92 commits

Author	SHA1	Message	Date
Bartek Iwańczuk	928f26db78	feat: V8 14.0.0 (#30629) ... This commit updates V8 to version 14.0.0. This update brings changes to Temporal support too, which is close to being stabilized. --------- Co-authored-by: snek <snek@deno.com>	2025-09-08 22:12:54 +02:00
林炳权	68297b5f10	chore: Rust 1.89.0 (#30364) ... Related PR: https://github.com/denoland/deno/pull/30354	2025-08-09 11:11:48 +00:00
Divy	84136f41bd	fix(ext/node): implement TLSSocket.getPeerCertificate (#30146) ... Fixes https://github.com/denoland/deno/issues/22181 Depends on https://github.com/denoland/rustls-tokio-stream/pull/46 ``` # google.com [Object: null prototype] { ca: false, raw: Uint8Array(3634) [ 48, 130, 14, 46, 48, 130, 13, 22, 160, 3, 2, 1, 2, 2, 17, 0, 139, 141, 66, 93, 177, 192, 98, 133, 16, 71, 29, 49, 153, 205, 184, 162, 48, 13, 6, 9, 42, 134, 72, 134, 247, 13, 1, 1, 11, 5, 0, 48, 59, 49, 11, 48, 9, 6, 3, 85, 4, 6, 19, 2, 85, 83, 49, 30, 48, 28, 6, 3, 85, 4, 10, 19, 21, 71, 111, 111, 103, 108, 101, 32, 84, 114, 117, 115, 116, 32, 83, 101, 114, 118, 105, 99, 101, 115, 49, 12, 48, 10, 6, 3, ... 3534 more items ], subject: [Object: null prototype] { CN: "*.google.com" }, issuer: [Object: null prototype] { C: "US", O: "Google Trust Services", CN: "WR2" }, valid_from: "Jun 23 08:40:16 2025 +00:00", valid_to: "Sep 15 08:40:15 2025 +00:00", serialNumber: "8B8D425DB1C0628510471D3199CDB8A2", fingerprint: "B9:AB:CF:25:07:76:A5:52:8A:C6:4E:00:9A:A3:2B:D3:B6:32:A6:32", fingerprint256: "BD:DA:50:EC:92:BD:74:5E:26:6B:7B:A3:D1:57:18:4D:FA:93:28:23:4E:B5:B5:B3:8E:11:6B:16:D9:66:FD:7E", fingerprint512: "22:AD:69:06:72:DA:B2:8C:10:9D:6E:83:74:2D:9F:5B:10:A1:C6:EB:4F:CA:A6:97:F0:F2:98:2A:16:56:32:0E:E2:F1:FB:A6:B9:AB:53:20:2A:78:0F:11:B3:FD:38:9D:8D:43:97:3A:2F:4F:F4:F1:48:CE:D5:54:DF:3E:D2:7E", subjectaltname: "DNS:*.google.com, DNS:*.appengine.google.com, DNS:*.bdn.dev, DNS:*.origin-test.bdn.dev, DNS:*.cloud.google.com, DNS:*.crowdsource.google.com, DNS:*.datacompute.google.com, DNS:*.google.ca, DNS:*.google.cl, DNS:*.google.co.in, DNS:*.google.co.jp, DNS:*.google.co.uk, DNS:*.google.com.ar, DNS:*.google.com.au, DNS:*.google.com.br, DNS:*.google.com.co, DNS:*.google.com.mx, DNS:*.google.com.tr, DNS:*.google.com.vn, DNS:*.google.de, DNS:*.google.es, DNS:*.google.fr, DNS:*.google.hu, DNS:*.google.it, DNS:*.google.nl, DNS:*.google.pl, DNS:*.google.pt, DNS:*.googleapis.cn, DNS:*.googlevideo.com, DNS:*.gstatic.cn, DNS:*.gstatic-cn.com, DNS:googlecnapps.cn, DNS:*.googlecnapps.cn, DNS:googleapps-cn.com, DNS:*.googleapps-cn.com, DNS:gkecnapps.cn, DNS:*.gkecnapps.cn, DNS:googledownloads.cn, DNS:*.googledownloads.cn, DNS:recaptcha.net.cn, DNS:*.recaptcha.net.cn, DNS:recaptcha-cn.net, DNS:*.recaptcha-cn.net, DNS:widevine.cn, DNS:*.widevine.cn, DNS:ampproject.org.cn, DNS:*.ampproject.org.cn, DNS:ampproject.net.cn, DNS:*.ampproject.net.cn, DNS:google-analytics-cn.com, DNS:*.google-analytics-cn.com, DNS:googleadservices-cn.com, DNS:*.googleadservices-cn.com, DNS:googlevads-cn.com, DNS:*.googlevads-cn.com, DNS:googleapis-cn.com, DNS:*.googleapis-cn.com, DNS:googleoptimize-cn.com, DNS:*.googleoptimize-cn.com, DNS:doubleclick-cn.net, DNS:*.doubleclick-cn.net, DNS:*.fls.doubleclick-cn.net, DNS:*.g.doubleclick-cn.net, DNS:doubleclick.cn, DNS:*.doubleclick.cn, DNS:*.fls.doubleclick.cn, DNS:*.g.doubleclick.cn, DNS:dartsearch-cn.net, DNS:*.dartsearch-cn.net, DNS:googletraveladservices-cn.com, DNS:*.googletraveladservices-cn.com, DNS:googletagservices-cn.com, DNS:*.googletagservices-cn.com, DNS:googletagmanager-cn.com, DNS:*.googletagmanager-cn.com, DNS:googlesyndication-cn.com, DNS:*.googlesyndication-cn.com, DNS:*.safeframe.googlesyndication-cn.com, DNS:app-measurement-cn.com, DNS:*.app-measurement-cn.com, DNS:gvt1-cn.com, DNS:*.gvt1-cn.com, DNS:gvt2-cn.com, DNS:*.gvt2-cn.com, DNS:2mdn-cn.net, DNS:*.2mdn-cn.net, DNS:googleflights-cn.net, DNS:*.googleflights-cn.net, DNS:admob-cn.com, DNS:*.admob-cn.com, DNS:googlesandbox-cn.com, DNS:*.googlesandbox-cn.com, DNS:*.safenup.googlesandbox-cn.com, DNS:*.gstatic.com, DNS:*.metric.gstatic.com, DNS:*.gvt1.com, DNS:*.gcpcdn.gvt1.com, DNS:*.gvt2.com, DNS:*.gcp.gvt2.com, DNS:*.url.google.com, DNS:*.youtube-nocookie.com, DNS:*.ytimg.com, DNS:ai.android, DNS:android.com, DNS:*.android.com, DNS:*.flash.android.com, DNS:g.cn, DNS:*.g.cn, DNS:g.co, DNS:*.g.co, DNS:goo.gl, DNS:www.goo.gl, DNS:google-analytics.com, DNS:*.google-analytics.com, DNS:google.com, DNS:googlecommerce.com, DNS:*.googlecommerce.com, DNS:ggpht.cn, DNS:*.ggpht.cn, DNS:urchin.com, DNS:*.urchin.com, DNS:youtu.be, DNS:youtube.com, DNS:*.youtube.com, DNS:music.youtube.com, DNS:*.music.youtube.com, DNS:youtubeeducation.com, DNS:*.youtubeeducation.com, DNS:youtubekids.com, DNS:*.youtubekids.com, DNS:yt.be, DNS:*.yt.be, DNS:android.clients.google.com, DNS:*.android.google.cn, DNS:*.chrome.google.cn, DNS:*.developers.google.cn, DNS:*.aistudio.google.com", bits: 256, pubkey: Uint8Array(65) [ 4, 82, 124, 91, 44, 55, 150, 59, 173, 66, 3, 42, 3, 48, 243, 252, 242, 238, 62, 56, 67, 45, 186, 88, 195, 170, 129, 209, 39, 72, 148, 35, 52, 252, 65, 115, 34, 178, 1, 58, 68, 24, 148, 49, 1, 117, 194, 133, 159, 182, 255, 197, 61, 22, 246, 124, 52, 140, 25, 111, 76, 127, 24, 123, 77 ], asn1Curve: "1.2.840.10045.3.1.7", nistCurve: "secp256r1" } ```	2025-07-23 13:41:19 +05:30
Nathan Whitaker	9379a74e08	chore: update to edition 2024 (#29923)	2025-07-02 17:59:39 -07:00
Divy Srivastava	d15581fb19	fix(ext/node): implement Certificate API (#29828)	2025-06-23 02:34:44 -07:00
Divy Srivastava	d84866e933	chore: use aws_lc_rs (#28244)	2025-06-19 01:07:00 -07:00
Yoshiya Hinosawa	94e26a90ea	fix(ext/node): improve scrypt support (#29773)	2025-06-18 09:50:37 +09:00
Yoshiya Hinosawa	2572b8398b	fix(ext/node): fix input validation of crypto hkdf (#29775)	2025-06-18 09:49:14 +09:00
Yoshiya Hinosawa	413aa404f9	fix(ext/node): add key length validation in DiffieHellman.prototype.computeSecret (#29757)	2025-06-16 21:32:05 +09:00
Divy Srivastava	02cff572b2	fix(ext/node): validate auth tag for GCM mode cipher (#29739) ... Enables `parallel/test-crypto-gcm-explicit-short-tag.js` Ref https://github.com/denoland/deno/issues/29637	2025-06-16 11:04:41 +09:00
Divy Srivastava	fa3208bf27	fix(ext/node): Fix crypto.pbkdf2 compat (#29738)	2025-06-13 09:10:41 -07:00
Divy Srivastava	cdf4834ba0	fix(ext/node): fix oneshot hash validation (#29661) ... Enables `parallel/test-crypto-oneshot-hash.js` Ref https://github.com/denoland/deno/issues/29637 --------- Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com>	2025-06-13 10:12:10 +05:30
Divy Srivastava	b49523780d	fix(ext/node): update decipherIv error properties (#29652) ... Enables `parallel/test-crypto-stream.js` test Ref https://github.com/denoland/deno/issues/29637	2025-06-11 04:15:45 +00:00
snek	5c6c52d132	fix: update deno_core (#29166) ... for https://github.com/denoland/deno_core/pull/1111	2025-05-05 13:58:34 -05:00
Arsh	447b5038c0	fix(ext/node): alias shake-128 and shake-256 hash algorithms (#28451) ... Fixes #28442 --------- Signed-off-by: Arsh <69170106+lilnasy@users.noreply.github.com> Co-authored-by: Divy Srivastava <dj.srivastava23@gmail.com>	2025-04-10 07:58:44 +00:00
Nathan Whitaker	ee4c14a550	chore: update to rust 1.85 (#28236) ... Updates to use rust 1.85. Doesn't move to the 2024 edition, as that's a fair bit more involved. A nice side benefit is that the new rustc version seems to lead to a slight reduction in binary size (at least on mac): ``` FILE SIZE -------------- +4.3% +102Ki __DATA_CONST,__const [NEW] +69.3Ki __TEXT,__literals [NEW] +68.5Ki Rebase Info +5.0% +39.9Ki __TEXT,__unwind_info +57% +8.85Ki [__TEXT] [NEW] +8.59Ki Lazy Binding Info [NEW] +5.16Ki __TEXT,__stub_helper [NEW] +3.58Ki Export Info [NEW] +3.42Ki __DATA,__la_symbol_ptr -0.1% -726 [12 Others] -21.4% -3.10Ki [__DATA_CONST] -95.8% -3.39Ki __DATA_CONST,__got -20.9% -3.43Ki [__DATA] -0.5% -4.52Ki Code Signature -100.0% -11.6Ki [__LINKEDIT] -1.0% -43.5Ki Symbol Table -1.6% -44.0Ki __TEXT,__gcc_except_tab -0.2% -48.1Ki __TEXT,__const -3.3% -78.6Ki __TEXT,__eh_frame -0.7% -320Ki __TEXT,__text -1.5% -334Ki String Table -0.5% -586Ki TOTAL ```	2025-02-25 08:50:01 -08:00
Divy Srivastava	648ee8f0e7	fix(ext/node): decipherIv() range error on invalid final block length (#28215) ... Fixes https://github.com/denoland/deno/issues/28208	2025-02-21 04:48:38 +00:00
Divy Srivastava	a401a79c75	fix(ext/node): fix missing privateKey.x in curve25519 JWK (#27990) ... Fixes https://github.com/denoland/deno/issues/27972	2025-02-06 12:11:42 +05:30
Nathan Whitaker	bac8171c40	perf(crypto): use ring for asm implementations of sha256/sha512 (#27885) ... Currently we are using the pure rust backend of `sha2`, which has subpar performance compared to asm implementations. We already depend on `ring`, so just use that instead of `sha2` for sha256/sha512 digests. This also speeds up things like S3 uploads, which calculate sha digests of the uploaded objects. On my local machine, this speeds up uploading a 100MB file (to a localhost s3 provider via`@aws-sdk/client-s3`) by about 2x <details> <summary>Benchmark:</summary> ```ts import { createHmac } from "node:crypto"; for ( const size of [1, 10, 100, 1_000, 10_000, 100_000, 1_000_000, 10_000_000] ) { const input = "a".repeat(size); Deno.bench({ name: `sha256-${size}`, fn() { const _hash = createHmac("sha256", input).update(input).digest(); }, }); Deno.bench({ name: `sha512-${size}`, fn() { const _hash = createHmac("sha512", input).update(input).digest(); }, }); } ``` </details> <details> <summary>Results (arm64 macOS):</summary> ``` --- sha256-1 --- ../../deno/target/release/deno 2.527 µs 1.240 times faster /Users/nathanwhit/.deno/bin/deno 3.132 µs --- sha512-1 --- ../../deno/target/release/deno 3.364 µs 1.071 times faster /Users/nathanwhit/.deno/bin/deno 3.603 µs --- sha256-10 --- ../../deno/target/release/deno 3.060 µs 1.027 times faster /Users/nathanwhit/.deno/bin/deno 3.144 µs --- sha512-10 --- ../../deno/target/release/deno 3.583 µs 1.047 times faster /Users/nathanwhit/.deno/bin/deno 3.751 µs --- sha256-100 --- ../../deno/target/release/deno 3.695 µs 1.244 times faster /Users/nathanwhit/.deno/bin/deno 4.598 µs --- sha512-100 --- ../../deno/target/release/deno 3.386 µs 1.188 times faster /Users/nathanwhit/.deno/bin/deno 4.021 µs --- sha256-1000 --- ../../deno/target/release/deno 4.007 µs 3.230 times faster /Users/nathanwhit/.deno/bin/deno 12.944 µs --- sha512-1000 --- ../../deno/target/release/deno 6.463 µs 1.466 times faster /Users/nathanwhit/.deno/bin/deno 9.477 µs --- sha256-10000 --- ../../deno/target/release/deno 11.674 µs 6.981 times faster /Users/nathanwhit/.deno/bin/deno 81.493 µs --- sha512-10000 --- ../../deno/target/release/deno 31.250 µs 1.740 times faster /Users/nathanwhit/.deno/bin/deno 54.364 µs --- sha256-100000 --- ../../deno/target/release/deno 82.800 µs 9.393 times faster /Users/nathanwhit/.deno/bin/deno 777.719 µs --- sha512-100000 --- ../../deno/target/release/deno 269.726 µs 1.851 times faster /Users/nathanwhit/.deno/bin/deno 499.243 µs --- sha256-1000000 --- ../../deno/target/release/deno 808.662 µs 9.427 times faster /Users/nathanwhit/.deno/bin/deno 7.623 ms --- sha512-1000000 --- ../../deno/target/release/deno 2.672 ms 1.795 times faster /Users/nathanwhit/.deno/bin/deno 4.795 ms --- sha256-10000000 --- ../../deno/target/release/deno 7.823 ms 9.868 times faster /Users/nathanwhit/.deno/bin/deno 77.201 ms --- sha512-10000000 --- ../../deno/target/release/deno 26.197 ms 1.846 times faster /Users/nathanwhit/.deno/bin/deno 48.356 ms ``` </details> <details> <summary>Results (x86_64 linux):</summary> ``` --- sha256-1 --- /home/nathanwhit/.deno/bin/deno 10.726 µs 1.229 times faster ../../../deno/target/release-lite/deno 13.184 µs --- sha512-1 --- /home/nathanwhit/.deno/bin/deno 13.177 µs 1.051 times faster ../../../deno/target/release-lite/deno 13.845 µs --- sha256-10 --- /home/nathanwhit/.deno/bin/deno 13.156 µs 1.047 times faster ../../../deno/target/release-lite/deno 13.780 µs --- sha512-10 --- /home/nathanwhit/.deno/bin/deno 14.386 µs 1.029 times faster ../../../deno/target/release-lite/deno 14.807 µs --- sha256-100 --- /home/nathanwhit/.deno/bin/deno 14.580 µs 1.083 times faster ../../../deno/target/release-lite/deno 15.789 µs --- sha512-100 --- /home/nathanwhit/.deno/bin/deno 13.477 µs 1.131 times faster ../../../deno/target/release-lite/deno 15.238 µs --- sha256-1000 --- ../../../deno/target/release-lite/deno 17.208 µs 1.116 times faster /home/nathanwhit/.deno/bin/deno 19.198 µs --- sha512-1000 --- ../../../deno/target/release-lite/deno 21.168 µs 1.026 times faster /home/nathanwhit/.deno/bin/deno 21.717 µs --- sha256-10000 --- ../../../deno/target/release-lite/deno 33.586 µs 1.990 times faster /home/nathanwhit/.deno/bin/deno 66.837 µs --- sha512-10000 --- ../../../deno/target/release-lite/deno 53.338 µs 1.009 times faster /home/nathanwhit/.deno/bin/deno 53.817 µs --- sha256-100000 --- ../../../deno/target/release-lite/deno 168.238 µs 3.063 times faster /home/nathanwhit/.deno/bin/deno 515.354 µs --- sha512-100000 --- ../../../deno/target/release-lite/deno 383.311 µs 1.036 times faster /home/nathanwhit/.deno/bin/deno 397.122 µs --- sha256-1000000 --- ../../../deno/target/release-lite/deno 1.474 ms 3.471 times faster /home/nathanwhit/.deno/bin/deno 5.115 ms --- sha512-1000000 --- ../../../deno/target/release-lite/deno 3.658 ms 1.057 times faster /home/nathanwhit/.deno/bin/deno 3.865 ms --- sha256-10000000 --- ../../../deno/target/release-lite/deno 16.438 ms 3.136 times faster /home/nathanwhit/.deno/bin/deno 51.556 ms --- sha512-10000000 --- ../../../deno/target/release-lite/deno 37.128 ms 1.056 times faster /home/nathanwhit/.deno/bin/deno 39.220 ms ``` </details>	2025-01-30 23:38:14 +00:00
Nathan Whitaker	094e268002	fix(ext/node): implement aes-128-ctr, aes-192-ctr, and aes-256-ctr (#27630) ... Fixes https://github.com/denoland/deno/issues/24864 Need to add some tests, also unsure about the right counter size (went with 128 bit to be safe) --------- Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com>	2025-01-27 23:35:51 -08:00
Divy Srivastava	533993efcf	fix(ext/node): implement X509Certificate#checkHost (#27821) ... Fixes https://github.com/denoland/deno/issues/27619	2025-01-27 16:33:03 +05:30
Divy Srivastava	f678a17313	fix(ext/node): fix panic when invalid AES GCM key size (#27818) ... Fixes https://github.com/denoland/deno/issues/27807	2025-01-27 16:32:25 +05:30
Divy Srivastava	1efc77331c	fix(ext/node): scrypt panic when log_n > 64 (#27816) ... Throws an error instead of panic. Ref https://github.com/denoland/deno/issues/27716	2025-01-27 09:12:51 +05:30
Divy Srivastava	4f27d7cdc0	fix(ext/node): GCM auth tag check on DechiperIv#final (#27733)	2025-01-20 18:16:44 +05:30
Leo Kettmeir	ea30e188a8	refactor: update deno_core for error refactor (#26867) ... Closes #26171 --------- Co-authored-by: David Sherret <dsherret@gmail.com>	2025-01-08 14:52:32 -08:00
Kenta Moriuchi	8fb073d7b4	chore: Happy New Year 2025 (#27509)	2024-12-31 19:12:39 +00:00
David Sherret	ac7b33a340	chore: cargo fmt - turn on group_imports=StdExternalCrate (#26646)	2024-12-31 12:13:39 -05:00
Bartek Iwańczuk	1cd36009b0	fix(ext/node): support private key export in JWK format (#27325) ... Closes https://github.com/denoland/deno/issues/26643 --------- Co-authored-by: Divy Srivastava <dj.srivastava23@gmail.com>	2024-12-31 13:49:02 +01:00
Yoshiya Hinosawa	c45d0dadb3	fix(ext/node): add support of any length IV for aes-(128|256)-gcm ciphers (#27476)	2024-12-27 17:46:01 +09:00
Yoshiya Hinosawa	91150706d8	fix(ext/node): make getCiphers return supported ciphers (#27466) ... Currently we only supports 7 ciphers (`aes-(128|192|256)-ecb` and `aes-(128|256)-(cbc|gcm)`) in `node:crypto`, but `crypto.getCiphers` returns other supported cipher names. That confuses `npm:openpgp` package and causes https://github.com/denoland/deno/issues/26875. This PR makes `getCiphers` return actually supported cipher names. With this change, the example given in #26875 can create private and public key files. closes #26875	2024-12-26 13:24:28 +09:00
Leo Kettmeir	1cab4f07a3	refactor: use concrete error type for remaining ops (#26746)	2024-11-06 16:57:57 -08:00
Divy Srivastava	4774eab64d	chore: upgrade to rust 1.82 and LLVM 19 (#26615) ... Upgrade to rust 1.82 and LLVM 19 . Removes one webusb test because `requestAdapter` not working on new ubuntu 24 runners	2024-11-01 16:13:02 +05:30
Divy Srivastava	8bfd134da6	fix: clamp smi in fast calls by default (#26506) ... Fixes https://github.com/denoland/deno/issues/26480 Ref d2945fb65b	2024-10-31 10:10:07 +05:30
Divy Srivastava	bbad7c5922	fix(ext/node): compute pem length (upper bound) for key exports (#26231) ... Fixes https://github.com/denoland/deno/issues/26188	2024-10-14 14:24:26 +05:30
Divy Srivastava	e97f00f6f6	fix(ext/node): support x509 certificates in createPublicKey (#25731) ... Fixes https://github.com/denoland/deno/issues/25681	2024-09-19 19:12:23 +05:30
Luca Casonato	81c9e0ba25	fix(ext/crypto): support md4 digest algorithm (#25656) ... Fixes #25646	2024-09-16 11:04:40 +00:00
Yoshiya Hinosawa	ef2d98fe11	fix(ext/node): validate input lengths in Cipheriv and Decipheriv (#25570) ... addresses the first part of #25279	2024-09-11 13:27:07 +09:00
Divy Srivastava	0e50bb1d4a	fix(ext/node): import RSA JWK keys (#25267) ... Fixes https://github.com/denoland/deno/issues/24129	2024-08-28 20:56:11 +05:30
Divy Srivastava	b9c144df6f	fix(ext/node): export JWK public key (#25239) ... Fixes https://github.com/denoland/deno/issues/18928 Signed-off-by: Divy Srivastava <dj.srivastava23@gmail.com>	2024-08-28 15:03:02 +00:00
Divy Srivastava	553bd7dec3	fix(ext/node): import EC JWK keys (#25266)	2024-08-28 19:54:49 +05:30
Divy Srivastava	3394c4df75	fix(ext/node): update aead-gcm-stream to 0.3 (#25261) ... Fixes https://github.com/denoland/deno/issues/25260 Fixes https://github.com/denoland/deno/issues/25254 Fixes https://github.com/denoland/deno/issues/23693 Verified that `web-push` GCM decryption works in the browser. See `aead-gcm-stream` changes [here](a9ffd0c07c)	2024-08-28 18:34:18 +05:30
Divy Srivastava	d9a7b30d1f	fix(ext/node): import JWK octet key pairs (#25180) ... Ref https://github.com/denoland/deno/issues/24129 `kty: "okp"` is defined in [rfc8037](https://www.rfc-editor.org/rfc/rfc8037.html)	2024-08-23 22:06:28 +05:30
Divy Srivastava	b61fd622a5	fix(ext/node): rewrite X509Certificate resource and add publicKey() (#24988) ... **Changes**: - Remove unsafe usage, rewrite Rust representation with `yoke`. - Implement `X509Certificate.prototype.publicKey()` Fixes https://github.com/denoland/deno/issues/23307	2024-08-11 18:58:54 +05:30
Divy Srivastava	d6f662ac82	fix(ext/node): support ieee-p1363 ECDSA signatures and pss salt len (#24981) ... Fixes https://github.com/denoland/deno/issues/22919	2024-08-11 14:59:53 +05:30
Luca Casonato	4dc8fe2020	fix(ext/node): use pem private keys in createPublicKey (#24969)	2024-08-09 13:39:46 +00:00
Luca Casonato	fc02303842	fix(ext/node): ed25519 signing and cipheriv autopadding fixes (#24957) ... - Return auth tag for GCM ciphers from auto padding shortcircuit - Use _ring_ for ed25519 signing --------- Co-authored-by: Divy Srivastava <dj.srivastava23@gmail.com>	2024-08-09 12:58:20 +02:00
Divy Srivastava	0d1beed2e3	fix(ext/node): add CipherIv.setAutoPadding() (#24940) ... Co-Authored-By: Luca Casonato <hello@lcas.dev> Fixes https://github.com/denoland/deno/issues/21804 Ref https://github.com/denoland/deno/issues/20924 --------- Signed-off-by: Divy Srivastava <dj.srivastava23@gmail.com> Co-authored-by: Luca Casonato <hello@lcas.dev>	2024-08-08 18:34:10 +05:30
Luca Casonato	93d479252b	fix(ext/node): add crypto.diffieHellman (#24938) ... Co-authored-by: Divy Srivastava <dj.srivastava23@gmail.com> Closes #21806	2024-08-08 15:05:29 +05:30
Luca Casonato	4fa8869f24	feat(ext/node): rewrite crypto keys (#24463) ... This completely rewrites how we handle key material in ext/node. Changes in this PR: - **Signing** - RSA - RSA-PSS 🆕 - DSA 🆕 - EC - ED25519 🆕 - **Verifying** - RSA - RSA-PSS 🆕 - DSA 🆕 - EC 🆕 - ED25519 🆕 - **Private key import** - Passphrase encrypted private keys 🆕 - RSA - PEM - DER (PKCS#1) 🆕 - DER (PKCS#8) 🆕 - RSA-PSS - PEM - DER (PKCS#1) 🆕 - DER (PKCS#8) 🆕 - DSA 🆕 - EC - PEM - DER (SEC1) 🆕 - DER (PKCS#8) 🆕 - X25519 🆕 - ED25519 🆕 - DH - **Public key import** - RSA - PEM - DER (PKCS#1) 🆕 - DER (PKCS#8) 🆕 - RSA-PSS 🆕 - DSA 🆕 - EC 🆕 - X25519 🆕 - ED25519 🆕 - DH 🆕 - **Private key export** - RSA 🆕 - DSA 🆕 - EC 🆕 - X25519 🆕 - ED25519 🆕 - DH 🆕 - **Public key export** - RSA - DSA 🆕 - EC 🆕 - X25519 🆕 - ED25519 🆕 - DH 🆕 - **Key pair generation** - Overhauled, but supported APIs unchanged This PR adds a lot of new individual functionality. But most importantly because of the new key material representation, it is now trivial to add new algorithms (as shown by this PR). Now, when adding a new algorithm, it is also widely supported - for example previously we supported ED25519 key pair generation, but we could not import, export, sign or verify with ED25519. We can now do all of those things.	2024-08-07 08:43:58 +02:00
Luca Casonato	08e5606c34	fix(ext/node): rewrite digest handling (#24392) ... Previously we had many different code paths all handling digests in different places, all with wildly different digest support. This commit rewrites this to use a single digest handling mechanism for all digest operations. It adds various aliases for digest algorithms, like node does. For example `sha1WithRSAEncryption` is an alias for `sha1`. It also adds support for `md5-sha1` digests in various places.	2024-07-05 10:10:22 +02:00