nodejs
diff --git a/‎lib/internal/crypto/util.js
Lines changed: 54 additions & 36 deletions b/‎lib/internal/crypto/util.js
Lines changed: 54 additions & 36 deletions
diff --git a/‎test/fixtures/crypto/eddsa.js
Lines changed: 9 additions & 1 deletion b/‎test/fixtures/crypto/eddsa.js
Lines changed: 9 additions & 1 deletion
diff --git a/‎test/fixtures/webcrypto/supports-level-2.mjs
Lines changed: 8 additions & 6 deletions b/‎test/fixtures/webcrypto/supports-level-2.mjs
Lines changed: 8 additions & 6 deletions
diff --git a/‎test/fixtures/webcrypto/supports-modern-algorithms.mjs
Lines changed: 24 additions & 5 deletions b/‎test/fixtures/webcrypto/supports-modern-algorithms.mjs
Lines changed: 24 additions & 5 deletions
diff --git a/‎test/fixtures/webcrypto/supports-secure-curves.mjs
Lines changed: 21 additions & 18 deletions b/‎test/fixtures/webcrypto/supports-secure-curves.mjs
Lines changed: 21 additions & 18 deletions
@@ -187,7 +187,6 @@ const kSupportedAlgorithms = {
     'AES-CTR': 'AesKeyGenParams',
     'AES-CBC': 'AesKeyGenParams',
     'AES-GCM': 'AesKeyGenParams',
-    'AES-KW': 'AesKeyGenParams',
     'HMAC': 'HmacKeyGenParams',
     'Ed25519': null,
     'X25519': null,
@@ -202,7 +201,6 @@ const kSupportedAlgorithms = {
     'AES-CTR': null,
     'AES-CBC': null,
     'AES-GCM': null,
-    'AES-KW': null,
     'Ed25519': null,
     'X25519': null,
   },
@@ -232,7 +230,6 @@ const kSupportedAlgorithms = {
     'AES-CTR': null,
     'AES-CBC': null,
     'AES-GCM': null,
-    'AES-KW': null,
     'Ed25519': null,
     'X25519': null,
   },
@@ -258,48 +255,69 @@ const kSupportedAlgorithms = {
     'AES-CBC': 'AesDerivedKeyParams',
     'AES-CTR': 'AesDerivedKeyParams',
     'AES-GCM': 'AesDerivedKeyParams',
-    'AES-KW': 'AesDerivedKeyParams',
     'HMAC': 'HmacImportParams',
     'HKDF': null,
     'PBKDF2': null,
   },
-  'wrapKey': {
-    'AES-KW': null,
-  },
-  'unwrapKey': {
-    'AES-KW': null,
-  },
+  'wrapKey': {},
+  'unwrapKey': {},
 };
 
-const experimentalAlgorithms = ObjectEntries({
-  'X448': {
-    generateKey: null,
-    importKey: null,
-    deriveBits: 'EcdhKeyDeriveParams',
-    exportKey: null,
-  },
-  'Ed448': {
-    generateKey: null,
-    sign: 'Ed448Params',
-    verify: 'Ed448Params',
-    importKey: null,
-    exportKey: null,
-  },
-  'cSHAKE128': { digest: 'CShakeParams' },
-  'cSHAKE256': { digest: 'CShakeParams' },
-  'SHA3-256': { digest: null },
-  'SHA3-384': { digest: null },
-  'SHA3-512': { digest: null },
-  'ChaCha20-Poly1305': {
-    'encrypt': 'AeadParams',
-    'decrypt': 'AeadParams',
-    'generateKey': null,
-    'importKey': null,
+const conditionalAlgorithms = ObjectEntries({
+  'AES-KW': [{
+    'generateKey': 'AesKeyGenParams',
     'exportKey': null,
-    'get key length': null,
-  },
+    'importKey': null,
+    'get key length': 'AesDerivedKeyParams',
+    'wrapKey': null,
+    'unwrapKey': null,
+  }, !process.features.openssl_is_boringssl],
 });
 
+for (let i = 0; i < conditionalAlgorithms.length; i++) {
+  if (conditionalAlgorithms[i][1][1]) {
+    const name = conditionalAlgorithms[i][0];
+    const ops = ObjectEntries(conditionalAlgorithms[i][1][0]);
+    for (let j = 0; j < ops.length; j++) {
+      const { 0: op, 1: dict } = ops[j];
+      kSupportedAlgorithms[op][name] = dict;
+    }
+  }
+}
+
+const experimentalAlgorithms = ObjectEntries({});
+
+if (!process.features.openssl_is_boringssl) {
+  ArrayPrototypePush(experimentalAlgorithms,
+                     ['Ed448', {
+                       generateKey: null,
+                       sign: 'Ed448Params',
+                       verify: 'Ed448Params',
+                       importKey: null,
+                       exportKey: null,
+                     }],
+                     ['X448', {
+                       generateKey: null,
+                       importKey: null,
+                       deriveBits: 'EcdhKeyDeriveParams',
+                       exportKey: null,
+                     }],
+                     ['cSHAKE128', { digest: 'CShakeParams' }],
+                     ['cSHAKE256', { digest: 'CShakeParams' }],
+                     ['ChaCha20-Poly1305', {
+                       'encrypt': 'AeadParams',
+                       'decrypt': 'AeadParams',
+                       'generateKey': null,
+                       'importKey': null,
+                       'exportKey': null,
+                       'get key length': null,
+                     }],
+                     ['SHA3-256', { digest: null }],
+                     ['SHA3-384', { digest: null }],
+                     ['SHA3-512', { digest: null }],
+  );
+}
+
 for (const { 0: algorithm, 1: nid } of [
   ['ML-DSA-44', EVP_PKEY_ML_DSA_44],
   ['ML-DSA-65', EVP_PKEY_ML_DSA_65],
 
@@ -1,5 +1,7 @@
 'use strict';
 
+const common = require('../../common');
+
 module.exports = function() {
   const pkcs8 = {
     'Ed25519': Buffer.from(
@@ -37,7 +39,13 @@ module.exports = function() {
       '025a2a5a572b9d23b0642f00', 'hex')
   }
 
-  const algorithms = ['Ed25519', 'Ed448'];
+  const algorithms = ['Ed25519'];
+
+  if (!process.features.openssl_is_boringssl) {
+    algorithms.push('Ed448')
+  } else {
+    common.printSkipMessage(`Skipping unsupported Ed448 test cases`);
+  }
 
   const vectors = algorithms.map((algorithm) => ({
     publicKeyBuffer: spki[algorithm],
 
@@ -11,6 +11,8 @@ const [ECDH, X448, X25519] = await Promise.all([
   subtle.generateKey('X25519', false, ['deriveBits', 'deriveKey']),
 ]);
 
+const boringSSL = process.features.openssl_is_boringssl;
+
 export const vectors = {
   'encrypt': [
     [false, 'Invalid'],
@@ -79,7 +81,7 @@ export const vectors = {
     [false, { name: 'AES-CBC', length: 25 }],
     [true, { name: 'AES-GCM', length: 128 }],
     [false, { name: 'AES-GCM', length: 25 }],
-    [true, { name: 'AES-KW', length: 128 }],
+    [!boringSSL, { name: 'AES-KW', length: 128 }],
     [false, { name: 'AES-KW', length: 25 }],
     [true, { name: 'HMAC', hash: 'SHA-256' }],
     [true, { name: 'HMAC', hash: 'SHA-256', length: 256 }],
@@ -189,7 +191,7 @@ export const vectors = {
     [true, 'AES-CTR'],
     [true, 'AES-CBC'],
     [true, 'AES-GCM'],
-    [true, 'AES-KW'],
+    [!boringSSL, 'AES-KW'],
     [true, { name: 'HMAC', hash: 'SHA-256' }],
     [true, { name: 'HMAC', hash: 'SHA-256', length: 256 }],
     [false, { name: 'HMAC', hash: 'SHA-256', length: 25 }],
@@ -211,18 +213,18 @@ export const vectors = {
     [true, 'AES-CTR'],
     [true, 'AES-CBC'],
     [true, 'AES-GCM'],
-    [true, 'AES-KW'],
+    [!boringSSL, 'AES-KW'],
     [true, 'Ed25519'],
     [true, 'X25519'],
   ],
   'wrapKey': [
     [false, 'AES-KW'],
-    [true, 'AES-KW', 'AES-CTR'],
-    [true, 'AES-KW', 'HMAC'],
+    [!boringSSL, 'AES-KW', 'AES-CTR'],
+    [!boringSSL, 'AES-KW', 'HMAC'],
   ],
   'unwrapKey': [
     [false, 'AES-KW'],
-    [true, 'AES-KW', 'AES-CTR'],
+    [!boringSSL, 'AES-KW', 'AES-CTR'],
   ],
   'unsupported operation': [
     [false, ''],
 
@@ -1,8 +1,27 @@
+import * as crypto from 'node:crypto'
+
 import { hasOpenSSL } from '../../common/crypto.js'
 
 const pqc = hasOpenSSL(3, 5);
+const shake128 = crypto.getHashes().includes('shake128');
+const shake256 = crypto.getHashes().includes('shake256');
+const chacha = crypto.getCiphers().includes('chacha20-poly1305');
 
 export const vectors = {
+  'digest': [
+    [false, 'cSHAKE128'],
+    [shake128, { name: 'cSHAKE128', length: 128 }],
+    [shake128, { name: 'cSHAKE128', length: 128, functionName: Buffer.alloc(0), customization: Buffer.alloc(0) }],
+    [false, { name: 'cSHAKE128', length: 128, functionName: Buffer.alloc(1) }],
+    [false, { name: 'cSHAKE128', length: 128, customization: Buffer.alloc(1) }],
+    [false, { name: 'cSHAKE128', length: 127 }],
+    [false, 'cSHAKE256'],
+    [shake256, { name: 'cSHAKE256', length: 256 }],
+    [shake256, { name: 'cSHAKE256', length: 256, functionName: Buffer.alloc(0), customization: Buffer.alloc(0) }],
+    [false, { name: 'cSHAKE256', length: 256, functionName: Buffer.alloc(1) }],
+    [false, { name: 'cSHAKE256', length: 256, customization: Buffer.alloc(1) }],
+    [false, { name: 'cSHAKE256', length: 255 }],
+  ],
   'sign': [
     [pqc, 'ML-DSA-44'],
     [pqc, 'ML-DSA-65'],
@@ -12,19 +31,19 @@ export const vectors = {
     [pqc, 'ML-DSA-44'],
     [pqc, 'ML-DSA-65'],
     [pqc, 'ML-DSA-87'],
-    [true, 'ChaCha20-Poly1305'],
+    [chacha, 'ChaCha20-Poly1305'],
   ],
   'importKey': [
     [pqc, 'ML-DSA-44'],
     [pqc, 'ML-DSA-65'],
     [pqc, 'ML-DSA-87'],
-    [true, 'ChaCha20-Poly1305'],
+    [chacha, 'ChaCha20-Poly1305'],
   ],
   'exportKey': [
     [pqc, 'ML-DSA-44'],
     [pqc, 'ML-DSA-65'],
     [pqc, 'ML-DSA-87'],
-    [true, 'ChaCha20-Poly1305'],
+    [chacha, 'ChaCha20-Poly1305'],
   ],
   'getPublicKey': [
     [true, 'RSA-OAEP'],
@@ -44,9 +63,9 @@ export const vectors = {
     [false, 'ChaCha20-Poly1305'],
   ],
   'encrypt': [
-    [true, { name: 'ChaCha20-Poly1305', iv: Buffer.alloc(12) }],
+    [chacha, { name: 'ChaCha20-Poly1305', iv: Buffer.alloc(12) }],
     [false, { name: 'ChaCha20-Poly1305', iv: Buffer.alloc(16) }],
-    [true, { name: 'ChaCha20-Poly1305', iv: Buffer.alloc(12), tagLength: 128 }],
+    [chacha, { name: 'ChaCha20-Poly1305', iv: Buffer.alloc(12), tagLength: 128 }],
     [false, { name: 'ChaCha20-Poly1305', iv: Buffer.alloc(12), tagLength: 64 }],
     [false, 'ChaCha20-Poly1305'],
   ]
 
@@ -1,38 +1,41 @@
 const { subtle } = globalThis.crypto;
 
-const [X448, X25519] = await Promise.all([
-  subtle.generateKey('X448', false, ['deriveBits', 'deriveKey']),
-  subtle.generateKey('X25519', false, ['deriveBits', 'deriveKey']),
-]);
+const boringSSL = process.features.openssl_is_boringssl;
+
+const X25519 = await subtle.generateKey('X25519', false, ['deriveBits', 'deriveKey']);
+let X448;
+if (!boringSSL) {
+  X448 = await subtle.generateKey('X448', false, ['deriveBits', 'deriveKey'])
+}
 
 export const vectors = {
   'generateKey': [
-    [true, 'X448'],
-    [true, 'Ed448'],
+    [!boringSSL, 'X448'],
+    [!boringSSL, 'Ed448'],
   ],
   'deriveKey': [
-    [true,
-     { name: 'X448', public: X448.publicKey },
+    [!boringSSL,
+     { name: 'X448', public: X448?.publicKey },
      { name: 'AES-CBC', length: 128 }],
-    [true,
-     { name: 'X448', public: X448.publicKey },
+    [!boringSSL,
+     { name: 'X448', public: X448?.publicKey },
      { name: 'HMAC', hash: 'SHA-256' }],
-    [true,
-     { name: 'X448', public: X448.publicKey },
+    [!boringSSL,
+     { name: 'X448', public: X448?.publicKey },
      'HKDF'],
   ],
   'deriveBits': [
-    [true, { name: 'X448', public: X448.publicKey }],
+    [!boringSSL, { name: 'X448', public: X448?.publicKey }],
     [false, { name: 'X448', public: X25519.publicKey }],
-    [false, { name: 'X448', public: X448.privateKey }],
+    [false, { name: 'X448', public: X448?.privateKey }],
     [false, 'X448'],
   ],
   'importKey': [
-    [true, 'X448'],
-    [true, 'Ed448'],
+    [!boringSSL, 'X448'],
+    [!boringSSL, 'Ed448'],
   ],
   'exportKey': [
-    [true, 'Ed448'],
-    [true, 'X448'],
+    [!boringSSL, 'Ed448'],
+    [!boringSSL, 'X448'],
   ],
 };