search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Backed out changeset 9d8b4c0b99ed (bug 1945683) for causing btime failures. CLOSED...
[gecko.git] / dom / webauthn / WebAuthnTransactionParent.cpp
bloba2c175402d9fbb513139d6bd476a36bcc520d8e1
1 /* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
2 /* vim: set ts=8 sts=2 et sw=2 tw=80: */
3 /* This Source Code Form is subject to the terms of the Mozilla Public
4 * License, v. 2.0. If a copy of the MPL was not distributed with this
5 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
6
7 #include "mozilla/dom/WebAuthnTransactionParent.h"
8 #include "mozilla/ipc/PBackgroundParent.h"
9 #include "mozilla/ipc/BackgroundParent.h"
10 #include "mozilla/StaticPrefs_security.h"
11
12 #include "nsThreadUtils.h"
13 #include "WebAuthnArgs.h"
14
15 namespace mozilla::dom {
16
17 void WebAuthnTransactionParent::CompleteTransaction() {
18 if (mTransactionId.isSome()) {
19 if (mRegisterPromiseRequest.Exists()) {
20 mRegisterPromiseRequest.Complete();
21 }
22 if (mSignPromiseRequest.Exists()) {
23 mSignPromiseRequest.Complete();
24 }
25 if (mWebAuthnService) {
26 // We have to do this to work around Bug 1864526.
27 mWebAuthnService->Cancel(mTransactionId.ref());
28 }
29 mTransactionId.reset();
30 }
31 }
32
33 void WebAuthnTransactionParent::DisconnectTransaction() {
34 mTransactionId.reset();
35 mRegisterPromiseRequest.DisconnectIfExists();
36 mSignPromiseRequest.DisconnectIfExists();
37 if (mWebAuthnService) {
38 mWebAuthnService->Reset();
39 }
40 }
41
42 mozilla::ipc::IPCResult WebAuthnTransactionParent::RecvRequestRegister(
43 const uint64_t& aTransactionId,
44 const WebAuthnMakeCredentialInfo& aTransactionInfo) {
45 ::mozilla::ipc::AssertIsOnBackgroundThread();
46
47 if (!mWebAuthnService) {
48 mWebAuthnService = do_GetService("@mozilla.org/webauthn/service;1");
49 if (!mWebAuthnService) {
50 return IPC_FAIL_NO_REASON(this);
51 }
52 }
53
54 // If there's an ongoing transaction, abort it.
55 if (mTransactionId.isSome()) {
56 DisconnectTransaction();
57 Unused << SendAbort(mTransactionId.ref(), NS_ERROR_DOM_ABORT_ERR);
58 }
59 mTransactionId = Some(aTransactionId);
60
61 RefPtr<WebAuthnRegisterPromiseHolder> promiseHolder =
62 new WebAuthnRegisterPromiseHolder(GetCurrentSerialEventTarget());
63
64 PWebAuthnTransactionParent* parent = this;
65 RefPtr<WebAuthnRegisterPromise> promise = promiseHolder->Ensure();
66 promise
67 ->Then(
68 GetCurrentSerialEventTarget(), __func__,
69 [this, parent, aTransactionId,
70 inputClientData = aTransactionInfo.ClientDataJSON()](
71 const WebAuthnRegisterPromise::ResolveValueType& aValue) {
72 CompleteTransaction();
73
74 nsCString clientData;
75 nsresult rv = aValue->GetClientDataJSON(clientData);
76 if (rv == NS_ERROR_NOT_AVAILABLE) {
77 clientData = inputClientData;
78 } else if (NS_FAILED(rv)) {
79 Unused << parent->SendAbort(aTransactionId,
80 NS_ERROR_DOM_NOT_ALLOWED_ERR);
81 return;
82 }
83
84 nsTArray<uint8_t> attObj;
85 rv = aValue->GetAttestationObject(attObj);
86 if (NS_WARN_IF(NS_FAILED(rv))) {
87 Unused << parent->SendAbort(aTransactionId,
88 NS_ERROR_DOM_NOT_ALLOWED_ERR);
89 return;
90 }
91
92 nsTArray<uint8_t> credentialId;
93 rv = aValue->GetCredentialId(credentialId);
94 if (NS_WARN_IF(NS_FAILED(rv))) {
95 Unused << parent->SendAbort(aTransactionId,
96 NS_ERROR_DOM_NOT_ALLOWED_ERR);
97 return;
98 }
99
100 nsTArray<nsString> transports;
101 rv = aValue->GetTransports(transports);
102 if (NS_WARN_IF(NS_FAILED(rv))) {
103 Unused << parent->SendAbort(aTransactionId,
104 NS_ERROR_DOM_NOT_ALLOWED_ERR);
105 return;
106 }
107
108 Maybe<nsString> authenticatorAttachment;
109 nsString maybeAuthenticatorAttachment;
110 rv = aValue->GetAuthenticatorAttachment(
111 maybeAuthenticatorAttachment);
112 if (rv != NS_ERROR_NOT_AVAILABLE) {
113 if (NS_WARN_IF(NS_FAILED(rv))) {
114 Unused << parent->SendAbort(aTransactionId,
115 NS_ERROR_DOM_NOT_ALLOWED_ERR);
116 return;
117 }
118 authenticatorAttachment = Some(maybeAuthenticatorAttachment);
119 }
120
121 nsTArray<WebAuthnExtensionResult> extensions;
122 bool credPropsRk;
123 rv = aValue->GetCredPropsRk(&credPropsRk);
124 if (rv != NS_ERROR_NOT_AVAILABLE) {
125 if (NS_WARN_IF(NS_FAILED(rv))) {
126 Unused << parent->SendAbort(aTransactionId,
127 NS_ERROR_DOM_NOT_ALLOWED_ERR);
128 return;
129 }
130 extensions.AppendElement(
131 WebAuthnExtensionResultCredProps(credPropsRk));
132 }
133
134 bool hmacCreateSecret;
135 rv = aValue->GetHmacCreateSecret(&hmacCreateSecret);
136 if (rv != NS_ERROR_NOT_AVAILABLE) {
137 if (NS_WARN_IF(NS_FAILED(rv))) {
138 Unused << parent->SendAbort(aTransactionId,
139 NS_ERROR_DOM_NOT_ALLOWED_ERR);
140 return;
141 }
142 extensions.AppendElement(
143 WebAuthnExtensionResultHmacSecret(hmacCreateSecret));
144 }
145
146 {
147 Maybe<bool> prfEnabledMaybe = Nothing();
148 Maybe<WebAuthnExtensionPrfValues> prfResults = Nothing();
149
150 bool prfEnabled;
151 rv = aValue->GetPrfEnabled(&prfEnabled);
152 if (rv != NS_ERROR_NOT_AVAILABLE) {
153 if (NS_WARN_IF(NS_FAILED(rv))) {
154 Unused << parent->SendAbort(aTransactionId,
155 NS_ERROR_DOM_NOT_ALLOWED_ERR);
156 return;
157 }
158 prfEnabledMaybe = Some(prfEnabled);
159 }
160
161 nsTArray<uint8_t> prfResultsFirst;
162 rv = aValue->GetPrfResultsFirst(prfResultsFirst);
163 if (rv != NS_ERROR_NOT_AVAILABLE) {
164 if (NS_WARN_IF(NS_FAILED(rv))) {
165 Unused << parent->SendAbort(aTransactionId,
166 NS_ERROR_DOM_NOT_ALLOWED_ERR);
167 return;
168 }
169
170 bool prfResultsSecondMaybe = false;
171 nsTArray<uint8_t> prfResultsSecond;
172 rv = aValue->GetPrfResultsSecond(prfResultsSecond);
173 if (rv != NS_ERROR_NOT_AVAILABLE) {
174 if (NS_WARN_IF(NS_FAILED(rv))) {
175 Unused << parent->SendAbort(aTransactionId,
176 NS_ERROR_DOM_NOT_ALLOWED_ERR);
177 return;
178 }
179 prfResultsSecondMaybe = true;
180 }
181
182 prfResults = Some(WebAuthnExtensionPrfValues(
183 prfResultsFirst, prfResultsSecondMaybe, prfResultsSecond));
184 }
185
186 if (prfEnabledMaybe.isSome() || prfResults.isSome()) {
187 extensions.AppendElement(
188 WebAuthnExtensionResultPrf(prfEnabledMaybe, prfResults));
189 }
190 }
191
192 WebAuthnMakeCredentialResult result(
193 clientData, attObj, credentialId, transports, extensions,
194 authenticatorAttachment);
195
196 Unused << parent->SendConfirmRegister(aTransactionId, result);
197 },
198 [this, parent, aTransactionId](
199 const WebAuthnRegisterPromise::RejectValueType aValue) {
200 CompleteTransaction();
201 Unused << parent->SendAbort(aTransactionId, aValue);
202 })
203 ->Track(mRegisterPromiseRequest);
204
205 uint64_t browsingContextId = aTransactionInfo.BrowsingContextId();
206 RefPtr<WebAuthnRegisterArgs> args(new WebAuthnRegisterArgs(aTransactionInfo));
207
208 nsresult rv = mWebAuthnService->MakeCredential(
209 aTransactionId, browsingContextId, args, promiseHolder);
210 if (NS_FAILED(rv)) {
211 promiseHolder->Reject(NS_ERROR_DOM_NOT_ALLOWED_ERR);
212 }
213
214 return IPC_OK();
215 }
216
217 mozilla::ipc::IPCResult WebAuthnTransactionParent::RecvRequestSign(
218 const uint64_t& aTransactionId,
219 const WebAuthnGetAssertionInfo& aTransactionInfo) {
220 ::mozilla::ipc::AssertIsOnBackgroundThread();
221
222 if (!mWebAuthnService) {
223 mWebAuthnService = do_GetService("@mozilla.org/webauthn/service;1");
224 if (!mWebAuthnService) {
225 return IPC_FAIL_NO_REASON(this);
226 }
227 }
228
229 if (mTransactionId.isSome()) {
230 DisconnectTransaction();
231 Unused << SendAbort(mTransactionId.ref(), NS_ERROR_DOM_ABORT_ERR);
232 }
233 mTransactionId = Some(aTransactionId);
234
235 RefPtr<WebAuthnSignPromiseHolder> promiseHolder =
236 new WebAuthnSignPromiseHolder(GetCurrentSerialEventTarget());
237
238 PWebAuthnTransactionParent* parent = this;
239 RefPtr<WebAuthnSignPromise> promise = promiseHolder->Ensure();
240 promise
241 ->Then(
242 GetCurrentSerialEventTarget(), __func__,
243 [this, parent, aTransactionId,
244 inputClientData = aTransactionInfo.ClientDataJSON()](
245 const WebAuthnSignPromise::ResolveValueType& aValue) {
246 CompleteTransaction();
247
248 nsCString clientData;
249 nsresult rv = aValue->GetClientDataJSON(clientData);
250 if (rv == NS_ERROR_NOT_AVAILABLE) {
251 clientData = inputClientData;
252 } else if (NS_FAILED(rv)) {
253 Unused << parent->SendAbort(aTransactionId,
254 NS_ERROR_DOM_NOT_ALLOWED_ERR);
255 return;
256 }
257
258 nsTArray<uint8_t> credentialId;
259 rv = aValue->GetCredentialId(credentialId);
260 if (NS_WARN_IF(NS_FAILED(rv))) {
261 Unused << parent->SendAbort(aTransactionId,
262 NS_ERROR_DOM_NOT_ALLOWED_ERR);
263 return;
264 }
265
266 nsTArray<uint8_t> signature;
267 rv = aValue->GetSignature(signature);
268 if (NS_WARN_IF(NS_FAILED(rv))) {
269 Unused << parent->SendAbort(aTransactionId,
270 NS_ERROR_DOM_NOT_ALLOWED_ERR);
271 return;
272 }
273
274 nsTArray<uint8_t> authenticatorData;
275 rv = aValue->GetAuthenticatorData(authenticatorData);
276 if (NS_WARN_IF(NS_FAILED(rv))) {
277 Unused << parent->SendAbort(aTransactionId,
278 NS_ERROR_DOM_NOT_ALLOWED_ERR);
279 return;
280 }
281
282 nsTArray<uint8_t> userHandle;
283 Unused << aValue->GetUserHandle(userHandle); // optional
284
285 Maybe<nsString> authenticatorAttachment;
286 nsString maybeAuthenticatorAttachment;
287 rv = aValue->GetAuthenticatorAttachment(
288 maybeAuthenticatorAttachment);
289 if (rv != NS_ERROR_NOT_AVAILABLE) {
290 if (NS_WARN_IF(NS_FAILED(rv))) {
291 Unused << parent->SendAbort(aTransactionId,
292 NS_ERROR_DOM_NOT_ALLOWED_ERR);
293 return;
294 }
295 authenticatorAttachment = Some(maybeAuthenticatorAttachment);
296 }
297
298 nsTArray<WebAuthnExtensionResult> extensions;
299 bool usedAppId;
300 rv = aValue->GetUsedAppId(&usedAppId);
301 if (rv != NS_ERROR_NOT_AVAILABLE) {
302 if (NS_FAILED(rv)) {
303 Unused << parent->SendAbort(aTransactionId,
304 NS_ERROR_DOM_NOT_ALLOWED_ERR);
305 return;
306 }
307 extensions.AppendElement(WebAuthnExtensionResultAppId(usedAppId));
308 }
309
310 {
311 Maybe<WebAuthnExtensionPrfValues> prfResults;
312 bool prfMaybe = false;
313 rv = aValue->GetPrfMaybe(&prfMaybe);
314 if (rv == NS_OK && prfMaybe) {
315 nsTArray<uint8_t> prfResultsFirst;
316 rv = aValue->GetPrfResultsFirst(prfResultsFirst);
317 if (rv != NS_ERROR_NOT_AVAILABLE) {
318 if (NS_WARN_IF(NS_FAILED(rv))) {
319 Unused << parent->SendAbort(aTransactionId,
320 NS_ERROR_DOM_NOT_ALLOWED_ERR);
321 return;
322 }
323
324 bool prfResultsSecondMaybe = false;
325 nsTArray<uint8_t> prfResultsSecond;
326 rv = aValue->GetPrfResultsSecond(prfResultsSecond);
327 if (rv != NS_ERROR_NOT_AVAILABLE) {
328 if (NS_WARN_IF(NS_FAILED(rv))) {
329 Unused << parent->SendAbort(aTransactionId,
330 NS_ERROR_DOM_NOT_ALLOWED_ERR);
331 return;
332 }
333 prfResultsSecondMaybe = true;
334 }
335
336 prfResults = Some(WebAuthnExtensionPrfValues(
337 prfResultsFirst, prfResultsSecondMaybe,
338 prfResultsSecond));
339 } else {
340 prfResults = Nothing();
341 }
342
343 extensions.AppendElement(
344 WebAuthnExtensionResultPrf(Nothing(), prfResults));
345 }
346 }
347
348 WebAuthnGetAssertionResult result(
349 clientData, credentialId, signature, authenticatorData,
350 extensions, userHandle, authenticatorAttachment);
351
352 Unused << parent->SendConfirmSign(aTransactionId, result);
353 },
354 [this, parent,
355 aTransactionId](const WebAuthnSignPromise::RejectValueType aValue) {
356 CompleteTransaction();
357 Unused << parent->SendAbort(aTransactionId, aValue);
358 })
359 ->Track(mSignPromiseRequest);
360
361 RefPtr<WebAuthnSignArgs> args(new WebAuthnSignArgs(aTransactionInfo));
362
363 nsresult rv = mWebAuthnService->GetAssertion(
364 aTransactionId, aTransactionInfo.BrowsingContextId(), args,
365 promiseHolder);
366 if (NS_FAILED(rv)) {
367 promiseHolder->Reject(NS_ERROR_DOM_NOT_ALLOWED_ERR);
368 }
369
370 return IPC_OK();
371 }
372
373 mozilla::ipc::IPCResult WebAuthnTransactionParent::RecvRequestCancel(
374 const Tainted<uint64_t>& aTransactionId) {
375 ::mozilla::ipc::AssertIsOnBackgroundThread();
376
377 if (mTransactionId.isNothing() ||
378 !MOZ_IS_VALID(aTransactionId, mTransactionId.ref() == aTransactionId)) {
379 return IPC_OK();
380 }
381
382 DisconnectTransaction();
383 return IPC_OK();
384 }
385
386 mozilla::ipc::IPCResult WebAuthnTransactionParent::RecvRequestIsUVPAA(
387 RequestIsUVPAAResolver&& aResolver) {
388 #ifdef MOZ_WIDGET_ANDROID
389 // Try the nsIWebAuthnService. If we're configured for tests we
390 // will get a result. Otherwise we expect NS_ERROR_NOT_IMPLEMENTED.
391 nsCOMPtr<nsIWebAuthnService> service(
392 do_GetService("@mozilla.org/webauthn/service;1"));
393 bool available;
394 nsresult rv = service->GetIsUVPAA(&available);
395 if (NS_SUCCEEDED(rv)) {
396 aResolver(available);
397 return IPC_OK();
398 }
399
400 // Don't consult the platform API if resident key support is disabled.
401 if (!StaticPrefs::
402 security_webauthn_webauthn_enable_android_fido2_residentkey()) {
403 aResolver(false);
404 return IPC_OK();
405 }
406
407 // The GeckoView implementation of
408 // isUserVerifiyingPlatformAuthenticatorAvailable does not block, but we must
409 // call it on the main thread. It returns a MozPromise which we can ->Then to
410 // call aResolver on the IPDL background thread.
411 //
412 // Bug 1550788: there is an unnecessary layer of dispatching here: ipdl ->
413 // main -> a background thread. Other platforms just do ipdl -> a background
414 // thread.
415 nsCOMPtr<nsISerialEventTarget> target = GetCurrentSerialEventTarget();
416 nsCOMPtr<nsIRunnable> runnable(NS_NewRunnableFunction(
417 __func__, [target, resolver = std::move(aResolver)]() {
418 auto result = java::WebAuthnTokenManager::
419 WebAuthnIsUserVerifyingPlatformAuthenticatorAvailable();
420 auto geckoResult = java::GeckoResult::LocalRef(std::move(result));
421 MozPromise<bool, bool, false>::FromGeckoResult(geckoResult)
422 ->Then(
423 target, __func__,
424 [resolver](
425 const MozPromise<bool, bool, false>::ResolveOrRejectValue&
426 aValue) {
427 if (aValue.IsResolve()) {
428 resolver(aValue.ResolveValue());
429 } else {
430 resolver(false);
431 }
432 });
433 }));
434 NS_DispatchToMainThread(runnable.forget());
435 return IPC_OK();
436
437 #else
438
439 nsCOMPtr<nsISerialEventTarget> target = GetCurrentSerialEventTarget();
440 nsCOMPtr<nsIRunnable> runnable(NS_NewRunnableFunction(
441 __func__, [target, resolver = std::move(aResolver)]() {
442 bool available;
443 nsCOMPtr<nsIWebAuthnService> service(
444 do_GetService("@mozilla.org/webauthn/service;1"));
445 nsresult rv = service->GetIsUVPAA(&available);
446 if (NS_FAILED(rv)) {
447 available = false;
448 }
449 BoolPromise::CreateAndResolve(available, __func__)
450 ->Then(target, __func__,
451 [resolver](const BoolPromise::ResolveOrRejectValue& value) {
452 if (value.IsResolve()) {
453 resolver(value.ResolveValue());
454 } else {
455 resolver(false);
456 }
457 });
458 }));
459 NS_DispatchBackgroundTask(runnable.forget(), NS_DISPATCH_EVENT_MAY_BLOCK);
460 return IPC_OK();
461 #endif
462 }
463
464 mozilla::ipc::IPCResult WebAuthnTransactionParent::RecvDestroyMe() {
465 ::mozilla::ipc::AssertIsOnBackgroundThread();
466
467 // The child was disconnected from the WebAuthnManager instance and will send
468 // no further messages. It is kept alive until we delete it explicitly.
469
470 // The child should have cancelled any active transaction. This means
471 // we expect no more messages to the child. We'll crash otherwise.
472
473 // The IPC roundtrip is complete. No more messages, hopefully.
474 IProtocol* mgr = Manager();
475 if (!Send__delete__(this)) {
476 return IPC_FAIL_NO_REASON(mgr);
477 }
478
479 return IPC_OK();
480 }
481
482 void WebAuthnTransactionParent::ActorDestroy(ActorDestroyReason aWhy) {
483 ::mozilla::ipc::AssertIsOnBackgroundThread();
484
485 // Called either by Send__delete__() in RecvDestroyMe() above, or when
486 // the channel disconnects. Ensure the token manager forgets about us.
487
488 if (mTransactionId.isSome()) {
489 DisconnectTransaction();
490 }
491 }
492
493 } // namespace mozilla::dom