crypto: reject duplicate ML-KEM JWK key_ops

Signed-off-by: Filip Skokan <[email protected]>
PR-URL: #62905
Reviewed-By: Yagiz Nizipli <[email protected]>
Reviewed-By: Сковорода Никита Андреевич <[email protected]>

Author: panva

lib/internal/crypto/util.js

@@ -801,6 +801,10 @@ const kKeyOps = {
   unwrapKey: 6,
   deriveKey: 7,
   deriveBits: 8,
+  encapsulateKey: 9,
+  encapsulateBits: 10,
+  decapsulateKey: 11,
+  decapsulateBits: 12,
 };
 
 function validateKeyOps(keyOps, usagesSet) {

test/parallel/test-webcrypto-export-import-ml-kem.js

@@ -491,3 +491,16 @@ async function testImportJwk({ name, publicUsages, privateUsages }, extractable)
     });
   }
 })().then(common.mustCall());
+
+// Regression test: JWK `key_ops` validation must recognize ML-KEM operations
+// (encapsulateKey, encapsulateBits, decapsulateKey, decapsulateBits) so that
+// duplicate entries are rejected
+(async function() {
+  for (const op of ['encapsulateKey', 'encapsulateBits',
+                    'decapsulateKey', 'decapsulateBits']) {
+    const jwk = { ...keyData['ML-KEM-768'].jwk, key_ops: [op, op] };
+    await assert.rejects(
+      subtle.importKey('jwk', jwk, { name: 'ML-KEM-768' }, true, [op]),
+      { name: 'DataError', message: /Duplicate key operation/ });
+  }
+})().then(common.mustCall());