lib,crypto: add early structural JWK validation

panva · panva · commit 7684ddba84fe · 2026-04-29T21:36:40.000+02:00
Tightens `validateJwk` to require the per-`kty` string members up front
(before switching to C++), short-circuiting with the same
`Invalid keyData` message and `DataError` when the JWK is missing
required fields. This also keeps the internal validation strict if a
non-string value reaches it after WebIDL conversion.

  - RSA: requires `n`, `e`; if `d` is present, also requires `p`, `q`,
    `dp`, `dq`, and `qi`.
  - EC:  requires `crv`, `x`, `y`; optional `d`.
  - OKP: requires `crv`, `x`; optional `d`.
  - oct: requires `k`.
  - AKP: requires `alg`, `pub`; optional `priv`.

Four export/import negative tests update their expected error text from
the later "Invalid JWK … Parameter and algorithm name mismatch" to the
new short-circuit "Invalid keyData" (for the case where `crv`/`alg` is
missing entirely). A new `{ kty: "oct" }` missing-`k` negative is added
for ChaCha20-Poly1305. The tests check error messages but the error
class (DataError/DOMException) is the same everywhere.

Signed-off-by: Filip Skokan &lt;panva.ip@gmail.com&gt;
diff --git a/lib/internal/crypto/webcrypto_util.js b/lib/internal/crypto/webcrypto_util.js
@@ -33,10 +33,53 @@ function importDerKey(keyData, isPublic) {
 }
 
 function validateJwk(keyData, kty, extractable, usagesSet, expectedUse) {
-  if (!keyData.kty)
+  if (typeof keyData.kty !== 'string')
     throw lazyDOMException('Invalid keyData', 'DataError');
   if (keyData.kty !== kty)
     throw lazyDOMException('Invalid JWK "kty" Parameter', 'DataError');
+  switch (kty) {
+    case 'RSA':
+      if (typeof keyData.n !== 'string' ||
+          typeof keyData.e !== 'string' ||
+          (keyData.d !== undefined && typeof keyData.d !== 'string'))
+        throw lazyDOMException('Invalid keyData', 'DataError');
+      if (typeof keyData.d === 'string' &&
+          (typeof keyData.p !== 'string' ||
+           typeof keyData.q !== 'string' ||
+           typeof keyData.dp !== 'string' ||
+           typeof keyData.dq !== 'string' ||
+           typeof keyData.qi !== 'string'))
+        throw lazyDOMException('Invalid keyData', 'DataError');
+      break;
+    case 'EC':
+      if (typeof keyData.crv !== 'string' ||
+          typeof keyData.x !== 'string' ||
+          typeof keyData.y !== 'string' ||
+          (keyData.d !== undefined && typeof keyData.d !== 'string'))
+        throw lazyDOMException('Invalid keyData', 'DataError');
+      break;
+    case 'OKP':
+      if (typeof keyData.crv !== 'string' ||
+          typeof keyData.x !== 'string' ||
+          (keyData.d !== undefined && typeof keyData.d !== 'string'))
+        throw lazyDOMException('Invalid keyData', 'DataError');
+      break;
+    case 'oct':
+      if (typeof keyData.k !== 'string')
+        throw lazyDOMException('Invalid keyData', 'DataError');
+      break;
+    case 'AKP':
+      if (typeof keyData.alg !== 'string' ||
+          typeof keyData.pub !== 'string' ||
+          (keyData.priv !== undefined && typeof keyData.priv !== 'string'))
+        throw lazyDOMException('Invalid keyData', 'DataError');
+      break;
+    default: {
+      // It is not possible to get here because all possible cases are handled above.
+      const assert = require('internal/assert');
+      assert.fail('Unreachable code');
+    }
+  }
   if (usagesSet.size > 0 && keyData.use !== undefined) {
     if (keyData.use !== expectedUse)
       throw lazyDOMException('Invalid JWK "use" Parameter', 'DataError');
diff --git a/test/parallel/test-webcrypto-encrypt-decrypt-chacha20-poly1305.js b/test/parallel/test-webcrypto-encrypt-decrypt-chacha20-poly1305.js
@@ -220,6 +220,7 @@ async function testDecrypt({ keyBuffer, algorithm, result }) {
 
     // JWK error conditions
     const jwkTests = [
+      [{ kty: 'oct' }, /Invalid keyData/],
       [{ k: baseJwk.k }, /Invalid keyData/],
       [{ ...baseJwk, kty: 'RSA' }, /Invalid JWK "kty" Parameter/],
       [{ ...baseJwk, use: 'sig' }, /Invalid JWK "use" Parameter/],
diff --git a/test/parallel/test-webcrypto-export-import-cfrg.js b/test/parallel/test-webcrypto-export-import-cfrg.js
@@ -355,7 +355,7 @@ async function testImportJwk({ name, publicUsages, privateUsages }, extractable)
         { name },
         extractable,
         publicUsages),
-      { message: 'JWK "crv" Parameter and algorithm name mismatch' });
+      { message: crv ? 'JWK "crv" Parameter and algorithm name mismatch' : 'Invalid keyData' });
 
     await assert.rejects(
       subtle.importKey(
@@ -364,7 +364,7 @@ async function testImportJwk({ name, publicUsages, privateUsages }, extractable)
         { name },
         extractable,
         privateUsages),
-      { message: 'JWK "crv" Parameter and algorithm name mismatch' });
+      { message: crv ? 'JWK "crv" Parameter and algorithm name mismatch' : 'Invalid keyData' });
   }
 
   await assert.rejects(
diff --git a/test/parallel/test-webcrypto-export-import-ec.js b/test/parallel/test-webcrypto-export-import-ec.js
@@ -322,7 +322,7 @@ async function testImportJwk(
         { name, namedCurve },
         extractable,
         publicUsages),
-      { message: 'JWK "crv" does not match the requested algorithm' });
+      { message: crv ? 'JWK "crv" does not match the requested algorithm' : 'Invalid keyData' });
 
     await assert.rejects(
       subtle.importKey(
@@ -331,7 +331,7 @@ async function testImportJwk(
         { name, namedCurve },
         extractable,
         privateUsages),
-      { message: 'JWK "crv" does not match the requested algorithm' });
+      { message: crv ? 'JWK "crv" does not match the requested algorithm' : 'Invalid keyData' });
   }
 
   await assert.rejects(
diff --git a/test/parallel/test-webcrypto-export-import-ml-dsa.js b/test/parallel/test-webcrypto-export-import-ml-dsa.js
@@ -347,7 +347,7 @@ async function testImportJwk({ name, publicUsages, privateUsages }, extractable)
         { name },
         extractable,
         publicUsages),
-      { message: 'JWK "alg" Parameter and algorithm name mismatch' });
+      { message: alg ? 'JWK "alg" Parameter and algorithm name mismatch' : 'Invalid keyData' });
 
     await assert.rejects(
       subtle.importKey(
@@ -356,7 +356,7 @@ async function testImportJwk({ name, publicUsages, privateUsages }, extractable)
         { name },
         extractable,
         privateUsages),
-      { message: 'JWK "alg" Parameter and algorithm name mismatch' });
+      { message: alg ? 'JWK "alg" Parameter and algorithm name mismatch' : 'Invalid keyData' });
   }
 
   await assert.rejects(
diff --git a/test/parallel/test-webcrypto-export-import-ml-kem.js b/test/parallel/test-webcrypto-export-import-ml-kem.js
@@ -423,7 +423,7 @@ async function testImportJwk({ name, publicUsages, privateUsages }, extractable)
         { name },
         extractable,
         publicUsages),
-      { message: 'JWK "alg" Parameter and algorithm name mismatch' });
+      { message: alg ? 'JWK "alg" Parameter and algorithm name mismatch' : 'Invalid keyData' });
 
     await assert.rejects(
       subtle.importKey(
@@ -432,7 +432,7 @@ async function testImportJwk({ name, publicUsages, privateUsages }, extractable)
         { name },
         extractable,
         privateUsages),
-      { message: 'JWK "alg" Parameter and algorithm name mismatch' });
+      { message: alg ? 'JWK "alg" Parameter and algorithm name mismatch' : 'Invalid keyData' });
   }
 
   await assert.rejects(
