node/src/crypto/crypto_ml_dsa.cc at valid-json · codebytere/node

85 lines (76 loc) · 2.43 KB

#include "crypto/crypto_ml_dsa.h"
#include "crypto/crypto_util.h"
#include "env-inl.h"
#include "string_bytes.h"
#include "v8.h"
namespace node {
using ncrypto::DataPointer;
using v8::Local;
using v8::Object;
using v8::String;
using v8::Value;
namespace crypto {
#if OPENSSL_WITH_PQC
constexpr const char* GetMlDsaAlgorithmName(int id) {
  switch (id) {
    case EVP_PKEY_ML_DSA_44:
      return "ML-DSA-44";
    case EVP_PKEY_ML_DSA_65:
      return "ML-DSA-65";
    case EVP_PKEY_ML_DSA_87:
      return "ML-DSA-87";
    default:
      return nullptr;
 * Exports an ML-DSA key to JWK format.
 * The resulting JWK object contains:
 * - "kty": "AKP" (Asymmetric Key Pair - required)
 * - "alg": "ML-DSA-XX" (Algorithm identifier - required for "AKP")
 * - "pub": "<Base64URL-encoded raw public key>" (required)
 * - "priv": <"Base64URL-encoded raw seed>" (required for private keys only)
bool ExportJwkMlDsaKey(Environment* env,
                       const KeyObjectData& key,
                       Local<Object> target) {
  Mutex::ScopedLock lock(key.mutex());
  const auto& pkey = key.GetAsymmetricKey();
  const char* alg = GetMlDsaAlgorithmName(pkey.id());
  CHECK(alg);
  static constexpr auto trySetKey = [](Environment* env,
                                       DataPointer data,
                                       Local<Object> target,
                                       Local<String> key) {
    Local<Value> encoded;
    if (!data) return false;
    const ncrypto::Buffer<const char> out = data;
    return StringBytes::Encode(env->isolate(), out.data, out.len, BASE64URL)
               .ToLocal(&encoded) &&
           target->Set(env->context(), key, encoded).IsJust();
  if (key.GetKeyType() == kKeyTypePrivate) {
    auto seed = pkey.rawSeed();
    if (!seed) {
      THROW_ERR_CRYPTO_OPERATION_FAILED(env,
                                        "key does not have an available seed");
      return false;
    if (!trySetKey(env, pkey.rawSeed(), target, env->jwk_priv_string())) {
      return false;
  return !(
      target->Set(env->context(), env->jwk_kty_string(), env->jwk_akp_string())
          .IsNothing() ||
      target
          ->Set(env->context(),
                env->jwk_alg_string(),
                OneByteString(env->isolate(), alg))
          .IsNothing() ||
      !trySetKey(env, pkey.rawPublicKey(), target, env->jwk_pub_string()));
}  // namespace crypto
}  // namespace node

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

FilesExpand file tree

crypto_ml_dsa.cc

Latest commit

History

crypto_ml_dsa.cc

File metadata and controls