Show error message for unwrap failure; make new button appearance more obvious

Will Bamberg · Will Bamberg · commit 7f7bc655b3f0 · 2019-01-08T14:44:03.000-08:00
diff --git a/web-crypto/unwrap-key/index.html b/web-crypto/unwrap-key/index.html
@@ -16,9 +16,9 @@ <h1>Web Crypto: unwrapKey</h1>
           <li>Raw/AES-GCM/AES-KW: unwrap an AES-GCM encryption key, that was encrypted using AES-KW and exported in "raw" format.</li>
           <li>PKCS #8/RSA-PSS/AES-GCM:  unwrap an RSA-PSS signing key, that was encrypted using AES-GCM and exported in "pkcs8" format.</li>
         </ul>
-        <p>Both examples have the same structure: you get a message and two buttons, one labeled "Unwrap Key" and the other labeled either "Sign" or "Encrypt", depending on the type of key we are unwrapping. The "Sign"/"Encrypt" button is disabled initially.</p>
+        <p>Both examples have the same structure: you get a message and a button labeled "Unwrap Key".</p>
         <p>If you click "Unwrap Key" then the example unwraps its particular key. First it will ask for a password: the password you must enter is <strong>correct horse battery staple</strong>. It uses the password to derive the key that was used to encrypt the wrapped key. It then unwraps the wrapped key. If you get the password wrong, unwrapping will fail.</p>
-        <p>If unwrapping was successful, the "Sign"/"Encrypt" button is then enabled, and you can click it to use the unwrapped key to perform the appropriate operation and display the result.</p>
+        <p>If unwrapping was successful, a new button is displayed, that enables you to use the unwrapped key. For "raw/AES-GCM" the new button is labeled "Encrypt", and for "pkcs8/RSA-PSS" it's labeled "Sign". You can click the new button to use the unwrapped key to perform the appropriate operation and display the result.</p>
       </section>
 
       <section class="examples">
@@ -33,7 +33,7 @@ <h2 class="unwrap-key-heading">Raw/AES-GCM/AES-KW</h2>
             </div>
             <div class="ciphertext">Ciphertext:<span class="ciphertext-value"></span></div>
             <input class="unwrap-key-button" type="button" value="Unwrap Key">
-            <input class="encrypt-button" type="button" value="Encrypt" disabled>
+            <input class="encrypt-button hidden" type="button" value="Encrypt" disabled>
           </section>
         </section>
 
@@ -47,7 +47,7 @@ <h2 class="unwrap-key-heading">PKCS #8/RSA-PSS/AES-GCM</h2>
             </div>
             <div class="signature">Signature:<span class="signature-value"></span></div>
             <input class="unwrap-key-button" type="button" value="Unwrap Key">
-            <input class="sign-button" type="button" value="Sign" disabled>
+            <input class="sign-button hidden" type="button" value="Sign" disabled>
           </section>
         </section>
 
diff --git a/web-crypto/unwrap-key/pkcs8.js b/web-crypto/unwrap-key/pkcs8.js
@@ -79,6 +79,13 @@
     40,148,187,39,234,96,151,16,158,114,113,109,164,47,108,94,148,35,232,221,
     33,110,126,170,25,234,45,165,180,210,193,120,247,155,127];
 
+  /*
+  The unwrapped signing key.
+  */
+  let signingKey;
+
+  const signButton = document.querySelector(".pkcs8 .sign-button");
+
   /*
   Convert an array of byte values to an ArrayBuffer.
   */
@@ -176,14 +183,14 @@
   Get the encoded message-to-sign, sign it and display a representation
   of the first part of it in the "signature" element.
   */
-  async function signMessage(privateKey) {
+  async function signMessage() {
     const encoded = getMessageEncoding();
     const signature = await window.crypto.subtle.sign(
       {
         name: "RSA-PSS",
         saltLength: 32,
       },
-      privateKey,
+      signingKey,
       encoded
     );
 
@@ -196,20 +203,43 @@
     signatureValue.textContent = `${buffer}...[${signature.byteLength} bytes total]`;
   }
 
+    /*
+    Hide and disable the sign button if key unwrapping failed.
+    */
+    function resetSignButton() {
+      signButton.setAttribute("disabled", true);
+      signButton.classList.add("hidden");
+    }
+
+    /*
+    Show and enable the sign button if key unwrapping succeeded.
+    */
+    function enableSignButton() {
+      signButton.classList.add('fade-in');
+      signButton.addEventListener('animationend', () => {
+        signButton.classList.remove('fade-in');
+      });
+      signButton.removeAttribute("disabled");
+      signButton.classList.remove("hidden");
+    }
+
   /*
   When the user clicks "Unwrap Key"
   - unwrap the key
-  - enable the "Sign" button
-  - add a listener to "Sign" that uses the key.
+  - if unwrapping succeeded, enable the "Sign" button
   */
   const unwrapKeyButton = document.querySelector(".pkcs8 .unwrap-key-button");
   unwrapKeyButton.addEventListener("click", async () => {
-    const privateKey = await unwrapPrivateKey(wrappedKeyBytes);
-    const signButton = document.querySelector(".pkcs8 .sign-button");
-    signButton.removeAttribute("disabled");
-    signButton.addEventListener("click", () => {
-      signMessage(privateKey);
-    });
+    try {
+      signingKey = await unwrapPrivateKey(wrappedKeyBytes);
+      enableSignButton();
+    }
+    catch(e) {
+      resetSignButton();
+      alert("Incorrect password");
+    }
   });
 
+  signButton.addEventListener("click", signMessage);
+
 })();
diff --git a/web-crypto/unwrap-key/raw.js b/web-crypto/unwrap-key/raw.js
@@ -15,6 +15,13 @@
       224,39,199,235,239,60,212,169,100,23,61,54,244,197,160,80,109,230,207,
       225,57,197,175,71,80,209];
 
+  /*
+  The unwrapped secret key.
+  */
+  let secretKey;
+
+  const encryptButton = document.querySelector(".raw .encrypt-button");
+
   /*
   Convert an array of byte values to an ArrayBuffer.
   */
@@ -103,7 +110,7 @@
   Get the encoded message, encrypt it and display a representation
   of the ciphertext in the "Ciphertext" element.
   */
-  async function encryptMessage(key) {
+  async function encryptMessage() {
     const encoded = getMessageEncoding();
     // iv will be needed for decryption
     const iv = window.crypto.getRandomValues(new Uint8Array(12));
@@ -112,7 +119,7 @@
         name: "AES-GCM",
         iv: iv
       },
-      key,
+      secretKey,
       encoded
     );
 
@@ -125,20 +132,43 @@
     ciphertextValue.textContent = `${buffer}...[${ciphertext.byteLength} bytes total]`;
   }
 
+  /*
+  Hide and disable the encrypt button if key unwrapping failed.
+  */
+  function resetEncryptButton() {
+    encryptButton.setAttribute("disabled", true);
+    encryptButton.classList.add("hidden");
+  }
+
+  /*
+  Show and enable the encrypt button if key unwrapping succeeded.
+  */
+  function enableEncryptButton() {
+    encryptButton.classList.add('fade-in');
+    encryptButton.addEventListener('animationend', () => {
+      encryptButton.classList.remove('fade-in');
+    });
+    encryptButton.removeAttribute("disabled");
+    encryptButton.classList.remove("hidden");
+  }
+
   /*
   When the user clicks "Unwrap Key"
   - unwrap the key
-  - enable the "Encrypt" button
-  - add a listener to "Encrypt" that uses the key.
+  - if unwrapping succeeded, enable the "Encrypt" button
   */
   const unwrapKeyButton = document.querySelector(".raw .unwrap-key-button");
   unwrapKeyButton.addEventListener("click", async () => {
-    const secretKey = await unwrapSecretKey(wrappedKeyBytes);
-    const encryptButton = document.querySelector(".raw .encrypt-button");
-    encryptButton.removeAttribute("disabled");
-    encryptButton.addEventListener("click", () => {
-      encryptMessage(secretKey);
-    });
+    try {
+      secretKey = await unwrapSecretKey(wrappedKeyBytes);
+      enableEncryptButton();
+    }
+    catch(e) {
+      resetEncryptButton();
+      alert("Incorrect password");
+    }
   });
 
+  encryptButton.addEventListener("click", encryptMessage);
+
 })();
diff --git a/web-crypto/unwrap-key/style.css b/web-crypto/unwrap-key/style.css
@@ -39,6 +39,15 @@ h1 {
     font-family: monospace;
 }
 
+.sign-button, .encrypt-button {
+    background-color: green;
+    color: white;
+}
+
+.hidden {
+    display: none;
+}
+
 /* Whole page grid */
 main {
     display: grid;
