Bug 151308
| Summary: | Not possible to import RSA-OAEP keys with hash: {name: "SHA-256"} | ||
|---|---|---|---|
| Product: | WebKit | Reporter: | Roustem <roustem> |
| Component: | WebCore Misc. | Assignee: | Nobody <webkit-unassigned> |
| Status: | RESOLVED FIXED | ||
| Severity: | Normal | CC: | ap, bfulgham, jiewen_tan, piotr, rob, webkit-bug-importer |
| Priority: | P2 | Keywords: | InRadar |
| Version: | WebKit Nightly Build | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| See Also: | https://bugs.webkit.org/show_bug.cgi?id=164446 | ||
| Bug Depends on: | |||
| Bug Blocks: | 160894 | ||
Roustem
When trying to import RSA-OAEP private key with hash parameter == SHA-256, the result uses SHA-1 instead.
IMPORTING KEY:
Uint8Array [123, 34, 97, 108, 103, 34, 58, 34, 82, 83, …]
Object
hash: {name: "SHA-256"}
modulusLength: 2048
name: "RSA-OAEP"
publicExponent: Uint8Array [1, 0, 1]
IMPORTED KEY:
algorithm: {name: "RSA-OAEP", modulusLength: 2048, publicExponent: Uint8Array [1, 0, 1], hash: {name: "SHA-1"}}
extractable: true
type: "private"
usages: ["decrypt"]
| Attachments | ||
|---|---|---|
| Add attachment proposed patch, testcase, etc. |
Alexey Proskuryakov
Yes, the older version of WebCrypto spec that WebKit currently implements didn't take a hash when importing, so SHA-256 here is just ignored. We also don't support the RSA-OAEP-256 JWK algorithm yet.
Radar WebKit Bug Importer
<rdar://problem/27311678>
Rob
I keep scanning the Safari TP release notes in hopes that I'll see some progress on this. Safari is still unsupported for many 1Password customers who created accounts last year using Chrome or Firefox, which support RSA-OAEP-256.
Jiewen Tan
The bug is resolved by Bug 164446.