fix(ext/crypto): take a copy of keyData bytes (#11666)

2024-11-21 20:38:55 +00:00 · 2021-08-13 14:57:56 +05:30 · 2021-08-13 14:57:56 +05:30 · c1f97056f4
commit c1f97056f4
parent 8481377500
2 changed files with 33 additions and 0 deletions
--- a/cli/tests/unit/webcrypto_test.ts
+++ b/cli/tests/unit/webcrypto_test.ts
@ -1,5 +1,26 @@
 import { assert, assertEquals, unitTest } from "./test_util.ts";

+// https://github.com/denoland/deno/issues/11664
+unitTest(async function testImportArrayBufferKey() {
+  const subtle = window.crypto.subtle;
+  assert(subtle);
+
+  // deno-fmt-ignore
+  const key = new Uint8Array([1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16]);
+
+  const cryptoKey = await subtle.importKey(
+    "raw",
+    key.buffer,
+    { name: "HMAC", hash: "SHA-1" },
+    true,
+    ["sign"],
+  );
+  assert(cryptoKey);
+
+  // Test key usage
+  await subtle.sign({ name: "HMAC" }, cryptoKey, new Uint8Array(8));
+});
+
 // TODO(@littledivy): Remove this when we enable WPT for sign_verify
 unitTest(async function testSignVerify() {
  const subtle = window.crypto.subtle;
--- a/ext/crypto/00_crypto.js
+++ b/ext/crypto/00_crypto.js
@ -463,6 +463,18 @@
        context: "Argument 5",
      });

+      // 2.
+      if (ArrayBufferIsView(keyData)) {
+        keyData = new Uint8Array(
+          keyData.buffer,
+          keyData.byteOffset,
+          keyData.byteLength,
+        );
+      } else {
+        keyData = new Uint8Array(keyData);
+      }
+      keyData = TypedArrayPrototypeSlice(keyData);
+
      const normalizedAlgorithm = normalizeAlgorithm(algorithm, "importKey");

      if (