurve;
+
+  virtual nsresult DoCrypto() override;
+  virtual void Resolve() override;
+  virtual void Cleanup() override;
+
+ private:
+  UniqueSECKEYPublicKey mPublicKey;
+  UniqueSECKEYPrivateKey mPrivateKey;
+};
+
+}  // namespace mozilla::dom
+
+#endif  // mozilla_dom_WebCryptoTask_h