Open
Bug 1245252
Opened 9 years ago
Updated 3 years ago
Clean up WebCrypto API EC key import checks
Categories
(Core :: DOM: Web Crypto, defect, P3)
Core
DOM: Web Crypto
Tracking
()
NEW
People
(Reporter: ttaubert, Unassigned)
References
(Depends on 2 open bugs)
Details
(Whiteboard: [domsecurity-backlog2])
Attachments
(1 file, 2 obsolete files)
The current CryptoKey::PublicKeyValid() method imports a public key and assumes that it's a point on the curve when that doesn't fail. While that's a fair assumption and will probably always be, it would be nice if we wouldn't have to do that. Passing SECItems instead of a public key would be nice for pending PKCS#8 patches too.
Also, due to how PK11_ImportPublicKey() works, this method fails if called twice in a row with the same public key. That's rather unexpected.
Bug 1245244 suggests exposing EC_ValidatePublicKey() via the PKCS#11 API.
|
Reporter | |
Comment 1•9 years ago
|
||
|
|
Reporter | |
Comment 2•9 years ago
|
||
Attachment #8714979 -
Attachment is obsolete: true
|
|
Reporter | |
Updated•9 years ago
|
Summary: Replace PublicKeyValid() with a proper PK11 method to validate curve points → Clean up WebCrypto API EC key import checks
|
|
Reporter | |
Comment 3•9 years ago
|
||
Attachment #8715716 -
Attachment is obsolete: true
|
||
Updated•9 years ago
|
Component: DOM: Security → Security
|
||
Updated•9 years ago
|
Component: Security → DOM: Security
|
|
||
Updated•9 years ago
|
Priority: -- → P3
Whiteboard: [domsecurity-backlog2]
|
|
Reporter | |
Updated•8 years ago
|
Assignee: ttaubert → nobody
Status: ASSIGNED → NEW
|
||
Updated•6 years ago
|
Component: DOM: Security → DOM: Web Crypto
|
||
Updated•3 years ago
|
Severity: normal → S3
You need to log in
before you can comment on or make changes to this bug.
Description
•