A user account is required in order to edit this wiki, but we've had to disable public user registrations due to spam.
To request an account, ask an autoconfirmed user on Chat (such as one of these permanent autoconfirmed members).
Crypto: Difference between revisions
m (even more like a proper spec) |
(Throw an exception for overlarge arrays, as discussed in https://bugzilla.mozilla.org/show_bug.cgi?id=440046) |
||
Line 20: | Line 20: | ||
The <b id=dom-Crypto-getRandomValues title=dom-Crypto-getRandomValues><code>getRandomValues(<var>array</var>)</code></b> must run the following steps: | The <b id=dom-Crypto-getRandomValues title=dom-Crypto-getRandomValues><code>getRandomValues(<var>array</var>)</code></b> must run the following steps: | ||
# <var>array</var> is an [http://www.khronos.org/registry/typedarray/specs/latest/#6 ArrayBufferView]. If <var>array</var> is not of an integer type (i.e., Int8Array, Uint8Array, Int16Array, Uint16Array, Int32Array, or Uint32Array), throw a [http://dvcs.w3.org/hg/domcore/raw-file/tip/Overview.html# | # <var>array</var> is an [http://www.khronos.org/registry/typedarray/specs/latest/#6 ArrayBufferView]. If <var>array</var> is not of an integer type (i.e., Int8Array, Uint8Array, Int16Array, Uint16Array, Int32Array, or Uint32Array), [http://dvcs.w3.org/hg/domcore/raw-file/tip/Overview.html#concept-throw throw] a [http://dvcs.w3.org/hg/domcore/raw-file/tip/Overview.html#typemismatcherror TypeMismatchError] and abort these steps. | ||
# If <var>array</var>'s length is greater than 65536, [http://dvcs.w3.org/hg/domcore/raw-file/tip/Overview.html#concept-throw throw] a [http://dvcs.w3.org/hg/domcore/raw-file/tip/Overview.html#quotaexceedederror QuotaExceededError] and abort these steps. | |||
# Overwrite all elements of <var>array</var> with [[#concept-cryptographically-random-values|cryptographically random values]] of the appropriate type. | # Overwrite all elements of <var>array</var> with [[#concept-cryptographically-random-values|cryptographically random values]] of the appropriate type. | ||
[[Category:Proposals]] | [[Category:Proposals]] |
Revision as of 19:52, 12 October 2011
Overview
This document describes a proposal for the window.crypto API.
Definitions
Cryptographically Random Values
A cryptographically random value is a value generated from a cryptographically strong pseudo-random number generator seeded with truly random values. In practice, implementations should generate cryptographically random values using well-established cryptographic pseudo-random number generators, such as RC4, seeded with high-quality entropy, such as from an operating-system entropy source (e.g., /dev/urandom). This document provides no lower-bound on the information theoretic entropy present in cryptographically random values, but implementations should make a best effort to provide as much entropy as practicable.
Interface Crypto
interface Crypto { void getRandomValues(in ArrayBufferView array); }; partial interface Window { readonly attribute Crypto crypto; };
The getRandomValues(array)
must run the following steps:
- array is an ArrayBufferView. If array is not of an integer type (i.e., Int8Array, Uint8Array, Int16Array, Uint16Array, Int32Array, or Uint32Array), throw a TypeMismatchError and abort these steps.
- If array's length is greater than 65536, throw a QuotaExceededError and abort these steps.
- Overwrite all elements of array with cryptographically random values of the appropriate type.