ladybird/Userland/Libraries/LibWeb/Crypto/SubtleCrypto.cpp

/*
 * Copyright (c) 2021-2022, Linus Groh <linusg@serenityos.org>
 *
 * SPDX-License-Identifier: BSD-2-Clause
 */

#include <LibCrypto/Hash/HashManager.h>
#include <LibJS/Runtime/ArrayBuffer.h>
#include <LibJS/Runtime/Promise.h>
#include <LibWeb/Bindings/Intrinsics.h>
#include <LibWeb/Crypto/SubtleCrypto.h>
#include <LibWeb/WebIDL/AbstractOperations.h>
#include <LibWeb/WebIDL/ExceptionOr.h>

namespace Web::Crypto {

WebIDL::ExceptionOr<JS::NonnullGCPtr<SubtleCrypto>> SubtleCrypto::create(JS::Realm& realm)
{
    return MUST_OR_THROW_OOM(realm.heap().allocate<SubtleCrypto>(realm, realm));
}

SubtleCrypto::SubtleCrypto(JS::Realm& realm)
    : PlatformObject(realm)
{
}

SubtleCrypto::~SubtleCrypto() = default;

void SubtleCrypto::initialize(JS::Realm& realm)
{
    Base::initialize(realm);
    set_prototype(&Bindings::ensure_web_prototype<Bindings::SubtleCryptoPrototype>(realm, "SubtleCrypto"));
}

// https://w3c.github.io/webcrypto/#dfn-SubtleCrypto-method-digest
JS::NonnullGCPtr<JS::Promise> SubtleCrypto::digest(String const& algorithm, JS::Handle<JS::Object> const& data)
{
    auto& realm = this->realm();

    // 1. Let algorithm be the algorithm parameter passed to the digest() method.

    // 2. Let data be the result of getting a copy of the bytes held by the data parameter passed to the digest() method.
    auto data_buffer_or_error = WebIDL::get_buffer_source_copy(*data.cell());
    if (data_buffer_or_error.is_error()) {
        auto error = WebIDL::OperationError::create(realm, "Failed to copy bytes from ArrayBuffer");
        auto promise = JS::Promise::create(realm);
        promise->reject(error.ptr());
        return promise;
    }
    auto& data_buffer = data_buffer_or_error.value();

    // 3. Let normalizedAlgorithm be the result of normalizing an algorithm, with alg set to algorithm and op set to "digest".
    // FIXME: This is way more generic than it needs to be right now, so we simplify it.
    ::Crypto::Hash::HashKind hash_kind;
    auto algorithm_as_string_view = algorithm.bytes_as_string_view();
    if (algorithm_as_string_view.equals_ignoring_ascii_case("SHA-1"sv)) {
        hash_kind = ::Crypto::Hash::HashKind::SHA1;
    } else if (algorithm_as_string_view.equals_ignoring_ascii_case("SHA-256"sv)) {
        hash_kind = ::Crypto::Hash::HashKind::SHA256;
    } else if (algorithm_as_string_view.equals_ignoring_ascii_case("SHA-384"sv)) {
        hash_kind = ::Crypto::Hash::HashKind::SHA384;
    } else if (algorithm_as_string_view.equals_ignoring_ascii_case("SHA-512"sv)) {
        hash_kind = ::Crypto::Hash::HashKind::SHA512;
    }
    // 4. If an error occurred, return a Promise rejected with normalizedAlgorithm.
    else {
        auto error = WebIDL::NotSupportedError::create(realm, DeprecatedString::formatted("Invalid hash function '{}'", algorithm));
        auto promise = JS::Promise::create(realm);
        promise->reject(error.ptr());
        return promise;
    }

    // 5. Let promise be a new Promise.
    auto promise = JS::Promise::create(realm);

    // 6. Return promise and perform the remaining steps in parallel.
    // FIXME: We don't have a good abstraction for this yet, so we do it in sync.

    // 7. If the following steps or referenced procedures say to throw an error, reject promise with the returned error and then terminate the algorithm.

    // 8. Let result be the result of performing the digest operation specified by normalizedAlgorithm using algorithm, with data as message.
    ::Crypto::Hash::Manager hash { hash_kind };
    hash.update(data_buffer);

    auto digest = hash.digest();
    auto result_buffer = ByteBuffer::copy(digest.immutable_data(), hash.digest_size());
    if (result_buffer.is_error()) {
        auto error = WebIDL::OperationError::create(realm, "Failed to create result buffer");
        promise->reject(error.ptr());
        return promise;
    }

    auto result = JS::ArrayBuffer::create(realm, result_buffer.release_value());

    // 9. Resolve promise with result.
    promise->fulfill(result);
    return promise;
}

}
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00			`/*`
LibWeb: Replace GlobalObject with Realm in wrapper functions Similar to create() in LibJS, wrap() et al. are on a low enough level to warrant passing a Realm directly instead of relying on the current realm from the VM, as a wrapper may need to be allocated while no JS is being executed. 2022-08-22 20:31:08 +03:00			`* Copyright (c) 2021-2022, Linus Groh <linusg@serenityos.org>`
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00			`*`
			`* SPDX-License-Identifier: BSD-2-Clause`
			`*/`

			`#include <LibCrypto/Hash/HashManager.h>`
			`#include <LibJS/Runtime/ArrayBuffer.h>`
			`#include <LibJS/Runtime/Promise.h>`
LibWeb: Remove unecessary dependence on Window from assorted classes These classes only needed Window to get at its realm. Pass a realm directly to construct Crypto, Encoding, HRT, IntersectionObserver, NavigationTiming, Page, RequestIdleCallback, Selection, Streams, URL, and XML classes. 2022-09-26 03:11:21 +03:00			`#include <LibWeb/Bindings/Intrinsics.h>`
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00			`#include <LibWeb/Crypto/SubtleCrypto.h>`
LibWeb: Move IDLAbstractOperations from Bindings/ to WebIDL/ 2022-09-24 18:14:37 +03:00			`#include <LibWeb/WebIDL/AbstractOperations.h>`
LibWeb: Make factory method of Crypto::SubtleCrypto fallible 2023-02-12 23:25:57 +03:00			`#include <LibWeb/WebIDL/ExceptionOr.h>`
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00
			`namespace Web::Crypto {`

LibWeb: Make factory method of Crypto::SubtleCrypto fallible 2023-02-12 23:25:57 +03:00			`WebIDL::ExceptionOr<JS::NonnullGCPtr<SubtleCrypto>> SubtleCrypto::create(JS::Realm& realm)`
LibWeb: Make SubtleCrypto GC-allocated 2022-09-03 20:59:53 +03:00			`{`
LibWeb: Make factory method of Crypto::SubtleCrypto fallible 2023-02-12 23:25:57 +03:00			`return MUST_OR_THROW_OOM(realm.heap().allocate<SubtleCrypto>(realm, realm));`
LibWeb: Make SubtleCrypto GC-allocated 2022-09-03 20:59:53 +03:00			`}`

LibWeb: Remove unecessary dependence on Window from assorted classes These classes only needed Window to get at its realm. Pass a realm directly to construct Crypto, Encoding, HRT, IntersectionObserver, NavigationTiming, Page, RequestIdleCallback, Selection, Streams, URL, and XML classes. 2022-09-26 03:11:21 +03:00			`SubtleCrypto::SubtleCrypto(JS::Realm& realm)`
			`: PlatformObject(realm)`
LibWeb: Make SubtleCrypto GC-allocated 2022-09-03 20:59:53 +03:00			`{`
			`}`

			`SubtleCrypto::~SubtleCrypto() = default;`

LibJS: Make Cell::initialize() return void Stop worrying about tiny OOMs. Work towards #20405 2023-08-07 09:41:28 +03:00			`void SubtleCrypto::initialize(JS::Realm& realm)`
LibWeb: Move setting of Web object prototypes to initialize() This needs to happen before prototype/constructor intitialization can be made lazy. Otherwise, GC could run during the C++ constructor and try to collect the object currently being created. 2023-01-10 14:28:20 +03:00			`{`
LibJS: Make Cell::initialize() return void Stop worrying about tiny OOMs. Work towards #20405 2023-08-07 09:41:28 +03:00			`Base::initialize(realm);`
LibWeb: Move setting of Web object prototypes to initialize() This needs to happen before prototype/constructor intitialization can be made lazy. Otherwise, GC could run during the C++ constructor and try to collect the object currently being created. 2023-01-10 14:28:20 +03:00			`set_prototype(&Bindings::ensure_web_prototype<Bindings::SubtleCryptoPrototype>(realm, "SubtleCrypto"));`
			`}`

LibWeb: Remove unecessary dependence on Window from assorted classes These classes only needed Window to get at its realm. Pass a realm directly to construct Crypto, Encoding, HRT, IntersectionObserver, NavigationTiming, Page, RequestIdleCallback, Selection, Streams, URL, and XML classes. 2022-09-26 03:11:21 +03:00			`// https://w3c.github.io/webcrypto/#dfn-SubtleCrypto-method-digest`
LibWeb: Mark JS::Promise* return value for digest() with JS::NNGCPtr 2023-02-24 14:18:43 +03:00			`JS::NonnullGCPtr<JS::Promise> SubtleCrypto::digest(String const& algorithm, JS::Handle<JS::Object> const& data)`
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00			`{`
LibWeb: Remove unecessary dependence on Window from assorted classes These classes only needed Window to get at its realm. Pass a realm directly to construct Crypto, Encoding, HRT, IntersectionObserver, NavigationTiming, Page, RequestIdleCallback, Selection, Streams, URL, and XML classes. 2022-09-26 03:11:21 +03:00			`auto& realm = this->realm();`
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00
			`// 1. Let algorithm be the algorithm parameter passed to the digest() method.`

			`// 2. Let data be the result of getting a copy of the bytes held by the data parameter passed to the digest() method.`
LibWeb: Move IDLAbstractOperations from Bindings/ to WebIDL/ 2022-09-24 18:14:37 +03:00			`auto data_buffer_or_error = WebIDL::get_buffer_source_copy(*data.cell());`
LibWeb: Let get_buffer_source_copy() return ErrorOr instead of Optional This is a minor refactor of IDL::get_buffer_source_copy() letting it return ErrorOr<ByteBuffer> instead of Optional<ByteBuffer>. This also updates all places that use IDL::get_buffer_source_copy(). 2022-07-22 22:01:36 +03:00			`if (data_buffer_or_error.is_error()) {`
LibWeb: Remove unecessary dependence on Window from assorted classes These classes only needed Window to get at its realm. Pass a realm directly to construct Crypto, Encoding, HRT, IntersectionObserver, NavigationTiming, Page, RequestIdleCallback, Selection, Streams, URL, and XML classes. 2022-09-26 03:11:21 +03:00			`auto error = WebIDL::OperationError::create(realm, "Failed to copy bytes from ArrayBuffer");`
LibJS: Convert Promise::create() to NonnullGCPtr 2022-12-13 23:49:50 +03:00			`auto promise = JS::Promise::create(realm);`
LibWeb: Stop using Bindings::wrap() in a bunch of places wrap() is now basically a no-op so we should stop using it everywhere and eventually remove it. This patch removes uses of wrap() in non-generated code. 2022-09-04 22:48:54 +03:00			`promise->reject(error.ptr());`
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00			`return promise;`
			`}`
LibWeb: Let get_buffer_source_copy() return ErrorOr instead of Optional This is a minor refactor of IDL::get_buffer_source_copy() letting it return ErrorOr<ByteBuffer> instead of Optional<ByteBuffer>. This also updates all places that use IDL::get_buffer_source_copy(). 2022-07-22 22:01:36 +03:00			`auto& data_buffer = data_buffer_or_error.value();`
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00
			`// 3. Let normalizedAlgorithm be the result of normalizing an algorithm, with alg set to algorithm and op set to "digest".`
			`// FIXME: This is way more generic than it needs to be right now, so we simplify it.`
			`::Crypto::Hash::HashKind hash_kind;`
LibWeb: Port SubtleCrypto to new String The algorithm comparison in digest() is done using a StringView to avoid complex error handling and promise rejection. 2023-02-23 23:31:57 +03:00			`auto algorithm_as_string_view = algorithm.bytes_as_string_view();`
Everywhere: Rename equals_ignoring_case => equals_ignoring_ascii_case Let's make it clear that these functions deal with ASCII case only. 2023-03-10 10:48:54 +03:00			`if (algorithm_as_string_view.equals_ignoring_ascii_case("SHA-1"sv)) {`
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00			`hash_kind = ::Crypto::Hash::HashKind::SHA1;`
Everywhere: Rename equals_ignoring_case => equals_ignoring_ascii_case Let's make it clear that these functions deal with ASCII case only. 2023-03-10 10:48:54 +03:00			`} else if (algorithm_as_string_view.equals_ignoring_ascii_case("SHA-256"sv)) {`
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00			`hash_kind = ::Crypto::Hash::HashKind::SHA256;`
Everywhere: Rename equals_ignoring_case => equals_ignoring_ascii_case Let's make it clear that these functions deal with ASCII case only. 2023-03-10 10:48:54 +03:00			`} else if (algorithm_as_string_view.equals_ignoring_ascii_case("SHA-384"sv)) {`
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00			`hash_kind = ::Crypto::Hash::HashKind::SHA384;`
Everywhere: Rename equals_ignoring_case => equals_ignoring_ascii_case Let's make it clear that these functions deal with ASCII case only. 2023-03-10 10:48:54 +03:00			`} else if (algorithm_as_string_view.equals_ignoring_ascii_case("SHA-512"sv)) {`
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00			`hash_kind = ::Crypto::Hash::HashKind::SHA512;`
			`}`
			`// 4. If an error occurred, return a Promise rejected with normalizedAlgorithm.`
			`else {`
AK+Everywhere: Rename String to DeprecatedString We have a new, improved string type coming up in AK (OOM aware, no null state), and while it's going to use UTF-8, the name UTF8String is a mouthful - so let's free up the String name by renaming the existing class. Making the old one have an annoying name will hopefully also help with quick adoption :^) 2022-12-04 21:02:33 +03:00			`auto error = WebIDL::NotSupportedError::create(realm, DeprecatedString::formatted("Invalid hash function '{}'", algorithm));`
LibJS: Convert Promise::create() to NonnullGCPtr 2022-12-13 23:49:50 +03:00			`auto promise = JS::Promise::create(realm);`
LibWeb: Stop using Bindings::wrap() in a bunch of places wrap() is now basically a no-op so we should stop using it everywhere and eventually remove it. This patch removes uses of wrap() in non-generated code. 2022-09-04 22:48:54 +03:00			`promise->reject(error.ptr());`
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00			`return promise;`
			`}`

			`// 5. Let promise be a new Promise.`
LibJS: Convert Promise::create() to NonnullGCPtr 2022-12-13 23:49:50 +03:00			`auto promise = JS::Promise::create(realm);`
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00
			`// 6. Return promise and perform the remaining steps in parallel.`
			`// FIXME: We don't have a good abstraction for this yet, so we do it in sync.`

			`// 7. If the following steps or referenced procedures say to throw an error, reject promise with the returned error and then terminate the algorithm.`

			`// 8. Let result be the result of performing the digest operation specified by normalizedAlgorithm using algorithm, with data as message.`
LibWeb: Use ByteBuffer::copy() instead of a manual copy in SubtleCrypto Also use the HashManager(HashKind) constructor instead of the default constructor + manual initialize() call. 2021-12-15 15:36:07 +03:00			`::Crypto::Hash::Manager hash { hash_kind };`
LibWeb: Let get_buffer_source_copy() return ErrorOr instead of Optional This is a minor refactor of IDL::get_buffer_source_copy() letting it return ErrorOr<ByteBuffer> instead of Optional<ByteBuffer>. This also updates all places that use IDL::get_buffer_source_copy(). 2022-07-22 22:01:36 +03:00			`hash.update(data_buffer);`
LibWeb: Use ByteBuffer::copy() instead of a manual copy in SubtleCrypto Also use the HashManager(HashKind) constructor instead of the default constructor + manual initialize() call. 2021-12-15 15:36:07 +03:00
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00			`auto digest = hash.digest();`
LibWeb: Use ByteBuffer::copy() instead of a manual copy in SubtleCrypto Also use the HashManager(HashKind) constructor instead of the default constructor + manual initialize() call. 2021-12-15 15:36:07 +03:00			`auto result_buffer = ByteBuffer::copy(digest.immutable_data(), hash.digest_size());`
Everywhere: Convert ByteBuffer factory methods from Optional -> ErrorOr Apologies for the enormous commit, but I don't see a way to split this up nicely. In the vast majority of cases it's a simple change. A few extra places can use TRY instead of manual error checking though. :^) 2022-01-20 20:47:39 +03:00			`if (result_buffer.is_error()) {`
LibWeb: Remove unecessary dependence on Window from assorted classes These classes only needed Window to get at its realm. Pass a realm directly to construct Crypto, Encoding, HRT, IntersectionObserver, NavigationTiming, Page, RequestIdleCallback, Selection, Streams, URL, and XML classes. 2022-09-26 03:11:21 +03:00			`auto error = WebIDL::OperationError::create(realm, "Failed to create result buffer");`
LibWeb: Stop using Bindings::wrap() in a bunch of places wrap() is now basically a no-op so we should stop using it everywhere and eventually remove it. This patch removes uses of wrap() in non-generated code. 2022-09-04 22:48:54 +03:00			`promise->reject(error.ptr());`
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00			`return promise;`
			`}`

LibJS: Convert ArrayBuffer::create() to NonnullGCPtr 2022-12-13 23:49:50 +03:00			`auto result = JS::ArrayBuffer::create(realm, result_buffer.release_value());`
LibWeb: Implement SubtleCrypto.digest() This is a simple implementation of SubtleCrypto.digest() using LibCrypto under the hood, so it supports all the required hash functions: SHA-1, SHA-256, SHA-384, SHA-512. Two FIXMEs remain: doing the hashing "in parallel", and supporting an object argument instead of a plain string. 2021-12-14 01:09:55 +03:00
			`// 9. Resolve promise with result.`
			`promise->fulfill(result);`
			`return promise;`
			`}`

			`}`