cipher.update() fails for CCM mode with zero-length ArrayBufferView backed by explicit ArrayBuffer #62342
Description
Version
v25.8.1
Platform
Darwin Mac 25.3.0 Darwin Kernel Version 25.3.0: Wed Jan 28 20:56:42 PST 2026; root:xnu-12377.91.3~2/RELEASE_ARM64_T8142 arm64
Subsystem
crypto
What steps will reproduce the bug?
import crypto from "node:crypto";
const key = crypto.randomBytes(16);
const nonce = crypto.randomBytes(13);
const ccm = crypto.createCipheriv("aes-128-ccm", key, nonce, { authTagLength: 16 });
ccm.setAAD(Buffer.alloc(0), { plaintextLength: 0 });
ccm.update(new DataView(new ArrayBuffer(0)));
ccm.final();How often does it reproduce? Is there a required condition?
Happens on AES-CCM but not AES-GCM
What is the expected behavior? Why is that the expected behavior?
The expected behavior is not to receive an exception because it is effectively a no-op. This is also a different behavior between CCM and GCM.
What do you see instead?
Error: error:1C800077:Provider routines::tag not set
at Cipheriv.final (node:internal/crypto/cipher:170:29)
at [eval]:10:5
at [eval]:11:4
at runScriptInThisContext (node:internal/vm:219:10)
at node:internal/process/execution:451:12
at [eval]-wrapper:6:24
at runScriptInContext (node:internal/process/execution:449:60)
at evalFunction (node:internal/process/execution:283:30)
at evalTypeScript (node:internal/process/execution:295:3)
at node:internal/main/eval_string:71:3 {
opensslErrorStack: [ 'error:1C800077:Provider routines::tag not set' ],
library: 'Provider routines',
reason: 'tag not set',
code: 'ERR_OSSL_TAG_NOT_SET'
}
Additional information
I maintain a cryptography library for Gleam (which can compile to JS). This case popped up in my property-based testing.