This is an archived snapshot of W3C's public bugzilla bug tracker, decommissioned in April 2019. Please see the home page for more details.

Bug 22677 - wrapKey requires encrypt key usage
Summary: wrapKey requires encrypt key usage
Status: RESOLVED FIXED
Alias: None
Product: Web Cryptography
Classification: Unclassified
Component: Web Cryptography API Document (show other bugs)
Version: unspecified
Hardware: PC Windows NT
: P2 normal
Target Milestone: ---
Assignee: Mark Watson
QA Contact:
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2013-07-15 23:23 UTC by jimsch
Modified: 2014-01-25 01:25 UTC (History)
3 users (show)

See Also:


Attachments

Description jimsch 2013-07-15 23:23:36 UTC
As currently documented, the current description of wrapKey requires that both the wrapKey and encrypt key usages be set on the wrappingKey.  It needs to be modified so that the encrypt operation does not require the encrypt key usage iff it is being called from the wrapKey method.

Same issue exists for unwrapKey.
Comment 1 Mark Watson 2014-01-24 23:49:30 UTC
Wrap and unwrap should refer to the raw encrypt and decrypt operations for the algorithm being used, rather than to the encrypt and decrypt *methods*. The method  descriptions describe the creation of a Promise for the operation and the mapping of inputs and outputs - we do not need these parts when we combine export and encrypt into wrap or decrypt and import into unwrap. The method descriptions are where we will check usages so by referring directly to the underlying algorithms, we avoid the problem of this bug.