From e23d3e0f45bef94183193f489eb7c20d513c92d3 Mon Sep 17 00:00:00 2001
From: CentOS Sources <bugs@centos.org>
Date: Feb 25 2020 15:14:50 +0000
Subject: import rh-nodejs12-nodejs-12.16.1-1.el7


---

diff --git a/.gitignore b/.gitignore
index 48f5536..331960c 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1 +1 @@
-SOURCES/node-v12.14.1-stripped.tar.gz
+SOURCES/node-v12.16.1-stripped.tar.gz
diff --git a/.rh-nodejs12-nodejs.metadata b/.rh-nodejs12-nodejs.metadata
index 49f377f..f6a527f 100644
--- a/.rh-nodejs12-nodejs.metadata
+++ b/.rh-nodejs12-nodejs.metadata
@@ -1 +1 @@
-6b06eb123f621c1f678c773938134679f7d6e6f4 SOURCES/node-v12.14.1-stripped.tar.gz
+696bdce06cf5dc6300d8ef6fc646d45cff401190 SOURCES/node-v12.16.1-stripped.tar.gz
diff --git a/SOURCES/0001-Remove-or-backport-OpenSSL-features.patch b/SOURCES/0001-Remove-or-backport-OpenSSL-features.patch
index 775b3b5..1c093c9 100644
--- a/SOURCES/0001-Remove-or-backport-OpenSSL-features.patch
+++ b/SOURCES/0001-Remove-or-backport-OpenSSL-features.patch
@@ -1,34 +1,47 @@
-From fc16538049c634f735da3a40878c18f027004b37 Mon Sep 17 00:00:00 2001
-From: =?UTF-8?q?Jan=20Stan=C4=9Bk?= <jstanek@redhat.com>
-Date: Thu, 16 Jan 2020 08:48:52 +0100
-Subject: [PATCH 1/4] Remove or backport OpenSSL features
-MIME-Version: 1.0
-Content-Type: text/plain; charset=UTF-8
-Content-Transfer-Encoding: 8bit
+From 7776e056175360b0eaf8e8cd9605671ece0cd66c Mon Sep 17 00:00:00 2001
+From: Zuzana Svetlikova <zsvetlik@redhat.com>
+Date: Wed, 19 Feb 2020 09:33:47 +0000
+Subject: [PATCH 1/4] remove openssl features
 
-Signed-off-by: Jan Staněk <jstanek@redhat.com>
 ---
- doc/api/cli.md                |  18 --
+ doc/api/cli.md                |  26 ---
  lib/_tls_common.js            |   2 +-
  lib/internal/crypto/keygen.js |   8 +-
  lib/tls.js                    |   9 +-
+ src/env.h                     |   1 -
  src/node_constants.cc         |  12 +-
- src/node_crypto.cc            | 482 ++++++++++++++++++++++++++++++++--
- src/node_crypto.h             |  42 +++
- src/node_crypto_bio.cc        |  29 +-
+ src/node_crypto.cc            | 500 +++++++++++++++++++++++++++++++++++++++---
+ src/node_crypto.h             |  44 ++++
+ src/node_crypto_bio.cc        |  29 ++-
  src/node_errors.h             |   4 +-
  src/node_options.cc           |   4 +
  src/tls_wrap.cc               |   2 +
- 11 files changed, 548 insertions(+), 64 deletions(-)
+ 12 files changed, 568 insertions(+), 73 deletions(-)
 
 diff --git a/doc/api/cli.md b/doc/api/cli.md
-index f9eb87e..89c41de 100644
+index 7703d0b..ecf7632 100644
 --- a/doc/api/cli.md
 +++ b/doc/api/cli.md
-@@ -695,14 +695,6 @@ added: v12.0.0
+@@ -706,15 +706,6 @@ added: v4.0.0
+ Specify an alternative default TLS cipher list. Requires Node.js to be built
+ with crypto support (default).
+ 
+-### `--tls-keylog=file`
+-<!-- YAML
+-added: v12.16.0
+--->
+-
+-Log TLS key material to a file. The key material is in NSS `SSLKEYLOGFILE`
+-format and can be used by software (such as Wireshark) to decrypt the TLS
+-traffic.
+-
+ ### `--tls-max-v1.2`
+ <!-- YAML
+ added: v12.0.0
+@@ -723,14 +714,6 @@ added: v12.0.0
  Set [`tls.DEFAULT_MAX_VERSION`][] to 'TLSv1.2'. Use to disable support for
  TLSv1.3.
-
+ 
 -### `--tls-max-v1.3`
 -<!-- YAML
 -added: v12.0.0
@@ -40,10 +53,10 @@ index f9eb87e..89c41de 100644
  ### `--tls-min-v1.0`
  <!-- YAML
  added: v12.0.0
-@@ -728,14 +720,6 @@ Set default [`tls.DEFAULT_MIN_VERSION`][] to 'TLSv1.2'. This is the default for
+@@ -756,14 +739,6 @@ Set default [`tls.DEFAULT_MIN_VERSION`][] to 'TLSv1.2'. This is the default for
  12.x and later, but the option is supported for compatibility with older Node.js
  versions.
-
+ 
 -### `--tls-min-v1.3`
 -<!-- YAML
 -added: v12.0.0
@@ -55,23 +68,19 @@ index f9eb87e..89c41de 100644
  ### `--trace-deprecation`
  <!-- YAML
  added: v0.8.0
-@@ -1070,11 +1054,9 @@ Node.js options that are allowed are:
+@@ -1118,7 +1093,6 @@ Node.js options that are allowed are:
+ * `--throw-deprecation`
  * `--title`
  * `--tls-cipher-list`
+-* `--tls-keylog`
  * `--tls-max-v1.2`
--* `--tls-max-v1.3`
+ * `--tls-max-v1.3`
  * `--tls-min-v1.0`
- * `--tls-min-v1.1`
- * `--tls-min-v1.2`
--* `--tls-min-v1.3`
- * `--trace-deprecation`
- * `--trace-event-categories`
- * `--trace-event-file-pattern`
 diff --git a/lib/_tls_common.js b/lib/_tls_common.js
-index 981503e..17c3e3a 100644
+index 9f7747c..32e4a77 100644
 --- a/lib/_tls_common.js
 +++ b/lib/_tls_common.js
-@@ -49,7 +49,7 @@ function toV(which, v, def) {
+@@ -52,7 +52,7 @@ function toV(which, v, def) {
    if (v === 'TLSv1') return TLS1_VERSION;
    if (v === 'TLSv1.1') return TLS1_1_VERSION;
    if (v === 'TLSv1.2') return TLS1_2_VERSION;
@@ -79,12 +88,12 @@ index 981503e..17c3e3a 100644
 +  if (v === 'TLSv1.3' && TLS1_3_VERSION) return TLS1_3_VERSION;
    throw new ERR_TLS_INVALID_PROTOCOL_VERSION(v, which);
  }
-
+ 
 diff --git a/lib/internal/crypto/keygen.js b/lib/internal/crypto/keygen.js
-index 0a4bde7..33e88e2 100644
+index 88d2822..61a41d0 100644
 --- a/lib/internal/crypto/keygen.js
 +++ b/lib/internal/crypto/keygen.js
-@@ -9,10 +9,10 @@ const {
+@@ -11,10 +11,10 @@ const {
    generateKeyPairDSA,
    generateKeyPairEC,
    generateKeyPairNid,
@@ -100,10 +109,10 @@ index 0a4bde7..33e88e2 100644
    OPENSSL_EC_EXPLICIT_CURVE
  } = internalBinding('crypto');
 diff --git a/lib/tls.js b/lib/tls.js
-index c63c87a..2a32a0e 100644
+index 281de07..3b0cf09 100644
 --- a/lib/tls.js
 +++ b/lib/tls.js
-@@ -62,17 +62,10 @@ else if (getOptionValue('--tls-min-v1.1'))
+@@ -67,17 +67,10 @@ else if (getOptionValue('--tls-min-v1.1'))
    exports.DEFAULT_MIN_VERSION = 'TLSv1.1';
  else if (getOptionValue('--tls-min-v1.2'))
    exports.DEFAULT_MIN_VERSION = 'TLSv1.2';
@@ -111,7 +120,7 @@ index c63c87a..2a32a0e 100644
 -  exports.DEFAULT_MIN_VERSION = 'TLSv1.3';
  else
    exports.DEFAULT_MIN_VERSION = 'TLSv1.2';
-
+ 
 -if (getOptionValue('--tls-max-v1.3'))
 -  exports.DEFAULT_MAX_VERSION = 'TLSv1.3';
 -else if (getOptionValue('--tls-max-v1.2'))
@@ -119,9 +128,21 @@ index c63c87a..2a32a0e 100644
 -else
 -  exports.DEFAULT_MAX_VERSION = 'TLSv1.3'; // Will depend on node version.
 +exports.DEFAULT_MAX_VERSION = 'TLSv1.2'; // Will depend on node version.
-
-
+ 
+ 
  exports.getCiphers = internalUtil.cachedResult(
+diff --git a/src/env.h b/src/env.h
+index 4e625f3..60b7c4b 100644
+--- a/src/env.h
++++ b/src/env.h
+@@ -255,7 +255,6 @@ constexpr size_t kFsStatsBufferLength =
+   V(host_string, "host")                                                       \
+   V(hostmaster_string, "hostmaster")                                           \
+   V(http_1_1_string, "http/1.1")                                               \
+-  V(identity_string, "identity")                                               \
+   V(ignore_string, "ignore")                                                   \
+   V(infoaccess_string, "infoAccess")                                           \
+   V(inherit_string, "inherit")                                                 \
 diff --git a/src/node_constants.cc b/src/node_constants.cc
 index 68af221..0b8ee44 100644
 --- a/src/node_constants.cc
@@ -129,7 +150,7 @@ index 68af221..0b8ee44 100644
 @@ -956,8 +956,12 @@ void DefineCryptoConstants(Local<Object> target) {
      NODE_DEFINE_CONSTANT(target, ENGINE_METHOD_RAND);
  # endif
-
+ 
 -# ifdef ENGINE_METHOD_EC
 -    NODE_DEFINE_CONSTANT(target, ENGINE_METHOD_EC);
 +# ifdef ENGINE_METHOD_ECDH
@@ -139,12 +160,12 @@ index 68af221..0b8ee44 100644
 +# ifdef ENGINE_METHOD_ECDSA
 +    NODE_DEFINE_CONSTANT(target, ENGINE_METHOD_ECDSA);
  # endif
-
+ 
  # ifdef ENGINE_METHOD_CIPHERS
 @@ -968,6 +972,10 @@ void DefineCryptoConstants(Local<Object> target) {
      NODE_DEFINE_CONSTANT(target, ENGINE_METHOD_DIGESTS);
  # endif
-
+ 
 +# ifdef ENGINE_METHOD_STORE
 +    NODE_DEFINE_CONSTANT(target, ENGINE_METHOD_STORE);
 +# endif
@@ -153,12 +174,12 @@ index 68af221..0b8ee44 100644
      NODE_DEFINE_CONSTANT(target, ENGINE_METHOD_PKEY_METHS);
  # endif
 diff --git a/src/node_crypto.cc b/src/node_crypto.cc
-index ad06141..7bafe1e 100644
+index e0684d9..332b6f3 100644
 --- a/src/node_crypto.cc
 +++ b/src/node_crypto.cc
 @@ -55,6 +55,7 @@
  #include <cstring>
-
+ 
  #include <algorithm>
 +#include <atomic>
  #include <memory>
@@ -167,7 +188,7 @@ index ad06141..7bafe1e 100644
 @@ -128,6 +129,230 @@ struct OpenSSLBufferDeleter {
  };
  using OpenSSLBuffer = std::unique_ptr<char[], OpenSSLBufferDeleter>;
-
+ 
 +#if OPENSSL_VERSION_NUMBER < 0x10100000L
 +static void RSA_get0_key(const RSA* r, const BIGNUM** n, const BIGNUM** e,
 +                         const BIGNUM** d) {
@@ -418,7 +439,7 @@ index ad06141..7bafe1e 100644
 @@ -168,6 +401,35 @@ template int SSLWrap<TLSWrap>::SelectALPNCallback(
      unsigned int inlen,
      void* arg);
-
+ 
 +
 +#if OPENSSL_VERSION_NUMBER < 0x10100000L
 +static Mutex* mutexes;
@@ -465,12 +486,12 @@ index ad06141..7bafe1e 100644
 -    V(KDF)                                                                    \
 -    V(SM2)                                                                    \
      V(USER)                                                                   \
-
+ 
  #define V(name) case ERR_LIB_##name: lib = #name "_"; break;
 @@ -537,9 +794,13 @@ void SecureContext::New(const FunctionCallbackInfo<Value>& args) {
    new SecureContext(env, args.This());
  }
-
+ 
 +#if OPENSSL_VERSION_NUMBER >= 0x10100000L
  // A maxVersion of 0 means "any", but OpenSSL may support TLS versions that
  // Node.js doesn't, so pin the max to what we do support.
@@ -478,16 +499,16 @@ index ad06141..7bafe1e 100644
 +#else
 +const int MAX_SUPPORTED_VERSION = TLS1_2_VERSION;
 +#endif
-
+ 
  void SecureContext::Init(const FunctionCallbackInfo<Value>& args) {
    SecureContext* sc;
 @@ -552,7 +813,7 @@ void SecureContext::Init(const FunctionCallbackInfo<Value>& args) {
-
+ 
    int min_version = args[1].As<Int32>()->Value();
    int max_version = args[2].As<Int32>()->Value();
 -  const SSL_METHOD* method = TLS_method();
 +  const SSL_METHOD* method = SSLv23_method();
-
+ 
    if (max_version == 0)
      max_version = MAX_SUPPORTED_VERSION;
 @@ -586,54 +847,57 @@ void SecureContext::Init(const FunctionCallbackInfo<Value>& args) {
@@ -561,7 +582,7 @@ index ad06141..7bafe1e 100644
 @@ -663,9 +927,16 @@ void SecureContext::Init(const FunctionCallbackInfo<Value>& args) {
                                   SSL_SESS_CACHE_NO_INTERNAL |
                                   SSL_SESS_CACHE_NO_AUTO_CLEAR);
-
+ 
 +#if OPENSSL_VERSION_NUMBER < 0x10100000L
 +  if (max_version == 0) {
 +    // Selecting some secureProtocol methods allows the TLS version to be "any
@@ -582,12 +603,12 @@ index ad06141..7bafe1e 100644
    SSL_CTX_set_tlsext_ticket_key_cb(sc->ctx_.get(), TicketCompatibilityCallback);
 +#endif
  }
-
-
+ 
+ 
 @@ -1202,6 +1474,7 @@ void SecureContext::SetCiphers(const FunctionCallbackInfo<Value>& args) {
    CHECK_EQ(args.Length(), 1);
    CHECK(args[0]->IsString());
-
+ 
 +#if OPENSSL_VERSION_NUMBER >= 0x10100000L
    const node::Utf8Value ciphers(args.GetIsolate(), args[0]);
    if (!SSL_CTX_set_cipher_list(sc->ctx_.get(), *ciphers)) {
@@ -626,9 +647,9 @@ index ad06141..7bafe1e 100644
    }
  }
 @@ -1234,6 +1533,11 @@ void SecureContext::SetECDHCurve(const FunctionCallbackInfo<Value>& args) {
-
+ 
    node::Utf8Value curve(env->isolate(), args[0]);
-
+ 
 +#if OPENSSL_VERSION_NUMBER < 0x10100000L
 +  SSL_CTX_set_options(sc->ctx_.get(), SSL_OP_SINGLE_ECDH_USE);
 +  SSL_CTX_set_ecdh_auto(sc->ctx_.get(), 1);
@@ -636,10 +657,10 @@ index ad06141..7bafe1e 100644
 +
    if (strcmp(*curve, "auto") == 0)
      return;
-
+ 
 @@ -1536,9 +1840,17 @@ void SecureContext::GetTicketKeys(const FunctionCallbackInfo<Value>& args) {
    ASSIGN_OR_RETURN_UNWRAP(&wrap, args.Holder());
-
+ 
    Local<Object> buff = Buffer::New(wrap->env(), 48).ToLocalChecked();
 +#if OPENSSL_VERSION_NUMBER >= 0x10100000L
    memcpy(Buffer::Data(buff), wrap->ticket_key_name_, 16);
@@ -652,12 +673,12 @@ index ad06141..7bafe1e 100644
 +    return wrap->env()->ThrowError("Failed to fetch tls ticket keys");
 +  }
 +#endif
-
+ 
    args.GetReturnValue().Set(buff);
  #endif  // !def(OPENSSL_NO_TLSEXT) && def(SSL_CTX_get_tlsext_ticket_keys)
 @@ -1574,6 +1886,14 @@ void SecureContext::SetTicketKeys(const FunctionCallbackInfo<Value>& args) {
-
-
+ 
+ 
  void SecureContext::SetFreeListLength(const FunctionCallbackInfo<Value>& args) {
 +#if OPENSSL_VERSION_NUMBER < 0x10100000L
 +  // |freelist_max_len| was removed in OpenSSL 1.1.0. In that version OpenSSL
@@ -668,12 +689,12 @@ index ad06141..7bafe1e 100644
 +  wrap->ctx_->freelist_max_len = args[0].As<Int32>()->Value();
 +#endif
  }
-
-
+ 
+ 
 @@ -1676,6 +1996,7 @@ int SecureContext::TicketKeyCallback(SSL* ssl,
  }
-
-
+ 
+ 
 +#if OPENSSL_VERSION_NUMBER >= 0x10100000L
  int SecureContext::TicketCompatibilityCallback(SSL* ssl,
                                                 unsigned char* name,
@@ -683,13 +704,13 @@ index ad06141..7bafe1e 100644
    return 1;
  }
 +#endif
-
-
+ 
+ 
  void SecureContext::CtxGetter(const FunctionCallbackInfo<Value>& info) {
 @@ -1788,11 +2110,19 @@ void SSLWrap<Base>::ConfigureSecureContext(SecureContext* sc) {
  }
-
-
+ 
+ 
 +#if OPENSSL_VERSION_NUMBER < 0x10100000L
 +template <class Base>
 +SSL_SESSION* SSLWrap<Base>::GetSessionCallback(SSL* s,
@@ -704,9 +725,41 @@ index ad06141..7bafe1e 100644
                                                 int* copy) {
 +#endif
    Base* w = static_cast<Base*>(SSL_get_app_data(s));
-
+ 
    *copy = 0;
-@@ -2557,6 +2887,7 @@ void SSLWrap<Base>::GetEphemeralKeyInfo(
+@@ -2121,6 +2451,23 @@ static Local<Object> X509ToObject(Environment* env, X509* cert) {
+   rsa.reset();
+   ec.reset();
+ 
++#if OPENSSL_VERSION_NUMBER < 0x10100000L
++  ASN1_TIME_print(bio.get(), X509_get_notBefore(cert));
++  BIO_get_mem_ptr(bio.get(), &mem);
++  info->Set(context, env->valid_from_string(),
++            String::NewFromUtf8(env->isolate(), mem->data,
++                                NewStringType::kNormal,
++                                mem->length).ToLocalChecked()).Check();
++  USE(BIO_reset(bio.get()));
++
++  ASN1_TIME_print(bio.get(), X509_get_notAfter(cert));
++  BIO_get_mem_ptr(bio.get(), &mem);
++  info->Set(context, env->valid_to_string(),
++            String::NewFromUtf8(env->isolate(), mem->data,
++                                NewStringType::kNormal,
++                                mem->length).ToLocalChecked()).Check();
++  bio.reset();
++#else
+   ASN1_TIME_print(bio.get(), X509_get0_notBefore(cert));
+   BIO_get_mem_ptr(bio.get(), &mem);
+   info->Set(context, env->valid_from_string(),
+@@ -2136,6 +2483,7 @@ static Local<Object> X509ToObject(Environment* env, X509* cert) {
+                                 NewStringType::kNormal,
+                                 mem->length).ToLocalChecked()).Check();
+   bio.reset();
++#endif
+ 
+   unsigned char md[EVP_MAX_MD_SIZE];
+   unsigned int md_size;
+@@ -2560,6 +2908,7 @@ void SSLWrap<Base>::GetEphemeralKeyInfo(
              .Check();
          break;
        case EVP_PKEY_EC:
@@ -714,7 +767,7 @@ index ad06141..7bafe1e 100644
        case EVP_PKEY_X25519:
        case EVP_PKEY_X448:
          {
-@@ -2579,6 +2910,21 @@ void SSLWrap<Base>::GetEphemeralKeyInfo(
+@@ -2582,6 +2931,21 @@ void SSLWrap<Base>::GetEphemeralKeyInfo(
                                   EVP_PKEY_bits(key.get()))).Check();
          }
          break;
@@ -736,7 +789,7 @@ index ad06141..7bafe1e 100644
        default:
          break;
      }
-@@ -3886,12 +4232,15 @@ Local<Value> KeyObject::GetAsymmetricKeyType() const {
+@@ -3901,12 +4265,15 @@ Local<Value> KeyObject::GetAsymmetricKeyType() const {
    switch (EVP_PKEY_id(this->asymmetric_key_.get())) {
    case EVP_PKEY_RSA:
      return env()->crypto_rsa_string();
@@ -752,7 +805,7 @@ index ad06141..7bafe1e 100644
    case EVP_PKEY_ED25519:
      return env()->crypto_ed25519_string();
    case EVP_PKEY_ED448:
-@@ -3900,6 +4249,7 @@ Local<Value> KeyObject::GetAsymmetricKeyType() const {
+@@ -3915,6 +4282,7 @@ Local<Value> KeyObject::GetAsymmetricKeyType() const {
      return env()->crypto_x25519_string();
    case EVP_PKEY_X448:
      return env()->crypto_x448_string();
@@ -760,10 +813,10 @@ index ad06141..7bafe1e 100644
    default:
      return Undefined(env()->isolate());
    }
-@@ -4195,10 +4545,10 @@ bool CipherBase::InitAuthenticated(const char* cipher_type, int iv_len,
+@@ -4210,10 +4578,10 @@ bool CipherBase::InitAuthenticated(const char* cipher_type, int iv_len,
    CHECK(IsAuthenticatedMode());
    MarkPopErrorOnReturn mark_pop_error_on_return;
-
+ 
 -  if (!EVP_CIPHER_CTX_ctrl(ctx_.get(),
 -                           EVP_CTRL_AEAD_SET_IVLEN,
 -                           iv_len,
@@ -775,7 +828,7 @@ index ad06141..7bafe1e 100644
      env()->ThrowError("Invalid IV length");
      return false;
    }
-@@ -4546,8 +4896,12 @@ bool CipherBase::Final(AllocatedBuffer* out) {
+@@ -4561,8 +4929,12 @@ bool CipherBase::Final(AllocatedBuffer* out) {
          CHECK(mode == EVP_CIPH_GCM_MODE);
          auth_tag_len_ = sizeof(auth_tag_);
        }
@@ -790,7 +843,7 @@ index ad06141..7bafe1e 100644
                        reinterpret_cast<unsigned char*>(auth_tag_)));
      }
    }
-@@ -4826,8 +5180,12 @@ void Hash::HashDigest(const FunctionCallbackInfo<Value>& args) {
+@@ -4852,8 +5224,12 @@ void Hash::HashDigest(const FunctionCallbackInfo<Value>& args) {
        ret = EVP_DigestFinal_ex(hash->mdctx_.get(), hash->md_value_,
                                 &hash->md_len_);
      } else {
@@ -801,10 +854,10 @@ index ad06141..7bafe1e 100644
 +      return env->ThrowError("Unsupported XOF digest");
 +#endif  // OPENSSL_VERSION_NUMBER >= 0x10100000L
      }
-
+ 
      if (ret != 1) {
-@@ -4857,12 +5215,14 @@ void Hash::HashDigest(const FunctionCallbackInfo<Value>& args) {
-
+@@ -4883,12 +5259,14 @@ void Hash::HashDigest(const FunctionCallbackInfo<Value>& args) {
+ 
  SignBase::Error SignBase::Init(const char* sign_type) {
    CHECK_NULL(mdctx_);
 +#if OPENSSL_VERSION_NUMBER >= 0x10100000L
@@ -818,7 +871,7 @@ index ad06141..7bafe1e 100644
    const EVP_MD* md = EVP_get_digestbyname(sign_type);
    if (md == nullptr)
      return kSignUnknownDigest;
-@@ -4931,9 +5291,14 @@ static bool ApplyRSAOptions(const ManagedEVPPKey& pkey,
+@@ -4960,9 +5338,14 @@ static bool ApplyRSAOptions(const ManagedEVPPKey& pkey,
                              EVP_PKEY_CTX* pkctx,
                              int padding,
                              const Maybe<int>& salt_len) {
@@ -833,10 +886,10 @@ index ad06141..7bafe1e 100644
      if (EVP_PKEY_CTX_set_rsa_padding(pkctx, padding) <= 0)
        return false;
      if (padding == RSA_PKCS1_PSS_PADDING && salt_len.IsJust()) {
-@@ -4988,9 +5353,13 @@ void Sign::SignUpdate(const FunctionCallbackInfo<Value>& args) {
+@@ -5017,9 +5400,13 @@ void Sign::SignUpdate(const FunctionCallbackInfo<Value>& args) {
    sign->CheckThrow(err);
  }
-
+ 
 -static int GetDefaultSignPadding(const ManagedEVPPKey& key) {
 +static int GetDefaultSignPadding([[maybe_unused]] const ManagedEVPPKey& key) {
 +#if OPENSSL_VERSION_NUMBER < 0x10100000L
@@ -844,13 +897,13 @@ index ad06141..7bafe1e 100644
 +#else
    return EVP_PKEY_id(key.get()) == EVP_PKEY_RSA_PSS ? RSA_PKCS1_PSS_PADDING :
                                                        RSA_PKCS1_PADDING;
-+#endif  // OPENSSL_VERSION_NUMBER < 0x10100000L
++#endif // OPENSSL_VERSION_NUMBER < 0x10100000L
  }
-
- static AllocatedBuffer Node_SignFinal(Environment* env,
-@@ -6162,9 +6531,24 @@ struct PBKDF2Job : public CryptoJob {
+ 
+ static const unsigned int kNoDsaSignature = static_cast<unsigned int>(-1);
+@@ -6312,9 +6699,24 @@ struct PBKDF2Job : public CryptoJob {
    }
-
+ 
    inline void DoThreadPoolWork() override {
 -    auto salt_data = reinterpret_cast<const unsigned char*>(salt.data());
 +    static const auto *empty = "";
@@ -875,96 +928,96 @@ index ad06141..7bafe1e 100644
                            iteration_count, digest, keybuf_size, keybuf_data);
      success = Just(ok);
      Cleanse();
-@@ -6347,6 +6731,7 @@ class RSAKeyPairGenerationConfig : public KeyPairGenerationConfig {
+@@ -6497,6 +6899,7 @@ class RSAKeyPairGenerationConfig : public KeyPairGenerationConfig {
    const unsigned int exponent_;
  };
-
+ 
 +#if OPENSSL_VERSION_NUMBER >= 0x10100000L
  class RSAPSSKeyPairGenerationConfig : public RSAKeyPairGenerationConfig {
   public:
    RSAPSSKeyPairGenerationConfig(unsigned int modulus_bits,
-@@ -6388,6 +6773,7 @@ class RSAPSSKeyPairGenerationConfig : public RSAKeyPairGenerationConfig {
+@@ -6538,6 +6941,7 @@ class RSAPSSKeyPairGenerationConfig : public RSAKeyPairGenerationConfig {
    const EVP_MD* mgf1_md_;
    const int saltlen_;
  };
 +#endif
-
+ 
  class DSAKeyPairGenerationConfig : public KeyPairGenerationConfig {
   public:
-@@ -6463,6 +6849,7 @@ class ECKeyPairGenerationConfig : public KeyPairGenerationConfig {
+@@ -6613,6 +7017,7 @@ class ECKeyPairGenerationConfig : public KeyPairGenerationConfig {
    const int param_encoding_;
  };
-
+ 
 +#if OPENSSL_VERSION_NUMBER >= 0x10100000L
  class NidKeyPairGenerationConfig : public KeyPairGenerationConfig {
   public:
    explicit NidKeyPairGenerationConfig(int id) : id_(id) {}
-@@ -6474,6 +6861,7 @@ class NidKeyPairGenerationConfig : public KeyPairGenerationConfig {
+@@ -6624,6 +7029,7 @@ class NidKeyPairGenerationConfig : public KeyPairGenerationConfig {
   private:
    const int id_;
  };
 +#endif
-
+ 
  class GenerateKeyPairJob : public CryptoJob {
   public:
-@@ -6618,6 +7006,7 @@ void GenerateKeyPairRSA(const FunctionCallbackInfo<Value>& args) {
+@@ -6768,6 +7174,7 @@ void GenerateKeyPairRSA(const FunctionCallbackInfo<Value>& args) {
    GenerateKeyPair(args, 2, std::move(config));
  }
-
+ 
 +#if OPENSSL_VERSION_NUMBER >= 0x10100000L
  void GenerateKeyPairRSAPSS(const FunctionCallbackInfo<Value>& args) {
    Environment* env = Environment::GetCurrent(args);
-
-@@ -6655,6 +7044,7 @@ void GenerateKeyPairRSAPSS(const FunctionCallbackInfo<Value>& args) {
+ 
+@@ -6805,6 +7212,7 @@ void GenerateKeyPairRSAPSS(const FunctionCallbackInfo<Value>& args) {
                                          md, mgf1_md, saltlen));
    GenerateKeyPair(args, 5, std::move(config));
  }
 +#endif
-
+ 
  void GenerateKeyPairDSA(const FunctionCallbackInfo<Value>& args) {
    CHECK(args[0]->IsUint32());
-@@ -6686,6 +7076,7 @@ void GenerateKeyPairEC(const FunctionCallbackInfo<Value>& args) {
+@@ -6836,6 +7244,7 @@ void GenerateKeyPairEC(const FunctionCallbackInfo<Value>& args) {
    GenerateKeyPair(args, 2, std::move(config));
  }
-
+ 
 +#if OPENSSL_VERSION_NUMBER >= 0x10100000L
  void GenerateKeyPairNid(const FunctionCallbackInfo<Value>& args) {
    CHECK(args[0]->IsInt32());
    const int id = args[0].As<Int32>()->Value();
-@@ -6693,6 +7084,7 @@ void GenerateKeyPairNid(const FunctionCallbackInfo<Value>& args) {
+@@ -6843,6 +7252,7 @@ void GenerateKeyPairNid(const FunctionCallbackInfo<Value>& args) {
        new NidKeyPairGenerationConfig(id));
    GenerateKeyPair(args, 1, std::move(config));
  }
 +#endif
-
-
+ 
+ 
  void GetSSLCiphers(const FunctionCallbackInfo<Value>& args) {
-@@ -6716,6 +7108,7 @@ void GetSSLCiphers(const FunctionCallbackInfo<Value>& args) {
+@@ -6866,6 +7276,7 @@ void GetSSLCiphers(const FunctionCallbackInfo<Value>& args) {
                             SSL_CIPHER_get_name(cipher))).Check();
    }
-
+ 
 +#if OPENSSL_VERSION_NUMBER >= 0x10100000L
    // TLSv1.3 ciphers aren't listed by EVP. There are only 5, we could just
    // document them, but since there are only 5, easier to just add them manually
    // and not have to explain their absence in the API docs. They are lower-cased
-@@ -6733,6 +7126,7 @@ void GetSSLCiphers(const FunctionCallbackInfo<Value>& args) {
+@@ -6883,6 +7294,7 @@ void GetSSLCiphers(const FunctionCallbackInfo<Value>& args) {
      arr->Set(env->context(),
               arr->Length(), OneByteString(args.GetIsolate(), name)).Check();
    }
 +#endif
-
+ 
    args.GetReturnValue().Set(arr);
  }
-@@ -6961,7 +7355,7 @@ void TimingSafeEqual(const FunctionCallbackInfo<Value>& args) {
+@@ -7111,7 +7523,7 @@ void TimingSafeEqual(const FunctionCallbackInfo<Value>& args) {
  }
-
+ 
  void InitCryptoOnce() {
 -#ifndef OPENSSL_IS_BORINGSSL
 +#if !defined(OPENSSL_IS_BORINGSSL) && OPENSSL_VERSION_NUMBER >= 0x10100000L
    OPENSSL_INIT_SETTINGS* settings = OPENSSL_INIT_new();
-
+ 
    // --openssl-config=...
-@@ -6973,7 +7367,35 @@ void InitCryptoOnce() {
+@@ -7123,7 +7535,35 @@ void InitCryptoOnce() {
    OPENSSL_init_ssl(0, settings);
    OPENSSL_INIT_free(settings);
    settings = nullptr;
@@ -998,11 +1051,11 @@ index ad06141..7bafe1e 100644
 +  CRYPTO_set_locking_callback(crypto_lock_cb);
 +  CRYPTO_THREADID_set_callback(crypto_threadid_cb);
 +#endif // !defined(OPENSSL_IS_BORINGSSL) && OPENSSL_VERSION_NUMBER >= 0x10100000L
-
+ 
  #ifdef NODE_FIPS_MODE
    /* Override FIPS settings in cnf file, if needed. */
-@@ -7096,14 +7518,18 @@ void Initialize(Local<Object> target,
-
+@@ -7246,14 +7686,18 @@ void Initialize(Local<Object> target,
+ 
    env->SetMethod(target, "pbkdf2", PBKDF2);
    env->SetMethod(target, "generateKeyPairRSA", GenerateKeyPairRSA);
 +#if OPENSSL_VERSION_NUMBER >= 0x10100000L
@@ -1021,13 +1074,20 @@ index ad06141..7bafe1e 100644
    NODE_DEFINE_CONSTANT(target, OPENSSL_EC_EXPLICIT_CURVE);
    NODE_DEFINE_CONSTANT(target, kKeyEncodingPKCS1);
 diff --git a/src/node_crypto.h b/src/node_crypto.h
-index 206a191..9de1616 100644
+index 4862c16..580ca6a 100644
 --- a/src/node_crypto.h
 +++ b/src/node_crypto.h
-@@ -36,6 +36,41 @@
+@@ -35,10 +35,47 @@
+ 
  #include <openssl/err.h>
  #include <openssl/ssl.h>
-
++#if OPENSSL_VERSION_NUMBER >= 0x10100000L
+ #include <openssl/bn.h>
+ #include <openssl/dh.h>
+ #include <openssl/ec.h>
+ #include <openssl/rsa.h>
++#endif
++
 +// OpenSSL backport shims
 +#if OPENSSL_VERSION_NUMBER < 0x10100000L
 +
@@ -1062,14 +1122,13 @@ index 206a191..9de1616 100644
 +    return BN_bn2bin(a, to);
 +}
 +#endif // OPENSSL_VERSION_NUMBER < 0x10100000L
-+
+ 
  namespace node {
  namespace crypto {
-
-@@ -235,10 +270,17 @@ class SSLWrap {
+@@ -240,10 +277,17 @@ class SSLWrap {
    static void ConfigureSecureContext(SecureContext* sc);
    static void AddMethods(Environment* env, v8::Local<v8::FunctionTemplate> t);
-
+ 
 +#if OPENSSL_VERSION_NUMBER < 0x10100000L
 +  static SSL_SESSION* GetSessionCallback(SSL* s,
 +                                         unsigned char* key,
@@ -1091,7 +1150,7 @@ index fc14304..75b55eb 100644
 @@ -30,8 +30,18 @@
  namespace node {
  namespace crypto {
-
+ 
 +#if OPENSSL_VERSION_NUMBER < 0x10100000L
 +#define BIO_set_data(bio, data) bio->ptr = data
 +#define BIO_get_data(bio) bio->ptr
@@ -1109,8 +1168,8 @@ index fc14304..75b55eb 100644
      NodeBIO::FromBIO(bio.get())->env_ = env;
    return bio;
 @@ -221,6 +231,22 @@ long NodeBIO::Ctrl(BIO* bio, int cmd, long num,  // NOLINT(runtime/int)
-
-
+ 
+ 
  const BIO_METHOD* NodeBIO::GetMethod() {
 +#if OPENSSL_VERSION_NUMBER < 0x10100000L
 +  static const BIO_METHOD method = {
@@ -1133,18 +1192,18 @@ index fc14304..75b55eb 100644
    static BIO_METHOD* method = nullptr;
 @@ -237,6 +263,7 @@ const BIO_METHOD* NodeBIO::GetMethod() {
    }
-
+ 
    return method;
 +#endif
  }
-
-
+ 
+ 
 diff --git a/src/node_errors.h b/src/node_errors.h
-index 6080aa9..48ae915 100644
+index 74413e7..426b059 100644
 --- a/src/node_errors.h
 +++ b/src/node_errors.h
-@@ -149,8 +149,8 @@ inline v8::Local<v8::Value> ERR_STRING_TOO_LONG(v8::Isolate* isolate) {
-
+@@ -151,8 +151,8 @@ inline v8::Local<v8::Value> ERR_STRING_TOO_LONG(v8::Isolate* isolate) {
+ 
  #define THROW_AND_RETURN_IF_NOT_STRING(env, val, prefix)                     \
    do {                                                                       \
 -    if (!val->IsString())                                                    \
@@ -1153,12 +1212,12 @@ index 6080aa9..48ae915 100644
 +      return node::THROW_ERR_INVALID_ARG_TYPE((env),                         \
                                                prefix " must be a string");   \
    } while (0)
-
+ 
 diff --git a/src/node_options.cc b/src/node_options.cc
-index 35cac18..0a6ed2f 100644
+index ed46978..4e473ca 100644
 --- a/src/node_options.cc
 +++ b/src/node_options.cc
-@@ -549,10 +549,12 @@ EnvironmentOptionsParser::EnvironmentOptionsParser() {
+@@ -588,10 +588,12 @@ EnvironmentOptionsParser::EnvironmentOptionsParser() {
              "set default TLS minimum to TLSv1.2 (default: TLSv1.2)",
              &EnvironmentOptions::tls_min_v1_2,
              kAllowedInEnvironment);
@@ -1171,7 +1230,7 @@ index 35cac18..0a6ed2f 100644
    AddOption("--tls-max-v1.2",
              "set default TLS maximum to TLSv1.2 (default: TLSv1.3)",
              &EnvironmentOptions::tls_max_v1_2,
-@@ -561,10 +563,12 @@ EnvironmentOptionsParser::EnvironmentOptionsParser() {
+@@ -600,10 +602,12 @@ EnvironmentOptionsParser::EnvironmentOptionsParser() {
    // - 11.x and below: TLS1.3 is opt-in with --tls-max-v1.3
    // - 12.x: TLS1.3 is opt-out with --tls-max-v1.2
    // In either case, support both options they are uniformly available.
@@ -1182,14 +1241,14 @@ index 35cac18..0a6ed2f 100644
              kAllowedInEnvironment);
 +#endif // TLS1_3_VERSION
  }
-
+ 
  PerIsolateOptionsParser::PerIsolateOptionsParser(
 diff --git a/src/tls_wrap.cc b/src/tls_wrap.cc
-index 42b9469..b8a55c6 100644
+index 263505c..75cfddd 100644
 --- a/src/tls_wrap.cc
 +++ b/src/tls_wrap.cc
-@@ -910,11 +910,13 @@ void TLSWrap::EnableSessionCallbacks(
-
+@@ -914,11 +914,13 @@ void TLSWrap::EnableSessionCallbacks(
+ 
  void TLSWrap::EnableKeylogCallback(
      const FunctionCallbackInfo<Value>& args) {
 +#if OPENSSL_VERSION_NUMBER >= 0x10100000L
@@ -1200,8 +1259,8 @@ index 42b9469..b8a55c6 100644
        SSLWrap<TLSWrap>::KeylogCallback);
 +#endif // OPENSSL_VERSION_NUMBER >= 0x10100000L
  }
-
+ 
  // Check required capabilities were not excluded from the OpenSSL build:
---
-2.24.1
+-- 
+1.8.3.1
 
diff --git a/SOURCES/0002-Adjust-tests-for-missing-OpenSSL-features.patch b/SOURCES/0002-Adjust-tests-for-missing-OpenSSL-features.patch
deleted file mode 100644
index 1a51082..0000000
--- a/SOURCES/0002-Adjust-tests-for-missing-OpenSSL-features.patch
+++ /dev/null
@@ -1,958 +0,0 @@
-From 83ca5907b708681c799e8f5435181dd068f57e4c Mon Sep 17 00:00:00 2001
-From: =?UTF-8?q?Jan=20Stan=C4=9Bk?= <jstanek@redhat.com>
-Date: Thu, 16 Jan 2020 09:06:24 +0100
-Subject: [PATCH 2/4] Adjust tests for missing OpenSSL features
-MIME-Version: 1.0
-Content-Type: text/plain; charset=UTF-8
-Content-Transfer-Encoding: 8bit
-
-Signed-off-by: Jan Staněk <jstanek@redhat.com>
----
- .../test-crypto-aes-wrap.js                   |   0
- .../test-crypto-des3-wrap.js                  |   0
- .../test-crypto-hash-stream-pipe.js           |   0
- .../test-make-doc.js                          |   0
- .../test-tls-cli-max-version-1.3.js           |   0
- .../test-tls-cli-min-max-conflict.js          |   0
- .../test-tls-cli-min-version-1.3.js           |   0
- .../test-tls-client-renegotiation-13.js       |   0
- .../test-tls-keylog-tlsv13.js                 |   0
- .../test-tls-no-sslv3.js                      |   0
- .../test-tls-ticket-12.js                     |   0
- .../test-tls-ticket-cluster.js                |   0
- .../test-tls-ticket.js                        |   0
- .../test-v8-serdes.js                         |   0
- test/parallel/test-crypto-authenticated.js    |  54 +-----
- test/parallel/test-crypto-hash.js             |  68 -------
- test/parallel/test-crypto-key-objects.js      | 175 ------------------
- test/parallel/test-crypto-keygen.js           |  54 ------
- test/parallel/test-crypto-pbkdf2.js           |  18 --
- test/parallel/test-crypto-sign-verify.js      |   8 -
- test/parallel/test-crypto.js                  |   6 +-
- .../test-https-agent-session-eviction.js      |  42 ++++-
- test/parallel/test-tls-alert-handling.js      |   2 +-
- test/parallel/test-tls-cli-min-version-1.0.js |   2 +-
- test/parallel/test-tls-cli-min-version-1.1.js |   2 +-
- test/parallel/test-tls-cli-min-version-1.2.js |   2 +-
- .../test-tls-client-getephemeralkeyinfo.js    |   2 -
- test/parallel/test-tls-destroy-stream.js      |   2 +-
- test/parallel/test-tls-getcipher.js           |  25 +--
- test/parallel/test-tls-min-max-version.js     |  29 +--
- test/parallel/test-tls-multi-key.js           |   4 +-
- test/parallel/test-tls-multi-pfx.js           |   4 +-
- test/parallel/test-tls-passphrase.js          |   2 +-
- test/parallel/test-tls-set-ciphers.js         |  27 +--
- 34 files changed, 60 insertions(+), 468 deletions(-)
- rename test/{parallel => known_issues}/test-crypto-aes-wrap.js (100%)
- rename test/{parallel => known_issues}/test-crypto-des3-wrap.js (100%)
- rename test/{parallel => known_issues}/test-crypto-hash-stream-pipe.js (100%)
- rename test/{doctool => known_issues}/test-make-doc.js (100%)
- rename test/{parallel => known_issues}/test-tls-cli-max-version-1.3.js (100%)
- rename test/{parallel => known_issues}/test-tls-cli-min-max-conflict.js (100%)
- rename test/{parallel => known_issues}/test-tls-cli-min-version-1.3.js (100%)
- rename test/{parallel => known_issues}/test-tls-client-renegotiation-13.js (100%)
- rename test/{parallel => known_issues}/test-tls-keylog-tlsv13.js (100%)
- rename test/{parallel => known_issues}/test-tls-no-sslv3.js (100%)
- rename test/{parallel => known_issues}/test-tls-ticket-12.js (100%)
- rename test/{parallel => known_issues}/test-tls-ticket-cluster.js (100%)
- rename test/{parallel => known_issues}/test-tls-ticket.js (100%)
- rename test/{parallel => known_issues}/test-v8-serdes.js (100%)
-
-diff --git a/test/parallel/test-crypto-aes-wrap.js b/test/known_issues/test-crypto-aes-wrap.js
-similarity index 100%
-rename from test/parallel/test-crypto-aes-wrap.js
-rename to test/known_issues/test-crypto-aes-wrap.js
-diff --git a/test/parallel/test-crypto-des3-wrap.js b/test/known_issues/test-crypto-des3-wrap.js
-similarity index 100%
-rename from test/parallel/test-crypto-des3-wrap.js
-rename to test/known_issues/test-crypto-des3-wrap.js
-diff --git a/test/parallel/test-crypto-hash-stream-pipe.js b/test/known_issues/test-crypto-hash-stream-pipe.js
-similarity index 100%
-rename from test/parallel/test-crypto-hash-stream-pipe.js
-rename to test/known_issues/test-crypto-hash-stream-pipe.js
-diff --git a/test/doctool/test-make-doc.js b/test/known_issues/test-make-doc.js
-similarity index 100%
-rename from test/doctool/test-make-doc.js
-rename to test/known_issues/test-make-doc.js
-diff --git a/test/parallel/test-tls-cli-max-version-1.3.js b/test/known_issues/test-tls-cli-max-version-1.3.js
-similarity index 100%
-rename from test/parallel/test-tls-cli-max-version-1.3.js
-rename to test/known_issues/test-tls-cli-max-version-1.3.js
-diff --git a/test/parallel/test-tls-cli-min-max-conflict.js b/test/known_issues/test-tls-cli-min-max-conflict.js
-similarity index 100%
-rename from test/parallel/test-tls-cli-min-max-conflict.js
-rename to test/known_issues/test-tls-cli-min-max-conflict.js
-diff --git a/test/parallel/test-tls-cli-min-version-1.3.js b/test/known_issues/test-tls-cli-min-version-1.3.js
-similarity index 100%
-rename from test/parallel/test-tls-cli-min-version-1.3.js
-rename to test/known_issues/test-tls-cli-min-version-1.3.js
-diff --git a/test/parallel/test-tls-client-renegotiation-13.js b/test/known_issues/test-tls-client-renegotiation-13.js
-similarity index 100%
-rename from test/parallel/test-tls-client-renegotiation-13.js
-rename to test/known_issues/test-tls-client-renegotiation-13.js
-diff --git a/test/parallel/test-tls-keylog-tlsv13.js b/test/known_issues/test-tls-keylog-tlsv13.js
-similarity index 100%
-rename from test/parallel/test-tls-keylog-tlsv13.js
-rename to test/known_issues/test-tls-keylog-tlsv13.js
-diff --git a/test/parallel/test-tls-no-sslv3.js b/test/known_issues/test-tls-no-sslv3.js
-similarity index 100%
-rename from test/parallel/test-tls-no-sslv3.js
-rename to test/known_issues/test-tls-no-sslv3.js
-diff --git a/test/parallel/test-tls-ticket-12.js b/test/known_issues/test-tls-ticket-12.js
-similarity index 100%
-rename from test/parallel/test-tls-ticket-12.js
-rename to test/known_issues/test-tls-ticket-12.js
-diff --git a/test/parallel/test-tls-ticket-cluster.js b/test/known_issues/test-tls-ticket-cluster.js
-similarity index 100%
-rename from test/parallel/test-tls-ticket-cluster.js
-rename to test/known_issues/test-tls-ticket-cluster.js
-diff --git a/test/parallel/test-tls-ticket.js b/test/known_issues/test-tls-ticket.js
-similarity index 100%
-rename from test/parallel/test-tls-ticket.js
-rename to test/known_issues/test-tls-ticket.js
-diff --git a/test/parallel/test-v8-serdes.js b/test/known_issues/test-v8-serdes.js
-similarity index 100%
-rename from test/parallel/test-v8-serdes.js
-rename to test/known_issues/test-v8-serdes.js
-diff --git a/test/parallel/test-crypto-authenticated.js b/test/parallel/test-crypto-authenticated.js
-index 8be7296..c9bf961 100644
---- a/test/parallel/test-crypto-authenticated.js
-+++ b/test/parallel/test-crypto-authenticated.js
-@@ -404,7 +404,7 @@ for (const test of TEST_CASES) {
- // Test that create(De|C)ipher(iv)? throws if the mode is CCM or OCB and no
- // authentication tag has been specified.
- {
--  for (const mode of ['ccm', 'ocb']) {
-+  for (const mode of ['ccm']) {
-     assert.throws(() => {
-       crypto.createCipheriv(`aes-256-${mode}`,
-                             'FxLKsqdmv0E9xrQhp0b1ZgI0K7JFZJM8',
-@@ -564,7 +564,7 @@ for (const test of TEST_CASES) {
-   const key = Buffer.from('0123456789abcdef', 'utf8');
-   const iv = Buffer.from('0123456789ab', 'utf8');
-
--  for (const mode of ['gcm', 'ocb']) {
-+  for (const mode of ['gcm']) {
-     for (const authTagLength of mode === 'gcm' ? [undefined, 8] : [8]) {
-       const cipher = crypto.createCipheriv(`aes-128-${mode}`, key, iv, {
-         authTagLength
-@@ -598,7 +598,7 @@ for (const test of TEST_CASES) {
-   const iv = Buffer.from('0123456789ab', 'utf8');
-   const opts = { authTagLength: 8 };
-
--  for (const mode of ['gcm', 'ccm', 'ocb']) {
-+  for (const mode of ['gcm', 'ccm']) {
-     const cipher = crypto.createCipheriv(`aes-128-${mode}`, key, iv, opts);
-     const ciphertext = Buffer.concat([cipher.update(plain), cipher.final()]);
-     const tag = cipher.getAuthTag();
-@@ -616,51 +616,3 @@ for (const test of TEST_CASES) {
-     assert(plain.equals(plaintext));
-   }
- }
--
--
--// Test chacha20-poly1305 rejects invalid IV lengths of 13, 14, 15, and 16 (a
--// length of 17 or greater was already rejected).
--// - https://www.openssl.org/news/secadv/20190306.txt
--{
--  // Valid extracted from TEST_CASES, check that it detects IV tampering.
--  const valid = {
--    algo: 'chacha20-poly1305',
--    key: '808182838485868788898a8b8c8d8e8f909192939495969798999a9b9c9d9e9f',
--    iv: '070000004041424344454647',
--    plain: '4c616469657320616e642047656e746c656d656e206f662074686520636c6173' +
--           '73206f66202739393a204966204920636f756c64206f6666657220796f75206f' +
--           '6e6c79206f6e652074697020666f7220746865206675747572652c2073756e73' +
--           '637265656e20776f756c642062652069742e',
--    plainIsHex: true,
--    aad: '50515253c0c1c2c3c4c5c6c7',
--    ct: 'd31a8d34648e60db7b86afbc53ef7ec2a4aded51296e08fea9e2b5' +
--        'a736ee62d63dbea45e8ca9671282fafb69da92728b1a71de0a9e06' +
--        '0b2905d6a5b67ecd3b3692ddbd7f2d778b8c9803aee328091b58fa' +
--        'b324e4fad675945585808b4831d7bc3ff4def08e4b7a9de576d265' +
--        '86cec64b6116',
--    tag: '1ae10b594f09e26a7e902ecbd0600691',
--    tampered: false,
--  };
--
--  // Invalid IV lengths should be detected:
--  // - 12 and below are valid.
--  // - 13-16 are not detected as invalid by some OpenSSL versions.
--  check(13);
--  check(14);
--  check(15);
--  check(16);
--  // - 17 and above were always detected as invalid by OpenSSL.
--  check(17);
--
--  function check(ivLength) {
--    const prefix = ivLength - valid.iv.length / 2;
--    assert.throws(() => crypto.createCipheriv(
--      valid.algo,
--      Buffer.from(valid.key, 'hex'),
--      Buffer.from(H(prefix) + valid.iv, 'hex'),
--      { authTagLength: valid.tag.length / 2 }
--    ), errMessages.length, `iv length ${ivLength} was not rejected`);
--
--    function H(length) { return '00'.repeat(length); }
--  }
--}
-diff --git a/test/parallel/test-crypto-hash.js b/test/parallel/test-crypto-hash.js
-index 7f752f8..dbfb9a1 100644
---- a/test/parallel/test-crypto-hash.js
-+++ b/test/parallel/test-crypto-hash.js
-@@ -181,71 +181,3 @@ common.expectsError(
-   assert(instance instanceof Hash, 'Hash is expected to return a new instance' +
-                                    ' when called without `new`');
- }
--
--// Test XOF hash functions and the outputLength option.
--{
--  // Default outputLengths.
--  assert.strictEqual(crypto.createHash('shake128').digest('hex'),
--                     '7f9c2ba4e88f827d616045507605853e');
--  assert.strictEqual(crypto.createHash('shake128', null).digest('hex'),
--                     '7f9c2ba4e88f827d616045507605853e');
--  assert.strictEqual(crypto.createHash('shake256').digest('hex'),
--                     '46b9dd2b0ba88d13233b3feb743eeb24' +
--                     '3fcd52ea62b81b82b50c27646ed5762f');
--
--  // Short outputLengths.
--  assert.strictEqual(crypto.createHash('shake128', { outputLength: 0 })
--                           .digest('hex'),
--                     '');
--  assert.strictEqual(crypto.createHash('shake128', { outputLength: 5 })
--                           .digest('hex'),
--                     '7f9c2ba4e8');
--  assert.strictEqual(crypto.createHash('shake128', { outputLength: 15 })
--                           .digest('hex'),
--                     '7f9c2ba4e88f827d61604550760585');
--  assert.strictEqual(crypto.createHash('shake256', { outputLength: 16 })
--                           .digest('hex'),
--                     '46b9dd2b0ba88d13233b3feb743eeb24');
--
--  // Large outputLengths.
--  assert.strictEqual(crypto.createHash('shake128', { outputLength: 128 })
--                           .digest('hex'),
--                     '7f9c2ba4e88f827d616045507605853e' +
--                     'd73b8093f6efbc88eb1a6eacfa66ef26' +
--                     '3cb1eea988004b93103cfb0aeefd2a68' +
--                     '6e01fa4a58e8a3639ca8a1e3f9ae57e2' +
--                     '35b8cc873c23dc62b8d260169afa2f75' +
--                     'ab916a58d974918835d25e6a435085b2' +
--                     'badfd6dfaac359a5efbb7bcc4b59d538' +
--                     'df9a04302e10c8bc1cbf1a0b3a5120ea');
--  const superLongHash = crypto.createHash('shake256', {
--    outputLength: 1024 * 1024
--  }).update('The message is shorter than the hash!')
--    .digest('hex');
--  assert.strictEqual(superLongHash.length, 2 * 1024 * 1024);
--  assert.ok(superLongHash.endsWith('193414035ddba77bf7bba97981e656ec'));
--  assert.ok(superLongHash.startsWith('a2a28dbc49cfd6e5d6ceea3d03e77748'));
--
--  // Non-XOF hash functions should accept valid outputLength options as well.
--  assert.strictEqual(crypto.createHash('sha224', { outputLength: 28 })
--                           .digest('hex'),
--                     'd14a028c2a3a2bc9476102bb288234c4' +
--                     '15a2b01f828ea62ac5b3e42f');
--
--  // Passing invalid sizes should throw during creation.
--  common.expectsError(() => {
--    crypto.createHash('sha256', { outputLength: 28 });
--  }, {
--    code: 'ERR_OSSL_EVP_NOT_XOF_OR_INVALID_LENGTH'
--  });
--
--  for (const outputLength of [null, {}, 'foo', false]) {
--    common.expectsError(() => crypto.createHash('sha256', { outputLength }),
--                        { code: 'ERR_INVALID_ARG_TYPE' });
--  }
--
--  for (const outputLength of [-1, .5, Infinity, 2 ** 90]) {
--    common.expectsError(() => crypto.createHash('sha256', { outputLength }),
--                        { code: 'ERR_OUT_OF_RANGE' });
--  }
--}
-diff --git a/test/parallel/test-crypto-key-objects.js b/test/parallel/test-crypto-key-objects.js
-index dc995be..4d2fc4c 100644
---- a/test/parallel/test-crypto-key-objects.js
-+++ b/test/parallel/test-crypto-key-objects.js
-@@ -239,42 +239,6 @@ const privateDsa = fixtures.readKey('dsa_private_encrypted_1025.pem',
-   });
- }
-
--[
--  { private: fixtures.readKey('ed25519_private.pem', 'ascii'),
--    public: fixtures.readKey('ed25519_public.pem', 'ascii'),
--    keyType: 'ed25519' },
--  { private: fixtures.readKey('ed448_private.pem', 'ascii'),
--    public: fixtures.readKey('ed448_public.pem', 'ascii'),
--    keyType: 'ed448' },
--  { private: fixtures.readKey('x25519_private.pem', 'ascii'),
--    public: fixtures.readKey('x25519_public.pem', 'ascii'),
--    keyType: 'x25519' },
--  { private: fixtures.readKey('x448_private.pem', 'ascii'),
--    public: fixtures.readKey('x448_public.pem', 'ascii'),
--    keyType: 'x448' },
--].forEach((info) => {
--  const keyType = info.keyType;
--
--  {
--    const exportOptions = { type: 'pkcs8', format: 'pem' };
--    const key = createPrivateKey(info.private);
--    assert.strictEqual(key.type, 'private');
--    assert.strictEqual(key.asymmetricKeyType, keyType);
--    assert.strictEqual(key.symmetricKeySize, undefined);
--    assert.strictEqual(key.export(exportOptions), info.private);
--  }
--
--  {
--    const exportOptions = { type: 'spki', format: 'pem' };
--    [info.private, info.public].forEach((pem) => {
--      const key = createPublicKey(pem);
--      assert.strictEqual(key.type, 'public');
--      assert.strictEqual(key.asymmetricKeyType, keyType);
--      assert.strictEqual(key.symmetricKeySize, undefined);
--      assert.strictEqual(key.export(exportOptions), info.public);
--    });
--  }
--});
-
- {
-   // Reading an encrypted key without a passphrase should fail.
-@@ -321,145 +285,6 @@ const privateDsa = fixtures.readKey('dsa_private_encrypted_1025.pem',
-
- }
-
--{
--  // Test RSA-PSS.
--  {
--    // This key pair does not restrict the message digest algorithm or salt
--    // length.
--    const publicPem = fixtures.readKey('rsa_pss_public_2048.pem');
--    const privatePem = fixtures.readKey('rsa_pss_private_2048.pem');
--
--    const publicKey = createPublicKey(publicPem);
--    const privateKey = createPrivateKey(privatePem);
--
--    assert.strictEqual(publicKey.type, 'public');
--    assert.strictEqual(publicKey.asymmetricKeyType, 'rsa-pss');
--
--    assert.strictEqual(privateKey.type, 'private');
--    assert.strictEqual(privateKey.asymmetricKeyType, 'rsa-pss');
--
--    for (const key of [privatePem, privateKey]) {
--      // Any algorithm should work.
--      for (const algo of ['sha1', 'sha256']) {
--        // Any salt length should work.
--        for (const saltLength of [undefined, 8, 10, 12, 16, 18, 20]) {
--          const signature = createSign(algo)
--                            .update('foo')
--                            .sign({ key, saltLength });
--
--          for (const pkey of [key, publicKey, publicPem]) {
--            const okay = createVerify(algo)
--                         .update('foo')
--                         .verify({ key: pkey, saltLength }, signature);
--
--            assert.ok(okay);
--          }
--        }
--      }
--    }
--
--    // Exporting the key using PKCS#1 should not work since this would discard
--    // any algorithm restrictions.
--    common.expectsError(() => {
--      publicKey.export({ format: 'pem', type: 'pkcs1' });
--    }, {
--      code: 'ERR_CRYPTO_INCOMPATIBLE_KEY_OPTIONS'
--    });
--  }
--
--  {
--    // This key pair enforces sha256 as the message digest and the MGF1
--    // message digest and a salt length of at least 16 bytes.
--    const publicPem =
--      fixtures.readKey('rsa_pss_public_2048_sha256_sha256_16.pem');
--    const privatePem =
--      fixtures.readKey('rsa_pss_private_2048_sha256_sha256_16.pem');
--
--    const publicKey = createPublicKey(publicPem);
--    const privateKey = createPrivateKey(privatePem);
--
--    assert.strictEqual(publicKey.type, 'public');
--    assert.strictEqual(publicKey.asymmetricKeyType, 'rsa-pss');
--
--    assert.strictEqual(privateKey.type, 'private');
--    assert.strictEqual(privateKey.asymmetricKeyType, 'rsa-pss');
--
--    for (const key of [privatePem, privateKey]) {
--      // Signing with anything other than sha256 should fail.
--      assert.throws(() => {
--        createSign('sha1').sign(key);
--      }, /digest not allowed/);
--
--      // Signing with salt lengths less than 16 bytes should fail.
--      for (const saltLength of [8, 10, 12]) {
--        assert.throws(() => {
--          createSign('sha1').sign({ key, saltLength });
--        }, /pss saltlen too small/);
--      }
--
--      // Signing with sha256 and appropriate salt lengths should work.
--      for (const saltLength of [undefined, 16, 18, 20]) {
--        const signature = createSign('sha256')
--                          .update('foo')
--                          .sign({ key, saltLength });
--
--        for (const pkey of [key, publicKey, publicPem]) {
--          const okay = createVerify('sha256')
--                       .update('foo')
--                       .verify({ key: pkey, saltLength }, signature);
--
--          assert.ok(okay);
--        }
--      }
--    }
--  }
--
--  {
--    // This key enforces sha512 as the message digest and sha256 as the MGF1
--    // message digest.
--    const publicPem =
--      fixtures.readKey('rsa_pss_public_2048_sha512_sha256_20.pem');
--    const privatePem =
--      fixtures.readKey('rsa_pss_private_2048_sha512_sha256_20.pem');
--
--    const publicKey = createPublicKey(publicPem);
--    const privateKey = createPrivateKey(privatePem);
--
--    assert.strictEqual(publicKey.type, 'public');
--    assert.strictEqual(publicKey.asymmetricKeyType, 'rsa-pss');
--
--    assert.strictEqual(privateKey.type, 'private');
--    assert.strictEqual(privateKey.asymmetricKeyType, 'rsa-pss');
--
--    // Node.js usually uses the same hash function for the message and for MGF1.
--    // However, when a different MGF1 message digest algorithm has been
--    // specified as part of the key, it should automatically switch to that.
--    // This behavior is required by sections 3.1 and 3.3 of RFC4055.
--    for (const key of [privatePem, privateKey]) {
--      // sha256 matches the MGF1 hash function and should be used internally,
--      // but it should not be permitted as the main message digest algorithm.
--      for (const algo of ['sha1', 'sha256']) {
--        assert.throws(() => {
--          createSign(algo).sign(key);
--        }, /digest not allowed/);
--      }
--
--      // sha512 should produce a valid signature.
--      const signature = createSign('sha512')
--                        .update('foo')
--                        .sign(key);
--
--      for (const pkey of [key, publicKey, publicPem]) {
--        const okay = createVerify('sha512')
--                     .update('foo')
--                     .verify(pkey, signature);
--
--        assert.ok(okay);
--      }
--    }
--  }
--}
--
- {
-   // Exporting an encrypted private key requires a cipher
-   const privateKey = createPrivateKey(privatePem);
-diff --git a/test/parallel/test-crypto-keygen.js b/test/parallel/test-crypto-keygen.js
-index 8c3432e..07815e1 100644
---- a/test/parallel/test-crypto-keygen.js
-+++ b/test/parallel/test-crypto-keygen.js
-@@ -265,43 +265,6 @@ const sec1EncExp = (cipher) => getRegExpForPEM('EC PRIVATE KEY', cipher);
-   }));
- }
-
--{
--  // Test RSA-PSS.
--  generateKeyPair('rsa-pss', {
--    modulusLength: 512,
--    saltLength: 16,
--    hash: 'sha256',
--    mgf1Hash: 'sha256'
--  }, common.mustCall((err, publicKey, privateKey) => {
--    assert.ifError(err);
--
--    assert.strictEqual(publicKey.type, 'public');
--    assert.strictEqual(publicKey.asymmetricKeyType, 'rsa-pss');
--
--    assert.strictEqual(privateKey.type, 'private');
--    assert.strictEqual(privateKey.asymmetricKeyType, 'rsa-pss');
--
--    // Unlike RSA, RSA-PSS does not allow encryption.
--    assert.throws(() => {
--      testEncryptDecrypt(publicKey, privateKey);
--    }, /operation not supported for this keytype/);
--
--    // RSA-PSS also does not permit signing with PKCS1 padding.
--    assert.throws(() => {
--      testSignVerify({
--        key: publicKey,
--        padding: constants.RSA_PKCS1_PADDING
--      }, {
--        key: privateKey,
--        padding: constants.RSA_PKCS1_PADDING
--      });
--    }, /illegal or unsupported padding mode/);
--
--    // The padding should correctly default to RSA_PKCS1_PSS_PADDING now.
--    testSignVerify(publicKey, privateKey);
--  }));
--}
--
- {
-   const privateKeyEncoding = {
-     type: 'pkcs8',
-@@ -964,23 +927,6 @@ const sec1EncExp = (cipher) => getRegExpForPEM('EC PRIVATE KEY', cipher);
-   }));
- }
-
--// Test EdDSA key generation.
--{
--  if (!/^1\.1\.0/.test(process.versions.openssl)) {
--    ['ed25519', 'ed448', 'x25519', 'x448'].forEach((keyType) => {
--      generateKeyPair(keyType, common.mustCall((err, publicKey, privateKey) => {
--        assert.ifError(err);
--
--        assert.strictEqual(publicKey.type, 'public');
--        assert.strictEqual(publicKey.asymmetricKeyType, keyType);
--
--        assert.strictEqual(privateKey.type, 'private');
--        assert.strictEqual(privateKey.asymmetricKeyType, keyType);
--      }));
--    });
--  }
--}
--
- // Test invalid key encoding types.
- {
-   // Invalid public key type.
-diff --git a/test/parallel/test-crypto-pbkdf2.js b/test/parallel/test-crypto-pbkdf2.js
-index 1d4e6f6..64e8e8d 100644
---- a/test/parallel/test-crypto-pbkdf2.js
-+++ b/test/parallel/test-crypto-pbkdf2.js
-@@ -221,21 +221,3 @@ crypto.pbkdf2Sync(new Float32Array(10), 'salt', 8, 8, 'sha256');
- crypto.pbkdf2Sync('pass', new Float32Array(10), 8, 8, 'sha256');
- crypto.pbkdf2Sync(new Float64Array(10), 'salt', 8, 8, 'sha256');
- crypto.pbkdf2Sync('pass', new Float64Array(10), 8, 8, 'sha256');
--
--assert.throws(
--  () => crypto.pbkdf2('pass', 'salt', 8, 8, 'md55', common.mustNotCall()),
--  {
--    code: 'ERR_CRYPTO_INVALID_DIGEST',
--    name: 'TypeError',
--    message: 'Invalid digest: md55'
--  }
--);
--
--assert.throws(
--  () => crypto.pbkdf2Sync('pass', 'salt', 8, 8, 'md55'),
--  {
--    code: 'ERR_CRYPTO_INVALID_DIGEST',
--    name: 'TypeError',
--    message: 'Invalid digest: md55'
--  }
--);
-diff --git a/test/parallel/test-crypto-sign-verify.js b/test/parallel/test-crypto-sign-verify.js
-index 66c7ac7..2a48025 100644
---- a/test/parallel/test-crypto-sign-verify.js
-+++ b/test/parallel/test-crypto-sign-verify.js
-@@ -418,14 +418,6 @@ common.expectsError(
- }
-
- [
--  { private: fixtures.readKey('ed25519_private.pem', 'ascii'),
--    public: fixtures.readKey('ed25519_public.pem', 'ascii'),
--    algo: null,
--    sigLen: 64 },
--  { private: fixtures.readKey('ed448_private.pem', 'ascii'),
--    public: fixtures.readKey('ed448_public.pem', 'ascii'),
--    algo: null,
--    sigLen: 114 },
-   { private: fixtures.readKey('rsa_private_2048.pem', 'ascii'),
-     public: fixtures.readKey('rsa_public_2048.pem', 'ascii'),
-     algo: 'sha1',
-diff --git a/test/parallel/test-crypto.js b/test/parallel/test-crypto.js
-index 9337621..ac1fcce 100644
---- a/test/parallel/test-crypto.js
-+++ b/test/parallel/test-crypto.js
-@@ -129,7 +129,7 @@ validateList(cryptoCiphers);
- // Assume that we have at least AES256-SHA.
- const tlsCiphers = tls.getCiphers();
- assert(tls.getCiphers().includes('aes256-sha'));
--assert(tls.getCiphers().includes('tls_aes_128_ccm_8_sha256'));
-+//assert(tls.getCiphers().includes('tls_aes_128_ccm_8_sha256'));  // TLSv1.3
- // There should be no capital letters in any element.
- const noCapitals = /^[^A-Z]+$/;
- assert(tlsCiphers.every((value) => noCapitals.test(value)));
-@@ -235,9 +235,9 @@ assert.throws(function() {
- }, (err) => {
-   // Do the standard checks, but then do some custom checks afterwards.
-   assert.throws(() => { throw err; }, {
--    message: 'error:0D0680A8:asn1 encoding routines:asn1_check_tlen:wrong tag',
-+    message: 'error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag',
-     library: 'asn1 encoding routines',
--    function: 'asn1_check_tlen',
-+    function: 'ASN1_CHECK_TLEN',
-     reason: 'wrong tag',
-     code: 'ERR_OSSL_ASN1_WRONG_TAG',
-   });
-diff --git a/test/parallel/test-https-agent-session-eviction.js b/test/parallel/test-https-agent-session-eviction.js
-index 3f5cd36..8e13b15 100644
---- a/test/parallel/test-https-agent-session-eviction.js
-+++ b/test/parallel/test-https-agent-session-eviction.js
-@@ -7,8 +7,10 @@ const { readKey } = require('../common/fixtures');
- if (!common.hasCrypto)
-   common.skip('missing crypto');
-
-+const assert = require('assert');
- const https = require('https');
--const { SSL_OP_NO_TICKET } = require('crypto').constants;
-+const { OPENSSL_VERSION_NUMBER, SSL_OP_NO_TICKET } =
-+    require('crypto').constants;
-
- const options = {
-   key: readKey('agent1-key.pem'),
-@@ -58,12 +60,38 @@ function second(server, session) {
-     res.resume();
-   });
-
--  // Although we have a TLS 1.2 session to offer to the TLS 1.0 server,
--  // connection to the TLS 1.0 server should work.
--  req.on('response', common.mustCall(function(res) {
--    // The test is now complete for OpenSSL 1.1.0.
--    server.close();
--  }));
-+  if (OPENSSL_VERSION_NUMBER >= 0x10100000) {
-+    // Although we have a TLS 1.2 session to offer to the TLS 1.0 server,
-+    // connection to the TLS 1.0 server should work.
-+    req.on('response', common.mustCall(function(res) {
-+      // The test is now complete for OpenSSL 1.1.0.
-+      server.close();
-+    }));
-+  } else {
-+    // OpenSSL 1.0.x mistakenly locked versions based on the session it was
-+    // offering. This causes this sequent request to fail. Let it fail, but
-+    // test that this is mitigated on the next try by invalidating the session.
-+    req.on('error', common.mustCall(function(err) {
-+      assert(/wrong version number/.test(err.message));
-+
-+      req.on('close', function() {
-+        third(server);
-+      });
-+    }));
-+  }
-+  req.end();
-+}
-
-+// Try one more time - session should be evicted!
-+function third(server) {
-+  const req = https.request({
-+    port: server.address().port,
-+    rejectUnauthorized: false
-+  }, function(res) {
-+    res.resume();
-+    assert(!req.socket.isSessionReused());
-+    server.close();
-+  });
-+  req.on('error', common.mustNotCall());
-   req.end();
- }
-diff --git a/test/parallel/test-tls-alert-handling.js b/test/parallel/test-tls-alert-handling.js
-index f9f42e2..9dc4637 100644
---- a/test/parallel/test-tls-alert-handling.js
-+++ b/test/parallel/test-tls-alert-handling.js
-@@ -33,7 +33,7 @@ let iter = 0;
- const errorHandler = common.mustCall((err) => {
-   assert.strictEqual(err.code, 'ERR_SSL_WRONG_VERSION_NUMBER');
-   assert.strictEqual(err.library, 'SSL routines');
--  assert.strictEqual(err.function, 'ssl3_get_record');
-+  assert.strictEqual(err.function, 'SSL3_GET_RECORD');
-   assert.strictEqual(err.reason, 'wrong version number');
-   errorReceived = true;
-   if (canCloseServer())
-diff --git a/test/parallel/test-tls-cli-min-version-1.0.js b/test/parallel/test-tls-cli-min-version-1.0.js
-index 5775627..0a227c0 100644
---- a/test/parallel/test-tls-cli-min-version-1.0.js
-+++ b/test/parallel/test-tls-cli-min-version-1.0.js
-@@ -8,7 +8,7 @@ if (!common.hasCrypto) common.skip('missing crypto');
- const assert = require('assert');
- const tls = require('tls');
-
--assert.strictEqual(tls.DEFAULT_MAX_VERSION, 'TLSv1.3');
-+assert.strictEqual(tls.DEFAULT_MAX_VERSION, 'TLSv1.2');
- assert.strictEqual(tls.DEFAULT_MIN_VERSION, 'TLSv1');
-
- // Check the min-max version protocol versions against these CLI settings.
-diff --git a/test/parallel/test-tls-cli-min-version-1.1.js b/test/parallel/test-tls-cli-min-version-1.1.js
-index 3af2b39..1219c82 100644
---- a/test/parallel/test-tls-cli-min-version-1.1.js
-+++ b/test/parallel/test-tls-cli-min-version-1.1.js
-@@ -8,7 +8,7 @@ if (!common.hasCrypto) common.skip('missing crypto');
- const assert = require('assert');
- const tls = require('tls');
-
--assert.strictEqual(tls.DEFAULT_MAX_VERSION, 'TLSv1.3');
-+assert.strictEqual(tls.DEFAULT_MAX_VERSION, 'TLSv1.2');
- assert.strictEqual(tls.DEFAULT_MIN_VERSION, 'TLSv1.1');
-
- // Check the min-max version protocol versions against these CLI settings.
-diff --git a/test/parallel/test-tls-cli-min-version-1.2.js b/test/parallel/test-tls-cli-min-version-1.2.js
-index 8385eab..058dc18 100644
---- a/test/parallel/test-tls-cli-min-version-1.2.js
-+++ b/test/parallel/test-tls-cli-min-version-1.2.js
-@@ -8,7 +8,7 @@ if (!common.hasCrypto) common.skip('missing crypto');
- const assert = require('assert');
- const tls = require('tls');
-
--assert.strictEqual(tls.DEFAULT_MAX_VERSION, 'TLSv1.3');
-+assert.strictEqual(tls.DEFAULT_MAX_VERSION, 'TLSv1.2');
- assert.strictEqual(tls.DEFAULT_MIN_VERSION, 'TLSv1.2');
-
- // Check the min-max version protocol versions against these CLI settings.
-diff --git a/test/parallel/test-tls-client-getephemeralkeyinfo.js b/test/parallel/test-tls-client-getephemeralkeyinfo.js
-index 5993069..cdfe5de 100644
---- a/test/parallel/test-tls-client-getephemeralkeyinfo.js
-+++ b/test/parallel/test-tls-client-getephemeralkeyinfo.js
-@@ -59,5 +59,3 @@ test(1024, 'DH', undefined, 'DHE-RSA-AES128-GCM-SHA256');
- test(2048, 'DH', undefined, 'DHE-RSA-AES128-GCM-SHA256');
- test(256, 'ECDH', 'prime256v1', 'ECDHE-RSA-AES128-GCM-SHA256');
- test(521, 'ECDH', 'secp521r1', 'ECDHE-RSA-AES128-GCM-SHA256');
--test(253, 'ECDH', 'X25519', 'ECDHE-RSA-AES128-GCM-SHA256');
--test(448, 'ECDH', 'X448', 'ECDHE-RSA-AES128-GCM-SHA256');
-diff --git a/test/parallel/test-tls-destroy-stream.js b/test/parallel/test-tls-destroy-stream.js
-index a49e985..1964f67 100644
---- a/test/parallel/test-tls-destroy-stream.js
-+++ b/test/parallel/test-tls-destroy-stream.js
-@@ -9,7 +9,7 @@ const net = require('net');
- const assert = require('assert');
- const tls = require('tls');
-
--tls.DEFAULT_MAX_VERSION = 'TLSv1.3';
-+tls.DEFAULT_MAX_VERSION = 'TLSv1.2';
-
- // This test ensures that an instance of StreamWrap should emit "end" and
- // "close" when the socket on the other side call `destroy()` instead of
-diff --git a/test/parallel/test-tls-getcipher.js b/test/parallel/test-tls-getcipher.js
-index 624f8ef..93ad1f6 100644
---- a/test/parallel/test-tls-getcipher.js
-+++ b/test/parallel/test-tls-getcipher.js
-@@ -52,7 +52,7 @@ server.listen(0, '127.0.0.1', common.mustCall(function() {
-   }, common.mustCall(function() {
-     const cipher = this.getCipher();
-     assert.strictEqual(cipher.name, 'AES128-SHA256');
--    assert.strictEqual(cipher.version, 'TLSv1.2');
-+    assert.strictEqual(cipher.version, 'TLSv1/SSLv3');
-     this.end();
-   }));
-
-@@ -65,28 +65,7 @@ server.listen(0, '127.0.0.1', common.mustCall(function() {
-   }, common.mustCall(function() {
-     const cipher = this.getCipher();
-     assert.strictEqual(cipher.name, 'ECDHE-RSA-AES128-GCM-SHA256');
--    assert.strictEqual(cipher.version, 'TLSv1.2');
-+    assert.strictEqual(cipher.version, 'TLSv1/SSLv3');
-     this.end();
-   }));
- }));
--
--tls.createServer({
--  key: fixtures.readKey('agent2-key.pem'),
--  cert: fixtures.readKey('agent2-cert.pem'),
--  ciphers: 'TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_CCM_8_SHA256',
--  maxVersion: 'TLSv1.3',
--}, common.mustCall(function() {
--  this.close();
--})).listen(0, common.mustCall(function() {
--  const client = tls.connect({
--    port: this.address().port,
--    ciphers: 'TLS_AES_128_CCM_8_SHA256',
--    maxVersion: 'TLSv1.3',
--    rejectUnauthorized: false
--  }, common.mustCall(() => {
--    const cipher = client.getCipher();
--    assert.strictEqual(cipher.name, 'TLS_AES_128_CCM_8_SHA256');
--    assert.strictEqual(cipher.version, 'TLSv1.3');
--    client.end();
--  }));
--}));
-diff --git a/test/parallel/test-tls-min-max-version.js b/test/parallel/test-tls-min-max-version.js
-index 179ae1f..8b5435b 100644
---- a/test/parallel/test-tls-min-max-version.js
-+++ b/test/parallel/test-tls-min-max-version.js
-@@ -126,9 +126,9 @@ if (DEFAULT_MIN_VERSION === 'TLSv1.3') {
-
- if (DEFAULT_MIN_VERSION === 'TLSv1.2') {
-   test(U, U, 'TLSv1_1_method', U, U, 'SSLv23_method',
--       U, 'ECONNRESET', 'ERR_SSL_UNSUPPORTED_PROTOCOL');
-+       U, 'ECONNRESET', 'ERR_SSL_UNKNOWN_PROTOCOL');
-   test(U, U, 'TLSv1_method', U, U, 'SSLv23_method',
--       U, 'ECONNRESET', 'ERR_SSL_UNSUPPORTED_PROTOCOL');
-+       U, 'ECONNRESET', 'ERR_SSL_UNKNOWN_PROTOCOL');
-   test(U, U, 'SSLv23_method', U, U, 'TLSv1_1_method',
-        U, 'ERR_SSL_UNSUPPORTED_PROTOCOL', 'ERR_SSL_WRONG_VERSION_NUMBER');
-   test(U, U, 'SSLv23_method', U, U, 'TLSv1_method',
-@@ -138,7 +138,7 @@ if (DEFAULT_MIN_VERSION === 'TLSv1.2') {
- if (DEFAULT_MIN_VERSION === 'TLSv1.1') {
-   test(U, U, 'TLSv1_1_method', U, U, 'SSLv23_method', 'TLSv1.1');
-   test(U, U, 'TLSv1_method', U, U, 'SSLv23_method',
--       U, 'ECONNRESET', 'ERR_SSL_UNSUPPORTED_PROTOCOL');
-+       U, 'ECONNRESET', 'ERR_SSL_UNKNOWN_PROTOCOL');
-   test(U, U, 'SSLv23_method', U, U, 'TLSv1_1_method', 'TLSv1.1');
-   test(U, U, 'SSLv23_method', U, U, 'TLSv1_method',
-        U, 'ERR_SSL_UNSUPPORTED_PROTOCOL', 'ERR_SSL_WRONG_VERSION_NUMBER');
-@@ -160,9 +160,9 @@ test(U, U, 'TLSv1_method', U, U, 'TLSv1_method', 'TLSv1');
- // The default default.
- if (DEFAULT_MIN_VERSION === 'TLSv1.2') {
-   test(U, U, 'TLSv1_1_method', U, U, U,
--       U, 'ECONNRESET', 'ERR_SSL_UNSUPPORTED_PROTOCOL');
-+       U, 'ECONNRESET', 'ERR_SSL_UNKNOWN_PROTOCOL');
-   test(U, U, 'TLSv1_method', U, U, U,
--       U, 'ECONNRESET', 'ERR_SSL_UNSUPPORTED_PROTOCOL');
-+       U, 'ECONNRESET', 'ERR_SSL_UNKNOWN_PROTOCOL');
-
-   if (DEFAULT_MAX_VERSION === 'TLSv1.2') {
-     test(U, U, U, U, U, 'TLSv1_1_method',
-@@ -182,7 +182,7 @@ if (DEFAULT_MIN_VERSION === 'TLSv1.2') {
- if (DEFAULT_MIN_VERSION === 'TLSv1.1') {
-   test(U, U, 'TLSv1_1_method', U, U, U, 'TLSv1.1');
-   test(U, U, 'TLSv1_method', U, U, U,
--       U, 'ECONNRESET', 'ERR_SSL_UNSUPPORTED_PROTOCOL');
-+       U, 'ECONNRESET', 'ERR_SSL_UNKNOWN_PROTOCOL');
-   test(U, U, U, U, U, 'TLSv1_1_method', 'TLSv1.1');
-
-   if (DEFAULT_MAX_VERSION === 'TLSv1.2') {
-@@ -213,26 +213,9 @@ test(U, U, 'TLSv1_method', 'TLSv1', 'TLSv1.2', U, 'TLSv1');
- test(U, U, 'TLSv1_1_method', 'TLSv1', 'TLSv1.2', U, 'TLSv1.1');
- test(U, U, 'TLSv1_2_method', 'TLSv1', 'TLSv1.2', U, 'TLSv1.2');
-
--test('TLSv1', 'TLSv1.1', U, 'TLSv1', 'TLSv1.3', U, 'TLSv1.1');
- test('TLSv1', 'TLSv1.1', U, 'TLSv1', 'TLSv1.2', U, 'TLSv1.1');
- test('TLSv1', 'TLSv1.2', U, 'TLSv1', 'TLSv1.1', U, 'TLSv1.1');
--test('TLSv1', 'TLSv1.3', U, 'TLSv1', 'TLSv1.1', U, 'TLSv1.1');
- test('TLSv1', 'TLSv1', U, 'TLSv1', 'TLSv1.1', U, 'TLSv1');
- test('TLSv1', 'TLSv1.2', U, 'TLSv1', 'TLSv1', U, 'TLSv1');
--test('TLSv1', 'TLSv1.3', U, 'TLSv1', 'TLSv1', U, 'TLSv1');
- test('TLSv1.1', 'TLSv1.1', U, 'TLSv1', 'TLSv1.2', U, 'TLSv1.1');
- test('TLSv1', 'TLSv1.2', U, 'TLSv1.1', 'TLSv1.1', U, 'TLSv1.1');
--test('TLSv1', 'TLSv1.2', U, 'TLSv1', 'TLSv1.3', U, 'TLSv1.2');
--
--// v-any client can connect to v-specific server
--test('TLSv1', 'TLSv1.3', U, 'TLSv1.3', 'TLSv1.3', U, 'TLSv1.3');
--test('TLSv1', 'TLSv1.3', U, 'TLSv1.2', 'TLSv1.3', U, 'TLSv1.3');
--test('TLSv1', 'TLSv1.3', U, 'TLSv1.2', 'TLSv1.2', U, 'TLSv1.2');
--test('TLSv1', 'TLSv1.3', U, 'TLSv1.1', 'TLSv1.1', U, 'TLSv1.1');
--test('TLSv1', 'TLSv1.3', U, 'TLSv1', 'TLSv1', U, 'TLSv1');
--
--// v-specific client can connect to v-any server
--test('TLSv1.3', 'TLSv1.3', U, 'TLSv1', 'TLSv1.3', U, 'TLSv1.3');
--test('TLSv1.2', 'TLSv1.2', U, 'TLSv1', 'TLSv1.3', U, 'TLSv1.2');
--test('TLSv1.1', 'TLSv1.1', U, 'TLSv1', 'TLSv1.3', U, 'TLSv1.1');
--test('TLSv1', 'TLSv1', U, 'TLSv1', 'TLSv1.3', U, 'TLSv1');
-diff --git a/test/parallel/test-tls-multi-key.js b/test/parallel/test-tls-multi-key.js
-index c5e66f3..de213f5 100644
---- a/test/parallel/test-tls-multi-key.js
-+++ b/test/parallel/test-tls-multi-key.js
-@@ -157,7 +157,7 @@ function test(options) {
-     }, common.mustCall(function() {
-       assert.deepStrictEqual(ecdsa.getCipher(), {
-         name: 'ECDHE-ECDSA-AES256-GCM-SHA384',
--        version: 'TLSv1.2'
-+        version: 'TLSv1/SSLv3'
-       });
-       assert.strictEqual(ecdsa.getPeerCertificate().subject.CN, eccCN);
-       assert.strictEqual(ecdsa.getPeerCertificate().asn1Curve, 'prime256v1');
-@@ -175,7 +175,7 @@ function test(options) {
-     }, common.mustCall(function() {
-       assert.deepStrictEqual(rsa.getCipher(), {
-         name: 'ECDHE-RSA-AES256-GCM-SHA384',
--        version: 'TLSv1.2'
-+        version: 'TLSv1/SSLv3'
-       });
-       assert.strictEqual(rsa.getPeerCertificate().subject.CN, rsaCN);
-       assert(rsa.getPeerCertificate().exponent, 'cert for an RSA key');
-diff --git a/test/parallel/test-tls-multi-pfx.js b/test/parallel/test-tls-multi-pfx.js
-index 3b0c059..28cd945 100644
---- a/test/parallel/test-tls-multi-pfx.js
-+++ b/test/parallel/test-tls-multi-pfx.js
-@@ -42,9 +42,9 @@ const server = tls.createServer(options, function(conn) {
- process.on('exit', function() {
-   assert.deepStrictEqual(ciphers, [{
-     name: 'ECDHE-ECDSA-AES256-GCM-SHA384',
--    version: 'TLSv1.2'
-+    version: 'TLSv1/SSLv3'
-   }, {
-     name: 'ECDHE-RSA-AES256-GCM-SHA384',
--    version: 'TLSv1.2'
-+    version: 'TLSv1/SSLv3'
-   }]);
- });
-diff --git a/test/parallel/test-tls-passphrase.js b/test/parallel/test-tls-passphrase.js
-index c3a99c3..4bbabb4 100644
---- a/test/parallel/test-tls-passphrase.js
-+++ b/test/parallel/test-tls-passphrase.js
-@@ -223,7 +223,7 @@ server.listen(0, common.mustCall(function() {
-   }, onSecureConnect());
- })).unref();
-
--const errMessagePassword = /bad decrypt/;
-+const errMessagePassword = /bad decrypt|bad password read/;
-
- // Missing passphrase
- assert.throws(function() {
-diff --git a/test/parallel/test-tls-set-ciphers.js b/test/parallel/test-tls-set-ciphers.js
-index fbca83b..79fb178 100644
---- a/test/parallel/test-tls-set-ciphers.js
-+++ b/test/parallel/test-tls-set-ciphers.js
-@@ -68,36 +68,11 @@ const U = undefined;
- test(U, 'AES256-SHA', 'AES256-SHA');
- test('AES256-SHA', U, 'AES256-SHA');
-
--test(U, 'TLS_AES_256_GCM_SHA384', 'TLS_AES_256_GCM_SHA384');
--test('TLS_AES_256_GCM_SHA384', U, 'TLS_AES_256_GCM_SHA384');
--
- // Do not have shared ciphers.
--test('TLS_AES_256_GCM_SHA384', 'TLS_CHACHA20_POLY1305_SHA256',
--     U, 'ECONNRESET', 'ERR_SSL_NO_SHARED_CIPHER');
--
--test('AES128-SHA', 'AES256-SHA', U, 'ECONNRESET', 'ERR_SSL_NO_SHARED_CIPHER');
--test('AES128-SHA:TLS_AES_256_GCM_SHA384',
--     'TLS_CHACHA20_POLY1305_SHA256:AES256-SHA',
--     U, 'ECONNRESET', 'ERR_SSL_NO_SHARED_CIPHER');
--
--// Cipher order ignored, TLS1.3 chosen before TLS1.2.
--test('AES256-SHA:TLS_AES_256_GCM_SHA384', U, 'TLS_AES_256_GCM_SHA384');
--test(U, 'AES256-SHA:TLS_AES_256_GCM_SHA384', 'TLS_AES_256_GCM_SHA384');
--
--// TLS_AES_128_CCM_8_SHA256 & TLS_AES_128_CCM_SHA256 are not enabled by
--// default, but work.
--test('TLS_AES_128_CCM_8_SHA256', U,
--     U, 'ECONNRESET', 'ERR_SSL_NO_SHARED_CIPHER');
--
--test('TLS_AES_128_CCM_8_SHA256', 'TLS_AES_128_CCM_8_SHA256',
--     'TLS_AES_128_CCM_8_SHA256');
-+test('AES128-SHA', 'AES256-SHA', U, 'ERR_SSL_SSLV3_ALERT_HANDSHAKE_FAILURE', 'ERR_SSL_NO_SHARED_CIPHER');
-
- // Invalid cipher values
- test(9, 'AES256-SHA', U, 'ERR_INVALID_ARG_TYPE', U);
- test('AES256-SHA', 9, U, U, 'ERR_INVALID_ARG_TYPE');
- test(':', 'AES256-SHA', U, 'ERR_INVALID_OPT_VALUE', U);
- test('AES256-SHA', ':', U, U, 'ERR_INVALID_OPT_VALUE');
--
--// Using '' is synonymous for "use default ciphers"
--test('TLS_AES_256_GCM_SHA384', '', 'TLS_AES_256_GCM_SHA384');
--test('', 'TLS_AES_256_GCM_SHA384', 'TLS_AES_256_GCM_SHA384');
---
-2.24.1
-
diff --git a/SOURCES/0002-Revert-new-options-using-unsupported-OpenSSL-feature.patch b/SOURCES/0002-Revert-new-options-using-unsupported-OpenSSL-feature.patch
new file mode 100644
index 0000000..c11c6b3
--- /dev/null
+++ b/SOURCES/0002-Revert-new-options-using-unsupported-OpenSSL-feature.patch
@@ -0,0 +1,2455 @@
+From 0c7e5df7fecc76f64b45c3267c851eff2ac8c496 Mon Sep 17 00:00:00 2001
+From: Zuzana Svetlikova <zsvetlik@redhat.com>
+Date: Wed, 19 Feb 2020 09:45:19 +0000
+Subject: [PATCH 2/4] revert new features
+
+---
+ doc/api/crypto.md                           |  24 ---
+ doc/api/errors.md                           |   5 -
+ doc/api/https.md                            |  25 ---
+ doc/api/tls.md                              | 117 +-----------
+ doc/node.1                                  |   5 -
+ lib/_http_agent.js                          |  24 +--
+ lib/_tls_common.js                          |  13 --
+ lib/_tls_wrap.js                            | 143 +--------------
+ lib/internal/crypto/cipher.js               |  10 +-
+ lib/internal/crypto/sig.js                  |  37 +---
+ src/env.h                                   |  13 +-
+ src/node_crypto.cc                          | 266 +---------------------------
+ src/node_crypto.h                           |  24 +--
+ src/node_errors.h                           |   2 -
+ src/node_options.cc                         |   4 -
+ src/node_options.h                          |   1 -
+ src/tls_wrap.cc                             | 134 --------------
+ src/tls_wrap.h                              |  17 --
+ test/fixtures/rsa-oaep-test-vectors.js      |  30 ----
+ test/parallel/test-crypto-rsa-dsa.js        |  65 +++++--
+ test/parallel/test-crypto-sign-verify.js    |  90 ++--------
+ test/parallel/test-https-agent-keylog.js    |  44 -----
+ test/parallel/test-tls-enable-keylog-cli.js |  57 ------
+ test/parallel/test-tls-getcipher.js         |   4 -
+ test/parallel/test-tls-keylog-tlsv13.js     |  10 +-
+ test/parallel/test-tls-multi-key.js         |   2 -
+ test/parallel/test-tls-multi-pfx.js         |   2 -
+ test/parallel/test-tls-psk-circuit.js       |  72 --------
+ test/parallel/test-tls-psk-errors.js        |  32 ----
+ test/parallel/test-tls-psk-server.js        |  77 --------
+ test/parallel/test-tls-set-sigalgs.js       |  74 --------
+ test/sequential/test-tls-psk-client.js      |  96 ----------
+ 32 files changed, 87 insertions(+), 1432 deletions(-)
+ delete mode 100644 test/fixtures/rsa-oaep-test-vectors.js
+ delete mode 100644 test/parallel/test-https-agent-keylog.js
+ delete mode 100644 test/parallel/test-tls-enable-keylog-cli.js
+ delete mode 100644 test/parallel/test-tls-psk-circuit.js
+ delete mode 100644 test/parallel/test-tls-psk-errors.js
+ delete mode 100644 test/parallel/test-tls-psk-server.js
+ delete mode 100644 test/parallel/test-tls-set-sigalgs.js
+ delete mode 100644 test/sequential/test-tls-psk-client.js
+
+diff --git a/doc/api/crypto.md b/doc/api/crypto.md
+index f727d6f..7e74977 100644
+--- a/doc/api/crypto.md
++++ b/doc/api/crypto.md
+@@ -1405,7 +1405,6 @@ changes:
+ -->
+ 
+ * `privateKey` {Object | string | Buffer | KeyObject}
+-  * `dsaEncoding` {string}
+   * `padding` {integer}
+   * `saltLength` {integer}
+ * `outputEncoding` {string} The [encoding][] of the return value.
+@@ -1418,10 +1417,6 @@ If `privateKey` is not a [`KeyObject`][], this function behaves as if
+ `privateKey` had been passed to [`crypto.createPrivateKey()`][]. If it is an
+ object, the following additional properties can be passed:
+ 
+-* `dsaEncoding` {string} For DSA and ECDSA, this option specifies the
+-  format of the generated signature. It can be one of the following:
+-  * `'der'` (default): DER-encoded ASN.1 signature structure encoding `(r, s)`.
+-  * `'ieee-p1363'`: Signature format `r || s` as proposed in IEEE-P1363.
+ * `padding` {integer} Optional padding value for RSA, one of the following:
+   * `crypto.constants.RSA_PKCS1_PADDING` (default)
+   * `crypto.constants.RSA_PKCS1_PSS_PADDING`
+@@ -1518,7 +1513,6 @@ changes:
+ -->
+ 
+ * `object` {Object | string | Buffer | KeyObject}
+-  * `dsaEncoding` {string}
+   * `padding` {integer}
+   * `saltLength` {integer}
+ * `signature` {string | Buffer | TypedArray | DataView}
+@@ -1532,10 +1526,6 @@ If `object` is not a [`KeyObject`][], this function behaves as if
+ `object` had been passed to [`crypto.createPublicKey()`][]. If it is an
+ object, the following additional properties can be passed:
+ 
+-* `dsaEncoding` {string} For DSA and ECDSA, this option specifies the
+-  format of the generated signature. It can be one of the following:
+-  * `'der'` (default): DER-encoded ASN.1 signature structure encoding `(r, s)`.
+-  * `'ieee-p1363'`: Signature format `r || s` as proposed in IEEE-P1363.
+ * `padding` {integer} Optional padding value for RSA, one of the following:
+   * `crypto.constants.RSA_PKCS1_PADDING` (default)
+   * `crypto.constants.RSA_PKCS1_PSS_PADDING`
+@@ -2427,9 +2417,6 @@ An array of supported digest functions can be retrieved using
+ <!-- YAML
+ added: v0.11.14
+ changes:
+-  - version: v12.11.0
+-    pr-url: https://github.com/nodejs/node/pull/29489
+-    description: The `oaepLabel` option was added.
+   - version: v12.9.0
+     pr-url: https://github.com/nodejs/node/pull/28335
+     description: The `oaepHash` option was added.
+@@ -2514,9 +2501,6 @@ be passed instead of a public key.
+ <!-- YAML
+ added: v0.11.14
+ changes:
+-  - version: v12.11.0
+-    pr-url: https://github.com/nodejs/node/pull/29489
+-    description: The `oaepLabel` option was added.
+   - version: v12.9.0
+     pr-url: https://github.com/nodejs/node/pull/28335
+     description: The `oaepHash` option was added.
+@@ -2900,10 +2884,6 @@ If `key` is not a [`KeyObject`][], this function behaves as if `key` had been
+ passed to [`crypto.createPrivateKey()`][]. If it is an object, the following
+ additional properties can be passed:
+ 
+-* `dsaEncoding` {string} For DSA and ECDSA, this option specifies the
+-  format of the generated signature. It can be one of the following:
+-  * `'der'` (default): DER-encoded ASN.1 signature structure encoding `(r, s)`.
+-  * `'ieee-p1363'`: Signature format `r || s` as proposed in IEEE-P1363.
+ * `padding` {integer} Optional padding value for RSA, one of the following:
+   * `crypto.constants.RSA_PKCS1_PADDING` (default)
+   * `crypto.constants.RSA_PKCS1_PSS_PADDING`
+@@ -2957,10 +2937,6 @@ If `key` is not a [`KeyObject`][], this function behaves as if `key` had been
+ passed to [`crypto.createPublicKey()`][]. If it is an object, the following
+ additional properties can be passed:
+ 
+-* `dsaEncoding` {string} For DSA and ECDSA, this option specifies the
+-  format of the generated signature. It can be one of the following:
+-  * `'der'` (default): DER-encoded ASN.1 signature structure encoding `(r, s)`.
+-  * `'ieee-p1363'`: Signature format `r || s` as proposed in IEEE-P1363.
+ * `padding` {integer} Optional padding value for RSA, one of the following:
+   * `crypto.constants.RSA_PKCS1_PADDING` (default)
+   * `crypto.constants.RSA_PKCS1_PSS_PADDING`
+diff --git a/doc/api/errors.md b/doc/api/errors.md
+index 7cf3496..32ba4ec 100644
+--- a/doc/api/errors.md
++++ b/doc/api/errors.md
+@@ -1849,11 +1849,6 @@ vector for denial-of-service attacks.
+ An attempt was made to issue Server Name Indication from a TLS server-side
+ socket, which is only valid from a client.
+ 
+-<a id="ERR_TLS_PSK_SET_IDENTIY_HINT_FAILED"></a>
+-### ERR_TLS_PSK_SET_IDENTIY_HINT_FAILED
+-
+-Failed to set PSK identity hint. Hint may be too long.
+-
+ <a id="ERR_TRACE_EVENTS_CATEGORY_REQUIRED"></a>
+ ### `ERR_TRACE_EVENTS_CATEGORY_REQUIRED`
+ 
+diff --git a/doc/api/https.md b/doc/api/https.md
+index bb0322d..e82ffa2 100644
+--- a/doc/api/https.md
++++ b/doc/api/https.md
+@@ -45,31 +45,6 @@ changes:
+ 
+     See [`Session Resumption`][] for information about TLS session reuse.
+ 
+-#### Event: `'keylog'`
+-<!-- YAML
+-added: v12.16.0
+--->
+-
+-* `line` {Buffer} Line of ASCII text, in NSS `SSLKEYLOGFILE` format.
+-* `tlsSocket` {tls.TLSSocket} The `tls.TLSSocket` instance on which it was
+-  generated.
+-
+-The `keylog` event is emitted when key material is generated or received by a
+-connection managed by this agent (typically before handshake has completed, but
+-not necessarily). This keying material can be stored for debugging, as it
+-allows captured TLS traffic to be decrypted. It may be emitted multiple times
+-for each socket.
+-
+-A typical use case is to append received lines to a common text file, which is
+-later used by software (such as Wireshark) to decrypt the traffic:
+-
+-```js
+-// ...
+-https.globalAgent.on('keylog', (line, tlsSocket) => {
+-  fs.appendFileSync('/tmp/ssl-keys.log', line, { mode: 0o600 });
+-});
+-```
+-
+ ## Class: `https.Server`
+ <!-- YAML
+ added: v0.3.4
+diff --git a/doc/api/tls.md b/doc/api/tls.md
+index 2eaaab5..61dc459 100644
+--- a/doc/api/tls.md
++++ b/doc/api/tls.md
+@@ -118,40 +118,6 @@ SNI (Server Name Indication) are TLS handshake extensions:
+ * SNI: Allows the use of one TLS server for multiple hostnames with different
+   SSL certificates.
+ 
+-### Pre-shared keys
+-
+-<!-- type=misc -->
+-
+-TLS-PSK support is available as an alternative to normal certificate-based
+-authentication. It uses a pre-shared key instead of certificates to
+-authenticate a TLS connection, providing mutual authentication.
+-TLS-PSK and public key infrastructure are not mutually exclusive. Clients and
+-servers can accommodate both, choosing either of them during the normal cipher
+-negotiation step.
+-
+-TLS-PSK is only a good choice where means exist to securely share a
+-key with every connecting machine, so it does not replace PKI
+-(Public Key Infrastructure) for the majority of TLS uses.
+-The TLS-PSK implementation in OpenSSL has seen many security flaws in
+-recent years, mostly because it is used only by a minority of applications.
+-Please consider all alternative solutions before switching to PSK ciphers.
+-Upon generating PSK it is of critical importance to use sufficient entropy as
+-discussed in [RFC 4086][]. Deriving a shared secret from a password or other
+-low-entropy sources is not secure.
+-
+-PSK ciphers are disabled by default, and using TLS-PSK thus requires explicitly
+-specifying a cipher suite with the `ciphers` option. The list of available
+-ciphers can be retrieved via `openssl ciphers -v 'PSK'`. All TLS 1.3
+-ciphers are eligible for PSK but currently only those that use SHA256 digest are
+-supported they can be retrieved via `openssl ciphers -v -s -tls1_3 -psk`.
+-
+-According to the [RFC 4279][], PSK identities up to 128 bytes in length and
+-PSKs up to 64 bytes in length must be supported. As of OpenSSL 1.1.0
+-maximum identity size is 128 bytes, and maximum PSK length is 256 bytes.
+-
+-The current implementation doesn't support asynchronous PSK callbacks due to the
+-limitations of the underlying OpenSSL API.
+-
+ ### Client-initiated renegotiation attack mitigation
+ 
+ <!-- type=misc -->
+@@ -861,27 +827,16 @@ changes:
+     pr-url: https://github.com/nodejs/node/pull/26625
+     description: Return the minimum cipher version, instead of a fixed string
+       (`'TLSv1/SSLv3'`).
+-  - version: v12.16.0
+-    pr-url: https://github.com/nodejs/node/pull/30637
+-    description: Return the IETF cipher name as `standardName`.
+ -->
+ 
+ * Returns: {Object}
+-  * `name` {string} OpenSSL name for the cipher suite.
+-  * `standardName` {string} IETF name for the cipher suite.
++  * `name` {string} The name of the cipher suite.
+   * `version` {string} The minimum TLS protocol version supported by this cipher
+     suite.
+ 
+ Returns an object containing information on the negotiated cipher suite.
+ 
+-For example:
+-```json
+-{
+-    "name": "AES128-SHA256",
+-    "standardName": "TLS_RSA_WITH_AES_128_CBC_SHA256",
+-    "version": "TLSv1.2"
+-}
+-```
++For example: `{ name: 'AES256-SHA', version: 'TLSv1.2' }`.
+ 
+ See
+ [SSL_CIPHER_get_name](https://www.openssl.org/docs/man1.1.1/man3/SSL_CIPHER_get_name.html)
+@@ -1082,18 +1037,6 @@ See [Session Resumption][] for more information.
+ Note: `getSession()` works only for TLSv1.2 and below. For TLSv1.3, applications
+ must use the [`'session'`][] event (it also works for TLSv1.2 and below).
+ 
+-### `tlsSocket.getSharedSigalgs()`
+-<!-- YAML
+-added: v12.11.0
+--->
+-
+-* Returns: {Array} List of signature algorithms shared between the server and
+-the client in the order of decreasing preference.
+-
+-See
+-[SSL_get_shared_sigalgs](https://www.openssl.org/docs/man1.1.1/man3/SSL_get_shared_sigalgs.html)
+-for more information.
+-
+ ### `tlsSocket.getTLSTicket()`
+ <!-- YAML
+ added: v0.11.4
+@@ -1241,9 +1184,6 @@ being issued by trusted CA (`options.ca`).
+ <!-- YAML
+ added: v0.11.3
+ changes:
+-  - version: v12.16.0
+-    pr-url: https://github.com/nodejs/node/pull/23188
+-    description: The `pskCallback` option is now supported.
+   - version: v12.9.0
+     pr-url: https://github.com/nodejs/node/pull/27836
+     description: Support the `allowHalfOpen` option.
+@@ -1295,23 +1235,6 @@ changes:
+     verified against the list of supplied CAs. An `'error'` event is emitted if
+     verification fails; `err.code` contains the OpenSSL error code. **Default:**
+     `true`.
+-  * `pskCallback` {Function}
+-    * hint: {string} optional message sent from the server to help client
+-      decide which identity to use during negotiation.
+-      Always `null` if TLS 1.3 is used.
+-    * Returns: {Object} in the form
+-      `{ psk: <Buffer|TypedArray|DataView>, identity: <string> }`
+-      or `null` to stop the negotiation process. `psk` must be
+-      compatible with the selected cipher's digest.
+-      `identity` must use UTF-8 encoding.
+-    When negotiating TLS-PSK (pre-shared keys), this function is called
+-    with optional identity `hint` provided by the server or `null`
+-    in case of TLS 1.3 where `hint` was removed.
+-    It will be necessary to provide a custom `tls.checkServerIdentity()`
+-    for the connection as the default one will try to check hostname/IP
+-    of the server against the certificate but that's not applicable for PSK
+-    because there won't be a certificate present.
+-    More information can be found in the [RFC 4279][].
+   * `ALPNProtocols`: {string[]|Buffer[]|TypedArray[]|DataView[]|Buffer|
+     TypedArray|DataView}
+     An array of strings, `Buffer`s or `TypedArray`s or `DataView`s, or a
+@@ -1427,10 +1350,6 @@ changes:
+     pr-url: https://github.com/nodejs/node/pull/28973
+     description: Added `privateKeyIdentifier` and `privateKeyEngine` options
+                  to get private key from an OpenSSL engine.
+-  - version: v12.11.0
+-    pr-url: https://github.com/nodejs/node/pull/29598
+-    description: Added `sigalgs` option to override supported signature
+-                 algorithms.
+   - version: v12.0.0
+     pr-url: https://github.com/nodejs/node/pull/26209
+     description: TLSv1.3 support added.
+@@ -1491,12 +1410,6 @@ changes:
+     order as their private keys in `key`. If the intermediate certificates are
+     not provided, the peer will not be able to validate the certificate, and the
+     handshake will fail.
+-  * `sigalgs` {string} Colon-separated list of supported signature algorithms.
+-    The list can contain digest algorithms (`SHA256`, `MD5` etc.), public key
+-    algorithms (`RSA-PSS`, `ECDSA` etc.), combination of both (e.g
+-    'RSA+SHA384') or TLS v1.3 scheme names (e.g. `rsa_pss_pss_sha512`).
+-    See [OpenSSL man pages](https://www.openssl.org/docs/man1.1.1/man3/SSL_CTX_set1_sigalgs_list.html)
+-    for more info.
+   * `ciphers` {string} Cipher suite specification, replacing the default. For
+     more information, see [modifying the default cipher suite][]. Permitted
+     ciphers can be obtained via [`tls.getCiphers()`][]. Cipher names must be
+@@ -1647,30 +1560,8 @@ changes:
+     provided the default callback with high-level API will be used (see below).
+   * `ticketKeys`: {Buffer} 48-bytes of cryptographically strong pseudo-random
+     data. See [Session Resumption][] for more information.
+-  * `pskCallback` {Function}
+-    * socket: {tls.TLSSocket} the server [`tls.TLSSocket`][] instance for
+-      this connection.
+-    * identity: {string} identity parameter sent from the client.
+-    * Returns: {Buffer|TypedArray|DataView} pre-shared key that must either be
+-      a buffer or `null` to stop the negotiation process. Returned PSK must be
+-      compatible with the selected cipher's digest.
+-    When negotiating TLS-PSK (pre-shared keys), this function is called
+-    with the identity provided by the client.
+-    If the return value is `null` the negotiation process will stop and an
+-    "unknown_psk_identity" alert message will be sent to the other party.
+-    If the server wishes to hide the fact that the PSK identity was not known,
+-    the callback must provide some random data as `psk` to make the connection
+-    fail with "decrypt_error" before negotiation is finished.
+-    PSK ciphers are disabled by default, and using TLS-PSK thus
+-    requires explicitly specifying a cipher suite with the `ciphers` option.
+-    More information can be found in the [RFC 4279][].
+-  * `pskIdentityHint` {string} optional hint to send to a client to help
+-    with selecting the identity during TLS-PSK negotiation. Will be ignored
+-    in TLS 1.3. Upon failing to set pskIdentityHint `'tlsClientError'` will be
+-    emitted with `'ERR_TLS_PSK_SET_IDENTIY_HINT_FAILED'` code.
+   * ...: Any [`tls.createSecureContext()`][] option can be provided. For
+-    servers, the identity options (`pfx`, `key`/`cert` or `pskCallback`)
+-    are usually required.
++    servers, the identity options (`pfx` or `key`/`cert`) are usually required.
+   * ...: Any [`net.createServer()`][] option can be provided.
+ * `secureConnectionListener` {Function}
+ * Returns: {tls.Server}
+@@ -1946,5 +1837,3 @@ where `secureSocket` has the same API as `pair.cleartext`.
+ [cipher list format]: https://www.openssl.org/docs/man1.1.1/man1/ciphers.html#CIPHER-LIST-FORMAT
+ [modifying the default cipher suite]: #tls_modifying_the_default_tls_cipher_suite
+ [specific attacks affecting larger AES key sizes]: https://www.schneier.com/blog/archives/2009/07/another_new_aes.html
+-[RFC 4279]: https://tools.ietf.org/html/rfc4279
+-[RFC 4086]: https://tools.ietf.org/html/rfc4086
+diff --git a/doc/node.1 b/doc/node.1
+index 675bfc9..ff31555 100644
+--- a/doc/node.1
++++ b/doc/node.1
+@@ -330,11 +330,6 @@ Specify process.title on startup.
+ Specify an alternative default TLS cipher list.
+ Requires Node.js to be built with crypto support. (Default)
+ .
+-.It Fl -tls-keylog Ns = Ns Ar file
+-Log TLS key material to a file. The key material is in NSS SSLKEYLOGFILE
+-format and can be used by software (such as Wireshark) to decrypt the TLS
+-traffic.
+-.
+ .It Fl -tls-max-v1.2
+ Set default  maxVersion to 'TLSv1.2'. Use to disable support for TLSv1.3.
+ .
+diff --git a/lib/_http_agent.js b/lib/_http_agent.js
+index b3cd60b..d607a97 100644
+--- a/lib/_http_agent.js
++++ b/lib/_http_agent.js
+@@ -32,7 +32,7 @@ const net = require('net');
+ const EventEmitter = require('events');
+ const debug = require('internal/util/debuglog').debuglog('http');
+ const { async_id_symbol } = require('internal/async_hooks').symbols;
+-const kOnKeylog = Symbol('onkeylog');
++
+ // New Agent code.
+ 
+ // The largest departure from the previous implementation is that
+@@ -125,28 +125,10 @@ function Agent(options) {
+       }
+     }
+   });
+-
+-  // Don't emit keylog events unless there is a listener for them.
+-  this.on('newListener', maybeEnableKeylog);
+ }
+ ObjectSetPrototypeOf(Agent.prototype, EventEmitter.prototype);
+ ObjectSetPrototypeOf(Agent, EventEmitter);
+ 
+-function maybeEnableKeylog(eventName) {
+-  if (eventName === 'keylog') {
+-    this.removeListener('newListener', maybeEnableKeylog);
+-    // Future sockets will listen on keylog at creation.
+-    const agent = this;
+-    this[kOnKeylog] = function onkeylog(keylog) {
+-      agent.emit('keylog', keylog, this);
+-    };
+-    // Existing sockets will start listening on keylog now.
+-    for (const socket of ObjectValues(this.sockets)) {
+-      socket.on('keylog', this[kOnKeylog]);
+-    }
+-  }
+-}
+-
+ Agent.defaultMaxSockets = Infinity;
+ 
+ Agent.prototype.createConnection = net.createConnection;
+@@ -320,10 +302,6 @@ function installListeners(agent, s, options) {
+     s.removeListener('agentRemove', onRemove);
+   }
+   s.on('agentRemove', onRemove);
+-
+-  if (agent[kOnKeylog]) {
+-    s.on('keylog', agent[kOnKeylog]);
+-  }
+ }
+ 
+ Agent.prototype.removeSocket = function removeSocket(s, options) {
+diff --git a/lib/_tls_common.js b/lib/_tls_common.js
+index 32e4a77..1e36b54 100644
+--- a/lib/_tls_common.js
++++ b/lib/_tls_common.js
+@@ -150,19 +150,6 @@ exports.createSecureContext = function createSecureContext(options) {
+     }
+   }
+ 
+-  const sigalgs = options.sigalgs;
+-  if (sigalgs !== undefined) {
+-    if (typeof sigalgs !== 'string') {
+-      throw new ERR_INVALID_ARG_TYPE('options.sigalgs', 'string', sigalgs);
+-    }
+-
+-    if (sigalgs === '') {
+-      throw new ERR_INVALID_OPT_VALUE('sigalgs', sigalgs);
+-    }
+-
+-    c.context.setSigalgs(sigalgs);
+-  }
+-
+   const { privateKeyIdentifier, privateKeyEngine } = options;
+   if (privateKeyIdentifier !== undefined) {
+     if (privateKeyEngine === undefined) {
+diff --git a/lib/_tls_wrap.js b/lib/_tls_wrap.js
+index 0207d9b..0284fb4 100644
+--- a/lib/_tls_wrap.js
++++ b/lib/_tls_wrap.js
+@@ -49,12 +49,10 @@ const { TCP, constants: TCPConstants } = internalBinding('tcp_wrap');
+ const tls_wrap = internalBinding('tls_wrap');
+ const { Pipe, constants: PipeConstants } = internalBinding('pipe_wrap');
+ const { owner_symbol } = require('internal/async_hooks').symbols;
+-const { isArrayBufferView } = require('internal/util/types');
+ const { SecureContext: NativeSecureContext } = internalBinding('crypto');
+ const { connResetException, codes } = require('internal/errors');
+ const {
+   ERR_INVALID_ARG_TYPE,
+-  ERR_INVALID_ARG_VALUE,
+   ERR_INVALID_CALLBACK,
+   ERR_MULTIPLE_CALLBACK,
+   ERR_SOCKET_CLOSED,
+@@ -66,12 +64,9 @@ const {
+   ERR_TLS_SESSION_ATTACK,
+   ERR_TLS_SNI_FROM_SERVER
+ } = codes;
+-const { onpskexchange: kOnPskExchange } = internalBinding('symbols');
+ const { getOptionValue } = require('internal/options');
+-const { validateString, validateBuffer } = require('internal/validators');
++const { validateString } = require('internal/validators');
+ const traceTls = getOptionValue('--trace-tls');
+-const tlsKeylog = getOptionValue('--tls-keylog');
+-const { appendFile } = require('fs');
+ const kConnectOptions = Symbol('connect-options');
+ const kDisableRenegotiation = Symbol('disable-renegotiation');
+ const kErrorEmitted = Symbol('error-emitted');
+@@ -79,8 +74,6 @@ const kHandshakeTimeout = Symbol('handshake-timeout');
+ const kRes = Symbol('res');
+ const kSNICallback = Symbol('snicallback');
+ const kEnableTrace = Symbol('enableTrace');
+-const kPskCallback = Symbol('pskcallback');
+-const kPskIdentityHint = Symbol('pskidentityhint');
+ 
+ const noop = () => {};
+ 
+@@ -300,67 +293,6 @@ function onnewsession(sessionId, session) {
+     done();
+ }
+ 
+-function onPskServerCallback(identity, maxPskLen) {
+-  const owner = this[owner_symbol];
+-  const ret = owner[kPskCallback](owner, identity);
+-  if (ret == null)
+-    return undefined;
+-
+-  let psk;
+-  if (isArrayBufferView(ret)) {
+-    psk = ret;
+-  } else {
+-    if (typeof ret !== 'object') {
+-      throw new ERR_INVALID_ARG_TYPE(
+-        'ret',
+-        ['Object', 'Buffer', 'TypedArray', 'DataView'],
+-        ret
+-      );
+-    }
+-    psk = ret.psk;
+-    validateBuffer(psk, 'psk');
+-  }
+-
+-  if (psk.length > maxPskLen) {
+-    throw new ERR_INVALID_ARG_VALUE(
+-      'psk',
+-      psk,
+-      `Pre-shared key exceeds ${maxPskLen} bytes`
+-    );
+-  }
+-
+-  return psk;
+-}
+-
+-function onPskClientCallback(hint, maxPskLen, maxIdentityLen) {
+-  const owner = this[owner_symbol];
+-  const ret = owner[kPskCallback](hint);
+-  if (ret == null)
+-    return undefined;
+-
+-  if (typeof ret !== 'object')
+-    throw new ERR_INVALID_ARG_TYPE('ret', 'Object', ret);
+-
+-  validateBuffer(ret.psk, 'psk');
+-  if (ret.psk.length > maxPskLen) {
+-    throw new ERR_INVALID_ARG_VALUE(
+-      'psk',
+-      ret.psk,
+-      `Pre-shared key exceeds ${maxPskLen} bytes`
+-    );
+-  }
+-
+-  validateString(ret.identity, 'identity');
+-  if (Buffer.byteLength(ret.identity) > maxIdentityLen) {
+-    throw new ERR_INVALID_ARG_VALUE(
+-      'identity',
+-      ret.identity,
+-      `PSK identity exceeds ${maxIdentityLen} bytes`
+-    );
+-  }
+-
+-  return { psk: ret.psk, identity: ret.identity };
+-}
+ 
+ function onkeylogclient(line) {
+   debug('client onkeylog');
+@@ -636,8 +568,6 @@ TLSSocket.prototype._destroySSL = function _destroySSL() {
+ };
+ 
+ // Constructor guts, arbitrarily factored out.
+-let warnOnTlsKeylog = true;
+-let warnOnTlsKeylogError = true;
+ TLSSocket.prototype._init = function(socket, wrap) {
+   const options = this._tlsOptions;
+   const ssl = this._handle;
+@@ -721,24 +651,6 @@ TLSSocket.prototype._init = function(socket, wrap) {
+     }
+   }
+ 
+-  if (tlsKeylog) {
+-    if (warnOnTlsKeylog) {
+-      warnOnTlsKeylog = false;
+-      process.emitWarning('Using --tls-keylog makes TLS connections insecure ' +
+-        'by writing secret key material to file ' + tlsKeylog);
+-      ssl.enableKeylogCallback();
+-      this.on('keylog', (line) => {
+-        appendFile(tlsKeylog, line, { mode: 0o600 }, (err) => {
+-          if (err && warnOnTlsKeylogError) {
+-            warnOnTlsKeylogError = false;
+-            process.emitWarning('Failed to write TLS keylog (this warning ' +
+-              'will not be repeated): ' + err);
+-          }
+-        });
+-      });
+-    }
+-  }
+-
+   ssl.onerror = onerror;
+ 
+   // If custom SNICallback was given, or if
+@@ -759,32 +671,6 @@ TLSSocket.prototype._init = function(socket, wrap) {
+     ssl.setALPNProtocols(ssl._secureContext.alpnBuffer);
+   }
+ 
+-  if (options.pskCallback && ssl.enablePskCallback) {
+-    if (typeof options.pskCallback !== 'function') {
+-      throw new ERR_INVALID_ARG_TYPE('pskCallback',
+-                                     'function',
+-                                     options.pskCallback);
+-    }
+-
+-    ssl[kOnPskExchange] = options.isServer ?
+-      onPskServerCallback : onPskClientCallback;
+-
+-    this[kPskCallback] = options.pskCallback;
+-    ssl.enablePskCallback();
+-
+-    if (options.pskIdentityHint) {
+-      if (typeof options.pskIdentityHint !== 'string') {
+-        throw new ERR_INVALID_ARG_TYPE(
+-          'options.pskIdentityHint',
+-          'string',
+-          options.pskIdentityHint
+-        );
+-      }
+-      ssl.setPskIdentityHint(options.pskIdentityHint);
+-    }
+-  }
+-
+-
+   if (options.handshakeTimeout > 0)
+     this.setTimeout(options.handshakeTimeout, this._handleTimeout);
+ 
+@@ -983,7 +869,6 @@ function makeSocketMethodProxy(name) {
+ 
+ [
+   'getCipher',
+-  'getSharedSigalgs',
+   'getEphemeralKeyInfo',
+   'getFinished',
+   'getPeerFinished',
+@@ -996,7 +881,7 @@ function makeSocketMethodProxy(name) {
+   TLSSocket.prototype[method] = makeSocketMethodProxy(method);
+ });
+ 
+-// TODO: support anonymous (nocert)
++// TODO: support anonymous (nocert) and PSK
+ 
+ 
+ function onServerSocketSecure() {
+@@ -1052,8 +937,6 @@ function tlsConnectionListener(rawSocket) {
+     SNICallback: this[kSNICallback] || SNICallback,
+     enableTrace: this[kEnableTrace],
+     pauseOnConnect: this.pauseOnConnect,
+-    pskCallback: this[kPskCallback],
+-    pskIdentityHint: this[kPskIdentityHint],
+   });
+ 
+   socket.on('secure', onServerSocketSecure);
+@@ -1158,8 +1041,6 @@ function Server(options, listener) {
+ 
+   this[kHandshakeTimeout] = options.handshakeTimeout || (120 * 1000);
+   this[kSNICallback] = options.SNICallback;
+-  this[kPskCallback] = options.pskCallback;
+-  this[kPskIdentityHint] = options.pskIdentityHint;
+ 
+   if (typeof this[kHandshakeTimeout] !== 'number') {
+     throw new ERR_INVALID_ARG_TYPE(
+@@ -1171,18 +1052,6 @@ function Server(options, listener) {
+       'options.SNICallback', 'function', options.SNICallback);
+   }
+ 
+-  if (this[kPskCallback] && typeof this[kPskCallback] !== 'function') {
+-    throw new ERR_INVALID_ARG_TYPE(
+-      'options.pskCallback', 'function', options.pskCallback);
+-  }
+-  if (this[kPskIdentityHint] && typeof this[kPskIdentityHint] !== 'string') {
+-    throw new ERR_INVALID_ARG_TYPE(
+-      'options.pskIdentityHint',
+-      'string',
+-      options.pskIdentityHint
+-    );
+-  }
+-
+   // constructor call
+   net.Server.call(this, options, tlsConnectionListener);
+ 
+@@ -1255,8 +1124,6 @@ Server.prototype.setSecureContext = function(options) {
+   else
+     this.crl = undefined;
+ 
+-  this.sigalgs = options.sigalgs;
+-
+   if (options.ciphers)
+     this.ciphers = options.ciphers;
+   else
+@@ -1298,7 +1165,6 @@ Server.prototype.setSecureContext = function(options) {
+     clientCertEngine: this.clientCertEngine,
+     ca: this.ca,
+     ciphers: this.ciphers,
+-    sigalgs: this.sigalgs,
+     ecdhCurve: this.ecdhCurve,
+     dhparam: this.dhparam,
+     minVersion: this.minVersion,
+@@ -1379,8 +1245,6 @@ Server.prototype.setOptions = deprecate(function(options) {
+                                   .digest('hex')
+                                   .slice(0, 32);
+   }
+-  if (options.pskCallback) this[kPskCallback] = options.pskCallback;
+-  if (options.pskIdentityHint) this[kPskIdentityHint] = options.pskIdentityHint;
+ }, 'Server.prototype.setOptions() is deprecated', 'DEP0122');
+ 
+ // SNI Contexts High-Level API
+@@ -1568,8 +1432,7 @@ exports.connect = function connect(...args) {
+     session: options.session,
+     ALPNProtocols: options.ALPNProtocols,
+     requestOCSP: options.requestOCSP,
+-    enableTrace: options.enableTrace,
+-    pskCallback: options.pskCallback,
++    enableTrace: options.enableTrace
+   });
+ 
+   tlssock[kConnectOptions] = options;
+diff --git a/lib/internal/crypto/cipher.js b/lib/internal/crypto/cipher.js
+index ee1422d..941ebe0 100644
+--- a/lib/internal/crypto/cipher.js
++++ b/lib/internal/crypto/cipher.js
+@@ -52,16 +52,10 @@ function rsaFunctionFor(method, defaultPadding, keyType) {
+         preparePrivateKey(options) :
+         preparePublicOrPrivateKey(options);
+     const padding = options.padding || defaultPadding;
+-    const { oaepHash, oaepLabel } = options;
++    const { oaepHash } = options;
+     if (oaepHash !== undefined && typeof oaepHash !== 'string')
+       throw new ERR_INVALID_ARG_TYPE('options.oaepHash', 'string', oaepHash);
+-    if (oaepLabel !== undefined && !isArrayBufferView(oaepLabel)) {
+-      throw new ERR_INVALID_ARG_TYPE('options.oaepLabel',
+-                                     ['Buffer', 'TypedArray', 'DataView'],
+-                                     oaepLabel);
+-    }
+-    return method(data, format, type, passphrase, buffer, padding, oaepHash,
+-                  oaepLabel);
++    return method(data, format, type, passphrase, buffer, padding, oaepHash);
+   };
+ }
+ 
+diff --git a/lib/internal/crypto/sig.js b/lib/internal/crypto/sig.js
+index 27930ce..1fd99f9 100644
+--- a/lib/internal/crypto/sig.js
++++ b/lib/internal/crypto/sig.js
+@@ -13,8 +13,6 @@ const { validateString } = require('internal/validators');
+ const {
+   Sign: _Sign,
+   Verify: _Verify,
+-  kSigEncDER,
+-  kSigEncP1363,
+   signOneShot: _signOneShot,
+   verifyOneShot: _verifyOneShot
+ } = internalBinding('crypto');
+@@ -63,20 +61,6 @@ function getSaltLength(options) {
+   return getIntOption('saltLength', options);
+ }
+ 
+-function getDSASignatureEncoding(options) {
+-  if (typeof options === 'object') {
+-    const { dsaEncoding = 'der' } = options;
+-    if (dsaEncoding === 'der')
+-      return kSigEncDER;
+-    else if (dsaEncoding === 'ieee-p1363')
+-      return kSigEncP1363;
+-    else
+-      throw new ERR_INVALID_OPT_VALUE('dsaEncoding', dsaEncoding);
+-  }
+-
+-  return kSigEncDER;
+-}
+-
+ function getIntOption(name, options) {
+   const value = options[name];
+   if (value !== undefined) {
+@@ -99,11 +83,8 @@ Sign.prototype.sign = function sign(options, encoding) {
+   const rsaPadding = getPadding(options);
+   const pssSaltLength = getSaltLength(options);
+ 
+-  // Options specific to (EC)DSA
+-  const dsaSigEnc = getDSASignatureEncoding(options);
+-
+   const ret = this[kHandle].sign(data, format, type, passphrase, rsaPadding,
+-                                 pssSaltLength, dsaSigEnc);
++                                 pssSaltLength);
+ 
+   encoding = encoding || getDefaultEncoding();
+   if (encoding && encoding !== 'buffer')
+@@ -138,11 +119,8 @@ function signOneShot(algorithm, data, key) {
+   const rsaPadding = getPadding(key);
+   const pssSaltLength = getSaltLength(key);
+ 
+-  // Options specific to (EC)DSA
+-  const dsaSigEnc = getDSASignatureEncoding(key);
+-
+   return _signOneShot(keyData, keyFormat, keyType, keyPassphrase, data,
+-                      algorithm, rsaPadding, pssSaltLength, dsaSigEnc);
++                      algorithm, rsaPadding, pssSaltLength);
+ }
+ 
+ function Verify(algorithm, options) {
+@@ -173,15 +151,13 @@ Verify.prototype.verify = function verify(options, signature, sigEncoding) {
+ 
+   // Options specific to RSA
+   const rsaPadding = getPadding(options);
+-  const pssSaltLength = getSaltLength(options);
+ 
+-  // Options specific to (EC)DSA
+-  const dsaSigEnc = getDSASignatureEncoding(options);
++  const pssSaltLength = getSaltLength(options);
+ 
+   signature = getArrayBufferView(signature, 'signature', sigEncoding);
+ 
+   return this[kHandle].verify(data, format, type, passphrase, signature,
+-                              rsaPadding, pssSaltLength, dsaSigEnc);
++                              rsaPadding, pssSaltLength);
+ };
+ 
+ function verifyOneShot(algorithm, data, key, signature) {
+@@ -207,9 +183,6 @@ function verifyOneShot(algorithm, data, key, signature) {
+   const rsaPadding = getPadding(key);
+   const pssSaltLength = getSaltLength(key);
+ 
+-  // Options specific to (EC)DSA
+-  const dsaSigEnc = getDSASignatureEncoding(key);
+-
+   if (!isArrayBufferView(signature)) {
+     throw new ERR_INVALID_ARG_TYPE(
+       'signature',
+@@ -219,7 +192,7 @@ function verifyOneShot(algorithm, data, key, signature) {
+   }
+ 
+   return _verifyOneShot(keyData, keyFormat, keyType, keyPassphrase, signature,
+-                        data, algorithm, rsaPadding, pssSaltLength, dsaSigEnc);
++                        data, algorithm, rsaPadding, pssSaltLength);
+ }
+ 
+ module.exports = {
+diff --git a/src/env.h b/src/env.h
+index 60b7c4b..5b1884b 100644
+--- a/src/env.h
++++ b/src/env.h
+@@ -161,12 +161,11 @@ constexpr size_t kFsStatsBufferLength =
+ 
+ // Symbols are per-isolate primitives but Environment proxies them
+ // for the sake of convenience.
+-#define PER_ISOLATE_SYMBOL_PROPERTIES(V)                                       \
+-  V(handle_onclose_symbol, "handle_onclose")                                   \
+-  V(no_message_symbol, "no_message_symbol")                                    \
+-  V(oninit_symbol, "oninit")                                                   \
+-  V(owner_symbol, "owner")                                                     \
+-  V(onpskexchange_symbol, "onpskexchange")                                     \
++#define PER_ISOLATE_SYMBOL_PROPERTIES(V)                                      \
++  V(handle_onclose_symbol, "handle_onclose")                                  \
++  V(no_message_symbol, "no_message_symbol")                                   \
++  V(oninit_symbol, "oninit")                                                  \
++  V(owner_symbol, "owner")                                                    \
+ 
+ // Strings are per-isolate primitives but Environment proxies them
+ // for the sake of convenience.  Strings should be ASCII-only.
+@@ -325,7 +324,6 @@ constexpr size_t kFsStatsBufferLength =
+   V(priority_string, "priority")                                               \
+   V(process_string, "process")                                                 \
+   V(promise_string, "promise")                                                 \
+-  V(psk_string, "psk")                                                         \
+   V(pubkey_string, "pubkey")                                                   \
+   V(query_string, "query")                                                     \
+   V(raw_string, "raw")                                                         \
+@@ -353,7 +351,6 @@ constexpr size_t kFsStatsBufferLength =
+   V(sni_context_string, "sni_context")                                         \
+   V(source_string, "source")                                                   \
+   V(stack_string, "stack")                                                     \
+-  V(standard_name_string, "standardName")                                      \
+   V(start_time_string, "startTime")                                            \
+   V(status_string, "status")                                                   \
+   V(stdio_string, "stdio")                                                     \
+diff --git a/src/node_crypto.cc b/src/node_crypto.cc
+index 332b6f3..934c17c 100644
+--- a/src/node_crypto.cc
++++ b/src/node_crypto.cc
+@@ -737,7 +737,6 @@ void SecureContext::Initialize(Environment* env, Local<Object> target) {
+   env->SetProtoMethod(t, "addRootCerts", AddRootCerts);
+   env->SetProtoMethod(t, "setCipherSuites", SetCipherSuites);
+   env->SetProtoMethod(t, "setCiphers", SetCiphers);
+-  env->SetProtoMethod(t, "setSigalgs", SetSigalgs);
+   env->SetProtoMethod(t, "setECDHCurve", SetECDHCurve);
+   env->SetProtoMethod(t, "setDHParam", SetDHParam);
+   env->SetProtoMethod(t, "setMaxProto", SetMaxProto);
+@@ -1021,23 +1020,6 @@ void SecureContext::SetKey(const FunctionCallbackInfo<Value>& args) {
+   }
+ }
+ 
+-void SecureContext::SetSigalgs(const FunctionCallbackInfo<Value>& args) {
+-  SecureContext* sc;
+-  ASSIGN_OR_RETURN_UNWRAP(&sc, args.Holder());
+-  Environment* env = sc->env();
+-  ClearErrorOnReturn clear_error_on_return;
+-
+-  CHECK_EQ(args.Length(), 1);
+-  CHECK(args[0]->IsString());
+-
+-  const node::Utf8Value sigalgs(env->isolate(), args[0]);
+-
+-  int rv = SSL_CTX_set1_sigalgs_list(sc->ctx_.get(), *sigalgs);
+-
+-  if (rv == 0) {
+-    return ThrowCryptoError(env, ERR_get_error());
+-  }
+-}
+ 
+ #ifndef OPENSSL_NO_ENGINE
+ // Helpers for the smart pointer.
+@@ -2080,7 +2062,6 @@ void SSLWrap<Base>::AddMethods(Environment* env, Local<FunctionTemplate> t) {
+   env->SetProtoMethodNoSideEffect(t, "isSessionReused", IsSessionReused);
+   env->SetProtoMethodNoSideEffect(t, "verifyError", VerifyError);
+   env->SetProtoMethodNoSideEffect(t, "getCipher", GetCipher);
+-  env->SetProtoMethodNoSideEffect(t, "getSharedSigalgs", GetSharedSigalgs);
+   env->SetProtoMethod(t, "endParser", EndParser);
+   env->SetProtoMethod(t, "certCbDone", CertCbDone);
+   env->SetProtoMethod(t, "renegotiate", Renegotiate);
+@@ -2987,16 +2968,6 @@ void SSLWrap<Base>::VerifyError(const FunctionCallbackInfo<Value>& args) {
+   if (X509* peer_cert = SSL_get_peer_certificate(w->ssl_.get())) {
+     X509_free(peer_cert);
+     x509_verify_error = SSL_get_verify_result(w->ssl_.get());
+-  } else {
+-    const SSL_CIPHER* curr_cipher = SSL_get_current_cipher(w->ssl_.get());
+-    const SSL_SESSION* sess = SSL_get_session(w->ssl_.get());
+-    // Allow no-cert for PSK authentication in TLS1.2 and lower.
+-    // In TLS1.3 check that session was reused because TLS1.3 PSK
+-    // looks like session resumption. Is there a better way?
+-    if (SSL_CIPHER_get_auth_nid(curr_cipher) == NID_auth_psk ||
+-        (SSL_SESSION_get_protocol_version(sess) == TLS1_3_VERSION &&
+-         SSL_session_reused(w->ssl_.get())))
+-      return args.GetReturnValue().SetNull();
+   }
+ 
+   if (x509_verify_error == X509_V_OK)
+@@ -3062,9 +3033,6 @@ void SSLWrap<Base>::GetCipher(const FunctionCallbackInfo<Value>& args) {
+   const char* cipher_name = SSL_CIPHER_get_name(c);
+   info->Set(context, env->name_string(),
+             OneByteString(args.GetIsolate(), cipher_name)).Check();
+-  const char* cipher_standard_name = SSL_CIPHER_standard_name(c);
+-  info->Set(context, env->standard_name_string(),
+-            OneByteString(args.GetIsolate(), cipher_standard_name)).Check();
+   const char* cipher_version = SSL_CIPHER_get_version(c);
+   info->Set(context, env->version_string(),
+             OneByteString(args.GetIsolate(), cipher_version)).Check();
+@@ -3073,87 +3041,6 @@ void SSLWrap<Base>::GetCipher(const FunctionCallbackInfo<Value>& args) {
+ 
+ 
+ template <class Base>
+-void SSLWrap<Base>::GetSharedSigalgs(const FunctionCallbackInfo<Value>& args) {
+-  Base* w;
+-  ASSIGN_OR_RETURN_UNWRAP(&w, args.Holder());
+-  Environment* env = w->ssl_env();
+-
+-  SSL* ssl = w->ssl_.get();
+-  int nsig = SSL_get_shared_sigalgs(ssl, 0, nullptr, nullptr, nullptr, nullptr,
+-                                    nullptr);
+-  MaybeStackBuffer<Local<Value>, 16> ret_arr(nsig);
+-
+-  for (int i = 0; i < nsig; i++) {
+-    int hash_nid;
+-    int sign_nid;
+-    std::string sig_with_md;
+-
+-    SSL_get_shared_sigalgs(ssl, i, &sign_nid, &hash_nid, nullptr, nullptr,
+-                           nullptr);
+-
+-    switch (sign_nid) {
+-      case EVP_PKEY_RSA:
+-        sig_with_md = "RSA+";
+-        break;
+-
+-      case EVP_PKEY_RSA_PSS:
+-        sig_with_md = "RSA-PSS+";
+-        break;
+-
+-      case EVP_PKEY_DSA:
+-        sig_with_md = "DSA+";
+-        break;
+-
+-      case EVP_PKEY_EC:
+-        sig_with_md = "ECDSA+";
+-        break;
+-
+-      case NID_ED25519:
+-        sig_with_md = "Ed25519+";
+-        break;
+-
+-      case NID_ED448:
+-        sig_with_md = "Ed448+";
+-        break;
+-#ifndef OPENSSL_NO_GOST
+-      case NID_id_GostR3410_2001:
+-        sig_with_md = "gost2001+";
+-        break;
+-
+-      case NID_id_GostR3410_2012_256:
+-        sig_with_md = "gost2012_256+";
+-        break;
+-
+-      case NID_id_GostR3410_2012_512:
+-        sig_with_md = "gost2012_512+";
+-        break;
+-#endif  // !OPENSSL_NO_GOST
+-      default:
+-        const char* sn = OBJ_nid2sn(sign_nid);
+-
+-        if (sn != nullptr) {
+-          sig_with_md = std::string(sn) + "+";
+-        } else {
+-          sig_with_md = "UNDEF+";
+-        }
+-        break;
+-    }
+-
+-    const char* sn_hash = OBJ_nid2sn(hash_nid);
+-    if (sn_hash != nullptr) {
+-      sig_with_md += std::string(sn_hash);
+-    } else {
+-      sig_with_md += "UNDEF";
+-    }
+-    ret_arr[i] = OneByteString(env->isolate(), sig_with_md.c_str());
+-  }
+-
+-  args.GetReturnValue().Set(
+-                 Array::New(env->isolate(), ret_arr.out(), ret_arr.length()));
+-}
+-
+-
+-template <class Base>
+ void SSLWrap<Base>::GetProtocol(const FunctionCallbackInfo<Value>& args) {
+   Base* w;
+   ASSIGN_OR_RETURN_UNWRAP(&w, args.Holder());
+@@ -5300,9 +5187,6 @@ void CheckThrow(Environment* env, SignBase::Error error) {
+     case SignBase::Error::kSignNotInitialised:
+       return env->ThrowError("Not initialised");
+ 
+-    case SignBase::Error::kSignMalformedSignature:
+-      return env->ThrowError("Malformed signature");
+-
+     case SignBase::Error::kSignInit:
+     case SignBase::Error::kSignUpdate:
+     case SignBase::Error::kSignPrivateKey:
+@@ -5409,85 +5293,6 @@ static int GetDefaultSignPadding([[maybe_unused]] const ManagedEVPPKey& key) {
+ #endif // OPENSSL_VERSION_NUMBER < 0x10100000L
+ }
+ 
+-static const unsigned int kNoDsaSignature = static_cast<unsigned int>(-1);
+-
+-// Returns the maximum size of each of the integers (r, s) of the DSA signature.
+-static unsigned int GetBytesOfRS(const ManagedEVPPKey& pkey) {
+-  int bits, base_id = EVP_PKEY_base_id(pkey.get());
+-
+-  if (base_id == EVP_PKEY_DSA) {
+-    DSA* dsa_key = EVP_PKEY_get0_DSA(pkey.get());
+-    // Both r and s are computed mod q, so their width is limited by that of q.
+-    bits = BN_num_bits(DSA_get0_q(dsa_key));
+-  } else if (base_id == EVP_PKEY_EC) {
+-    EC_KEY* ec_key = EVP_PKEY_get0_EC_KEY(pkey.get());
+-    const EC_GROUP* ec_group = EC_KEY_get0_group(ec_key);
+-    bits = EC_GROUP_order_bits(ec_group);
+-  } else {
+-    return kNoDsaSignature;
+-  }
+-
+-  return (bits + 7) / 8;
+-}
+-
+-static AllocatedBuffer ConvertSignatureToP1363(Environment* env,
+-                                               const ManagedEVPPKey& pkey,
+-                                               AllocatedBuffer&& signature) {
+-  unsigned int n = GetBytesOfRS(pkey);
+-  if (n == kNoDsaSignature)
+-    return std::move(signature);
+-
+-  const unsigned char* sig_data =
+-      reinterpret_cast<unsigned char*>(signature.data());
+-
+-  ECDSASigPointer asn1_sig(d2i_ECDSA_SIG(nullptr, &sig_data, signature.size()));
+-  if (!asn1_sig)
+-    return AllocatedBuffer();
+-
+-  AllocatedBuffer buf = env->AllocateManaged(2 * n);
+-  unsigned char* data = reinterpret_cast<unsigned char*>(buf.data());
+-
+-  const BIGNUM* r = ECDSA_SIG_get0_r(asn1_sig.get());
+-  const BIGNUM* s = ECDSA_SIG_get0_s(asn1_sig.get());
+-  CHECK_EQ(n, static_cast<unsigned int>(BN_bn2binpad(r, data, n)));
+-  CHECK_EQ(n, static_cast<unsigned int>(BN_bn2binpad(s, data + n, n)));
+-
+-  return buf;
+-}
+-
+-static ByteSource ConvertSignatureToDER(
+-      const ManagedEVPPKey& pkey,
+-      const ArrayBufferViewContents<char>& signature) {
+-  unsigned int n = GetBytesOfRS(pkey);
+-  if (n == kNoDsaSignature)
+-    return ByteSource::Foreign(signature.data(), signature.length());
+-
+-  const unsigned char* sig_data =
+-      reinterpret_cast<const  unsigned char*>(signature.data());
+-
+-  if (signature.length() != 2 * n)
+-    return ByteSource();
+-
+-  ECDSASigPointer asn1_sig(ECDSA_SIG_new());
+-  CHECK(asn1_sig);
+-  BIGNUM* r = BN_new();
+-  CHECK_NOT_NULL(r);
+-  BIGNUM* s = BN_new();
+-  CHECK_NOT_NULL(s);
+-  CHECK_EQ(r, BN_bin2bn(sig_data, n, r));
+-  CHECK_EQ(s, BN_bin2bn(sig_data + n, n, s));
+-  CHECK_EQ(1, ECDSA_SIG_set0(asn1_sig.get(), r, s));
+-
+-  unsigned char* data = nullptr;
+-  int len = i2d_ECDSA_SIG(asn1_sig.get(), &data);
+-
+-  if (len <= 0)
+-    return ByteSource();
+-
+-  CHECK_NOT_NULL(data);
+-
+-  return ByteSource::Allocated(reinterpret_cast<char*>(data), len);
+-}
+ 
+ static AllocatedBuffer Node_SignFinal(Environment* env,
+                                       EVPMDPointer&& mdctx,
+@@ -5548,8 +5353,7 @@ static inline bool ValidateDSAParameters(EVP_PKEY* key) {
+ Sign::SignResult Sign::SignFinal(
+     const ManagedEVPPKey& pkey,
+     int padding,
+-    const Maybe<int>& salt_len,
+-    DSASigEnc dsa_sig_enc) {
++    const Maybe<int>& salt_len) {
+   if (!mdctx_)
+     return SignResult(kSignNotInitialised);
+ 
+@@ -5561,10 +5365,6 @@ Sign::SignResult Sign::SignFinal(
+   AllocatedBuffer buffer =
+       Node_SignFinal(env(), std::move(mdctx), pkey, padding, salt_len);
+   Error error = buffer.data() == nullptr ? kSignPrivateKey : kSignOk;
+-  if (error == kSignOk && dsa_sig_enc == kSigEncP1363) {
+-    buffer = ConvertSignatureToP1363(env(), pkey, std::move(buffer));
+-    CHECK_NOT_NULL(buffer.data());
+-  }
+   return SignResult(error, std::move(buffer));
+ }
+ 
+@@ -5592,15 +5392,10 @@ void Sign::SignFinal(const FunctionCallbackInfo<Value>& args) {
+     salt_len = Just<int>(args[offset + 1].As<Int32>()->Value());
+   }
+ 
+-  CHECK(args[offset + 2]->IsInt32());
+-  DSASigEnc dsa_sig_enc =
+-      static_cast<DSASigEnc>(args[offset + 2].As<Int32>()->Value());
+-
+   SignResult ret = sign->SignFinal(
+       key,
+       padding,
+-      salt_len,
+-      dsa_sig_enc);
++      salt_len);
+ 
+   if (ret.error != kSignOk)
+     return sign->CheckThrow(ret.error);
+@@ -5644,10 +5439,6 @@ void SignOneShot(const FunctionCallbackInfo<Value>& args) {
+     rsa_salt_len = Just<int>(args[offset + 3].As<Int32>()->Value());
+   }
+ 
+-  CHECK(args[offset + 4]->IsInt32());
+-  DSASigEnc dsa_sig_enc =
+-      static_cast<DSASigEnc>(args[offset + 4].As<Int32>()->Value());
+-
+   EVP_PKEY_CTX* pkctx = nullptr;
+   EVPMDPointer mdctx(EVP_MD_CTX_new());
+   if (!mdctx ||
+@@ -5675,10 +5466,6 @@ void SignOneShot(const FunctionCallbackInfo<Value>& args) {
+ 
+   signature.Resize(sig_len);
+ 
+-  if (dsa_sig_enc == kSigEncP1363) {
+-    signature = ConvertSignatureToP1363(env, key, std::move(signature));
+-  }
+-
+   args.GetReturnValue().Set(signature.ToBuffer().ToLocalChecked());
+ }
+ 
+@@ -5784,17 +5571,6 @@ void Verify::VerifyFinal(const FunctionCallbackInfo<Value>& args) {
+     salt_len = Just<int>(args[offset + 2].As<Int32>()->Value());
+   }
+ 
+-  CHECK(args[offset + 3]->IsInt32());
+-  DSASigEnc dsa_sig_enc =
+-      static_cast<DSASigEnc>(args[offset + 3].As<Int32>()->Value());
+-
+-  ByteSource signature = ByteSource::Foreign(hbuf.data(), hbuf.length());
+-  if (dsa_sig_enc == kSigEncP1363) {
+-    signature = ConvertSignatureToDER(pkey, hbuf);
+-    if (signature.get() == nullptr)
+-      return verify->CheckThrow(Error::kSignMalformedSignature);
+-  }
+-
+   bool verify_result;
+   Error err = verify->VerifyFinal(pkey, hbuf.data(), hbuf.length(), padding,
+                                   salt_len, &verify_result);
+@@ -5838,10 +5614,6 @@ void VerifyOneShot(const FunctionCallbackInfo<Value>& args) {
+     rsa_salt_len = Just<int>(args[offset + 4].As<Int32>()->Value());
+   }
+ 
+-  CHECK(args[offset + 5]->IsInt32());
+-  DSASigEnc dsa_sig_enc =
+-      static_cast<DSASigEnc>(args[offset + 5].As<Int32>()->Value());
+-
+   EVP_PKEY_CTX* pkctx = nullptr;
+   EVPMDPointer mdctx(EVP_MD_CTX_new());
+   if (!mdctx ||
+@@ -5852,18 +5624,11 @@ void VerifyOneShot(const FunctionCallbackInfo<Value>& args) {
+   if (!ApplyRSAOptions(key, pkctx, rsa_padding, rsa_salt_len))
+     return CheckThrow(env, SignBase::Error::kSignPublicKey);
+ 
+-  ByteSource sig_bytes = ByteSource::Foreign(sig.data(), sig.length());
+-  if (dsa_sig_enc == kSigEncP1363) {
+-    sig_bytes = ConvertSignatureToDER(key, sig);
+-    if (!sig_bytes)
+-      return CheckThrow(env, SignBase::Error::kSignMalformedSignature);
+-  }
+-
+   bool verify_result;
+   const int r = EVP_DigestVerify(
+     mdctx.get(),
+-    reinterpret_cast<const unsigned char*>(sig_bytes.get()),
+-    sig_bytes.size(),
++    reinterpret_cast<const unsigned char*>(sig.data()),
++    sig.length(),
+     reinterpret_cast<const unsigned char*>(data.data()),
+     data.length());
+   switch (r) {
+@@ -5887,8 +5652,6 @@ bool PublicKeyCipher::Cipher(Environment* env,
+                              const ManagedEVPPKey& pkey,
+                              int padding,
+                              const EVP_MD* digest,
+-                             const void* oaep_label,
+-                             size_t oaep_label_len,
+                              const unsigned char* data,
+                              int len,
+                              AllocatedBuffer* out) {
+@@ -5905,17 +5668,6 @@ bool PublicKeyCipher::Cipher(Environment* env,
+       return false;
+   }
+ 
+-  if (oaep_label_len != 0) {
+-    // OpenSSL takes ownership of the label, so we need to create a copy.
+-    void* label = OPENSSL_memdup(oaep_label, oaep_label_len);
+-    CHECK_NOT_NULL(label);
+-    if (0 >= EVP_PKEY_CTX_set0_rsa_oaep_label(ctx.get(),
+-                reinterpret_cast<unsigned char*>(label),
+-                                      oaep_label_len)) {
+-      OPENSSL_free(label);
+-      return false;
+-    }
+-  }
+ 
+   size_t out_len = 0;
+   if (EVP_PKEY_cipher(ctx.get(), nullptr, &out_len, data, len) <= 0)
+@@ -5962,12 +5714,6 @@ void PublicKeyCipher::Cipher(const FunctionCallbackInfo<Value>& args) {
+       return THROW_ERR_OSSL_EVP_INVALID_DIGEST(env);
+   }
+ 
+-  ArrayBufferViewContents<unsigned char> oaep_label;
+-  if (!args[offset + 3]->IsUndefined()) {
+-    CHECK(args[offset + 3]->IsArrayBufferView());
+-    oaep_label.Read(args[offset + 3].As<ArrayBufferView>());
+-  }
+-
+   AllocatedBuffer out;
+ 
+   ClearErrorOnReturn clear_error_on_return;
+@@ -5977,8 +5723,6 @@ void PublicKeyCipher::Cipher(const FunctionCallbackInfo<Value>& args) {
+       pkey,
+       padding,
+       digest,
+-      oaep_label.data(),
+-      oaep_label.length(),
+       buf.data(),
+       buf.length(),
+       &out);
+@@ -7709,8 +7453,6 @@ void Initialize(Local<Object> target,
+   NODE_DEFINE_CONSTANT(target, kKeyTypeSecret);
+   NODE_DEFINE_CONSTANT(target, kKeyTypePublic);
+   NODE_DEFINE_CONSTANT(target, kKeyTypePrivate);
+-  NODE_DEFINE_CONSTANT(target, kSigEncDER);
+-  NODE_DEFINE_CONSTANT(target, kSigEncP1363);
+   env->SetMethod(target, "randomBytes", RandomBytes);
+   env->SetMethod(target, "signOneShot", SignOneShot);
+   env->SetMethod(target, "verifyOneShot", VerifyOneShot);
+diff --git a/src/node_crypto.h b/src/node_crypto.h
+index 580ca6a..18ac9b5 100644
+--- a/src/node_crypto.h
++++ b/src/node_crypto.h
+@@ -171,7 +171,6 @@ class SecureContext : public BaseObject {
+   static void AddRootCerts(const v8::FunctionCallbackInfo<v8::Value>& args);
+   static void SetCipherSuites(const v8::FunctionCallbackInfo<v8::Value>& args);
+   static void SetCiphers(const v8::FunctionCallbackInfo<v8::Value>& args);
+-  static void SetSigalgs(const v8::FunctionCallbackInfo<v8::Value>& args);
+   static void SetECDHCurve(const v8::FunctionCallbackInfo<v8::Value>& args);
+   static void SetDHParam(const v8::FunctionCallbackInfo<v8::Value>& args);
+   static void SetOptions(const v8::FunctionCallbackInfo<v8::Value>& args);
+@@ -304,7 +303,6 @@ class SSLWrap {
+   static void IsSessionReused(const v8::FunctionCallbackInfo<v8::Value>& args);
+   static void VerifyError(const v8::FunctionCallbackInfo<v8::Value>& args);
+   static void GetCipher(const v8::FunctionCallbackInfo<v8::Value>& args);
+-  static void GetSharedSigalgs(const v8::FunctionCallbackInfo<v8::Value>& args);
+   static void EndParser(const v8::FunctionCallbackInfo<v8::Value>& args);
+   static void CertCbDone(const v8::FunctionCallbackInfo<v8::Value>& args);
+   static void Renegotiate(const v8::FunctionCallbackInfo<v8::Value>& args);
+@@ -375,13 +373,6 @@ class ByteSource {
+   const char* get() const;
+   size_t size() const;
+ 
+-  inline operator bool() const {
+-    return data_ != nullptr;
+-  }
+-
+-  static ByteSource Allocated(char* data, size_t size);
+-  static ByteSource Foreign(const char* data, size_t size);
+-
+   static ByteSource FromStringOrBuffer(Environment* env,
+                                        v8::Local<v8::Value> value);
+ 
+@@ -406,6 +397,9 @@ class ByteSource {
+   size_t size_ = 0;
+ 
+   ByteSource(const char* data, char* allocated_data, size_t size);
++
++  static ByteSource Allocated(char* data, size_t size);
++  static ByteSource Foreign(const char* data, size_t size);
+ };
+ 
+ enum PKEncodingType {
+@@ -681,8 +675,7 @@ class SignBase : public BaseObject {
+     kSignNotInitialised,
+     kSignUpdate,
+     kSignPrivateKey,
+-    kSignPublicKey,
+-    kSignMalformedSignature
++    kSignPublicKey
+   } Error;
+ 
+   SignBase(Environment* env, v8::Local<v8::Object> wrap)
+@@ -703,10 +696,6 @@ class SignBase : public BaseObject {
+   EVPMDPointer mdctx_;
+ };
+ 
+-enum DSASigEnc {
+-  kSigEncDER, kSigEncP1363
+-};
+-
+ class Sign : public SignBase {
+  public:
+   static void Initialize(Environment* env, v8::Local<v8::Object> target);
+@@ -724,8 +713,7 @@ class Sign : public SignBase {
+   SignResult SignFinal(
+       const ManagedEVPPKey& pkey,
+       int padding,
+-      const v8::Maybe<int>& saltlen,
+-      DSASigEnc dsa_sig_enc);
++      const v8::Maybe<int>& saltlen);
+ 
+  protected:
+   static void New(const v8::FunctionCallbackInfo<v8::Value>& args);
+@@ -779,8 +767,6 @@ class PublicKeyCipher {
+                      const ManagedEVPPKey& pkey,
+                      int padding,
+                      const EVP_MD* digest,
+-                     const void* oaep_label,
+-                     size_t oaep_label_size,
+                      const unsigned char* data,
+                      int len,
+                      AllocatedBuffer* out);
+diff --git a/src/node_errors.h b/src/node_errors.h
+index 426b059..48ae915 100644
+--- a/src/node_errors.h
++++ b/src/node_errors.h
+@@ -58,7 +58,6 @@ void PrintErrorString(const char* format, ...);
+   V(ERR_STRING_TOO_LONG, Error)                                              \
+   V(ERR_TLS_INVALID_PROTOCOL_METHOD, TypeError)                              \
+   V(ERR_TRANSFERRING_EXTERNALIZED_SHAREDARRAYBUFFER, TypeError)              \
+-  V(ERR_TLS_PSK_SET_IDENTIY_HINT_FAILED, Error)                              \
+ 
+ #define V(code, type)                                                         \
+   inline v8::Local<v8::Value> code(v8::Isolate* isolate,                      \
+@@ -102,7 +101,6 @@ void PrintErrorString(const char* format, ...);
+     "Script execution was interrupted by `SIGINT`")                          \
+   V(ERR_TRANSFERRING_EXTERNALIZED_SHAREDARRAYBUFFER,                         \
+     "Cannot serialize externalized SharedArrayBuffer")                       \
+-  V(ERR_TLS_PSK_SET_IDENTIY_HINT_FAILED, "Failed to set PSK identity hint")  \
+ 
+ #define V(code, message)                                                     \
+   inline v8::Local<v8::Value> code(v8::Isolate* isolate) {                   \
+diff --git a/src/node_options.cc b/src/node_options.cc
+index 4e473ca..710d794 100644
+--- a/src/node_options.cc
++++ b/src/node_options.cc
+@@ -572,10 +572,6 @@ EnvironmentOptionsParser::EnvironmentOptionsParser() {
+ 
+   AddOption("--napi-modules", "", NoOp{}, kAllowedInEnvironment);
+ 
+-  AddOption("--tls-keylog",
+-            "log TLS decryption keys to named file for traffic analysis",
+-            &EnvironmentOptions::tls_keylog, kAllowedInEnvironment);
+-
+   AddOption("--tls-min-v1.0",
+             "set default TLS minimum to TLSv1.0 (default: TLSv1.2)",
+             &EnvironmentOptions::tls_min_v1_0,
+diff --git a/src/node_options.h b/src/node_options.h
+index 60daf36..0d9aa34 100644
+--- a/src/node_options.h
++++ b/src/node_options.h
+@@ -167,7 +167,6 @@ class EnvironmentOptions : public Options {
+   bool tls_min_v1_3 = false;
+   bool tls_max_v1_2 = false;
+   bool tls_max_v1_3 = false;
+-  std::string tls_keylog;
+ 
+   std::vector<std::string> preload_modules;
+ 
+diff --git a/src/tls_wrap.cc b/src/tls_wrap.cc
+index 75cfddd..b8a55c6 100644
+--- a/src/tls_wrap.cc
++++ b/src/tls_wrap.cc
+@@ -28,7 +28,6 @@
+ #include "node_crypto_bio.h"  // NodeBIO
+ // ClientHelloParser
+ #include "node_crypto_clienthello-inl.h"
+-#include "node_errors.h"
+ #include "stream_base-inl.h"
+ #include "util-inl.h"
+ 
+@@ -43,11 +42,8 @@ using v8::Exception;
+ using v8::Function;
+ using v8::FunctionCallbackInfo;
+ using v8::FunctionTemplate;
+-using v8::Integer;
+ using v8::Isolate;
+ using v8::Local;
+-using v8::Maybe;
+-using v8::MaybeLocal;
+ using v8::Object;
+ using v8::ReadOnly;
+ using v8::Signature;
+@@ -1076,131 +1072,6 @@ int TLSWrap::SelectSNIContextCallback(SSL* s, int* ad, void* arg) {
+   return SSL_TLSEXT_ERR_OK;
+ }
+ 
+-#ifndef OPENSSL_NO_PSK
+-
+-void TLSWrap::SetPskIdentityHint(const FunctionCallbackInfo<Value>& args) {
+-  TLSWrap* p;
+-  ASSIGN_OR_RETURN_UNWRAP(&p, args.Holder());
+-  CHECK_NOT_NULL(p->ssl_);
+-
+-  Environment* env = p->env();
+-  Isolate* isolate = env->isolate();
+-
+-  CHECK(args[0]->IsString());
+-  node::Utf8Value hint(isolate, args[0].As<String>());
+-
+-  if (!SSL_use_psk_identity_hint(p->ssl_.get(), *hint)) {
+-    Local<Value> err = node::ERR_TLS_PSK_SET_IDENTIY_HINT_FAILED(isolate);
+-    p->MakeCallback(env->onerror_string(), 1, &err);
+-  }
+-}
+-
+-void TLSWrap::EnablePskCallback(const FunctionCallbackInfo<Value>& args) {
+-  TLSWrap* wrap;
+-  ASSIGN_OR_RETURN_UNWRAP(&wrap, args.Holder());
+-  CHECK_NOT_NULL(wrap->ssl_);
+-
+-  SSL_set_psk_server_callback(wrap->ssl_.get(), PskServerCallback);
+-  SSL_set_psk_client_callback(wrap->ssl_.get(), PskClientCallback);
+-}
+-
+-unsigned int TLSWrap::PskServerCallback(SSL* s,
+-                                        const char* identity,
+-                                        unsigned char* psk,
+-                                        unsigned int max_psk_len) {
+-  TLSWrap* p = static_cast<TLSWrap*>(SSL_get_app_data(s));
+-
+-  Environment* env = p->env();
+-  Isolate* isolate = env->isolate();
+-  HandleScope scope(isolate);
+-
+-  MaybeLocal<String> maybe_identity_str =
+-      v8::String::NewFromUtf8(isolate, identity, v8::NewStringType::kNormal);
+-
+-  v8::Local<v8::String> identity_str;
+-  if (!maybe_identity_str.ToLocal(&identity_str)) return 0;
+-
+-  // Make sure there are no utf8 replacement symbols.
+-  v8::String::Utf8Value identity_utf8(isolate, identity_str);
+-  if (strcmp(*identity_utf8, identity) != 0) return 0;
+-
+-  Local<Value> argv[] = {identity_str,
+-                         Integer::NewFromUnsigned(isolate, max_psk_len)};
+-
+-  MaybeLocal<Value> maybe_psk_val =
+-      p->MakeCallback(env->onpskexchange_symbol(), arraysize(argv), argv);
+-  Local<Value> psk_val;
+-  if (!maybe_psk_val.ToLocal(&psk_val) || !psk_val->IsArrayBufferView())
+-    return 0;
+-
+-  char* psk_buf = Buffer::Data(psk_val);
+-  size_t psk_buflen = Buffer::Length(psk_val);
+-
+-  if (psk_buflen > max_psk_len) return 0;
+-
+-  memcpy(psk, psk_buf, psk_buflen);
+-  return psk_buflen;
+-}
+-
+-unsigned int TLSWrap::PskClientCallback(SSL* s,
+-                                        const char* hint,
+-                                        char* identity,
+-                                        unsigned int max_identity_len,
+-                                        unsigned char* psk,
+-                                        unsigned int max_psk_len) {
+-  TLSWrap* p = static_cast<TLSWrap*>(SSL_get_app_data(s));
+-
+-  Environment* env = p->env();
+-  Isolate* isolate = env->isolate();
+-  HandleScope scope(isolate);
+-
+-  Local<Value> argv[] = {Null(isolate),
+-                         Integer::NewFromUnsigned(isolate, max_psk_len),
+-                         Integer::NewFromUnsigned(isolate, max_identity_len)};
+-  if (hint != nullptr) {
+-    MaybeLocal<String> maybe_hint = String::NewFromUtf8(isolate, hint);
+-
+-    Local<String> local_hint;
+-    if (!maybe_hint.ToLocal(&local_hint)) return 0;
+-
+-    argv[0] = local_hint;
+-  }
+-  MaybeLocal<Value> maybe_ret =
+-      p->MakeCallback(env->onpskexchange_symbol(), arraysize(argv), argv);
+-  Local<Value> ret;
+-  if (!maybe_ret.ToLocal(&ret) || !ret->IsObject()) return 0;
+-  Local<Object> obj = ret.As<Object>();
+-
+-  MaybeLocal<Value> maybe_psk_val = obj->Get(env->context(), env->psk_string());
+-
+-  Local<Value> psk_val;
+-  if (!maybe_psk_val.ToLocal(&psk_val) || !psk_val->IsArrayBufferView())
+-    return 0;
+-
+-  char* psk_buf = Buffer::Data(psk_val);
+-  size_t psk_buflen = Buffer::Length(psk_val);
+-
+-  if (psk_buflen > max_psk_len) return 0;
+-
+-  MaybeLocal<Value> maybe_identity_val =
+-      obj->Get(env->context(), env->identity_string());
+-  Local<Value> identity_val;
+-  if (!maybe_identity_val.ToLocal(&identity_val) || !identity_val->IsString())
+-    return 0;
+-  Local<String> identity_str = identity_val.As<String>();
+-
+-  String::Utf8Value identity_buf(isolate, identity_str);
+-  size_t identity_len = identity_buf.length();
+-
+-  if (identity_len > max_identity_len) return 0;
+-
+-  memcpy(identity, *identity_buf, identity_len);
+-  memcpy(psk, psk_buf, psk_buflen);
+-
+-  return psk_buflen;
+-}
+-
+-#endif
+ 
+ void TLSWrap::GetWriteQueueSize(const FunctionCallbackInfo<Value>& info) {
+   TLSWrap* wrap;
+@@ -1266,11 +1137,6 @@ void TLSWrap::Initialize(Local<Object> target,
+   env->SetProtoMethod(t, "destroySSL", DestroySSL);
+   env->SetProtoMethod(t, "enableCertCb", EnableCertCb);
+ 
+-#ifndef OPENSSL_NO_PSK
+-  env->SetProtoMethod(t, "setPskIdentityHint", SetPskIdentityHint);
+-  env->SetProtoMethod(t, "enablePskCallback", EnablePskCallback);
+-#endif
+-
+   StreamBase::AddMethods(env, t);
+   SSLWrap<TLSWrap>::AddMethods(env, t);
+ 
+diff --git a/src/tls_wrap.h b/src/tls_wrap.h
+index 7bb33b4..14b7327 100644
+--- a/src/tls_wrap.h
++++ b/src/tls_wrap.h
+@@ -169,23 +169,6 @@ class TLSWrap : public AsyncWrap,
+   static void SetServername(const v8::FunctionCallbackInfo<v8::Value>& args);
+   static int SelectSNIContextCallback(SSL* s, int* ad, void* arg);
+ 
+-#ifndef OPENSSL_NO_PSK
+-  static void SetPskIdentityHint(
+-      const v8::FunctionCallbackInfo<v8::Value>& args);
+-  static void EnablePskCallback(
+-      const v8::FunctionCallbackInfo<v8::Value>& args);
+-  static unsigned int PskServerCallback(SSL* s,
+-                                        const char* identity,
+-                                        unsigned char* psk,
+-                                        unsigned int max_psk_len);
+-  static unsigned int PskClientCallback(SSL* s,
+-                                        const char* hint,
+-                                        char* identity,
+-                                        unsigned int max_identity_len,
+-                                        unsigned char* psk,
+-                                        unsigned int max_psk_len);
+-#endif
+-
+   crypto::SecureContext* sc_;
+   // BIO buffers hold encrypted data.
+   BIO* enc_in_ = nullptr;   // StreamListener fills this for SSL_read().
+diff --git a/test/fixtures/rsa-oaep-test-vectors.js b/test/fixtures/rsa-oaep-test-vectors.js
+deleted file mode 100644
+index 47e681f..0000000
+--- a/test/fixtures/rsa-oaep-test-vectors.js
++++ /dev/null
+@@ -1,30 +0,0 @@
+-{
+-  "comment": "RSA-OAEP test vectors for test-crypto-rsa-dsa.js",
+-  "decryptionTests": [
+-    {
+-      "ct": "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"
+-    },
+-    {
+-      "ct": "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",
+-      "oaepHash": "sha1"
+-    },
+-    {
+-      "ct": "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",
+-      "oaepHash": "sha256"
+-    },
+-    {
+-      "ct": "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",
+-      "oaepHash": "sha512"
+-    },
+-    {
+-      "ct": "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",
+-      "oaepHash": "sha384",
+-      "oaepLabel": "01020304"
+-    },
+-    {
+-      "ct": "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",
+-      "oaepHash": "sha1",
+-      "oaepLabel": "00112233445566778899"
+-    }
+-  ]
+-}
+diff --git a/test/parallel/test-crypto-rsa-dsa.js b/test/parallel/test-crypto-rsa-dsa.js
+index 30ef7ec..c773aae 100644
+--- a/test/parallel/test-crypto-rsa-dsa.js
++++ b/test/parallel/test-crypto-rsa-dsa.js
+@@ -202,21 +202,59 @@ common.expectsError(() => {
+ // The following RSA-OAEP test cases were created using the WebCrypto API to
+ // ensure compatibility when using non-SHA1 hash functions.
+ {
+-  const { decryptionTests } =
+-      JSON.parse(fixtures.readSync('rsa-oaep-test-vectors.js', 'utf8'));
+-
+-  for (const { ct, oaepHash, oaepLabel } of decryptionTests) {
++  function testDecrypt(oaepHash, ciphertext) {
+     const decrypted = crypto.privateDecrypt({
+       key: rsaPkcs8KeyPem,
+-      oaepHash,
+-      oaepLabel: oaepLabel ? Buffer.from(oaepLabel, 'hex') : undefined
+-    }, Buffer.from(ct, 'hex'));
++      oaepHash
++    }, Buffer.from(ciphertext, 'hex'));
+ 
+     assert.strictEqual(decrypted.toString('utf8'), 'Hello Node.js');
+   }
++
++  testDecrypt(undefined, '16ece59cf985a8cf1a3434e4b9707c922c20638fdf9abf7e5dc' +
++                         '7943f4136899348c54116d15b2c17563b9c7143f9d5b85b4561' +
++                         '5ad0598ea6d21c900f3957b65400612306a9bebae441f005646' +
++                         'f7a7c97129a103ab54e777168ef966514adb17786b968ea0ff4' +
++                         '30a524904c4a11c683764b7c8dbb60df0952768381cdba4d665' +
++                         'e5006034393a10d56d33e75b2714db824a18da46441ef7f94a3' +
++                         '4a7058c0bbad0394083a038558bcc6dd370f8e518e1bd8d73b2' +
++                         '96fc51d77da44799e4ee774926ded7910e8768f92db76f63107' +
++                         '338d33354b735d3ad094240dbd7ffdfda27ef0255306dcf4a64' +
++                         '62849492abd1a97fdd37743ff87c4d2ec89866c5cdbb696bd2b' +
++                         '30');
++  testDecrypt('sha1', '16ece59cf985a8cf1a3434e4b9707c922c20638fdf9abf7e5dc794' +
++                      '3f4136899348c54116d15b2c17563b9c7143f9d5b85b45615ad059' +
++                      '8ea6d21c900f3957b65400612306a9bebae441f005646f7a7c9712' +
++                      '9a103ab54e777168ef966514adb17786b968ea0ff430a524904c4a' +
++                      '11c683764b7c8dbb60df0952768381cdba4d665e5006034393a10d' +
++                      '56d33e75b2714db824a18da46441ef7f94a34a7058c0bbad039408' +
++                      '3a038558bcc6dd370f8e518e1bd8d73b296fc51d77da44799e4ee7' +
++                      '74926ded7910e8768f92db76f63107338d33354b735d3ad094240d' +
++                      'bd7ffdfda27ef0255306dcf4a6462849492abd1a97fdd37743ff87' +
++                      'c4d2ec89866c5cdbb696bd2b30');
++  testDecrypt('sha256', '16ccf09afe5eb0130182b9fc1ca4af61a38e772047cac42146bf' +
++                        'a0fa5879aa9639203e4d01442d212ff95bddfbe4661222215a2e' +
++                        '91908c37ab926edea7cfc53f83357bc27f86af0f5f2818ae141f' +
++                        '4e9e934d4e66189aff30f062c9c3f6eb9bc495a59082cb978f99' +
++                        'b56ce5fa530a8469e46129258e5c42897cb194b6805e936e5cbb' +
++                        'eaa535bad6b1d3cdfc92119b7dd325a2e6d2979e316bdacc9f80' +
++                        'e29c7bbdf6846d738e380deadcb48df8c1e8aabf7a9dd2f8c71d' +
++                        '6681dbec7dcadc01887c51288674268796bc77fdf8f1c94c9ca5' +
++                        '0b1cc7cddbaf4e56cb151d23e2c699d2844c0104ee2e7e9dcdb9' +
++                        '07cfab43339120a40c59ca54f32b8d21b48a29656c77');
++  testDecrypt('sha512', '831b72e8dd91841729ecbddf2647d6f19dc0094734f8803d8c65' +
++                        '1b5655a12ae6156b74d9b594bcc0eacd002728380b94f46e8657' +
++                        'f130f354e03b6e7815ee257eda78dba296d67d24410c31c48e58' +
++                        '75cc79e4bde594b412be5f357f57a7ac1f1d18b718e408df162d' +
++                        '1795508e6a0616192b647ad942ea068a44fb2b323d35a3a61b92' +
++                        '6feb105d6c0b2a8fc8050222d1cf4a9e44da1f95bbc677fd6437' +
++                        '49c6c89ac551d072f04cd9320c97a8d94755c8a804954c082bed' +
++                        '7fa59199a00aca154c14a7b584b63c538daf9b9c7c90abfca193' +
++                        '87d2131f9d9b9ecfc8672249c33144d1be3bfc41558a13f99466' +
++                        '3661a3af24fd0a97619d508db36f5fc131af86fc68cf');
+ }
+ 
+-// Test invalid oaepHash and oaepLabel options.
++// Test invalid oaepHash options.
+ for (const fn of [crypto.publicEncrypt, crypto.privateDecrypt]) {
+   assert.throws(() => {
+     fn({
+@@ -237,17 +275,6 @@ for (const fn of [crypto.publicEncrypt, crypto.privateDecrypt]) {
+       code: 'ERR_INVALID_ARG_TYPE'
+     });
+   }
+-
+-  for (const oaepLabel of [0, false, null, Symbol(), () => {}, {}, 'foo']) {
+-    common.expectsError(() => {
+-      fn({
+-        key: rsaPubPem,
+-        oaepLabel
+-      }, Buffer.alloc(10));
+-    }, {
+-      code: 'ERR_INVALID_ARG_TYPE'
+-    });
+-  }
+ }
+ 
+ // Test RSA key signing/verification
+diff --git a/test/parallel/test-crypto-sign-verify.js b/test/parallel/test-crypto-sign-verify.js
+index d98317a..b3861dd 100644
+--- a/test/parallel/test-crypto-sign-verify.js
++++ b/test/parallel/test-crypto-sign-verify.js
+@@ -501,91 +501,21 @@ common.expectsError(
+ });
+ 
+ {
++  const privKey = fixtures.readKey('ec-key.pem');
+   const data = Buffer.from('Hello world');
+-  const keys = [['ec-key.pem', 64], ['dsa_private_1025.pem', 40]];
+-
+-  for (const [file, length] of keys) {
+-    const privKey = fixtures.readKey(file);
+-    [
+-      crypto.createSign('sha1').update(data).sign(privKey),
+-      crypto.sign('sha1', data, privKey),
+-      crypto.sign('sha1', data, { key: privKey, dsaEncoding: 'der' })
+-    ].forEach((sig) => {
+-      // Signature length variability due to DER encoding
+-      assert(sig.length >= length + 4 && sig.length <= length + 8);
+-
+-      assert.strictEqual(
+-        crypto.createVerify('sha1').update(data).verify(privKey, sig),
+-        true
+-      );
+-      assert.strictEqual(crypto.verify('sha1', data, privKey, sig), true);
+-    });
+-
+-    // Test (EC)DSA signature conversion.
+-    const opts = { key: privKey, dsaEncoding: 'ieee-p1363' };
+-    let sig = crypto.sign('sha1', data, opts);
+-    // Unlike DER signatures, IEEE P1363 signatures have a predictable length.
+-    assert.strictEqual(sig.length, length);
+-    assert.strictEqual(crypto.verify('sha1', data, opts, sig), true);
+-
+-    // Test invalid signature lengths.
+-    for (const i of [-2, -1, 1, 2, 4, 8]) {
+-      sig = crypto.randomBytes(length + i);
+-      common.expectsError(() => {
+-        crypto.verify('sha1', data, opts, sig);
+-      }, {
+-        message: 'Malformed signature'
+-      });
+-    }
+-  }
++  [
++    crypto.createSign('sha1').update(data).sign(privKey),
++    crypto.sign('sha1', data, privKey)
++  ].forEach((sig) => {
++    // Signature length variability due to DER encoding
++    assert.strictEqual(sig.length >= 68, true);
+ 
+-  // Test verifying externally signed messages.
+-  const extSig = Buffer.from('494c18ab5c8a62a72aea5041966902bcfa229821af2bf65' +
+-                             '0b5b4870d1fe6aebeaed9460c62210693b5b0a300033823' +
+-                             '33d9529c8abd8c5948940af944828be16c', 'hex');
+-  for (const ok of [true, false]) {
+     assert.strictEqual(
+-      crypto.verify('sha256', data, {
+-        key: fixtures.readKey('ec-key.pem'),
+-        dsaEncoding: 'ieee-p1363'
+-      }, extSig),
+-      ok
++      crypto.createVerify('sha1').update(data).verify(privKey, sig),
++      true
+     );
+-
+-    extSig[Math.floor(Math.random() * extSig.length)] ^= 1;
+-  }
+-
+-  // Non-(EC)DSA keys should ignore the option.
+-  const sig = crypto.sign('sha1', data, {
+-    key: keyPem,
+-    dsaEncoding: 'ieee-p1363'
++    assert.strictEqual(crypto.verify('sha1', data, privKey, sig), true);
+   });
+-  assert.strictEqual(crypto.verify('sha1', data, certPem, sig), true);
+-  assert.strictEqual(
+-    crypto.verify('sha1', data, {
+-      key: certPem,
+-      dsaEncoding: 'ieee-p1363'
+-    }, sig),
+-    true
+-  );
+-  assert.strictEqual(
+-    crypto.verify('sha1', data, {
+-      key: certPem,
+-      dsaEncoding: 'der'
+-    }, sig),
+-    true
+-  );
+-
+-  for (const dsaEncoding of ['foo', null, {}, 5, true, NaN]) {
+-    common.expectsError(() => {
+-      crypto.sign('sha1', data, {
+-        key: certPem,
+-        dsaEncoding
+-      });
+-    }, {
+-      code: 'ERR_INVALID_OPT_VALUE'
+-    });
+-  }
+ }
+ 
+ 
+diff --git a/test/parallel/test-https-agent-keylog.js b/test/parallel/test-https-agent-keylog.js
+deleted file mode 100644
+index 2fc13cb..0000000
+--- a/test/parallel/test-https-agent-keylog.js
++++ /dev/null
+@@ -1,44 +0,0 @@
+-'use strict';
+-
+-const common = require('../common');
+-if (!common.hasCrypto)
+-  common.skip('missing crypto');
+-
+-const assert = require('assert');
+-const https = require('https');
+-const fixtures = require('../common/fixtures');
+-
+-const server = https.createServer({
+-  key: fixtures.readKey('agent2-key.pem'),
+-  cert: fixtures.readKey('agent2-cert.pem'),
+-  // Amount of keylog events depends on negotiated protocol
+-  // version, so force a specific one:
+-  minVersion: 'TLSv1.3',
+-  maxVersion: 'TLSv1.3',
+-}, (req, res) => {
+-  res.end('bye');
+-}).listen(() => {
+-  https.get({
+-    port: server.address().port,
+-    rejectUnauthorized: false,
+-  }, (res) => {
+-    res.resume();
+-    res.on('end', () => {
+-      // Trigger TLS connection reuse
+-      https.get({
+-        port: server.address().port,
+-        rejectUnauthorized: false,
+-      }, (res) => {
+-        server.close();
+-        res.resume();
+-      });
+-    });
+-  });
+-});
+-
+-const verifyKeylog = (line, tlsSocket) => {
+-  assert(Buffer.isBuffer(line));
+-  assert.strictEqual(tlsSocket.encrypted, true);
+-};
+-server.on('keylog', common.mustCall(verifyKeylog, 10));
+-https.globalAgent.on('keylog', common.mustCall(verifyKeylog, 10));
+diff --git a/test/parallel/test-tls-enable-keylog-cli.js b/test/parallel/test-tls-enable-keylog-cli.js
+deleted file mode 100644
+index 5d05069..0000000
+--- a/test/parallel/test-tls-enable-keylog-cli.js
++++ /dev/null
+@@ -1,57 +0,0 @@
+-'use strict';
+-const common = require('../common');
+-if (!common.hasCrypto) common.skip('missing crypto');
+-const fixtures = require('../common/fixtures');
+-
+-// Test --tls-keylog CLI flag.
+-
+-const assert = require('assert');
+-const path = require('path');
+-const fs = require('fs');
+-const { fork } = require('child_process');
+-
+-if (process.argv[2] === 'test')
+-  return test();
+-
+-const tmpdir = require('../common/tmpdir');
+-tmpdir.refresh();
+-const file = path.resolve(tmpdir.path, 'keylog.log');
+-
+-const child = fork(__filename, ['test'], {
+-  execArgv: ['--tls-keylog=' + file]
+-});
+-
+-child.on('close', common.mustCall((code, signal) => {
+-  assert.strictEqual(code, 0);
+-  assert.strictEqual(signal, null);
+-  const log = fs.readFileSync(file, 'utf8');
+-  assert(/SECRET/.test(log));
+-}));
+-
+-function test() {
+-  const {
+-    connect, keys
+-  } = require(fixtures.path('tls-connect'));
+-
+-  connect({
+-    client: {
+-      checkServerIdentity: (servername, cert) => { },
+-      ca: `${keys.agent1.cert}\n${keys.agent6.ca}`,
+-    },
+-    server: {
+-      cert: keys.agent6.cert,
+-      key: keys.agent6.key
+-    },
+-  }, common.mustCall((err, pair, cleanup) => {
+-    if (pair.server.err) {
+-      console.trace('server', pair.server.err);
+-    }
+-    if (pair.client.err) {
+-      console.trace('client', pair.client.err);
+-    }
+-    assert.ifError(pair.server.err);
+-    assert.ifError(pair.client.err);
+-
+-    return cleanup();
+-  }));
+-}
+diff --git a/test/parallel/test-tls-getcipher.js b/test/parallel/test-tls-getcipher.js
+index 744276a..624f8ef 100644
+--- a/test/parallel/test-tls-getcipher.js
++++ b/test/parallel/test-tls-getcipher.js
+@@ -52,7 +52,6 @@ server.listen(0, '127.0.0.1', common.mustCall(function() {
+   }, common.mustCall(function() {
+     const cipher = this.getCipher();
+     assert.strictEqual(cipher.name, 'AES128-SHA256');
+-    assert.strictEqual(cipher.standardName, 'TLS_RSA_WITH_AES_128_CBC_SHA256');
+     assert.strictEqual(cipher.version, 'TLSv1.2');
+     this.end();
+   }));
+@@ -66,8 +65,6 @@ server.listen(0, '127.0.0.1', common.mustCall(function() {
+   }, common.mustCall(function() {
+     const cipher = this.getCipher();
+     assert.strictEqual(cipher.name, 'ECDHE-RSA-AES128-GCM-SHA256');
+-    assert.strictEqual(cipher.standardName,
+-                       'TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256');
+     assert.strictEqual(cipher.version, 'TLSv1.2');
+     this.end();
+   }));
+@@ -89,7 +86,6 @@ tls.createServer({
+   }, common.mustCall(() => {
+     const cipher = client.getCipher();
+     assert.strictEqual(cipher.name, 'TLS_AES_128_CCM_8_SHA256');
+-    assert.strictEqual(cipher.standardName, cipher.name);
+     assert.strictEqual(cipher.version, 'TLSv1.3');
+     client.end();
+   }));
+diff --git a/test/parallel/test-tls-keylog-tlsv13.js b/test/parallel/test-tls-keylog-tlsv13.js
+index f26dece..0f65564 100644
+--- a/test/parallel/test-tls-keylog-tlsv13.js
++++ b/test/parallel/test-tls-keylog-tlsv13.js
+@@ -21,13 +21,9 @@ const server = tls.createServer({
+     rejectUnauthorized: false,
+   });
+ 
+-  server.on('keylog', common.mustCall((line, tlsSocket) => {
+-    assert(Buffer.isBuffer(line));
+-    assert.strictEqual(tlsSocket.encrypted, true);
+-  }, 5));
+-  client.on('keylog', common.mustCall((line) => {
+-    assert(Buffer.isBuffer(line));
+-  }, 5));
++  const verifyBuffer = (line) => assert(Buffer.isBuffer(line));
++  server.on('keylog', common.mustCall(verifyBuffer, 5));
++  client.on('keylog', common.mustCall(verifyBuffer, 5));
+ 
+   client.once('secureConnect', () => {
+     server.close();
+diff --git a/test/parallel/test-tls-multi-key.js b/test/parallel/test-tls-multi-key.js
+index b9eaa05..c5e66f3 100644
+--- a/test/parallel/test-tls-multi-key.js
++++ b/test/parallel/test-tls-multi-key.js
+@@ -157,7 +157,6 @@ function test(options) {
+     }, common.mustCall(function() {
+       assert.deepStrictEqual(ecdsa.getCipher(), {
+         name: 'ECDHE-ECDSA-AES256-GCM-SHA384',
+-        standardName: 'TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384',
+         version: 'TLSv1.2'
+       });
+       assert.strictEqual(ecdsa.getPeerCertificate().subject.CN, eccCN);
+@@ -176,7 +175,6 @@ function test(options) {
+     }, common.mustCall(function() {
+       assert.deepStrictEqual(rsa.getCipher(), {
+         name: 'ECDHE-RSA-AES256-GCM-SHA384',
+-        standardName: 'TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384',
+         version: 'TLSv1.2'
+       });
+       assert.strictEqual(rsa.getPeerCertificate().subject.CN, rsaCN);
+diff --git a/test/parallel/test-tls-multi-pfx.js b/test/parallel/test-tls-multi-pfx.js
+index c20376a..3b0c059 100644
+--- a/test/parallel/test-tls-multi-pfx.js
++++ b/test/parallel/test-tls-multi-pfx.js
+@@ -42,11 +42,9 @@ const server = tls.createServer(options, function(conn) {
+ process.on('exit', function() {
+   assert.deepStrictEqual(ciphers, [{
+     name: 'ECDHE-ECDSA-AES256-GCM-SHA384',
+-    standardName: 'TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384',
+     version: 'TLSv1.2'
+   }, {
+     name: 'ECDHE-RSA-AES256-GCM-SHA384',
+-    standardName: 'TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384',
+     version: 'TLSv1.2'
+   }]);
+ });
+diff --git a/test/parallel/test-tls-psk-circuit.js b/test/parallel/test-tls-psk-circuit.js
+deleted file mode 100644
+index 4bcdf36..0000000
+--- a/test/parallel/test-tls-psk-circuit.js
++++ /dev/null
+@@ -1,72 +0,0 @@
+-'use strict';
+-const common = require('../common');
+-
+-if (!common.hasCrypto)
+-  common.skip('missing crypto');
+-
+-const assert = require('assert');
+-const tls = require('tls');
+-
+-const CIPHERS = 'PSK+HIGH:TLS_AES_128_GCM_SHA256';
+-const USERS = {
+-  UserA: Buffer.allocUnsafe(128),
+-  UserB: Buffer.from('82072606b502b0f4025e90eb75fe137d', 'hex'),
+-};
+-const TEST_DATA = 'x';
+-
+-const serverOptions = {
+-  ciphers: CIPHERS,
+-  pskCallback(socket, id) {
+-    assert.ok(socket instanceof tls.TLSSocket);
+-    assert.ok(typeof id === 'string');
+-    return USERS[id];
+-  },
+-};
+-
+-function test(secret, opts, error) {
+-  const cb = !error ?
+-    common.mustCall((c) => { c.pipe(c); }) :
+-    common.mustNotCall();
+-  const server = tls.createServer(serverOptions, cb);
+-  server.listen(0, common.mustCall(() => {
+-    const options = {
+-      port: server.address().port,
+-      ciphers: CIPHERS,
+-      checkServerIdentity: () => {},
+-      pskCallback: common.mustCall(() => secret),
+-      ...opts,
+-    };
+-
+-    if (!error) {
+-      const client = tls.connect(options, common.mustCall(() => {
+-        client.end(TEST_DATA);
+-
+-        client.on('data', common.mustCall((data) => {
+-          assert.strictEqual(data.toString(), TEST_DATA);
+-        }));
+-        client.on('close', common.mustCall(() => server.close()));
+-      }));
+-    } else {
+-      const client = tls.connect(options, common.mustNotCall());
+-      client.on('error', common.mustCall((err) => {
+-        assert.strictEqual(err.message, error);
+-        server.close();
+-      }));
+-    }
+-  }));
+-}
+-
+-const DISCONNECT_MESSAGE =
+-  'Client network socket disconnected before ' +
+-  'secure TLS connection was established';
+-
+-test({ psk: USERS.UserA, identity: 'UserA' });
+-test({ psk: USERS.UserA, identity: 'UserA' }, { maxVersion: 'TLSv1.2' });
+-test({ psk: USERS.UserA, identity: 'UserA' }, { minVersion: 'TLSv1.3' });
+-test({ psk: USERS.UserB, identity: 'UserB' });
+-test({ psk: USERS.UserB, identity: 'UserB' }, { minVersion: 'TLSv1.3' });
+-// Unrecognized user should fail handshake
+-test({ psk: USERS.UserB, identity: 'UserC' }, {}, DISCONNECT_MESSAGE);
+-// Recognized user but incorrect secret should fail handshake
+-test({ psk: USERS.UserA, identity: 'UserB' }, {}, DISCONNECT_MESSAGE);
+-test({ psk: USERS.UserB, identity: 'UserB' });
+diff --git a/test/parallel/test-tls-psk-errors.js b/test/parallel/test-tls-psk-errors.js
+deleted file mode 100644
+index 4864a66..0000000
+--- a/test/parallel/test-tls-psk-errors.js
++++ /dev/null
+@@ -1,32 +0,0 @@
+-'use strict';
+-const common = require('../common');
+-
+-if (!common.hasCrypto)
+-  common.skip('missing crypto');
+-
+-const assert = require('assert');
+-const tls = require('tls');
+-
+-{
+-  // Check tlsClientError on invalid pskIdentityHint.
+-
+-  const server = tls.createServer({
+-    ciphers: 'PSK+HIGH',
+-    pskCallback: () => {},
+-    pskIdentityHint: 'a'.repeat(512), // Too long identity hint.
+-  });
+-  server.on('tlsClientError', (err) => {
+-    assert.ok(err instanceof Error);
+-    assert.strictEqual(err.code, 'ERR_TLS_PSK_SET_IDENTIY_HINT_FAILED');
+-    server.close();
+-  });
+-  server.listen(0, () => {
+-    const client = tls.connect({
+-      port: server.address().port,
+-      ciphers: 'PSK+HIGH',
+-      checkServerIdentity: () => {},
+-      pskCallback: () => {},
+-    }, () => {});
+-    client.on('error', common.expectsError({ code: 'ECONNRESET' }));
+-  });
+-}
+diff --git a/test/parallel/test-tls-psk-server.js b/test/parallel/test-tls-psk-server.js
+deleted file mode 100644
+index 69b850c..0000000
+--- a/test/parallel/test-tls-psk-server.js
++++ /dev/null
+@@ -1,77 +0,0 @@
+-'use strict';
+-const common = require('../common');
+-
+-if (!common.hasCrypto)
+-  common.skip('missing crypto');
+-if (!common.opensslCli)
+-  common.skip('missing openssl cli');
+-
+-const assert = require('assert');
+-
+-const tls = require('tls');
+-const spawn = require('child_process').spawn;
+-
+-const CIPHERS = 'PSK+HIGH';
+-const KEY = 'd731ef57be09e5204f0b205b60627028';
+-const IDENTITY = 'TestUser';
+-
+-const server = tls.createServer({
+-  ciphers: CIPHERS,
+-  pskIdentityHint: IDENTITY,
+-  pskCallback(socket, identity) {
+-    assert.ok(socket instanceof tls.TLSSocket);
+-    assert.ok(typeof identity === 'string');
+-    if (identity === IDENTITY)
+-      return Buffer.from(KEY, 'hex');
+-  }
+-});
+-
+-server.on('connection', common.mustCall());
+-
+-server.on('secureConnection', (socket) => {
+-  socket.write('hello\r\n');
+-
+-  socket.on('data', (data) => {
+-    socket.write(data);
+-  });
+-});
+-
+-let gotHello = false;
+-let sentWorld = false;
+-let gotWorld = false;
+-
+-server.listen(0, () => {
+-  const client = spawn(common.opensslCli, [
+-    's_client',
+-    '-connect', '127.0.0.1:' + server.address().port,
+-    '-cipher', CIPHERS,
+-    '-psk', KEY,
+-    '-psk_identity', IDENTITY
+-  ]);
+-
+-  let out = '';
+-
+-  client.stdout.setEncoding('utf8');
+-  client.stdout.on('data', (d) => {
+-    out += d;
+-
+-    if (!gotHello && /hello/.test(out)) {
+-      gotHello = true;
+-      client.stdin.write('world\r\n');
+-      sentWorld = true;
+-    }
+-
+-    if (!gotWorld && /world/.test(out)) {
+-      gotWorld = true;
+-      client.stdin.end();
+-    }
+-  });
+-
+-  client.on('exit', common.mustCall((code) => {
+-    assert.ok(gotHello);
+-    assert.ok(sentWorld);
+-    assert.ok(gotWorld);
+-    assert.strictEqual(code, 0);
+-    server.close();
+-  }));
+-});
+diff --git a/test/parallel/test-tls-set-sigalgs.js b/test/parallel/test-tls-set-sigalgs.js
+deleted file mode 100644
+index 59dc2ca..0000000
+--- a/test/parallel/test-tls-set-sigalgs.js
++++ /dev/null
+@@ -1,74 +0,0 @@
+-'use strict';
+-const common = require('../common');
+-if (!common.hasCrypto) common.skip('missing crypto');
+-const fixtures = require('../common/fixtures');
+-
+-// Test sigalgs: option for TLS.
+-
+-const {
+-  assert, connect, keys
+-} = require(fixtures.path('tls-connect'));
+-
+-function assert_arrays_equal(left, right) {
+-  assert.strictEqual(left.length, right.length);
+-  for (let i = 0; i < left.length; i++) {
+-    assert.strictEqual(left[i], right[i]);
+-  }
+-}
+-
+-function test(csigalgs, ssigalgs, shared_sigalgs, cerr, serr) {
+-  assert(shared_sigalgs || serr || cerr, 'test missing any expectations');
+-  connect({
+-    client: {
+-      checkServerIdentity: (servername, cert) => { },
+-      ca: `${keys.agent1.cert}\n${keys.agent6.ca}`,
+-      cert: keys.agent2.cert,
+-      key: keys.agent2.key,
+-      sigalgs: csigalgs
+-    },
+-    server: {
+-      cert: keys.agent6.cert,
+-      key: keys.agent6.key,
+-      ca: keys.agent2.ca,
+-      context: {
+-        requestCert: true,
+-        rejectUnauthorized: true
+-      },
+-      sigalgs: ssigalgs
+-    },
+-  }, common.mustCall((err, pair, cleanup) => {
+-    if (shared_sigalgs) {
+-      assert.ifError(err);
+-      assert.ifError(pair.server.err);
+-      assert.ifError(pair.client.err);
+-      assert(pair.server.conn);
+-      assert(pair.client.conn);
+-      assert_arrays_equal(pair.server.conn.getSharedSigalgs(), shared_sigalgs);
+-    } else {
+-      if (serr) {
+-        assert(pair.server.err);
+-        assert(pair.server.err.code, serr);
+-      }
+-
+-      if (cerr) {
+-        assert(pair.client.err);
+-        assert(pair.client.err.code, cerr);
+-      }
+-    }
+-
+-    return cleanup();
+-  }));
+-}
+-
+-// Have shared sigalgs
+-test('RSA-PSS+SHA384', 'RSA-PSS+SHA384', ['RSA-PSS+SHA384']);
+-test('RSA-PSS+SHA256:RSA-PSS+SHA512:ECDSA+SHA256',
+-     'RSA-PSS+SHA256:ECDSA+SHA256',
+-     ['RSA-PSS+SHA256', 'ECDSA+SHA256']);
+-
+-// Do not have shared sigalgs.
+-test('RSA-PSS+SHA384', 'ECDSA+SHA256',
+-     undefined, 'ECONNRESET', 'ERR_SSL_NO_SHARED_SIGNATURE_ALGORITMS');
+-
+-test('RSA-PSS+SHA384:ECDSA+SHA256', 'ECDSA+SHA384:RSA-PSS+SHA256',
+-     undefined, 'ECONNRESET', 'ERR_SSL_NO_SHARED_SIGNATURE_ALGORITMS');
+diff --git a/test/sequential/test-tls-psk-client.js b/test/sequential/test-tls-psk-client.js
+deleted file mode 100644
+index 7c9fb93..0000000
+--- a/test/sequential/test-tls-psk-client.js
++++ /dev/null
+@@ -1,96 +0,0 @@
+-'use strict';
+-const common = require('../common');
+-
+-if (!common.hasCrypto)
+-  common.skip('missing crypto');
+-if (!common.opensslCli)
+-  common.skip('missing openssl cli');
+-
+-const assert = require('assert');
+-const tls = require('tls');
+-const net = require('net');
+-const { spawn } = require('child_process');
+-
+-const CIPHERS = 'PSK+HIGH';
+-const KEY = 'd731ef57be09e5204f0b205b60627028';
+-const IDENTITY = 'Client_identity';  // Hardcoded by `openssl s_server`
+-
+-const server = spawn(common.opensslCli, [
+-  's_server',
+-  '-accept', common.PORT,
+-  '-cipher', CIPHERS,
+-  '-psk', KEY,
+-  '-psk_hint', IDENTITY,
+-  '-nocert',
+-  '-rev',
+-]);
+-
+-const cleanUp = (err) => {
+-  clearTimeout(timeout);
+-  if (err)
+-    console.log('Failed:', err);
+-  server.kill();
+-  process.exitCode = err ? 1 : 0;
+-};
+-
+-const timeout = setTimeout(() => cleanUp('Timeouted'), 5000);
+-
+-function waitForPort(port, cb) {
+-  const socket = net.connect(common.PORT, () => {
+-    socket.end();
+-    socket.on('end', cb);
+-  });
+-  socket.on('error', (e) => {
+-    if (e.code === 'ENOENT' || e.code === 'ECONNREFUSED') {
+-      setTimeout(() => waitForPort(port, cb), 1000);
+-    } else {
+-      cb(e);
+-    }
+-  });
+-}
+-
+-waitForPort(common.PORT, common.mustCall((err) => {
+-  if (err) {
+-    cleanUp(err);
+-    return;
+-  }
+-
+-  const message = 'hello';
+-  const reverse = message.split('').reverse().join('');
+-  runClient(message, common.mustCall((err, data) => {
+-    try {
+-      if (!err) assert.strictEqual(data.trim(), reverse);
+-    } finally {
+-      cleanUp(err);
+-    }
+-  }));
+-}));
+-
+-function runClient(message, cb) {
+-  const s = tls.connect(common.PORT, {
+-    ciphers: CIPHERS,
+-    checkServerIdentity: () => {},
+-    pskCallback(hint) {
+-      // 'hint' will be null in TLS1.3.
+-      if (hint === null || hint === IDENTITY) {
+-        return {
+-          identity: IDENTITY,
+-          psk: Buffer.from(KEY, 'hex')
+-        };
+-      }
+-    }
+-  });
+-  s.on('secureConnect', common.mustCall(() => {
+-    let data = '';
+-    s.on('data', common.mustCallAtLeast((d) => {
+-      data += d;
+-    }));
+-    s.on('end', common.mustCall(() => {
+-      cb(null, data);
+-    }));
+-    s.end(message);
+-  }));
+-  s.on('error', (e) => {
+-    cb(e);
+-  });
+-}
+-- 
+1.8.3.1
+
diff --git a/SOURCES/0003-Adjust-tests-for-missing-OpenSSL-features.patch b/SOURCES/0003-Adjust-tests-for-missing-OpenSSL-features.patch
new file mode 100644
index 0000000..2732203
--- /dev/null
+++ b/SOURCES/0003-Adjust-tests-for-missing-OpenSSL-features.patch
@@ -0,0 +1,2961 @@
+From b9a5922c36d77d1c6bb90fdc5225b5c838e5aa39 Mon Sep 17 00:00:00 2001
+From: Zuzana Svetlikova <zsvetlik@redhat.com>
+Date: Wed, 19 Feb 2020 10:31:43 +0000
+Subject: [PATCH 3/4] fix failing tests
+
+---
+ doc/api/cli.md                                     |   5 +-
+ test/doctool/test-make-doc.js                      |  63 ------
+ test/known_issues/test-crypto-aes-wrap.js          |  62 ++++++
+ test/known_issues/test-crypto-des3-wrap.js         |  25 +++
+ test/known_issues/test-crypto-hash-stream-pipe.js  |  46 ++++
+ test/known_issues/test-make-doc.js                 |  63 ++++++
+ test/known_issues/test-tls-cli-max-version-1.3.js  |  15 ++
+ test/known_issues/test-tls-cli-min-max-conflict.js |  14 ++
+ test/known_issues/test-tls-cli-min-version-1.3.js  |  15 ++
+ .../test-tls-client-renegotiation-13.js            |  41 ++++
+ test/known_issues/test-tls-keylog-tlsv13.js        |  32 +++
+ test/known_issues/test-tls-no-sslv3.js             |  49 +++++
+ test/known_issues/test-tls-ticket-12.js            |  12 +
+ test/known_issues/test-tls-ticket-cluster.js       | 135 ++++++++++++
+ test/known_issues/test-tls-ticket.js               | 159 ++++++++++++++
+ test/known_issues/test-v8-serdes.js                | 244 +++++++++++++++++++++
+ test/parallel/test-crypto-aes-wrap.js              |  62 ------
+ test/parallel/test-crypto-authenticated.js         |  54 +----
+ test/parallel/test-crypto-des3-wrap.js             |  25 ---
+ test/parallel/test-crypto-hash-stream-pipe.js      |  46 ----
+ test/parallel/test-crypto-hash.js                  |  81 -------
+ test/parallel/test-crypto-key-objects.js           | 175 ---------------
+ test/parallel/test-crypto-keygen.js                |  54 -----
+ test/parallel/test-crypto-pbkdf2.js                |  18 --
+ test/parallel/test-crypto-sign-verify.js           |   8 -
+ test/parallel/test-crypto.js                       |   6 +-
+ test/parallel/test-https-agent-session-eviction.js |  42 +++-
+ test/parallel/test-tls-alert-handling.js           |   2 +-
+ test/parallel/test-tls-cli-max-version-1.3.js      |  15 --
+ test/parallel/test-tls-cli-min-max-conflict.js     |  14 --
+ test/parallel/test-tls-cli-min-version-1.0.js      |   2 +-
+ test/parallel/test-tls-cli-min-version-1.1.js      |   2 +-
+ test/parallel/test-tls-cli-min-version-1.2.js      |   2 +-
+ test/parallel/test-tls-cli-min-version-1.3.js      |  15 --
+ .../test-tls-client-getephemeralkeyinfo.js         |   2 -
+ test/parallel/test-tls-client-renegotiation-13.js  |  41 ----
+ test/parallel/test-tls-destroy-stream.js           |   2 +-
+ test/parallel/test-tls-getcipher.js                |  25 +--
+ test/parallel/test-tls-keylog-tlsv13.js            |  32 ---
+ test/parallel/test-tls-min-max-version.js          |  29 +--
+ test/parallel/test-tls-multi-key.js                |   4 +-
+ test/parallel/test-tls-multi-pfx.js                |   4 +-
+ test/parallel/test-tls-no-sslv3.js                 |  49 -----
+ test/parallel/test-tls-passphrase.js               |   2 +-
+ test/parallel/test-tls-set-ciphers.js              |  27 +--
+ test/parallel/test-tls-ticket-12.js                |  12 -
+ test/parallel/test-tls-ticket-cluster.js           | 135 ------------
+ test/parallel/test-tls-ticket.js                   | 159 --------------
+ test/parallel/test-v8-serdes.js                    | 244 ---------------------
+ 49 files changed, 973 insertions(+), 1397 deletions(-)
+ delete mode 100644 test/doctool/test-make-doc.js
+ create mode 100644 test/known_issues/test-crypto-aes-wrap.js
+ create mode 100644 test/known_issues/test-crypto-des3-wrap.js
+ create mode 100644 test/known_issues/test-crypto-hash-stream-pipe.js
+ create mode 100644 test/known_issues/test-make-doc.js
+ create mode 100644 test/known_issues/test-tls-cli-max-version-1.3.js
+ create mode 100644 test/known_issues/test-tls-cli-min-max-conflict.js
+ create mode 100644 test/known_issues/test-tls-cli-min-version-1.3.js
+ create mode 100644 test/known_issues/test-tls-client-renegotiation-13.js
+ create mode 100644 test/known_issues/test-tls-keylog-tlsv13.js
+ create mode 100644 test/known_issues/test-tls-no-sslv3.js
+ create mode 100644 test/known_issues/test-tls-ticket-12.js
+ create mode 100644 test/known_issues/test-tls-ticket-cluster.js
+ create mode 100644 test/known_issues/test-tls-ticket.js
+ create mode 100644 test/known_issues/test-v8-serdes.js
+ delete mode 100644 test/parallel/test-crypto-aes-wrap.js
+ delete mode 100644 test/parallel/test-crypto-des3-wrap.js
+ delete mode 100644 test/parallel/test-crypto-hash-stream-pipe.js
+ delete mode 100644 test/parallel/test-tls-cli-max-version-1.3.js
+ delete mode 100644 test/parallel/test-tls-cli-min-max-conflict.js
+ delete mode 100644 test/parallel/test-tls-cli-min-version-1.3.js
+ delete mode 100644 test/parallel/test-tls-client-renegotiation-13.js
+ delete mode 100644 test/parallel/test-tls-keylog-tlsv13.js
+ delete mode 100644 test/parallel/test-tls-no-sslv3.js
+ delete mode 100644 test/parallel/test-tls-ticket-12.js
+ delete mode 100644 test/parallel/test-tls-ticket-cluster.js
+ delete mode 100644 test/parallel/test-tls-ticket.js
+ delete mode 100644 test/parallel/test-v8-serdes.js
+
+diff --git a/doc/api/cli.md b/doc/api/cli.md
+index ecf7632..15124c5 100644
+--- a/doc/api/cli.md
++++ b/doc/api/cli.md
+@@ -711,8 +711,7 @@ with crypto support (default).
+ added: v12.0.0
+ -->
+ 
+-Set [`tls.DEFAULT_MAX_VERSION`][] to 'TLSv1.2'. Use to disable support for
+-TLSv1.3.
++Set [`tls.DEFAULT_MAX_VERSION`][] to 'TLSv1.2'.
+ 
+ ### `--tls-min-v1.0`
+ <!-- YAML
+@@ -1094,11 +1093,9 @@ Node.js options that are allowed are:
+ * `--title`
+ * `--tls-cipher-list`
+ * `--tls-max-v1.2`
+-* `--tls-max-v1.3`
+ * `--tls-min-v1.0`
+ * `--tls-min-v1.1`
+ * `--tls-min-v1.2`
+-* `--tls-min-v1.3`
+ * `--trace-deprecation`
+ * `--trace-event-categories`
+ * `--trace-event-file-pattern`
+diff --git a/test/doctool/test-make-doc.js b/test/doctool/test-make-doc.js
+deleted file mode 100644
+index 7f4f3ae..0000000
+--- a/test/doctool/test-make-doc.js
++++ /dev/null
+@@ -1,63 +0,0 @@
+-'use strict';
+-const common = require('../common');
+-if (common.isWindows) {
+-  common.skip('`make doc` does not run on Windows');
+-}
+-
+-// This tests that `make doc` generates the documentation properly.
+-// Note that for this test to pass, `make doc` must be run first.
+-
+-const assert = require('assert');
+-const fs = require('fs');
+-const path = require('path');
+-
+-const apiPath = path.resolve(__dirname, '..', '..', 'out', 'doc', 'api');
+-const mdPath = path.resolve(__dirname, '..', '..', 'doc', 'api');
+-const allMD = fs.readdirSync(mdPath);
+-const allDocs = fs.readdirSync(apiPath);
+-assert.ok(allDocs.includes('index.html'));
+-
+-const actualDocs = allDocs.filter(
+-  (name) => {
+-    const extension = path.extname(name);
+-    return extension === '.html' || extension === '.json';
+-  }
+-);
+-
+-for (const name of actualDocs) {
+-  if (name.startsWith('all.')) continue;
+-
+-  assert.ok(
+-    allMD.includes(name.replace(/\.\w+$/, '.md')),
+-    `Unexpected output: out/doc/api/${name}, remove and rerun.`
+-  );
+-}
+-
+-const toc = fs.readFileSync(path.resolve(apiPath, 'index.html'), 'utf8');
+-const re = /href="([^/]+\.html)"/;
+-const globalRe = new RegExp(re, 'g');
+-const links = toc.match(globalRe);
+-assert.notStrictEqual(links, null);
+-
+-// Filter out duplicate links, leave just filenames, add expected JSON files.
+-const linkedHtmls = [...new Set(links)].map((link) => link.match(re)[1]);
+-const expectedJsons = linkedHtmls
+-                       .map((name) => name.replace('.html', '.json'));
+-const expectedDocs = linkedHtmls.concat(expectedJsons);
+-
+-// Test that all the relative links in the TOC match to the actual documents.
+-for (const expectedDoc of expectedDocs) {
+-  assert.ok(actualDocs.includes(expectedDoc), `${expectedDoc} does not exist`);
+-}
+-
+-// Test that all the actual documents match to the relative links in the TOC
+-// and that they are not empty files.
+-for (const actualDoc of actualDocs) {
+-  assert.ok(
+-    expectedDocs.includes(actualDoc), `${actualDoc} does not match TOC`);
+-
+-  assert.ok(
+-    fs.statSync(path.join(apiPath, actualDoc)).size !== 0,
+-    `${actualDoc} is empty`
+-  );
+-}
+diff --git a/test/known_issues/test-crypto-aes-wrap.js b/test/known_issues/test-crypto-aes-wrap.js
+new file mode 100644
+index 0000000..6fe3525
+--- /dev/null
++++ b/test/known_issues/test-crypto-aes-wrap.js
+@@ -0,0 +1,62 @@
++'use strict';
++const common = require('../common');
++if (!common.hasCrypto)
++  common.skip('missing crypto');
++
++const assert = require('assert');
++const crypto = require('crypto');
++
++const test = [
++  {
++    algorithm: 'aes128-wrap',
++    key: 'b26f309fbe57e9b3bb6ae5ef31d54450',
++    iv: '3fd838af4093d749',
++    text: '12345678123456781234567812345678'
++  },
++  {
++    algorithm: 'id-aes128-wrap-pad',
++    key: 'b26f309fbe57e9b3bb6ae5ef31d54450',
++    iv: '3fd838af',
++    text: '12345678123456781234567812345678123'
++  },
++  {
++    algorithm: 'aes192-wrap',
++    key: '40978085d68091f7dfca0d7dfc7a5ee76d2cc7f2f345a304',
++    iv: '3fd838af4093d749',
++    text: '12345678123456781234567812345678'
++  },
++  {
++    algorithm: 'id-aes192-wrap-pad',
++    key: '40978085d68091f7dfca0d7dfc7a5ee76d2cc7f2f345a304',
++    iv: '3fd838af',
++    text: '12345678123456781234567812345678123'
++  },
++  {
++    algorithm: 'aes256-wrap',
++    key: '29c9eab5ed5ad44134a1437fe2e673b4d88a5b7c72e68454fea08721392b7323',
++    iv: '3fd838af4093d749',
++    text: '12345678123456781234567812345678'
++  },
++  {
++    algorithm: 'id-aes256-wrap-pad',
++    key: '29c9eab5ed5ad44134a1437fe2e673b4d88a5b7c72e68454fea08721392b7323',
++    iv: '3fd838af',
++    text: '12345678123456781234567812345678123'
++  },
++];
++
++test.forEach((data) => {
++  const cipher = crypto.createCipheriv(
++    data.algorithm,
++    Buffer.from(data.key, 'hex'),
++    Buffer.from(data.iv, 'hex'));
++  const ciphertext = cipher.update(data.text, 'utf8');
++
++  const decipher = crypto.createDecipheriv(
++    data.algorithm,
++    Buffer.from(data.key, 'hex'),
++    Buffer.from(data.iv, 'hex'));
++  const msg = decipher.update(ciphertext, 'buffer', 'utf8');
++
++  assert.strictEqual(msg, data.text, `${data.algorithm} test case failed`);
++});
+diff --git a/test/known_issues/test-crypto-des3-wrap.js b/test/known_issues/test-crypto-des3-wrap.js
+new file mode 100644
+index 0000000..75c8cd5
+--- /dev/null
++++ b/test/known_issues/test-crypto-des3-wrap.js
+@@ -0,0 +1,25 @@
++'use strict';
++const common = require('../common');
++if (!common.hasCrypto)
++  common.skip('missing crypto');
++
++const assert = require('assert');
++const crypto = require('crypto');
++
++// Test case for des-ede3 wrap/unwrap. des3-wrap needs extra 2x blocksize
++// then plaintext to store ciphertext.
++const test = {
++  key: Buffer.from('3c08e25be22352910671cfe4ba3652b1220a8a7769b490ba', 'hex'),
++  iv: Buffer.alloc(0),
++  plaintext: '32|RmVZZkFUVmpRRkp0TmJaUm56ZU9qcnJkaXNNWVNpTTU*|iXmckfRWZBG' +
++    'WWELweCBsThSsfUHLeRe0KCsK8ooHgxie0zOINpXxfZi/oNG7uq9JWFVCk70gfzQH8ZU' +
++    'JjAfaFg**'
++};
++
++const cipher = crypto.createCipheriv('des3-wrap', test.key, test.iv);
++const ciphertext = cipher.update(test.plaintext, 'utf8');
++
++const decipher = crypto.createDecipheriv('des3-wrap', test.key, test.iv);
++const msg = decipher.update(ciphertext, 'buffer', 'utf8');
++
++assert.strictEqual(msg, test.plaintext);
+diff --git a/test/known_issues/test-crypto-hash-stream-pipe.js b/test/known_issues/test-crypto-hash-stream-pipe.js
+new file mode 100644
+index 0000000..d22281a
+--- /dev/null
++++ b/test/known_issues/test-crypto-hash-stream-pipe.js
+@@ -0,0 +1,46 @@
++// Copyright Joyent, Inc. and other Node contributors.
++//
++// Permission is hereby granted, free of charge, to any person obtaining a
++// copy of this software and associated documentation files (the
++// "Software"), to deal in the Software without restriction, including
++// without limitation the rights to use, copy, modify, merge, publish,
++// distribute, sublicense, and/or sell copies of the Software, and to permit
++// persons to whom the Software is furnished to do so, subject to the
++// following conditions:
++//
++// The above copyright notice and this permission notice shall be included
++// in all copies or substantial portions of the Software.
++//
++// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
++// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
++// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
++// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
++// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
++// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
++// USE OR OTHER DEALINGS IN THE SOFTWARE.
++
++'use strict';
++const common = require('../common');
++
++if (!common.hasCrypto)
++  common.skip('missing crypto');
++
++const assert = require('assert');
++const crypto = require('crypto');
++
++const stream = require('stream');
++const s = new stream.PassThrough();
++const h = crypto.createHash('sha3-512');
++const expect = '36a38a2a35e698974d4e5791a3f05b05' +
++               '198235381e864f91a0e8cd6a26b677ec' +
++               'dcde8e2b069bd7355fabd68abd6fc801' +
++               '19659f25e92f8efc961ee3a7c815c758';
++
++s.pipe(h).on('data', common.mustCall(function(c) {
++  assert.strictEqual(c, expect);
++  // Calling digest() after piping into a stream with SHA3 should not cause
++  // a segmentation fault, see https://github.com/nodejs/node/issues/28245.
++  assert.strictEqual(h.digest('hex'), expect);
++})).setEncoding('hex');
++
++s.end('aoeu');
+diff --git a/test/known_issues/test-make-doc.js b/test/known_issues/test-make-doc.js
+new file mode 100644
+index 0000000..7f4f3ae
+--- /dev/null
++++ b/test/known_issues/test-make-doc.js
+@@ -0,0 +1,63 @@
++'use strict';
++const common = require('../common');
++if (common.isWindows) {
++  common.skip('`make doc` does not run on Windows');
++}
++
++// This tests that `make doc` generates the documentation properly.
++// Note that for this test to pass, `make doc` must be run first.
++
++const assert = require('assert');
++const fs = require('fs');
++const path = require('path');
++
++const apiPath = path.resolve(__dirname, '..', '..', 'out', 'doc', 'api');
++const mdPath = path.resolve(__dirname, '..', '..', 'doc', 'api');
++const allMD = fs.readdirSync(mdPath);
++const allDocs = fs.readdirSync(apiPath);
++assert.ok(allDocs.includes('index.html'));
++
++const actualDocs = allDocs.filter(
++  (name) => {
++    const extension = path.extname(name);
++    return extension === '.html' || extension === '.json';
++  }
++);
++
++for (const name of actualDocs) {
++  if (name.startsWith('all.')) continue;
++
++  assert.ok(
++    allMD.includes(name.replace(/\.\w+$/, '.md')),
++    `Unexpected output: out/doc/api/${name}, remove and rerun.`
++  );
++}
++
++const toc = fs.readFileSync(path.resolve(apiPath, 'index.html'), 'utf8');
++const re = /href="([^/]+\.html)"/;
++const globalRe = new RegExp(re, 'g');
++const links = toc.match(globalRe);
++assert.notStrictEqual(links, null);
++
++// Filter out duplicate links, leave just filenames, add expected JSON files.
++const linkedHtmls = [...new Set(links)].map((link) => link.match(re)[1]);
++const expectedJsons = linkedHtmls
++                       .map((name) => name.replace('.html', '.json'));
++const expectedDocs = linkedHtmls.concat(expectedJsons);
++
++// Test that all the relative links in the TOC match to the actual documents.
++for (const expectedDoc of expectedDocs) {
++  assert.ok(actualDocs.includes(expectedDoc), `${expectedDoc} does not exist`);
++}
++
++// Test that all the actual documents match to the relative links in the TOC
++// and that they are not empty files.
++for (const actualDoc of actualDocs) {
++  assert.ok(
++    expectedDocs.includes(actualDoc), `${actualDoc} does not match TOC`);
++
++  assert.ok(
++    fs.statSync(path.join(apiPath, actualDoc)).size !== 0,
++    `${actualDoc} is empty`
++  );
++}
+diff --git a/test/known_issues/test-tls-cli-max-version-1.3.js b/test/known_issues/test-tls-cli-max-version-1.3.js
+new file mode 100644
+index 0000000..c04354f
+--- /dev/null
++++ b/test/known_issues/test-tls-cli-max-version-1.3.js
+@@ -0,0 +1,15 @@
++// Flags: --tls-max-v1.3
++'use strict';
++const common = require('../common');
++if (!common.hasCrypto) common.skip('missing crypto');
++
++// Check that node `--tls-max-v1.3` is supported.
++
++const assert = require('assert');
++const tls = require('tls');
++
++assert.strictEqual(tls.DEFAULT_MAX_VERSION, 'TLSv1.3');
++assert.strictEqual(tls.DEFAULT_MIN_VERSION, 'TLSv1.2');
++
++// Check the min-max version protocol versions against these CLI settings.
++require('./test-tls-min-max-version.js');
+diff --git a/test/known_issues/test-tls-cli-min-max-conflict.js b/test/known_issues/test-tls-cli-min-max-conflict.js
+new file mode 100644
+index 0000000..68aae4c
+--- /dev/null
++++ b/test/known_issues/test-tls-cli-min-max-conflict.js
+@@ -0,0 +1,14 @@
++'use strict';
++const common = require('../common');
++if (!common.hasCrypto) common.skip('missing crypto');
++
++// Check that conflicting TLS protocol versions are not allowed
++
++const assert = require('assert');
++const child_process = require('child_process');
++
++const args = ['--tls-min-v1.3', '--tls-max-v1.2', '-p', 'process.version'];
++child_process.execFile(process.argv[0], args, (err) => {
++  assert(err);
++  assert(/not both/.test(err.message));
++});
+diff --git a/test/known_issues/test-tls-cli-min-version-1.3.js b/test/known_issues/test-tls-cli-min-version-1.3.js
+new file mode 100644
+index 0000000..1bccc2f
+--- /dev/null
++++ b/test/known_issues/test-tls-cli-min-version-1.3.js
+@@ -0,0 +1,15 @@
++// Flags: --tls-min-v1.3
++'use strict';
++const common = require('../common');
++if (!common.hasCrypto) common.skip('missing crypto');
++
++// Check that node `--tls-min-v1.3` is supported.
++
++const assert = require('assert');
++const tls = require('tls');
++
++assert.strictEqual(tls.DEFAULT_MAX_VERSION, 'TLSv1.3');
++assert.strictEqual(tls.DEFAULT_MIN_VERSION, 'TLSv1.3');
++
++// Check the min-max version protocol versions against these CLI settings.
++require('./test-tls-min-max-version.js');
+diff --git a/test/known_issues/test-tls-client-renegotiation-13.js b/test/known_issues/test-tls-client-renegotiation-13.js
+new file mode 100644
+index 0000000..075eb70
+--- /dev/null
++++ b/test/known_issues/test-tls-client-renegotiation-13.js
+@@ -0,0 +1,41 @@
++'use strict';
++
++const common = require('../common');
++const fixtures = require('../common/fixtures');
++
++// Confirm that for TLSv1.3, renegotiate() is disallowed.
++
++const {
++  assert, connect, keys
++} = require(fixtures.path('tls-connect'));
++
++const server = keys.agent10;
++
++connect({
++  client: {
++    ca: server.ca,
++    checkServerIdentity: common.mustCall(),
++  },
++  server: {
++    key: server.key,
++    cert: server.cert,
++  },
++}, function(err, pair, cleanup) {
++  assert.ifError(err);
++
++  const client = pair.client.conn;
++
++  assert.strictEqual(client.getProtocol(), 'TLSv1.3');
++
++  const ok = client.renegotiate({}, common.mustCall((err) => {
++    assert.throws(() => { throw err; }, {
++      message: 'error:1420410A:SSL routines:SSL_renegotiate:wrong ssl version',
++      code: 'ERR_SSL_WRONG_SSL_VERSION',
++      library: 'SSL routines',
++      reason: 'wrong ssl version',
++    });
++    cleanup();
++  }));
++
++  assert.strictEqual(ok, false);
++});
+diff --git a/test/known_issues/test-tls-keylog-tlsv13.js b/test/known_issues/test-tls-keylog-tlsv13.js
+new file mode 100644
+index 0000000..0f65564
+--- /dev/null
++++ b/test/known_issues/test-tls-keylog-tlsv13.js
+@@ -0,0 +1,32 @@
++'use strict';
++
++const common = require('../common');
++if (!common.hasCrypto)
++  common.skip('missing crypto');
++
++const assert = require('assert');
++const tls = require('tls');
++const fixtures = require('../common/fixtures');
++
++const server = tls.createServer({
++  key: fixtures.readKey('agent2-key.pem'),
++  cert: fixtures.readKey('agent2-cert.pem'),
++  // Amount of keylog events depends on negotiated protocol
++  // version, so force a specific one:
++  minVersion: 'TLSv1.3',
++  maxVersion: 'TLSv1.3',
++}).listen(() => {
++  const client = tls.connect({
++    port: server.address().port,
++    rejectUnauthorized: false,
++  });
++
++  const verifyBuffer = (line) => assert(Buffer.isBuffer(line));
++  server.on('keylog', common.mustCall(verifyBuffer, 5));
++  client.on('keylog', common.mustCall(verifyBuffer, 5));
++
++  client.once('secureConnect', () => {
++    server.close();
++    client.end();
++  });
++});
+diff --git a/test/known_issues/test-tls-no-sslv3.js b/test/known_issues/test-tls-no-sslv3.js
+new file mode 100644
+index 0000000..1acb1f9
+--- /dev/null
++++ b/test/known_issues/test-tls-no-sslv3.js
+@@ -0,0 +1,49 @@
++'use strict';
++const common = require('../common');
++if (!common.hasCrypto)
++  common.skip('missing crypto');
++
++if (common.opensslCli === false)
++  common.skip('node compiled without OpenSSL CLI.');
++
++const assert = require('assert');
++const tls = require('tls');
++const spawn = require('child_process').spawn;
++const fixtures = require('../common/fixtures');
++
++const cert = fixtures.readKey('rsa_cert.crt');
++const key = fixtures.readKey('rsa_private.pem');
++const server = tls.createServer({ cert, key }, common.mustNotCall());
++const errors = [];
++let stderr = '';
++
++server.listen(0, '127.0.0.1', function() {
++  const address = `${this.address().address}:${this.address().port}`;
++  const args = ['s_client',
++                '-ssl3',
++                '-connect', address];
++
++  const client = spawn(common.opensslCli, args, { stdio: 'pipe' });
++  client.stdout.pipe(process.stdout);
++  client.stderr.pipe(process.stderr);
++  client.stderr.setEncoding('utf8');
++  client.stderr.on('data', (data) => stderr += data);
++
++  client.once('exit', common.mustCall(function(exitCode) {
++    assert.strictEqual(exitCode, 1);
++    server.close();
++  }));
++});
++
++server.on('tlsClientError', (err) => errors.push(err));
++
++process.on('exit', function() {
++  if (/unknown option -ssl3/.test(stderr)) {
++    common.printSkipMessage('`openssl s_client -ssl3` not supported.');
++  } else {
++    assert.strictEqual(errors.length, 1);
++    // OpenSSL 1.0.x and 1.1.x report invalid client versions differently.
++    assert(/:wrong version number/.test(errors[0].message) ||
++           /:version too low/.test(errors[0].message));
++  }
++});
+diff --git a/test/known_issues/test-tls-ticket-12.js b/test/known_issues/test-tls-ticket-12.js
+new file mode 100644
+index 0000000..600c571
+--- /dev/null
++++ b/test/known_issues/test-tls-ticket-12.js
+@@ -0,0 +1,12 @@
++'use strict';
++const common = require('../common');
++if (!common.hasCrypto)
++  common.skip('missing crypto');
++
++// Run test-tls-ticket.js with TLS1.2
++
++const tls = require('tls');
++
++tls.DEFAULT_MAX_VERSION = 'TLSv1.2';
++
++require('./test-tls-ticket.js');
+diff --git a/test/known_issues/test-tls-ticket-cluster.js b/test/known_issues/test-tls-ticket-cluster.js
+new file mode 100644
+index 0000000..cc4f46e
+--- /dev/null
++++ b/test/known_issues/test-tls-ticket-cluster.js
+@@ -0,0 +1,135 @@
++// Copyright Joyent, Inc. and other Node contributors.
++//
++// Permission is hereby granted, free of charge, to any person obtaining a
++// copy of this software and associated documentation files (the
++// "Software"), to deal in the Software without restriction, including
++// without limitation the rights to use, copy, modify, merge, publish,
++// distribute, sublicense, and/or sell copies of the Software, and to permit
++// persons to whom the Software is furnished to do so, subject to the
++// following conditions:
++//
++// The above copyright notice and this permission notice shall be included
++// in all copies or substantial portions of the Software.
++//
++// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
++// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
++// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
++// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
++// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
++// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
++// USE OR OTHER DEALINGS IN THE SOFTWARE.
++
++'use strict';
++const common = require('../common');
++if (!common.hasCrypto)
++  common.skip('missing crypto');
++
++const assert = require('assert');
++const tls = require('tls');
++const cluster = require('cluster');
++const fixtures = require('../common/fixtures');
++
++const workerCount = 4;
++const expectedReqCount = 16;
++
++if (cluster.isMaster) {
++  let reusedCount = 0;
++  let reqCount = 0;
++  let lastSession = null;
++  let shootOnce = false;
++  let workerPort = null;
++
++  function shoot() {
++    console.error('[master] connecting', workerPort, 'session?', !!lastSession);
++    const c = tls.connect(workerPort, {
++      session: lastSession,
++      rejectUnauthorized: false
++    }, () => {
++      c.end();
++    }).on('close', () => {
++      // Wait for close to shoot off another connection. We don't want to shoot
++      // until a new session is allocated, if one will be. The new session is
++      // not guaranteed on secureConnect (it depends on TLS1.2 vs TLS1.3), but
++      // it is guaranteed to happen before the connection is closed.
++      if (++reqCount === expectedReqCount) {
++        Object.keys(cluster.workers).forEach(function(id) {
++          cluster.workers[id].send('die');
++        });
++      } else {
++        shoot();
++      }
++    }).once('session', (session) => {
++      assert(!lastSession);
++      lastSession = session;
++    });
++
++    c.resume(); // See close_notify comment in server
++  }
++
++  function fork() {
++    const worker = cluster.fork();
++    worker.on('message', ({ msg, port }) => {
++      console.error('[master] got %j', msg);
++      if (msg === 'reused') {
++        ++reusedCount;
++      } else if (msg === 'listening' && !shootOnce) {
++        workerPort = port || workerPort;
++        shootOnce = true;
++        shoot();
++      }
++    });
++
++    worker.on('exit', () => {
++      console.error('[master] worker died');
++    });
++  }
++  for (let i = 0; i < workerCount; i++) {
++    fork();
++  }
++
++  process.on('exit', () => {
++    assert.strictEqual(reqCount, expectedReqCount);
++    assert.strictEqual(reusedCount + 1, reqCount);
++  });
++  return;
++}
++
++const key = fixtures.readKey('rsa_private.pem');
++const cert = fixtures.readKey('rsa_cert.crt');
++
++const options = { key, cert };
++
++const server = tls.createServer(options, (c) => {
++  console.error('[worker] connection reused?', c.isSessionReused());
++  if (c.isSessionReused()) {
++    process.send({ msg: 'reused' });
++  } else {
++    process.send({ msg: 'not-reused' });
++  }
++  // Used to just .end(), but that means client gets close_notify before
++  // NewSessionTicket. Send data until that problem is solved.
++  c.end('x');
++});
++
++server.listen(0, () => {
++  const { port } = server.address();
++  process.send({
++    msg: 'listening',
++    port,
++  });
++});
++
++process.on('message', function listener(msg) {
++  console.error('[worker] got %j', msg);
++  if (msg === 'die') {
++    server.close(() => {
++      console.error('[worker] server close');
++
++      process.exit();
++    });
++  }
++});
++
++process.on('exit', () => {
++  console.error('[worker] exit');
++});
+diff --git a/test/known_issues/test-tls-ticket.js b/test/known_issues/test-tls-ticket.js
+new file mode 100644
+index 0000000..8d9cd8c
+--- /dev/null
++++ b/test/known_issues/test-tls-ticket.js
+@@ -0,0 +1,159 @@
++// Copyright Joyent, Inc. and other Node contributors.
++//
++// Permission is hereby granted, free of charge, to any person obtaining a
++// copy of this software and associated documentation files (the
++// "Software"), to deal in the Software without restriction, including
++// without limitation the rights to use, copy, modify, merge, publish,
++// distribute, sublicense, and/or sell copies of the Software, and to permit
++// persons to whom the Software is furnished to do so, subject to the
++// following conditions:
++//
++// The above copyright notice and this permission notice shall be included
++// in all copies or substantial portions of the Software.
++//
++// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
++// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
++// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
++// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
++// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
++// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
++// USE OR OTHER DEALINGS IN THE SOFTWARE.
++
++'use strict';
++const common = require('../common');
++if (!common.hasCrypto)
++  common.skip('missing crypto');
++
++const assert = require('assert');
++const tls = require('tls');
++const net = require('net');
++const crypto = require('crypto');
++const fixtures = require('../common/fixtures');
++
++const keys = crypto.randomBytes(48);
++const serverLog = [];
++const ticketLog = [];
++
++let s;
++
++let serverCount = 0;
++function createServer() {
++  const id = serverCount++;
++
++  let counter = 0;
++  let previousKey = null;
++
++  const server = tls.createServer({
++    key: fixtures.readKey('agent1-key.pem'),
++    cert: fixtures.readKey('agent1-cert.pem'),
++    ticketKeys: keys
++  }, function(c) {
++    serverLog.push(id);
++    // TODO(@sam-github) Triggers close_notify before NewSessionTicket bug.
++    // c.end();
++    c.end('x');
++
++    counter++;
++
++    // Rotate ticket keys
++    //
++    // Take especial care to account for TLS1.2 and TLS1.3 differences around
++    // when ticket keys are encrypted. In TLS1.2, they are encrypted before the
++    // handshake complete callback, but in TLS1.3, they are encrypted after.
++    // There is no callback or way for us to know when they were sent, so hook
++    // the client's reception of the keys, and use it as proof that the current
++    // keys were used, and its safe to rotate them.
++    //
++    // Rotation can occur right away if the session was reused, the keys were
++    // already decrypted or we wouldn't have a reused session.
++    function setTicketKeys(keys) {
++      if (c.isSessionReused())
++        server.setTicketKeys(keys);
++      else
++        s.once('session', () => {
++          server.setTicketKeys(keys);
++        });
++    }
++    if (counter === 1) {
++      previousKey = server.getTicketKeys();
++      assert.strictEqual(previousKey.compare(keys), 0);
++      setTicketKeys(crypto.randomBytes(48));
++    } else if (counter === 2) {
++      setTicketKeys(previousKey);
++    } else if (counter === 3) {
++      // Use keys from counter=2
++    } else {
++      throw new Error('UNREACHABLE');
++    }
++  });
++
++  return server;
++}
++
++const naturalServers = [ createServer(), createServer(), createServer() ];
++
++// 3x servers
++const servers = naturalServers.concat(naturalServers).concat(naturalServers);
++
++// Create one TCP server and balance sockets to multiple TLS server instances
++const shared = net.createServer(function(c) {
++  servers.shift().emit('connection', c);
++}).listen(0, function() {
++  start(function() {
++    shared.close();
++  });
++});
++
++// 'session' events only occur for new sessions. The first connection is new.
++// After, for each set of 3 connections, the middle connection is made when the
++// server has random keys set, so the client's ticket is silently ignored, and a
++// new ticket is sent.
++const onNewSession = common.mustCall((s, session) => {
++  assert(session);
++  assert.strictEqual(session.compare(s.getSession()), 0);
++}, 4);
++
++function start(callback) {
++  let sess = null;
++  let left = servers.length;
++
++  function connect() {
++    s = tls.connect(shared.address().port, {
++      session: sess,
++      rejectUnauthorized: false
++    }, function() {
++      if (s.isSessionReused())
++        ticketLog.push(s.getTLSTicket().toString('hex'));
++    });
++    s.on('data', () => {
++      s.end();
++    });
++    s.on('close', function() {
++      if (--left === 0)
++        callback();
++      else
++        connect();
++    });
++    s.on('session', (session) => {
++      sess = sess || session;
++    });
++    s.once('session', (session) => onNewSession(s, session));
++    s.once('session', () => ticketLog.push(s.getTLSTicket().toString('hex')));
++  }
++
++  connect();
++}
++
++process.on('exit', function() {
++  assert.strictEqual(ticketLog.length, serverLog.length);
++  for (let i = 0; i < naturalServers.length - 1; i++) {
++    assert.notStrictEqual(serverLog[i], serverLog[i + 1]);
++    assert.strictEqual(ticketLog[i], ticketLog[i + 1]);
++
++    // 2nd connection should have different ticket
++    assert.notStrictEqual(ticketLog[i], ticketLog[i + naturalServers.length]);
++
++    // 3rd connection should have the same ticket
++    assert.strictEqual(ticketLog[i], ticketLog[i + naturalServers.length * 2]);
++  }
++});
+diff --git a/test/known_issues/test-v8-serdes.js b/test/known_issues/test-v8-serdes.js
+new file mode 100644
+index 0000000..a992ba4
+--- /dev/null
++++ b/test/known_issues/test-v8-serdes.js
+@@ -0,0 +1,244 @@
++// Flags: --expose-internals
++
++'use strict';
++
++const common = require('../common');
++const fixtures = require('../common/fixtures');
++const { internalBinding } = require('internal/test/binding');
++const assert = require('assert');
++const v8 = require('v8');
++const os = require('os');
++
++const circular = {};
++circular.circular = circular;
++
++const wasmModule = new WebAssembly.Module(fixtures.readSync('simple.wasm'));
++
++const objects = [
++  { foo: 'bar' },
++  { bar: 'baz' },
++  new Uint8Array([1, 2, 3, 4]),
++  new Uint32Array([1, 2, 3, 4]),
++  Buffer.from([1, 2, 3, 4]),
++  undefined,
++  null,
++  42,
++  circular,
++  wasmModule
++];
++
++const hostObject = new (internalBinding('js_stream').JSStream)();
++
++const serializerTypeError =
++  /^TypeError: Class constructor Serializer cannot be invoked without 'new'$/;
++const deserializerTypeError =
++  /^TypeError: Class constructor Deserializer cannot be invoked without 'new'$/;
++
++{
++  const ser = new v8.DefaultSerializer();
++  ser.writeHeader();
++  for (const obj of objects) {
++    ser.writeValue(obj);
++  }
++
++  const des = new v8.DefaultDeserializer(ser.releaseBuffer());
++  des.readHeader();
++
++  for (const obj of objects) {
++    assert.deepStrictEqual(des.readValue(), obj);
++  }
++}
++
++{
++  for (const obj of objects) {
++    assert.deepStrictEqual(v8.deserialize(v8.serialize(obj)), obj);
++  }
++}
++
++{
++  const ser = new v8.DefaultSerializer();
++  ser._getDataCloneError = common.mustCall((message) => {
++    assert.strictEqual(message, '[object Object] could not be cloned.');
++    return new Error('foobar');
++  });
++
++  ser.writeHeader();
++
++  assert.throws(() => {
++    ser.writeValue(new Proxy({}, {}));
++  }, /foobar/);
++}
++
++{
++  const ser = new v8.DefaultSerializer();
++  ser._writeHostObject = common.mustCall((object) => {
++    assert.strictEqual(object, hostObject);
++    const buf = Buffer.from('hostObjectTag');
++
++    ser.writeUint32(buf.length);
++    ser.writeRawBytes(buf);
++
++    ser.writeUint64(1, 2);
++    ser.writeDouble(-0.25);
++  });
++
++  ser.writeHeader();
++  ser.writeValue({ val: hostObject });
++
++  const des = new v8.DefaultDeserializer(ser.releaseBuffer());
++  des._readHostObject = common.mustCall(() => {
++    const length = des.readUint32();
++    const buf = des.readRawBytes(length);
++
++    assert.strictEqual(buf.toString(), 'hostObjectTag');
++
++    assert.deepStrictEqual(des.readUint64(), [1, 2]);
++    assert.strictEqual(des.readDouble(), -0.25);
++    return hostObject;
++  });
++
++  des.readHeader();
++
++  assert.strictEqual(des.readValue().val, hostObject);
++}
++
++// This test ensures that `v8.Serializer.writeRawBytes()` support
++// `TypedArray` and `DataView`.
++{
++  const text = 'hostObjectTag';
++  const data = Buffer.from(text);
++  const arrayBufferViews = common.getArrayBufferViews(data);
++
++  // `buf` is one of `TypedArray` or `DataView`.
++  function testWriteRawBytes(buf) {
++    let writeHostObjectCalled = false;
++    const ser = new v8.DefaultSerializer();
++
++    ser._writeHostObject = common.mustCall((object) => {
++      writeHostObjectCalled = true;
++      ser.writeUint32(buf.byteLength);
++      ser.writeRawBytes(buf);
++    });
++
++    ser.writeHeader();
++    ser.writeValue({ val: hostObject });
++
++    const des = new v8.DefaultDeserializer(ser.releaseBuffer());
++    des._readHostObject = common.mustCall(() => {
++      assert.strictEqual(writeHostObjectCalled, true);
++      const length = des.readUint32();
++      const buf = des.readRawBytes(length);
++      assert.strictEqual(buf.toString(), text);
++
++      return hostObject;
++    });
++
++    des.readHeader();
++
++    assert.strictEqual(des.readValue().val, hostObject);
++  }
++
++  arrayBufferViews.forEach((buf) => {
++    testWriteRawBytes(buf);
++  });
++}
++
++{
++  const ser = new v8.DefaultSerializer();
++  ser._writeHostObject = common.mustCall((object) => {
++    throw new Error('foobar');
++  });
++
++  ser.writeHeader();
++  assert.throws(() => {
++    ser.writeValue({ val: hostObject });
++  }, /foobar/);
++}
++
++{
++  assert.throws(() => v8.serialize(hostObject), {
++    constructor: Error,
++    message: 'Unserializable host object: JSStream {}'
++  });
++}
++
++{
++  const buf = Buffer.from('ff0d6f2203666f6f5e007b01', 'hex');
++
++  const des = new v8.DefaultDeserializer(buf);
++  des.readHeader();
++
++  const ser = new v8.DefaultSerializer();
++  ser.writeHeader();
++
++  ser.writeValue(des.readValue());
++
++  assert.deepStrictEqual(buf, ser.releaseBuffer());
++  assert.strictEqual(des.getWireFormatVersion(), 0x0d);
++}
++
++{
++  // Unaligned Uint16Array read, with padding in the underlying array buffer.
++  let buf = Buffer.alloc(32 + 9);
++  buf.write('ff0d5c0404addeefbe', 32, 'hex');
++  buf = buf.slice(32);
++
++  const expectedResult = os.endianness() === 'LE' ?
++    new Uint16Array([0xdead, 0xbeef]) : new Uint16Array([0xadde, 0xefbe]);
++
++  assert.deepStrictEqual(v8.deserialize(buf), expectedResult);
++}
++
++{
++  assert.throws(v8.Serializer, serializerTypeError);
++  assert.throws(v8.Deserializer, deserializerTypeError);
++}
++
++
++// `v8.deserialize()` and `new v8.Deserializer()` should support both
++// `TypedArray` and `DataView`.
++{
++  for (const obj of objects) {
++    const buf = v8.serialize(obj);
++
++    for (const arrayBufferView of common.getArrayBufferViews(buf)) {
++      assert.deepStrictEqual(v8.deserialize(arrayBufferView), obj);
++    }
++
++    for (const arrayBufferView of common.getArrayBufferViews(buf)) {
++      const deserializer = new v8.DefaultDeserializer(arrayBufferView);
++      deserializer.readHeader();
++      const value = deserializer.readValue();
++      assert.deepStrictEqual(value, obj);
++
++      const serializer = new v8.DefaultSerializer();
++      serializer.writeHeader();
++      serializer.writeValue(value);
++      assert.deepStrictEqual(buf, serializer.releaseBuffer());
++    }
++  }
++}
++
++{
++  const INVALID_SOURCE = 'INVALID_SOURCE_TYPE';
++  const serializer = new v8.Serializer();
++  serializer.writeHeader();
++  assert.throws(
++    () => serializer.writeRawBytes(INVALID_SOURCE),
++    /^TypeError: source must be a TypedArray or a DataView$/,
++  );
++  assert.throws(
++    () => v8.deserialize(INVALID_SOURCE),
++    /^TypeError: buffer must be a TypedArray or a DataView$/,
++  );
++  assert.throws(
++    () => new v8.Deserializer(INVALID_SOURCE),
++    /^TypeError: buffer must be a TypedArray or a DataView$/,
++  );
++}
++
++{
++  const deserializedWasmModule = v8.deserialize(v8.serialize(wasmModule));
++  const instance = new WebAssembly.Instance(deserializedWasmModule);
++  assert.strictEqual(instance.exports.add(10, 20), 30);
++}
+diff --git a/test/parallel/test-crypto-aes-wrap.js b/test/parallel/test-crypto-aes-wrap.js
+deleted file mode 100644
+index 6fe3525..0000000
+--- a/test/parallel/test-crypto-aes-wrap.js
++++ /dev/null
+@@ -1,62 +0,0 @@
+-'use strict';
+-const common = require('../common');
+-if (!common.hasCrypto)
+-  common.skip('missing crypto');
+-
+-const assert = require('assert');
+-const crypto = require('crypto');
+-
+-const test = [
+-  {
+-    algorithm: 'aes128-wrap',
+-    key: 'b26f309fbe57e9b3bb6ae5ef31d54450',
+-    iv: '3fd838af4093d749',
+-    text: '12345678123456781234567812345678'
+-  },
+-  {
+-    algorithm: 'id-aes128-wrap-pad',
+-    key: 'b26f309fbe57e9b3bb6ae5ef31d54450',
+-    iv: '3fd838af',
+-    text: '12345678123456781234567812345678123'
+-  },
+-  {
+-    algorithm: 'aes192-wrap',
+-    key: '40978085d68091f7dfca0d7dfc7a5ee76d2cc7f2f345a304',
+-    iv: '3fd838af4093d749',
+-    text: '12345678123456781234567812345678'
+-  },
+-  {
+-    algorithm: 'id-aes192-wrap-pad',
+-    key: '40978085d68091f7dfca0d7dfc7a5ee76d2cc7f2f345a304',
+-    iv: '3fd838af',
+-    text: '12345678123456781234567812345678123'
+-  },
+-  {
+-    algorithm: 'aes256-wrap',
+-    key: '29c9eab5ed5ad44134a1437fe2e673b4d88a5b7c72e68454fea08721392b7323',
+-    iv: '3fd838af4093d749',
+-    text: '12345678123456781234567812345678'
+-  },
+-  {
+-    algorithm: 'id-aes256-wrap-pad',
+-    key: '29c9eab5ed5ad44134a1437fe2e673b4d88a5b7c72e68454fea08721392b7323',
+-    iv: '3fd838af',
+-    text: '12345678123456781234567812345678123'
+-  },
+-];
+-
+-test.forEach((data) => {
+-  const cipher = crypto.createCipheriv(
+-    data.algorithm,
+-    Buffer.from(data.key, 'hex'),
+-    Buffer.from(data.iv, 'hex'));
+-  const ciphertext = cipher.update(data.text, 'utf8');
+-
+-  const decipher = crypto.createDecipheriv(
+-    data.algorithm,
+-    Buffer.from(data.key, 'hex'),
+-    Buffer.from(data.iv, 'hex'));
+-  const msg = decipher.update(ciphertext, 'buffer', 'utf8');
+-
+-  assert.strictEqual(msg, data.text, `${data.algorithm} test case failed`);
+-});
+diff --git a/test/parallel/test-crypto-authenticated.js b/test/parallel/test-crypto-authenticated.js
+index 8be7296..c9bf961 100644
+--- a/test/parallel/test-crypto-authenticated.js
++++ b/test/parallel/test-crypto-authenticated.js
+@@ -404,7 +404,7 @@ for (const test of TEST_CASES) {
+ // Test that create(De|C)ipher(iv)? throws if the mode is CCM or OCB and no
+ // authentication tag has been specified.
+ {
+-  for (const mode of ['ccm', 'ocb']) {
++  for (const mode of ['ccm']) {
+     assert.throws(() => {
+       crypto.createCipheriv(`aes-256-${mode}`,
+                             'FxLKsqdmv0E9xrQhp0b1ZgI0K7JFZJM8',
+@@ -564,7 +564,7 @@ for (const test of TEST_CASES) {
+   const key = Buffer.from('0123456789abcdef', 'utf8');
+   const iv = Buffer.from('0123456789ab', 'utf8');
+ 
+-  for (const mode of ['gcm', 'ocb']) {
++  for (const mode of ['gcm']) {
+     for (const authTagLength of mode === 'gcm' ? [undefined, 8] : [8]) {
+       const cipher = crypto.createCipheriv(`aes-128-${mode}`, key, iv, {
+         authTagLength
+@@ -598,7 +598,7 @@ for (const test of TEST_CASES) {
+   const iv = Buffer.from('0123456789ab', 'utf8');
+   const opts = { authTagLength: 8 };
+ 
+-  for (const mode of ['gcm', 'ccm', 'ocb']) {
++  for (const mode of ['gcm', 'ccm']) {
+     const cipher = crypto.createCipheriv(`aes-128-${mode}`, key, iv, opts);
+     const ciphertext = Buffer.concat([cipher.update(plain), cipher.final()]);
+     const tag = cipher.getAuthTag();
+@@ -616,51 +616,3 @@ for (const test of TEST_CASES) {
+     assert(plain.equals(plaintext));
+   }
+ }
+-
+-
+-// Test chacha20-poly1305 rejects invalid IV lengths of 13, 14, 15, and 16 (a
+-// length of 17 or greater was already rejected).
+-// - https://www.openssl.org/news/secadv/20190306.txt
+-{
+-  // Valid extracted from TEST_CASES, check that it detects IV tampering.
+-  const valid = {
+-    algo: 'chacha20-poly1305',
+-    key: '808182838485868788898a8b8c8d8e8f909192939495969798999a9b9c9d9e9f',
+-    iv: '070000004041424344454647',
+-    plain: '4c616469657320616e642047656e746c656d656e206f662074686520636c6173' +
+-           '73206f66202739393a204966204920636f756c64206f6666657220796f75206f' +
+-           '6e6c79206f6e652074697020666f7220746865206675747572652c2073756e73' +
+-           '637265656e20776f756c642062652069742e',
+-    plainIsHex: true,
+-    aad: '50515253c0c1c2c3c4c5c6c7',
+-    ct: 'd31a8d34648e60db7b86afbc53ef7ec2a4aded51296e08fea9e2b5' +
+-        'a736ee62d63dbea45e8ca9671282fafb69da92728b1a71de0a9e06' +
+-        '0b2905d6a5b67ecd3b3692ddbd7f2d778b8c9803aee328091b58fa' +
+-        'b324e4fad675945585808b4831d7bc3ff4def08e4b7a9de576d265' +
+-        '86cec64b6116',
+-    tag: '1ae10b594f09e26a7e902ecbd0600691',
+-    tampered: false,
+-  };
+-
+-  // Invalid IV lengths should be detected:
+-  // - 12 and below are valid.
+-  // - 13-16 are not detected as invalid by some OpenSSL versions.
+-  check(13);
+-  check(14);
+-  check(15);
+-  check(16);
+-  // - 17 and above were always detected as invalid by OpenSSL.
+-  check(17);
+-
+-  function check(ivLength) {
+-    const prefix = ivLength - valid.iv.length / 2;
+-    assert.throws(() => crypto.createCipheriv(
+-      valid.algo,
+-      Buffer.from(valid.key, 'hex'),
+-      Buffer.from(H(prefix) + valid.iv, 'hex'),
+-      { authTagLength: valid.tag.length / 2 }
+-    ), errMessages.length, `iv length ${ivLength} was not rejected`);
+-
+-    function H(length) { return '00'.repeat(length); }
+-  }
+-}
+diff --git a/test/parallel/test-crypto-des3-wrap.js b/test/parallel/test-crypto-des3-wrap.js
+deleted file mode 100644
+index 75c8cd5..0000000
+--- a/test/parallel/test-crypto-des3-wrap.js
++++ /dev/null
+@@ -1,25 +0,0 @@
+-'use strict';
+-const common = require('../common');
+-if (!common.hasCrypto)
+-  common.skip('missing crypto');
+-
+-const assert = require('assert');
+-const crypto = require('crypto');
+-
+-// Test case for des-ede3 wrap/unwrap. des3-wrap needs extra 2x blocksize
+-// then plaintext to store ciphertext.
+-const test = {
+-  key: Buffer.from('3c08e25be22352910671cfe4ba3652b1220a8a7769b490ba', 'hex'),
+-  iv: Buffer.alloc(0),
+-  plaintext: '32|RmVZZkFUVmpRRkp0TmJaUm56ZU9qcnJkaXNNWVNpTTU*|iXmckfRWZBG' +
+-    'WWELweCBsThSsfUHLeRe0KCsK8ooHgxie0zOINpXxfZi/oNG7uq9JWFVCk70gfzQH8ZU' +
+-    'JjAfaFg**'
+-};
+-
+-const cipher = crypto.createCipheriv('des3-wrap', test.key, test.iv);
+-const ciphertext = cipher.update(test.plaintext, 'utf8');
+-
+-const decipher = crypto.createDecipheriv('des3-wrap', test.key, test.iv);
+-const msg = decipher.update(ciphertext, 'buffer', 'utf8');
+-
+-assert.strictEqual(msg, test.plaintext);
+diff --git a/test/parallel/test-crypto-hash-stream-pipe.js b/test/parallel/test-crypto-hash-stream-pipe.js
+deleted file mode 100644
+index d22281a..0000000
+--- a/test/parallel/test-crypto-hash-stream-pipe.js
++++ /dev/null
+@@ -1,46 +0,0 @@
+-// Copyright Joyent, Inc. and other Node contributors.
+-//
+-// Permission is hereby granted, free of charge, to any person obtaining a
+-// copy of this software and associated documentation files (the
+-// "Software"), to deal in the Software without restriction, including
+-// without limitation the rights to use, copy, modify, merge, publish,
+-// distribute, sublicense, and/or sell copies of the Software, and to permit
+-// persons to whom the Software is furnished to do so, subject to the
+-// following conditions:
+-//
+-// The above copyright notice and this permission notice shall be included
+-// in all copies or substantial portions of the Software.
+-//
+-// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+-// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+-// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+-// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+-// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+-// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+-// USE OR OTHER DEALINGS IN THE SOFTWARE.
+-
+-'use strict';
+-const common = require('../common');
+-
+-if (!common.hasCrypto)
+-  common.skip('missing crypto');
+-
+-const assert = require('assert');
+-const crypto = require('crypto');
+-
+-const stream = require('stream');
+-const s = new stream.PassThrough();
+-const h = crypto.createHash('sha3-512');
+-const expect = '36a38a2a35e698974d4e5791a3f05b05' +
+-               '198235381e864f91a0e8cd6a26b677ec' +
+-               'dcde8e2b069bd7355fabd68abd6fc801' +
+-               '19659f25e92f8efc961ee3a7c815c758';
+-
+-s.pipe(h).on('data', common.mustCall(function(c) {
+-  assert.strictEqual(c, expect);
+-  // Calling digest() after piping into a stream with SHA3 should not cause
+-  // a segmentation fault, see https://github.com/nodejs/node/issues/28245.
+-  assert.strictEqual(h.digest('hex'), expect);
+-})).setEncoding('hex');
+-
+-s.end('aoeu');
+diff --git a/test/parallel/test-crypto-hash.js b/test/parallel/test-crypto-hash.js
+index 0ccc300..996b885 100644
+--- a/test/parallel/test-crypto-hash.js
++++ b/test/parallel/test-crypto-hash.js
+@@ -182,87 +182,6 @@ common.expectsError(
+                                    ' when called without `new`');
+ }
+ 
+-// Test XOF hash functions and the outputLength option.
+-{
+-  // Default outputLengths.
+-  assert.strictEqual(crypto.createHash('shake128').digest('hex'),
+-                     '7f9c2ba4e88f827d616045507605853e');
+-  assert.strictEqual(crypto.createHash('shake128', null).digest('hex'),
+-                     '7f9c2ba4e88f827d616045507605853e');
+-  assert.strictEqual(crypto.createHash('shake256').digest('hex'),
+-                     '46b9dd2b0ba88d13233b3feb743eeb24' +
+-                     '3fcd52ea62b81b82b50c27646ed5762f');
+-  assert.strictEqual(crypto.createHash('shake256', { outputLength: 0 })
+-                           .copy()  // Default outputLength.
+-                           .digest('hex'),
+-                     '46b9dd2b0ba88d13233b3feb743eeb24' +
+-                     '3fcd52ea62b81b82b50c27646ed5762f');
+-
+-  // Short outputLengths.
+-  assert.strictEqual(crypto.createHash('shake128', { outputLength: 0 })
+-                           .digest('hex'),
+-                     '');
+-  assert.strictEqual(crypto.createHash('shake128', { outputLength: 5 })
+-                           .copy({ outputLength: 0 })
+-                           .digest('hex'),
+-                     '');
+-  assert.strictEqual(crypto.createHash('shake128', { outputLength: 5 })
+-                           .digest('hex'),
+-                     '7f9c2ba4e8');
+-  assert.strictEqual(crypto.createHash('shake128', { outputLength: 0 })
+-                           .copy({ outputLength: 5 })
+-                           .digest('hex'),
+-                     '7f9c2ba4e8');
+-  assert.strictEqual(crypto.createHash('shake128', { outputLength: 15 })
+-                           .digest('hex'),
+-                     '7f9c2ba4e88f827d61604550760585');
+-  assert.strictEqual(crypto.createHash('shake256', { outputLength: 16 })
+-                           .digest('hex'),
+-                     '46b9dd2b0ba88d13233b3feb743eeb24');
+-
+-  // Large outputLengths.
+-  assert.strictEqual(crypto.createHash('shake128', { outputLength: 128 })
+-                           .digest('hex'),
+-                     '7f9c2ba4e88f827d616045507605853e' +
+-                     'd73b8093f6efbc88eb1a6eacfa66ef26' +
+-                     '3cb1eea988004b93103cfb0aeefd2a68' +
+-                     '6e01fa4a58e8a3639ca8a1e3f9ae57e2' +
+-                     '35b8cc873c23dc62b8d260169afa2f75' +
+-                     'ab916a58d974918835d25e6a435085b2' +
+-                     'badfd6dfaac359a5efbb7bcc4b59d538' +
+-                     'df9a04302e10c8bc1cbf1a0b3a5120ea');
+-  const superLongHash = crypto.createHash('shake256', {
+-    outputLength: 1024 * 1024
+-  }).update('The message is shorter than the hash!')
+-    .digest('hex');
+-  assert.strictEqual(superLongHash.length, 2 * 1024 * 1024);
+-  assert.ok(superLongHash.endsWith('193414035ddba77bf7bba97981e656ec'));
+-  assert.ok(superLongHash.startsWith('a2a28dbc49cfd6e5d6ceea3d03e77748'));
+-
+-  // Non-XOF hash functions should accept valid outputLength options as well.
+-  assert.strictEqual(crypto.createHash('sha224', { outputLength: 28 })
+-                           .digest('hex'),
+-                     'd14a028c2a3a2bc9476102bb288234c4' +
+-                     '15a2b01f828ea62ac5b3e42f');
+-
+-  // Passing invalid sizes should throw during creation.
+-  common.expectsError(() => {
+-    crypto.createHash('sha256', { outputLength: 28 });
+-  }, {
+-    code: 'ERR_OSSL_EVP_NOT_XOF_OR_INVALID_LENGTH'
+-  });
+-
+-  for (const outputLength of [null, {}, 'foo', false]) {
+-    common.expectsError(() => crypto.createHash('sha256', { outputLength }),
+-                        { code: 'ERR_INVALID_ARG_TYPE' });
+-  }
+-
+-  for (const outputLength of [-1, .5, Infinity, 2 ** 90]) {
+-    common.expectsError(() => crypto.createHash('sha256', { outputLength }),
+-                        { code: 'ERR_OUT_OF_RANGE' });
+-  }
+-}
+-
+ {
+   const h = crypto.createHash('sha512');
+   h.digest();
+diff --git a/test/parallel/test-crypto-key-objects.js b/test/parallel/test-crypto-key-objects.js
+index c830343..be32895 100644
+--- a/test/parallel/test-crypto-key-objects.js
++++ b/test/parallel/test-crypto-key-objects.js
+@@ -241,42 +241,6 @@ const privateDsa = fixtures.readKey('dsa_private_encrypted_1025.pem',
+   });
+ }
+ 
+-[
+-  { private: fixtures.readKey('ed25519_private.pem', 'ascii'),
+-    public: fixtures.readKey('ed25519_public.pem', 'ascii'),
+-    keyType: 'ed25519' },
+-  { private: fixtures.readKey('ed448_private.pem', 'ascii'),
+-    public: fixtures.readKey('ed448_public.pem', 'ascii'),
+-    keyType: 'ed448' },
+-  { private: fixtures.readKey('x25519_private.pem', 'ascii'),
+-    public: fixtures.readKey('x25519_public.pem', 'ascii'),
+-    keyType: 'x25519' },
+-  { private: fixtures.readKey('x448_private.pem', 'ascii'),
+-    public: fixtures.readKey('x448_public.pem', 'ascii'),
+-    keyType: 'x448' },
+-].forEach((info) => {
+-  const keyType = info.keyType;
+-
+-  {
+-    const exportOptions = { type: 'pkcs8', format: 'pem' };
+-    const key = createPrivateKey(info.private);
+-    assert.strictEqual(key.type, 'private');
+-    assert.strictEqual(key.asymmetricKeyType, keyType);
+-    assert.strictEqual(key.symmetricKeySize, undefined);
+-    assert.strictEqual(key.export(exportOptions), info.private);
+-  }
+-
+-  {
+-    const exportOptions = { type: 'spki', format: 'pem' };
+-    [info.private, info.public].forEach((pem) => {
+-      const key = createPublicKey(pem);
+-      assert.strictEqual(key.type, 'public');
+-      assert.strictEqual(key.asymmetricKeyType, keyType);
+-      assert.strictEqual(key.symmetricKeySize, undefined);
+-      assert.strictEqual(key.export(exportOptions), info.public);
+-    });
+-  }
+-});
+ 
+ {
+   // Reading an encrypted key without a passphrase should fail.
+@@ -324,145 +288,6 @@ const privateDsa = fixtures.readKey('dsa_private_encrypted_1025.pem',
+ }
+ 
+ {
+-  // Test RSA-PSS.
+-  {
+-    // This key pair does not restrict the message digest algorithm or salt
+-    // length.
+-    const publicPem = fixtures.readKey('rsa_pss_public_2048.pem');
+-    const privatePem = fixtures.readKey('rsa_pss_private_2048.pem');
+-
+-    const publicKey = createPublicKey(publicPem);
+-    const privateKey = createPrivateKey(privatePem);
+-
+-    assert.strictEqual(publicKey.type, 'public');
+-    assert.strictEqual(publicKey.asymmetricKeyType, 'rsa-pss');
+-
+-    assert.strictEqual(privateKey.type, 'private');
+-    assert.strictEqual(privateKey.asymmetricKeyType, 'rsa-pss');
+-
+-    for (const key of [privatePem, privateKey]) {
+-      // Any algorithm should work.
+-      for (const algo of ['sha1', 'sha256']) {
+-        // Any salt length should work.
+-        for (const saltLength of [undefined, 8, 10, 12, 16, 18, 20]) {
+-          const signature = createSign(algo)
+-                            .update('foo')
+-                            .sign({ key, saltLength });
+-
+-          for (const pkey of [key, publicKey, publicPem]) {
+-            const okay = createVerify(algo)
+-                         .update('foo')
+-                         .verify({ key: pkey, saltLength }, signature);
+-
+-            assert.ok(okay);
+-          }
+-        }
+-      }
+-    }
+-
+-    // Exporting the key using PKCS#1 should not work since this would discard
+-    // any algorithm restrictions.
+-    common.expectsError(() => {
+-      publicKey.export({ format: 'pem', type: 'pkcs1' });
+-    }, {
+-      code: 'ERR_CRYPTO_INCOMPATIBLE_KEY_OPTIONS'
+-    });
+-  }
+-
+-  {
+-    // This key pair enforces sha256 as the message digest and the MGF1
+-    // message digest and a salt length of at least 16 bytes.
+-    const publicPem =
+-      fixtures.readKey('rsa_pss_public_2048_sha256_sha256_16.pem');
+-    const privatePem =
+-      fixtures.readKey('rsa_pss_private_2048_sha256_sha256_16.pem');
+-
+-    const publicKey = createPublicKey(publicPem);
+-    const privateKey = createPrivateKey(privatePem);
+-
+-    assert.strictEqual(publicKey.type, 'public');
+-    assert.strictEqual(publicKey.asymmetricKeyType, 'rsa-pss');
+-
+-    assert.strictEqual(privateKey.type, 'private');
+-    assert.strictEqual(privateKey.asymmetricKeyType, 'rsa-pss');
+-
+-    for (const key of [privatePem, privateKey]) {
+-      // Signing with anything other than sha256 should fail.
+-      assert.throws(() => {
+-        createSign('sha1').sign(key);
+-      }, /digest not allowed/);
+-
+-      // Signing with salt lengths less than 16 bytes should fail.
+-      for (const saltLength of [8, 10, 12]) {
+-        assert.throws(() => {
+-          createSign('sha1').sign({ key, saltLength });
+-        }, /pss saltlen too small/);
+-      }
+-
+-      // Signing with sha256 and appropriate salt lengths should work.
+-      for (const saltLength of [undefined, 16, 18, 20]) {
+-        const signature = createSign('sha256')
+-                          .update('foo')
+-                          .sign({ key, saltLength });
+-
+-        for (const pkey of [key, publicKey, publicPem]) {
+-          const okay = createVerify('sha256')
+-                       .update('foo')
+-                       .verify({ key: pkey, saltLength }, signature);
+-
+-          assert.ok(okay);
+-        }
+-      }
+-    }
+-  }
+-
+-  {
+-    // This key enforces sha512 as the message digest and sha256 as the MGF1
+-    // message digest.
+-    const publicPem =
+-      fixtures.readKey('rsa_pss_public_2048_sha512_sha256_20.pem');
+-    const privatePem =
+-      fixtures.readKey('rsa_pss_private_2048_sha512_sha256_20.pem');
+-
+-    const publicKey = createPublicKey(publicPem);
+-    const privateKey = createPrivateKey(privatePem);
+-
+-    assert.strictEqual(publicKey.type, 'public');
+-    assert.strictEqual(publicKey.asymmetricKeyType, 'rsa-pss');
+-
+-    assert.strictEqual(privateKey.type, 'private');
+-    assert.strictEqual(privateKey.asymmetricKeyType, 'rsa-pss');
+-
+-    // Node.js usually uses the same hash function for the message and for MGF1.
+-    // However, when a different MGF1 message digest algorithm has been
+-    // specified as part of the key, it should automatically switch to that.
+-    // This behavior is required by sections 3.1 and 3.3 of RFC4055.
+-    for (const key of [privatePem, privateKey]) {
+-      // sha256 matches the MGF1 hash function and should be used internally,
+-      // but it should not be permitted as the main message digest algorithm.
+-      for (const algo of ['sha1', 'sha256']) {
+-        assert.throws(() => {
+-          createSign(algo).sign(key);
+-        }, /digest not allowed/);
+-      }
+-
+-      // sha512 should produce a valid signature.
+-      const signature = createSign('sha512')
+-                        .update('foo')
+-                        .sign(key);
+-
+-      for (const pkey of [key, publicKey, publicPem]) {
+-        const okay = createVerify('sha512')
+-                     .update('foo')
+-                     .verify(pkey, signature);
+-
+-        assert.ok(okay);
+-      }
+-    }
+-  }
+-}
+-
+-{
+   // Exporting an encrypted private key requires a cipher
+   const privateKey = createPrivateKey(privatePem);
+   common.expectsError(() => {
+diff --git a/test/parallel/test-crypto-keygen.js b/test/parallel/test-crypto-keygen.js
+index 605a374..05a2d80 100644
+--- a/test/parallel/test-crypto-keygen.js
++++ b/test/parallel/test-crypto-keygen.js
+@@ -266,43 +266,6 @@ const sec1EncExp = (cipher) => getRegExpForPEM('EC PRIVATE KEY', cipher);
+ }
+ 
+ {
+-  // Test RSA-PSS.
+-  generateKeyPair('rsa-pss', {
+-    modulusLength: 512,
+-    saltLength: 16,
+-    hash: 'sha256',
+-    mgf1Hash: 'sha256'
+-  }, common.mustCall((err, publicKey, privateKey) => {
+-    assert.ifError(err);
+-
+-    assert.strictEqual(publicKey.type, 'public');
+-    assert.strictEqual(publicKey.asymmetricKeyType, 'rsa-pss');
+-
+-    assert.strictEqual(privateKey.type, 'private');
+-    assert.strictEqual(privateKey.asymmetricKeyType, 'rsa-pss');
+-
+-    // Unlike RSA, RSA-PSS does not allow encryption.
+-    assert.throws(() => {
+-      testEncryptDecrypt(publicKey, privateKey);
+-    }, /operation not supported for this keytype/);
+-
+-    // RSA-PSS also does not permit signing with PKCS1 padding.
+-    assert.throws(() => {
+-      testSignVerify({
+-        key: publicKey,
+-        padding: constants.RSA_PKCS1_PADDING
+-      }, {
+-        key: privateKey,
+-        padding: constants.RSA_PKCS1_PADDING
+-      });
+-    }, /illegal or unsupported padding mode/);
+-
+-    // The padding should correctly default to RSA_PKCS1_PSS_PADDING now.
+-    testSignVerify(publicKey, privateKey);
+-  }));
+-}
+-
+-{
+   const privateKeyEncoding = {
+     type: 'pkcs8',
+     format: 'der'
+@@ -964,23 +927,6 @@ const sec1EncExp = (cipher) => getRegExpForPEM('EC PRIVATE KEY', cipher);
+   }));
+ }
+ 
+-// Test EdDSA key generation.
+-{
+-  if (!/^1\.1\.0/.test(process.versions.openssl)) {
+-    ['ed25519', 'ed448', 'x25519', 'x448'].forEach((keyType) => {
+-      generateKeyPair(keyType, common.mustCall((err, publicKey, privateKey) => {
+-        assert.ifError(err);
+-
+-        assert.strictEqual(publicKey.type, 'public');
+-        assert.strictEqual(publicKey.asymmetricKeyType, keyType);
+-
+-        assert.strictEqual(privateKey.type, 'private');
+-        assert.strictEqual(privateKey.asymmetricKeyType, keyType);
+-      }));
+-    });
+-  }
+-}
+-
+ // Test invalid key encoding types.
+ {
+   // Invalid public key type.
+diff --git a/test/parallel/test-crypto-pbkdf2.js b/test/parallel/test-crypto-pbkdf2.js
+index 5ab37ac..5ef4f1f 100644
+--- a/test/parallel/test-crypto-pbkdf2.js
++++ b/test/parallel/test-crypto-pbkdf2.js
+@@ -221,21 +221,3 @@ crypto.pbkdf2Sync(new Float32Array(10), 'salt', 8, 8, 'sha256');
+ crypto.pbkdf2Sync('pass', new Float32Array(10), 8, 8, 'sha256');
+ crypto.pbkdf2Sync(new Float64Array(10), 'salt', 8, 8, 'sha256');
+ crypto.pbkdf2Sync('pass', new Float64Array(10), 8, 8, 'sha256');
+-
+-assert.throws(
+-  () => crypto.pbkdf2('pass', 'salt', 8, 8, 'md55', common.mustNotCall()),
+-  {
+-    code: 'ERR_CRYPTO_INVALID_DIGEST',
+-    name: 'TypeError',
+-    message: 'Invalid digest: md55'
+-  }
+-);
+-
+-assert.throws(
+-  () => crypto.pbkdf2Sync('pass', 'salt', 8, 8, 'md55'),
+-  {
+-    code: 'ERR_CRYPTO_INVALID_DIGEST',
+-    name: 'TypeError',
+-    message: 'Invalid digest: md55'
+-  }
+-);
+diff --git a/test/parallel/test-crypto-sign-verify.js b/test/parallel/test-crypto-sign-verify.js
+index b3861dd..1bd5f71 100644
+--- a/test/parallel/test-crypto-sign-verify.js
++++ b/test/parallel/test-crypto-sign-verify.js
+@@ -419,14 +419,6 @@ common.expectsError(
+ }
+ 
+ [
+-  { private: fixtures.readKey('ed25519_private.pem', 'ascii'),
+-    public: fixtures.readKey('ed25519_public.pem', 'ascii'),
+-    algo: null,
+-    sigLen: 64 },
+-  { private: fixtures.readKey('ed448_private.pem', 'ascii'),
+-    public: fixtures.readKey('ed448_public.pem', 'ascii'),
+-    algo: null,
+-    sigLen: 114 },
+   { private: fixtures.readKey('rsa_private_2048.pem', 'ascii'),
+     public: fixtures.readKey('rsa_public_2048.pem', 'ascii'),
+     algo: 'sha1',
+diff --git a/test/parallel/test-crypto.js b/test/parallel/test-crypto.js
+index 9337621..ac1fcce 100644
+--- a/test/parallel/test-crypto.js
++++ b/test/parallel/test-crypto.js
+@@ -129,7 +129,7 @@ validateList(cryptoCiphers);
+ // Assume that we have at least AES256-SHA.
+ const tlsCiphers = tls.getCiphers();
+ assert(tls.getCiphers().includes('aes256-sha'));
+-assert(tls.getCiphers().includes('tls_aes_128_ccm_8_sha256'));
++//assert(tls.getCiphers().includes('tls_aes_128_ccm_8_sha256'));  // TLSv1.3
+ // There should be no capital letters in any element.
+ const noCapitals = /^[^A-Z]+$/;
+ assert(tlsCiphers.every((value) => noCapitals.test(value)));
+@@ -235,9 +235,9 @@ assert.throws(function() {
+ }, (err) => {
+   // Do the standard checks, but then do some custom checks afterwards.
+   assert.throws(() => { throw err; }, {
+-    message: 'error:0D0680A8:asn1 encoding routines:asn1_check_tlen:wrong tag',
++    message: 'error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag',
+     library: 'asn1 encoding routines',
+-    function: 'asn1_check_tlen',
++    function: 'ASN1_CHECK_TLEN',
+     reason: 'wrong tag',
+     code: 'ERR_OSSL_ASN1_WRONG_TAG',
+   });
+diff --git a/test/parallel/test-https-agent-session-eviction.js b/test/parallel/test-https-agent-session-eviction.js
+index 3f5cd36..8e13b15 100644
+--- a/test/parallel/test-https-agent-session-eviction.js
++++ b/test/parallel/test-https-agent-session-eviction.js
+@@ -7,8 +7,10 @@ const { readKey } = require('../common/fixtures');
+ if (!common.hasCrypto)
+   common.skip('missing crypto');
+ 
++const assert = require('assert');
+ const https = require('https');
+-const { SSL_OP_NO_TICKET } = require('crypto').constants;
++const { OPENSSL_VERSION_NUMBER, SSL_OP_NO_TICKET } =
++    require('crypto').constants;
+ 
+ const options = {
+   key: readKey('agent1-key.pem'),
+@@ -58,12 +60,38 @@ function second(server, session) {
+     res.resume();
+   });
+ 
+-  // Although we have a TLS 1.2 session to offer to the TLS 1.0 server,
+-  // connection to the TLS 1.0 server should work.
+-  req.on('response', common.mustCall(function(res) {
+-    // The test is now complete for OpenSSL 1.1.0.
+-    server.close();
+-  }));
++  if (OPENSSL_VERSION_NUMBER >= 0x10100000) {
++    // Although we have a TLS 1.2 session to offer to the TLS 1.0 server,
++    // connection to the TLS 1.0 server should work.
++    req.on('response', common.mustCall(function(res) {
++      // The test is now complete for OpenSSL 1.1.0.
++      server.close();
++    }));
++  } else {
++    // OpenSSL 1.0.x mistakenly locked versions based on the session it was
++    // offering. This causes this sequent request to fail. Let it fail, but
++    // test that this is mitigated on the next try by invalidating the session.
++    req.on('error', common.mustCall(function(err) {
++      assert(/wrong version number/.test(err.message));
++
++      req.on('close', function() {
++        third(server);
++      });
++    }));
++  }
++  req.end();
++}
+ 
++// Try one more time - session should be evicted!
++function third(server) {
++  const req = https.request({
++    port: server.address().port,
++    rejectUnauthorized: false
++  }, function(res) {
++    res.resume();
++    assert(!req.socket.isSessionReused());
++    server.close();
++  });
++  req.on('error', common.mustNotCall());
+   req.end();
+ }
+diff --git a/test/parallel/test-tls-alert-handling.js b/test/parallel/test-tls-alert-handling.js
+index f9f42e2..9dc4637 100644
+--- a/test/parallel/test-tls-alert-handling.js
++++ b/test/parallel/test-tls-alert-handling.js
+@@ -33,7 +33,7 @@ let iter = 0;
+ const errorHandler = common.mustCall((err) => {
+   assert.strictEqual(err.code, 'ERR_SSL_WRONG_VERSION_NUMBER');
+   assert.strictEqual(err.library, 'SSL routines');
+-  assert.strictEqual(err.function, 'ssl3_get_record');
++  assert.strictEqual(err.function, 'SSL3_GET_RECORD');
+   assert.strictEqual(err.reason, 'wrong version number');
+   errorReceived = true;
+   if (canCloseServer())
+diff --git a/test/parallel/test-tls-cli-max-version-1.3.js b/test/parallel/test-tls-cli-max-version-1.3.js
+deleted file mode 100644
+index c04354f..0000000
+--- a/test/parallel/test-tls-cli-max-version-1.3.js
++++ /dev/null
+@@ -1,15 +0,0 @@
+-// Flags: --tls-max-v1.3
+-'use strict';
+-const common = require('../common');
+-if (!common.hasCrypto) common.skip('missing crypto');
+-
+-// Check that node `--tls-max-v1.3` is supported.
+-
+-const assert = require('assert');
+-const tls = require('tls');
+-
+-assert.strictEqual(tls.DEFAULT_MAX_VERSION, 'TLSv1.3');
+-assert.strictEqual(tls.DEFAULT_MIN_VERSION, 'TLSv1.2');
+-
+-// Check the min-max version protocol versions against these CLI settings.
+-require('./test-tls-min-max-version.js');
+diff --git a/test/parallel/test-tls-cli-min-max-conflict.js b/test/parallel/test-tls-cli-min-max-conflict.js
+deleted file mode 100644
+index 68aae4c..0000000
+--- a/test/parallel/test-tls-cli-min-max-conflict.js
++++ /dev/null
+@@ -1,14 +0,0 @@
+-'use strict';
+-const common = require('../common');
+-if (!common.hasCrypto) common.skip('missing crypto');
+-
+-// Check that conflicting TLS protocol versions are not allowed
+-
+-const assert = require('assert');
+-const child_process = require('child_process');
+-
+-const args = ['--tls-min-v1.3', '--tls-max-v1.2', '-p', 'process.version'];
+-child_process.execFile(process.argv[0], args, (err) => {
+-  assert(err);
+-  assert(/not both/.test(err.message));
+-});
+diff --git a/test/parallel/test-tls-cli-min-version-1.0.js b/test/parallel/test-tls-cli-min-version-1.0.js
+index 5775627..0a227c0 100644
+--- a/test/parallel/test-tls-cli-min-version-1.0.js
++++ b/test/parallel/test-tls-cli-min-version-1.0.js
+@@ -8,7 +8,7 @@ if (!common.hasCrypto) common.skip('missing crypto');
+ const assert = require('assert');
+ const tls = require('tls');
+ 
+-assert.strictEqual(tls.DEFAULT_MAX_VERSION, 'TLSv1.3');
++assert.strictEqual(tls.DEFAULT_MAX_VERSION, 'TLSv1.2');
+ assert.strictEqual(tls.DEFAULT_MIN_VERSION, 'TLSv1');
+ 
+ // Check the min-max version protocol versions against these CLI settings.
+diff --git a/test/parallel/test-tls-cli-min-version-1.1.js b/test/parallel/test-tls-cli-min-version-1.1.js
+index 3af2b39..1219c82 100644
+--- a/test/parallel/test-tls-cli-min-version-1.1.js
++++ b/test/parallel/test-tls-cli-min-version-1.1.js
+@@ -8,7 +8,7 @@ if (!common.hasCrypto) common.skip('missing crypto');
+ const assert = require('assert');
+ const tls = require('tls');
+ 
+-assert.strictEqual(tls.DEFAULT_MAX_VERSION, 'TLSv1.3');
++assert.strictEqual(tls.DEFAULT_MAX_VERSION, 'TLSv1.2');
+ assert.strictEqual(tls.DEFAULT_MIN_VERSION, 'TLSv1.1');
+ 
+ // Check the min-max version protocol versions against these CLI settings.
+diff --git a/test/parallel/test-tls-cli-min-version-1.2.js b/test/parallel/test-tls-cli-min-version-1.2.js
+index 8385eab..058dc18 100644
+--- a/test/parallel/test-tls-cli-min-version-1.2.js
++++ b/test/parallel/test-tls-cli-min-version-1.2.js
+@@ -8,7 +8,7 @@ if (!common.hasCrypto) common.skip('missing crypto');
+ const assert = require('assert');
+ const tls = require('tls');
+ 
+-assert.strictEqual(tls.DEFAULT_MAX_VERSION, 'TLSv1.3');
++assert.strictEqual(tls.DEFAULT_MAX_VERSION, 'TLSv1.2');
+ assert.strictEqual(tls.DEFAULT_MIN_VERSION, 'TLSv1.2');
+ 
+ // Check the min-max version protocol versions against these CLI settings.
+diff --git a/test/parallel/test-tls-cli-min-version-1.3.js b/test/parallel/test-tls-cli-min-version-1.3.js
+deleted file mode 100644
+index 1bccc2f..0000000
+--- a/test/parallel/test-tls-cli-min-version-1.3.js
++++ /dev/null
+@@ -1,15 +0,0 @@
+-// Flags: --tls-min-v1.3
+-'use strict';
+-const common = require('../common');
+-if (!common.hasCrypto) common.skip('missing crypto');
+-
+-// Check that node `--tls-min-v1.3` is supported.
+-
+-const assert = require('assert');
+-const tls = require('tls');
+-
+-assert.strictEqual(tls.DEFAULT_MAX_VERSION, 'TLSv1.3');
+-assert.strictEqual(tls.DEFAULT_MIN_VERSION, 'TLSv1.3');
+-
+-// Check the min-max version protocol versions against these CLI settings.
+-require('./test-tls-min-max-version.js');
+diff --git a/test/parallel/test-tls-client-getephemeralkeyinfo.js b/test/parallel/test-tls-client-getephemeralkeyinfo.js
+index 5993069..cdfe5de 100644
+--- a/test/parallel/test-tls-client-getephemeralkeyinfo.js
++++ b/test/parallel/test-tls-client-getephemeralkeyinfo.js
+@@ -59,5 +59,3 @@ test(1024, 'DH', undefined, 'DHE-RSA-AES128-GCM-SHA256');
+ test(2048, 'DH', undefined, 'DHE-RSA-AES128-GCM-SHA256');
+ test(256, 'ECDH', 'prime256v1', 'ECDHE-RSA-AES128-GCM-SHA256');
+ test(521, 'ECDH', 'secp521r1', 'ECDHE-RSA-AES128-GCM-SHA256');
+-test(253, 'ECDH', 'X25519', 'ECDHE-RSA-AES128-GCM-SHA256');
+-test(448, 'ECDH', 'X448', 'ECDHE-RSA-AES128-GCM-SHA256');
+diff --git a/test/parallel/test-tls-client-renegotiation-13.js b/test/parallel/test-tls-client-renegotiation-13.js
+deleted file mode 100644
+index 075eb70..0000000
+--- a/test/parallel/test-tls-client-renegotiation-13.js
++++ /dev/null
+@@ -1,41 +0,0 @@
+-'use strict';
+-
+-const common = require('../common');
+-const fixtures = require('../common/fixtures');
+-
+-// Confirm that for TLSv1.3, renegotiate() is disallowed.
+-
+-const {
+-  assert, connect, keys
+-} = require(fixtures.path('tls-connect'));
+-
+-const server = keys.agent10;
+-
+-connect({
+-  client: {
+-    ca: server.ca,
+-    checkServerIdentity: common.mustCall(),
+-  },
+-  server: {
+-    key: server.key,
+-    cert: server.cert,
+-  },
+-}, function(err, pair, cleanup) {
+-  assert.ifError(err);
+-
+-  const client = pair.client.conn;
+-
+-  assert.strictEqual(client.getProtocol(), 'TLSv1.3');
+-
+-  const ok = client.renegotiate({}, common.mustCall((err) => {
+-    assert.throws(() => { throw err; }, {
+-      message: 'error:1420410A:SSL routines:SSL_renegotiate:wrong ssl version',
+-      code: 'ERR_SSL_WRONG_SSL_VERSION',
+-      library: 'SSL routines',
+-      reason: 'wrong ssl version',
+-    });
+-    cleanup();
+-  }));
+-
+-  assert.strictEqual(ok, false);
+-});
+diff --git a/test/parallel/test-tls-destroy-stream.js b/test/parallel/test-tls-destroy-stream.js
+index a49e985..1964f67 100644
+--- a/test/parallel/test-tls-destroy-stream.js
++++ b/test/parallel/test-tls-destroy-stream.js
+@@ -9,7 +9,7 @@ const net = require('net');
+ const assert = require('assert');
+ const tls = require('tls');
+ 
+-tls.DEFAULT_MAX_VERSION = 'TLSv1.3';
++tls.DEFAULT_MAX_VERSION = 'TLSv1.2';
+ 
+ // This test ensures that an instance of StreamWrap should emit "end" and
+ // "close" when the socket on the other side call `destroy()` instead of
+diff --git a/test/parallel/test-tls-getcipher.js b/test/parallel/test-tls-getcipher.js
+index 624f8ef..93ad1f6 100644
+--- a/test/parallel/test-tls-getcipher.js
++++ b/test/parallel/test-tls-getcipher.js
+@@ -52,7 +52,7 @@ server.listen(0, '127.0.0.1', common.mustCall(function() {
+   }, common.mustCall(function() {
+     const cipher = this.getCipher();
+     assert.strictEqual(cipher.name, 'AES128-SHA256');
+-    assert.strictEqual(cipher.version, 'TLSv1.2');
++    assert.strictEqual(cipher.version, 'TLSv1/SSLv3');
+     this.end();
+   }));
+ 
+@@ -65,28 +65,7 @@ server.listen(0, '127.0.0.1', common.mustCall(function() {
+   }, common.mustCall(function() {
+     const cipher = this.getCipher();
+     assert.strictEqual(cipher.name, 'ECDHE-RSA-AES128-GCM-SHA256');
+-    assert.strictEqual(cipher.version, 'TLSv1.2');
++    assert.strictEqual(cipher.version, 'TLSv1/SSLv3');
+     this.end();
+   }));
+ }));
+-
+-tls.createServer({
+-  key: fixtures.readKey('agent2-key.pem'),
+-  cert: fixtures.readKey('agent2-cert.pem'),
+-  ciphers: 'TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_CCM_8_SHA256',
+-  maxVersion: 'TLSv1.3',
+-}, common.mustCall(function() {
+-  this.close();
+-})).listen(0, common.mustCall(function() {
+-  const client = tls.connect({
+-    port: this.address().port,
+-    ciphers: 'TLS_AES_128_CCM_8_SHA256',
+-    maxVersion: 'TLSv1.3',
+-    rejectUnauthorized: false
+-  }, common.mustCall(() => {
+-    const cipher = client.getCipher();
+-    assert.strictEqual(cipher.name, 'TLS_AES_128_CCM_8_SHA256');
+-    assert.strictEqual(cipher.version, 'TLSv1.3');
+-    client.end();
+-  }));
+-}));
+diff --git a/test/parallel/test-tls-keylog-tlsv13.js b/test/parallel/test-tls-keylog-tlsv13.js
+deleted file mode 100644
+index 0f65564..0000000
+--- a/test/parallel/test-tls-keylog-tlsv13.js
++++ /dev/null
+@@ -1,32 +0,0 @@
+-'use strict';
+-
+-const common = require('../common');
+-if (!common.hasCrypto)
+-  common.skip('missing crypto');
+-
+-const assert = require('assert');
+-const tls = require('tls');
+-const fixtures = require('../common/fixtures');
+-
+-const server = tls.createServer({
+-  key: fixtures.readKey('agent2-key.pem'),
+-  cert: fixtures.readKey('agent2-cert.pem'),
+-  // Amount of keylog events depends on negotiated protocol
+-  // version, so force a specific one:
+-  minVersion: 'TLSv1.3',
+-  maxVersion: 'TLSv1.3',
+-}).listen(() => {
+-  const client = tls.connect({
+-    port: server.address().port,
+-    rejectUnauthorized: false,
+-  });
+-
+-  const verifyBuffer = (line) => assert(Buffer.isBuffer(line));
+-  server.on('keylog', common.mustCall(verifyBuffer, 5));
+-  client.on('keylog', common.mustCall(verifyBuffer, 5));
+-
+-  client.once('secureConnect', () => {
+-    server.close();
+-    client.end();
+-  });
+-});
+diff --git a/test/parallel/test-tls-min-max-version.js b/test/parallel/test-tls-min-max-version.js
+index 179ae1f..8b5435b 100644
+--- a/test/parallel/test-tls-min-max-version.js
++++ b/test/parallel/test-tls-min-max-version.js
+@@ -126,9 +126,9 @@ if (DEFAULT_MIN_VERSION === 'TLSv1.3') {
+ 
+ if (DEFAULT_MIN_VERSION === 'TLSv1.2') {
+   test(U, U, 'TLSv1_1_method', U, U, 'SSLv23_method',
+-       U, 'ECONNRESET', 'ERR_SSL_UNSUPPORTED_PROTOCOL');
++       U, 'ECONNRESET', 'ERR_SSL_UNKNOWN_PROTOCOL');
+   test(U, U, 'TLSv1_method', U, U, 'SSLv23_method',
+-       U, 'ECONNRESET', 'ERR_SSL_UNSUPPORTED_PROTOCOL');
++       U, 'ECONNRESET', 'ERR_SSL_UNKNOWN_PROTOCOL');
+   test(U, U, 'SSLv23_method', U, U, 'TLSv1_1_method',
+        U, 'ERR_SSL_UNSUPPORTED_PROTOCOL', 'ERR_SSL_WRONG_VERSION_NUMBER');
+   test(U, U, 'SSLv23_method', U, U, 'TLSv1_method',
+@@ -138,7 +138,7 @@ if (DEFAULT_MIN_VERSION === 'TLSv1.2') {
+ if (DEFAULT_MIN_VERSION === 'TLSv1.1') {
+   test(U, U, 'TLSv1_1_method', U, U, 'SSLv23_method', 'TLSv1.1');
+   test(U, U, 'TLSv1_method', U, U, 'SSLv23_method',
+-       U, 'ECONNRESET', 'ERR_SSL_UNSUPPORTED_PROTOCOL');
++       U, 'ECONNRESET', 'ERR_SSL_UNKNOWN_PROTOCOL');
+   test(U, U, 'SSLv23_method', U, U, 'TLSv1_1_method', 'TLSv1.1');
+   test(U, U, 'SSLv23_method', U, U, 'TLSv1_method',
+        U, 'ERR_SSL_UNSUPPORTED_PROTOCOL', 'ERR_SSL_WRONG_VERSION_NUMBER');
+@@ -160,9 +160,9 @@ test(U, U, 'TLSv1_method', U, U, 'TLSv1_method', 'TLSv1');
+ // The default default.
+ if (DEFAULT_MIN_VERSION === 'TLSv1.2') {
+   test(U, U, 'TLSv1_1_method', U, U, U,
+-       U, 'ECONNRESET', 'ERR_SSL_UNSUPPORTED_PROTOCOL');
++       U, 'ECONNRESET', 'ERR_SSL_UNKNOWN_PROTOCOL');
+   test(U, U, 'TLSv1_method', U, U, U,
+-       U, 'ECONNRESET', 'ERR_SSL_UNSUPPORTED_PROTOCOL');
++       U, 'ECONNRESET', 'ERR_SSL_UNKNOWN_PROTOCOL');
+ 
+   if (DEFAULT_MAX_VERSION === 'TLSv1.2') {
+     test(U, U, U, U, U, 'TLSv1_1_method',
+@@ -182,7 +182,7 @@ if (DEFAULT_MIN_VERSION === 'TLSv1.2') {
+ if (DEFAULT_MIN_VERSION === 'TLSv1.1') {
+   test(U, U, 'TLSv1_1_method', U, U, U, 'TLSv1.1');
+   test(U, U, 'TLSv1_method', U, U, U,
+-       U, 'ECONNRESET', 'ERR_SSL_UNSUPPORTED_PROTOCOL');
++       U, 'ECONNRESET', 'ERR_SSL_UNKNOWN_PROTOCOL');
+   test(U, U, U, U, U, 'TLSv1_1_method', 'TLSv1.1');
+ 
+   if (DEFAULT_MAX_VERSION === 'TLSv1.2') {
+@@ -213,26 +213,9 @@ test(U, U, 'TLSv1_method', 'TLSv1', 'TLSv1.2', U, 'TLSv1');
+ test(U, U, 'TLSv1_1_method', 'TLSv1', 'TLSv1.2', U, 'TLSv1.1');
+ test(U, U, 'TLSv1_2_method', 'TLSv1', 'TLSv1.2', U, 'TLSv1.2');
+ 
+-test('TLSv1', 'TLSv1.1', U, 'TLSv1', 'TLSv1.3', U, 'TLSv1.1');
+ test('TLSv1', 'TLSv1.1', U, 'TLSv1', 'TLSv1.2', U, 'TLSv1.1');
+ test('TLSv1', 'TLSv1.2', U, 'TLSv1', 'TLSv1.1', U, 'TLSv1.1');
+-test('TLSv1', 'TLSv1.3', U, 'TLSv1', 'TLSv1.1', U, 'TLSv1.1');
+ test('TLSv1', 'TLSv1', U, 'TLSv1', 'TLSv1.1', U, 'TLSv1');
+ test('TLSv1', 'TLSv1.2', U, 'TLSv1', 'TLSv1', U, 'TLSv1');
+-test('TLSv1', 'TLSv1.3', U, 'TLSv1', 'TLSv1', U, 'TLSv1');
+ test('TLSv1.1', 'TLSv1.1', U, 'TLSv1', 'TLSv1.2', U, 'TLSv1.1');
+ test('TLSv1', 'TLSv1.2', U, 'TLSv1.1', 'TLSv1.1', U, 'TLSv1.1');
+-test('TLSv1', 'TLSv1.2', U, 'TLSv1', 'TLSv1.3', U, 'TLSv1.2');
+-
+-// v-any client can connect to v-specific server
+-test('TLSv1', 'TLSv1.3', U, 'TLSv1.3', 'TLSv1.3', U, 'TLSv1.3');
+-test('TLSv1', 'TLSv1.3', U, 'TLSv1.2', 'TLSv1.3', U, 'TLSv1.3');
+-test('TLSv1', 'TLSv1.3', U, 'TLSv1.2', 'TLSv1.2', U, 'TLSv1.2');
+-test('TLSv1', 'TLSv1.3', U, 'TLSv1.1', 'TLSv1.1', U, 'TLSv1.1');
+-test('TLSv1', 'TLSv1.3', U, 'TLSv1', 'TLSv1', U, 'TLSv1');
+-
+-// v-specific client can connect to v-any server
+-test('TLSv1.3', 'TLSv1.3', U, 'TLSv1', 'TLSv1.3', U, 'TLSv1.3');
+-test('TLSv1.2', 'TLSv1.2', U, 'TLSv1', 'TLSv1.3', U, 'TLSv1.2');
+-test('TLSv1.1', 'TLSv1.1', U, 'TLSv1', 'TLSv1.3', U, 'TLSv1.1');
+-test('TLSv1', 'TLSv1', U, 'TLSv1', 'TLSv1.3', U, 'TLSv1');
+diff --git a/test/parallel/test-tls-multi-key.js b/test/parallel/test-tls-multi-key.js
+index c5e66f3..de213f5 100644
+--- a/test/parallel/test-tls-multi-key.js
++++ b/test/parallel/test-tls-multi-key.js
+@@ -157,7 +157,7 @@ function test(options) {
+     }, common.mustCall(function() {
+       assert.deepStrictEqual(ecdsa.getCipher(), {
+         name: 'ECDHE-ECDSA-AES256-GCM-SHA384',
+-        version: 'TLSv1.2'
++        version: 'TLSv1/SSLv3'
+       });
+       assert.strictEqual(ecdsa.getPeerCertificate().subject.CN, eccCN);
+       assert.strictEqual(ecdsa.getPeerCertificate().asn1Curve, 'prime256v1');
+@@ -175,7 +175,7 @@ function test(options) {
+     }, common.mustCall(function() {
+       assert.deepStrictEqual(rsa.getCipher(), {
+         name: 'ECDHE-RSA-AES256-GCM-SHA384',
+-        version: 'TLSv1.2'
++        version: 'TLSv1/SSLv3'
+       });
+       assert.strictEqual(rsa.getPeerCertificate().subject.CN, rsaCN);
+       assert(rsa.getPeerCertificate().exponent, 'cert for an RSA key');
+diff --git a/test/parallel/test-tls-multi-pfx.js b/test/parallel/test-tls-multi-pfx.js
+index 3b0c059..28cd945 100644
+--- a/test/parallel/test-tls-multi-pfx.js
++++ b/test/parallel/test-tls-multi-pfx.js
+@@ -42,9 +42,9 @@ const server = tls.createServer(options, function(conn) {
+ process.on('exit', function() {
+   assert.deepStrictEqual(ciphers, [{
+     name: 'ECDHE-ECDSA-AES256-GCM-SHA384',
+-    version: 'TLSv1.2'
++    version: 'TLSv1/SSLv3'
+   }, {
+     name: 'ECDHE-RSA-AES256-GCM-SHA384',
+-    version: 'TLSv1.2'
++    version: 'TLSv1/SSLv3'
+   }]);
+ });
+diff --git a/test/parallel/test-tls-no-sslv3.js b/test/parallel/test-tls-no-sslv3.js
+deleted file mode 100644
+index 1acb1f9..0000000
+--- a/test/parallel/test-tls-no-sslv3.js
++++ /dev/null
+@@ -1,49 +0,0 @@
+-'use strict';
+-const common = require('../common');
+-if (!common.hasCrypto)
+-  common.skip('missing crypto');
+-
+-if (common.opensslCli === false)
+-  common.skip('node compiled without OpenSSL CLI.');
+-
+-const assert = require('assert');
+-const tls = require('tls');
+-const spawn = require('child_process').spawn;
+-const fixtures = require('../common/fixtures');
+-
+-const cert = fixtures.readKey('rsa_cert.crt');
+-const key = fixtures.readKey('rsa_private.pem');
+-const server = tls.createServer({ cert, key }, common.mustNotCall());
+-const errors = [];
+-let stderr = '';
+-
+-server.listen(0, '127.0.0.1', function() {
+-  const address = `${this.address().address}:${this.address().port}`;
+-  const args = ['s_client',
+-                '-ssl3',
+-                '-connect', address];
+-
+-  const client = spawn(common.opensslCli, args, { stdio: 'pipe' });
+-  client.stdout.pipe(process.stdout);
+-  client.stderr.pipe(process.stderr);
+-  client.stderr.setEncoding('utf8');
+-  client.stderr.on('data', (data) => stderr += data);
+-
+-  client.once('exit', common.mustCall(function(exitCode) {
+-    assert.strictEqual(exitCode, 1);
+-    server.close();
+-  }));
+-});
+-
+-server.on('tlsClientError', (err) => errors.push(err));
+-
+-process.on('exit', function() {
+-  if (/unknown option -ssl3/.test(stderr)) {
+-    common.printSkipMessage('`openssl s_client -ssl3` not supported.');
+-  } else {
+-    assert.strictEqual(errors.length, 1);
+-    // OpenSSL 1.0.x and 1.1.x report invalid client versions differently.
+-    assert(/:wrong version number/.test(errors[0].message) ||
+-           /:version too low/.test(errors[0].message));
+-  }
+-});
+diff --git a/test/parallel/test-tls-passphrase.js b/test/parallel/test-tls-passphrase.js
+index c3a99c3..4bbabb4 100644
+--- a/test/parallel/test-tls-passphrase.js
++++ b/test/parallel/test-tls-passphrase.js
+@@ -223,7 +223,7 @@ server.listen(0, common.mustCall(function() {
+   }, onSecureConnect());
+ })).unref();
+ 
+-const errMessagePassword = /bad decrypt/;
++const errMessagePassword = /bad decrypt|bad password read/;
+ 
+ // Missing passphrase
+ assert.throws(function() {
+diff --git a/test/parallel/test-tls-set-ciphers.js b/test/parallel/test-tls-set-ciphers.js
+index fbca83b..79fb178 100644
+--- a/test/parallel/test-tls-set-ciphers.js
++++ b/test/parallel/test-tls-set-ciphers.js
+@@ -68,36 +68,11 @@ const U = undefined;
+ test(U, 'AES256-SHA', 'AES256-SHA');
+ test('AES256-SHA', U, 'AES256-SHA');
+ 
+-test(U, 'TLS_AES_256_GCM_SHA384', 'TLS_AES_256_GCM_SHA384');
+-test('TLS_AES_256_GCM_SHA384', U, 'TLS_AES_256_GCM_SHA384');
+-
+ // Do not have shared ciphers.
+-test('TLS_AES_256_GCM_SHA384', 'TLS_CHACHA20_POLY1305_SHA256',
+-     U, 'ECONNRESET', 'ERR_SSL_NO_SHARED_CIPHER');
+-
+-test('AES128-SHA', 'AES256-SHA', U, 'ECONNRESET', 'ERR_SSL_NO_SHARED_CIPHER');
+-test('AES128-SHA:TLS_AES_256_GCM_SHA384',
+-     'TLS_CHACHA20_POLY1305_SHA256:AES256-SHA',
+-     U, 'ECONNRESET', 'ERR_SSL_NO_SHARED_CIPHER');
+-
+-// Cipher order ignored, TLS1.3 chosen before TLS1.2.
+-test('AES256-SHA:TLS_AES_256_GCM_SHA384', U, 'TLS_AES_256_GCM_SHA384');
+-test(U, 'AES256-SHA:TLS_AES_256_GCM_SHA384', 'TLS_AES_256_GCM_SHA384');
+-
+-// TLS_AES_128_CCM_8_SHA256 & TLS_AES_128_CCM_SHA256 are not enabled by
+-// default, but work.
+-test('TLS_AES_128_CCM_8_SHA256', U,
+-     U, 'ECONNRESET', 'ERR_SSL_NO_SHARED_CIPHER');
+-
+-test('TLS_AES_128_CCM_8_SHA256', 'TLS_AES_128_CCM_8_SHA256',
+-     'TLS_AES_128_CCM_8_SHA256');
++test('AES128-SHA', 'AES256-SHA', U, 'ERR_SSL_SSLV3_ALERT_HANDSHAKE_FAILURE', 'ERR_SSL_NO_SHARED_CIPHER');
+ 
+ // Invalid cipher values
+ test(9, 'AES256-SHA', U, 'ERR_INVALID_ARG_TYPE', U);
+ test('AES256-SHA', 9, U, U, 'ERR_INVALID_ARG_TYPE');
+ test(':', 'AES256-SHA', U, 'ERR_INVALID_OPT_VALUE', U);
+ test('AES256-SHA', ':', U, U, 'ERR_INVALID_OPT_VALUE');
+-
+-// Using '' is synonymous for "use default ciphers"
+-test('TLS_AES_256_GCM_SHA384', '', 'TLS_AES_256_GCM_SHA384');
+-test('', 'TLS_AES_256_GCM_SHA384', 'TLS_AES_256_GCM_SHA384');
+diff --git a/test/parallel/test-tls-ticket-12.js b/test/parallel/test-tls-ticket-12.js
+deleted file mode 100644
+index 600c571..0000000
+--- a/test/parallel/test-tls-ticket-12.js
++++ /dev/null
+@@ -1,12 +0,0 @@
+-'use strict';
+-const common = require('../common');
+-if (!common.hasCrypto)
+-  common.skip('missing crypto');
+-
+-// Run test-tls-ticket.js with TLS1.2
+-
+-const tls = require('tls');
+-
+-tls.DEFAULT_MAX_VERSION = 'TLSv1.2';
+-
+-require('./test-tls-ticket.js');
+diff --git a/test/parallel/test-tls-ticket-cluster.js b/test/parallel/test-tls-ticket-cluster.js
+deleted file mode 100644
+index cc4f46e..0000000
+--- a/test/parallel/test-tls-ticket-cluster.js
++++ /dev/null
+@@ -1,135 +0,0 @@
+-// Copyright Joyent, Inc. and other Node contributors.
+-//
+-// Permission is hereby granted, free of charge, to any person obtaining a
+-// copy of this software and associated documentation files (the
+-// "Software"), to deal in the Software without restriction, including
+-// without limitation the rights to use, copy, modify, merge, publish,
+-// distribute, sublicense, and/or sell copies of the Software, and to permit
+-// persons to whom the Software is furnished to do so, subject to the
+-// following conditions:
+-//
+-// The above copyright notice and this permission notice shall be included
+-// in all copies or substantial portions of the Software.
+-//
+-// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+-// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+-// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+-// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+-// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+-// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+-// USE OR OTHER DEALINGS IN THE SOFTWARE.
+-
+-'use strict';
+-const common = require('../common');
+-if (!common.hasCrypto)
+-  common.skip('missing crypto');
+-
+-const assert = require('assert');
+-const tls = require('tls');
+-const cluster = require('cluster');
+-const fixtures = require('../common/fixtures');
+-
+-const workerCount = 4;
+-const expectedReqCount = 16;
+-
+-if (cluster.isMaster) {
+-  let reusedCount = 0;
+-  let reqCount = 0;
+-  let lastSession = null;
+-  let shootOnce = false;
+-  let workerPort = null;
+-
+-  function shoot() {
+-    console.error('[master] connecting', workerPort, 'session?', !!lastSession);
+-    const c = tls.connect(workerPort, {
+-      session: lastSession,
+-      rejectUnauthorized: false
+-    }, () => {
+-      c.end();
+-    }).on('close', () => {
+-      // Wait for close to shoot off another connection. We don't want to shoot
+-      // until a new session is allocated, if one will be. The new session is
+-      // not guaranteed on secureConnect (it depends on TLS1.2 vs TLS1.3), but
+-      // it is guaranteed to happen before the connection is closed.
+-      if (++reqCount === expectedReqCount) {
+-        Object.keys(cluster.workers).forEach(function(id) {
+-          cluster.workers[id].send('die');
+-        });
+-      } else {
+-        shoot();
+-      }
+-    }).once('session', (session) => {
+-      assert(!lastSession);
+-      lastSession = session;
+-    });
+-
+-    c.resume(); // See close_notify comment in server
+-  }
+-
+-  function fork() {
+-    const worker = cluster.fork();
+-    worker.on('message', ({ msg, port }) => {
+-      console.error('[master] got %j', msg);
+-      if (msg === 'reused') {
+-        ++reusedCount;
+-      } else if (msg === 'listening' && !shootOnce) {
+-        workerPort = port || workerPort;
+-        shootOnce = true;
+-        shoot();
+-      }
+-    });
+-
+-    worker.on('exit', () => {
+-      console.error('[master] worker died');
+-    });
+-  }
+-  for (let i = 0; i < workerCount; i++) {
+-    fork();
+-  }
+-
+-  process.on('exit', () => {
+-    assert.strictEqual(reqCount, expectedReqCount);
+-    assert.strictEqual(reusedCount + 1, reqCount);
+-  });
+-  return;
+-}
+-
+-const key = fixtures.readKey('rsa_private.pem');
+-const cert = fixtures.readKey('rsa_cert.crt');
+-
+-const options = { key, cert };
+-
+-const server = tls.createServer(options, (c) => {
+-  console.error('[worker] connection reused?', c.isSessionReused());
+-  if (c.isSessionReused()) {
+-    process.send({ msg: 'reused' });
+-  } else {
+-    process.send({ msg: 'not-reused' });
+-  }
+-  // Used to just .end(), but that means client gets close_notify before
+-  // NewSessionTicket. Send data until that problem is solved.
+-  c.end('x');
+-});
+-
+-server.listen(0, () => {
+-  const { port } = server.address();
+-  process.send({
+-    msg: 'listening',
+-    port,
+-  });
+-});
+-
+-process.on('message', function listener(msg) {
+-  console.error('[worker] got %j', msg);
+-  if (msg === 'die') {
+-    server.close(() => {
+-      console.error('[worker] server close');
+-
+-      process.exit();
+-    });
+-  }
+-});
+-
+-process.on('exit', () => {
+-  console.error('[worker] exit');
+-});
+diff --git a/test/parallel/test-tls-ticket.js b/test/parallel/test-tls-ticket.js
+deleted file mode 100644
+index 8d9cd8c..0000000
+--- a/test/parallel/test-tls-ticket.js
++++ /dev/null
+@@ -1,159 +0,0 @@
+-// Copyright Joyent, Inc. and other Node contributors.
+-//
+-// Permission is hereby granted, free of charge, to any person obtaining a
+-// copy of this software and associated documentation files (the
+-// "Software"), to deal in the Software without restriction, including
+-// without limitation the rights to use, copy, modify, merge, publish,
+-// distribute, sublicense, and/or sell copies of the Software, and to permit
+-// persons to whom the Software is furnished to do so, subject to the
+-// following conditions:
+-//
+-// The above copyright notice and this permission notice shall be included
+-// in all copies or substantial portions of the Software.
+-//
+-// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
+-// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+-// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+-// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
+-// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
+-// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
+-// USE OR OTHER DEALINGS IN THE SOFTWARE.
+-
+-'use strict';
+-const common = require('../common');
+-if (!common.hasCrypto)
+-  common.skip('missing crypto');
+-
+-const assert = require('assert');
+-const tls = require('tls');
+-const net = require('net');
+-const crypto = require('crypto');
+-const fixtures = require('../common/fixtures');
+-
+-const keys = crypto.randomBytes(48);
+-const serverLog = [];
+-const ticketLog = [];
+-
+-let s;
+-
+-let serverCount = 0;
+-function createServer() {
+-  const id = serverCount++;
+-
+-  let counter = 0;
+-  let previousKey = null;
+-
+-  const server = tls.createServer({
+-    key: fixtures.readKey('agent1-key.pem'),
+-    cert: fixtures.readKey('agent1-cert.pem'),
+-    ticketKeys: keys
+-  }, function(c) {
+-    serverLog.push(id);
+-    // TODO(@sam-github) Triggers close_notify before NewSessionTicket bug.
+-    // c.end();
+-    c.end('x');
+-
+-    counter++;
+-
+-    // Rotate ticket keys
+-    //
+-    // Take especial care to account for TLS1.2 and TLS1.3 differences around
+-    // when ticket keys are encrypted. In TLS1.2, they are encrypted before the
+-    // handshake complete callback, but in TLS1.3, they are encrypted after.
+-    // There is no callback or way for us to know when they were sent, so hook
+-    // the client's reception of the keys, and use it as proof that the current
+-    // keys were used, and its safe to rotate them.
+-    //
+-    // Rotation can occur right away if the session was reused, the keys were
+-    // already decrypted or we wouldn't have a reused session.
+-    function setTicketKeys(keys) {
+-      if (c.isSessionReused())
+-        server.setTicketKeys(keys);
+-      else
+-        s.once('session', () => {
+-          server.setTicketKeys(keys);
+-        });
+-    }
+-    if (counter === 1) {
+-      previousKey = server.getTicketKeys();
+-      assert.strictEqual(previousKey.compare(keys), 0);
+-      setTicketKeys(crypto.randomBytes(48));
+-    } else if (counter === 2) {
+-      setTicketKeys(previousKey);
+-    } else if (counter === 3) {
+-      // Use keys from counter=2
+-    } else {
+-      throw new Error('UNREACHABLE');
+-    }
+-  });
+-
+-  return server;
+-}
+-
+-const naturalServers = [ createServer(), createServer(), createServer() ];
+-
+-// 3x servers
+-const servers = naturalServers.concat(naturalServers).concat(naturalServers);
+-
+-// Create one TCP server and balance sockets to multiple TLS server instances
+-const shared = net.createServer(function(c) {
+-  servers.shift().emit('connection', c);
+-}).listen(0, function() {
+-  start(function() {
+-    shared.close();
+-  });
+-});
+-
+-// 'session' events only occur for new sessions. The first connection is new.
+-// After, for each set of 3 connections, the middle connection is made when the
+-// server has random keys set, so the client's ticket is silently ignored, and a
+-// new ticket is sent.
+-const onNewSession = common.mustCall((s, session) => {
+-  assert(session);
+-  assert.strictEqual(session.compare(s.getSession()), 0);
+-}, 4);
+-
+-function start(callback) {
+-  let sess = null;
+-  let left = servers.length;
+-
+-  function connect() {
+-    s = tls.connect(shared.address().port, {
+-      session: sess,
+-      rejectUnauthorized: false
+-    }, function() {
+-      if (s.isSessionReused())
+-        ticketLog.push(s.getTLSTicket().toString('hex'));
+-    });
+-    s.on('data', () => {
+-      s.end();
+-    });
+-    s.on('close', function() {
+-      if (--left === 0)
+-        callback();
+-      else
+-        connect();
+-    });
+-    s.on('session', (session) => {
+-      sess = sess || session;
+-    });
+-    s.once('session', (session) => onNewSession(s, session));
+-    s.once('session', () => ticketLog.push(s.getTLSTicket().toString('hex')));
+-  }
+-
+-  connect();
+-}
+-
+-process.on('exit', function() {
+-  assert.strictEqual(ticketLog.length, serverLog.length);
+-  for (let i = 0; i < naturalServers.length - 1; i++) {
+-    assert.notStrictEqual(serverLog[i], serverLog[i + 1]);
+-    assert.strictEqual(ticketLog[i], ticketLog[i + 1]);
+-
+-    // 2nd connection should have different ticket
+-    assert.notStrictEqual(ticketLog[i], ticketLog[i + naturalServers.length]);
+-
+-    // 3rd connection should have the same ticket
+-    assert.strictEqual(ticketLog[i], ticketLog[i + naturalServers.length * 2]);
+-  }
+-});
+diff --git a/test/parallel/test-v8-serdes.js b/test/parallel/test-v8-serdes.js
+deleted file mode 100644
+index a992ba4..0000000
+--- a/test/parallel/test-v8-serdes.js
++++ /dev/null
+@@ -1,244 +0,0 @@
+-// Flags: --expose-internals
+-
+-'use strict';
+-
+-const common = require('../common');
+-const fixtures = require('../common/fixtures');
+-const { internalBinding } = require('internal/test/binding');
+-const assert = require('assert');
+-const v8 = require('v8');
+-const os = require('os');
+-
+-const circular = {};
+-circular.circular = circular;
+-
+-const wasmModule = new WebAssembly.Module(fixtures.readSync('simple.wasm'));
+-
+-const objects = [
+-  { foo: 'bar' },
+-  { bar: 'baz' },
+-  new Uint8Array([1, 2, 3, 4]),
+-  new Uint32Array([1, 2, 3, 4]),
+-  Buffer.from([1, 2, 3, 4]),
+-  undefined,
+-  null,
+-  42,
+-  circular,
+-  wasmModule
+-];
+-
+-const hostObject = new (internalBinding('js_stream').JSStream)();
+-
+-const serializerTypeError =
+-  /^TypeError: Class constructor Serializer cannot be invoked without 'new'$/;
+-const deserializerTypeError =
+-  /^TypeError: Class constructor Deserializer cannot be invoked without 'new'$/;
+-
+-{
+-  const ser = new v8.DefaultSerializer();
+-  ser.writeHeader();
+-  for (const obj of objects) {
+-    ser.writeValue(obj);
+-  }
+-
+-  const des = new v8.DefaultDeserializer(ser.releaseBuffer());
+-  des.readHeader();
+-
+-  for (const obj of objects) {
+-    assert.deepStrictEqual(des.readValue(), obj);
+-  }
+-}
+-
+-{
+-  for (const obj of objects) {
+-    assert.deepStrictEqual(v8.deserialize(v8.serialize(obj)), obj);
+-  }
+-}
+-
+-{
+-  const ser = new v8.DefaultSerializer();
+-  ser._getDataCloneError = common.mustCall((message) => {
+-    assert.strictEqual(message, '[object Object] could not be cloned.');
+-    return new Error('foobar');
+-  });
+-
+-  ser.writeHeader();
+-
+-  assert.throws(() => {
+-    ser.writeValue(new Proxy({}, {}));
+-  }, /foobar/);
+-}
+-
+-{
+-  const ser = new v8.DefaultSerializer();
+-  ser._writeHostObject = common.mustCall((object) => {
+-    assert.strictEqual(object, hostObject);
+-    const buf = Buffer.from('hostObjectTag');
+-
+-    ser.writeUint32(buf.length);
+-    ser.writeRawBytes(buf);
+-
+-    ser.writeUint64(1, 2);
+-    ser.writeDouble(-0.25);
+-  });
+-
+-  ser.writeHeader();
+-  ser.writeValue({ val: hostObject });
+-
+-  const des = new v8.DefaultDeserializer(ser.releaseBuffer());
+-  des._readHostObject = common.mustCall(() => {
+-    const length = des.readUint32();
+-    const buf = des.readRawBytes(length);
+-
+-    assert.strictEqual(buf.toString(), 'hostObjectTag');
+-
+-    assert.deepStrictEqual(des.readUint64(), [1, 2]);
+-    assert.strictEqual(des.readDouble(), -0.25);
+-    return hostObject;
+-  });
+-
+-  des.readHeader();
+-
+-  assert.strictEqual(des.readValue().val, hostObject);
+-}
+-
+-// This test ensures that `v8.Serializer.writeRawBytes()` support
+-// `TypedArray` and `DataView`.
+-{
+-  const text = 'hostObjectTag';
+-  const data = Buffer.from(text);
+-  const arrayBufferViews = common.getArrayBufferViews(data);
+-
+-  // `buf` is one of `TypedArray` or `DataView`.
+-  function testWriteRawBytes(buf) {
+-    let writeHostObjectCalled = false;
+-    const ser = new v8.DefaultSerializer();
+-
+-    ser._writeHostObject = common.mustCall((object) => {
+-      writeHostObjectCalled = true;
+-      ser.writeUint32(buf.byteLength);
+-      ser.writeRawBytes(buf);
+-    });
+-
+-    ser.writeHeader();
+-    ser.writeValue({ val: hostObject });
+-
+-    const des = new v8.DefaultDeserializer(ser.releaseBuffer());
+-    des._readHostObject = common.mustCall(() => {
+-      assert.strictEqual(writeHostObjectCalled, true);
+-      const length = des.readUint32();
+-      const buf = des.readRawBytes(length);
+-      assert.strictEqual(buf.toString(), text);
+-
+-      return hostObject;
+-    });
+-
+-    des.readHeader();
+-
+-    assert.strictEqual(des.readValue().val, hostObject);
+-  }
+-
+-  arrayBufferViews.forEach((buf) => {
+-    testWriteRawBytes(buf);
+-  });
+-}
+-
+-{
+-  const ser = new v8.DefaultSerializer();
+-  ser._writeHostObject = common.mustCall((object) => {
+-    throw new Error('foobar');
+-  });
+-
+-  ser.writeHeader();
+-  assert.throws(() => {
+-    ser.writeValue({ val: hostObject });
+-  }, /foobar/);
+-}
+-
+-{
+-  assert.throws(() => v8.serialize(hostObject), {
+-    constructor: Error,
+-    message: 'Unserializable host object: JSStream {}'
+-  });
+-}
+-
+-{
+-  const buf = Buffer.from('ff0d6f2203666f6f5e007b01', 'hex');
+-
+-  const des = new v8.DefaultDeserializer(buf);
+-  des.readHeader();
+-
+-  const ser = new v8.DefaultSerializer();
+-  ser.writeHeader();
+-
+-  ser.writeValue(des.readValue());
+-
+-  assert.deepStrictEqual(buf, ser.releaseBuffer());
+-  assert.strictEqual(des.getWireFormatVersion(), 0x0d);
+-}
+-
+-{
+-  // Unaligned Uint16Array read, with padding in the underlying array buffer.
+-  let buf = Buffer.alloc(32 + 9);
+-  buf.write('ff0d5c0404addeefbe', 32, 'hex');
+-  buf = buf.slice(32);
+-
+-  const expectedResult = os.endianness() === 'LE' ?
+-    new Uint16Array([0xdead, 0xbeef]) : new Uint16Array([0xadde, 0xefbe]);
+-
+-  assert.deepStrictEqual(v8.deserialize(buf), expectedResult);
+-}
+-
+-{
+-  assert.throws(v8.Serializer, serializerTypeError);
+-  assert.throws(v8.Deserializer, deserializerTypeError);
+-}
+-
+-
+-// `v8.deserialize()` and `new v8.Deserializer()` should support both
+-// `TypedArray` and `DataView`.
+-{
+-  for (const obj of objects) {
+-    const buf = v8.serialize(obj);
+-
+-    for (const arrayBufferView of common.getArrayBufferViews(buf)) {
+-      assert.deepStrictEqual(v8.deserialize(arrayBufferView), obj);
+-    }
+-
+-    for (const arrayBufferView of common.getArrayBufferViews(buf)) {
+-      const deserializer = new v8.DefaultDeserializer(arrayBufferView);
+-      deserializer.readHeader();
+-      const value = deserializer.readValue();
+-      assert.deepStrictEqual(value, obj);
+-
+-      const serializer = new v8.DefaultSerializer();
+-      serializer.writeHeader();
+-      serializer.writeValue(value);
+-      assert.deepStrictEqual(buf, serializer.releaseBuffer());
+-    }
+-  }
+-}
+-
+-{
+-  const INVALID_SOURCE = 'INVALID_SOURCE_TYPE';
+-  const serializer = new v8.Serializer();
+-  serializer.writeHeader();
+-  assert.throws(
+-    () => serializer.writeRawBytes(INVALID_SOURCE),
+-    /^TypeError: source must be a TypedArray or a DataView$/,
+-  );
+-  assert.throws(
+-    () => v8.deserialize(INVALID_SOURCE),
+-    /^TypeError: buffer must be a TypedArray or a DataView$/,
+-  );
+-  assert.throws(
+-    () => new v8.Deserializer(INVALID_SOURCE),
+-    /^TypeError: buffer must be a TypedArray or a DataView$/,
+-  );
+-}
+-
+-{
+-  const deserializedWasmModule = v8.deserialize(v8.serialize(wasmModule));
+-  const instance = new WebAssembly.Instance(deserializedWasmModule);
+-  assert.strictEqual(instance.exports.add(10, 20), 30);
+-}
+-- 
+1.8.3.1
+
diff --git a/SOURCES/0003-deps-Remove-statx-from-libuv.patch b/SOURCES/0003-deps-Remove-statx-from-libuv.patch
deleted file mode 100644
index fc154bc..0000000
--- a/SOURCES/0003-deps-Remove-statx-from-libuv.patch
+++ /dev/null
@@ -1,233 +0,0 @@
-From aa084bccf16e52dbc549f5f11788d374b49b130d Mon Sep 17 00:00:00 2001
-From: =?UTF-8?q?Jan=20Stan=C4=9Bk?= <jstanek@redhat.com>
-Date: Thu, 16 Jan 2020 09:10:40 +0100
-Subject: [PATCH 3/4] deps: Remove statx from libuv
-MIME-Version: 1.0
-Content-Type: text/plain; charset=UTF-8
-Content-Transfer-Encoding: 8bit
-
-Related: rhbz#1760184
-Signed-off-by: Jan Staněk <jstanek@redhat.com>
----
- deps/uv/src/unix/fs.c             | 82 -------------------------------
- deps/uv/src/unix/linux-syscalls.c | 32 ------------
- deps/uv/src/unix/linux-syscalls.h | 35 -------------
- 3 files changed, 149 deletions(-)
-
-diff --git a/deps/uv/src/unix/fs.c b/deps/uv/src/unix/fs.c
-index b37cfbb..ab2365f 100644
---- a/deps/uv/src/unix/fs.c
-+++ b/deps/uv/src/unix/fs.c
-@@ -1203,84 +1203,10 @@ static void uv__to_stat(struct stat* src, uv_stat_t* dst) {
- }
-
-
--static int uv__fs_statx(int fd,
--                        const char* path,
--                        int is_fstat,
--                        int is_lstat,
--                        uv_stat_t* buf) {
--  STATIC_ASSERT(UV_ENOSYS != -1);
--#ifdef __linux__
--  static int no_statx;
--  struct uv__statx statxbuf;
--  int dirfd;
--  int flags;
--  int mode;
--  int rc;
--
--  if (no_statx)
--    return UV_ENOSYS;
--
--  dirfd = AT_FDCWD;
--  flags = 0; /* AT_STATX_SYNC_AS_STAT */
--  mode = 0xFFF; /* STATX_BASIC_STATS + STATX_BTIME */
--
--  if (is_fstat) {
--    dirfd = fd;
--    flags |= 0x1000; /* AT_EMPTY_PATH */
--  }
--
--  if (is_lstat)
--    flags |= AT_SYMLINK_NOFOLLOW;
--
--  rc = uv__statx(dirfd, path, flags, mode, &statxbuf);
--
--  if (rc == -1) {
--    /* EPERM happens when a seccomp filter rejects the system call.
--     * Has been observed with libseccomp < 2.3.3 and docker < 18.04.
--     */
--    if (errno != EINVAL && errno != EPERM && errno != ENOSYS)
--      return -1;
--
--    no_statx = 1;
--    return UV_ENOSYS;
--  }
--
--  buf->st_dev = 256 * statxbuf.stx_dev_major + statxbuf.stx_dev_minor;
--  buf->st_mode = statxbuf.stx_mode;
--  buf->st_nlink = statxbuf.stx_nlink;
--  buf->st_uid = statxbuf.stx_uid;
--  buf->st_gid = statxbuf.stx_gid;
--  buf->st_rdev = statxbuf.stx_rdev_major;
--  buf->st_ino = statxbuf.stx_ino;
--  buf->st_size = statxbuf.stx_size;
--  buf->st_blksize = statxbuf.stx_blksize;
--  buf->st_blocks = statxbuf.stx_blocks;
--  buf->st_atim.tv_sec = statxbuf.stx_atime.tv_sec;
--  buf->st_atim.tv_nsec = statxbuf.stx_atime.tv_nsec;
--  buf->st_mtim.tv_sec = statxbuf.stx_mtime.tv_sec;
--  buf->st_mtim.tv_nsec = statxbuf.stx_mtime.tv_nsec;
--  buf->st_ctim.tv_sec = statxbuf.stx_ctime.tv_sec;
--  buf->st_ctim.tv_nsec = statxbuf.stx_ctime.tv_nsec;
--  buf->st_birthtim.tv_sec = statxbuf.stx_btime.tv_sec;
--  buf->st_birthtim.tv_nsec = statxbuf.stx_btime.tv_nsec;
--  buf->st_flags = 0;
--  buf->st_gen = 0;
--
--  return 0;
--#else
--  return UV_ENOSYS;
--#endif /* __linux__ */
--}
--
--
- static int uv__fs_stat(const char *path, uv_stat_t *buf) {
-   struct stat pbuf;
-   int ret;
-
--  ret = uv__fs_statx(-1, path, /* is_fstat */ 0, /* is_lstat */ 0, buf);
--  if (ret != UV_ENOSYS)
--    return ret;
--
-   ret = stat(path, &pbuf);
-   if (ret == 0)
-     uv__to_stat(&pbuf, buf);
-@@ -1293,10 +1219,6 @@ static int uv__fs_lstat(const char *path, uv_stat_t *buf) {
-   struct stat pbuf;
-   int ret;
-
--  ret = uv__fs_statx(-1, path, /* is_fstat */ 0, /* is_lstat */ 1, buf);
--  if (ret != UV_ENOSYS)
--    return ret;
--
-   ret = lstat(path, &pbuf);
-   if (ret == 0)
-     uv__to_stat(&pbuf, buf);
-@@ -1309,10 +1231,6 @@ static int uv__fs_fstat(int fd, uv_stat_t *buf) {
-   struct stat pbuf;
-   int ret;
-
--  ret = uv__fs_statx(fd, "", /* is_fstat */ 1, /* is_lstat */ 0, buf);
--  if (ret != UV_ENOSYS)
--    return ret;
--
-   ret = fstat(fd, &pbuf);
-   if (ret == 0)
-     uv__to_stat(&pbuf, buf);
-diff --git a/deps/uv/src/unix/linux-syscalls.c b/deps/uv/src/unix/linux-syscalls.c
-index 9503878..9560fe6 100644
---- a/deps/uv/src/unix/linux-syscalls.c
-+++ b/deps/uv/src/unix/linux-syscalls.c
-@@ -187,22 +187,6 @@
- # endif
- #endif /* __NR_pwritev */
-
--#ifndef __NR_statx
--# if defined(__x86_64__)
--#  define __NR_statx 332
--# elif defined(__i386__)
--#  define __NR_statx 383
--# elif defined(__aarch64__)
--#  define __NR_statx 397
--# elif defined(__arm__)
--#  define __NR_statx (UV_SYSCALL_BASE + 397)
--# elif defined(__ppc__)
--#  define __NR_statx 383
--# elif defined(__s390__)
--#  define __NR_statx 379
--# endif
--#endif /* __NR_statx */
--
- #ifndef __NR_getrandom
- # if defined(__x86_64__)
- #  define __NR_getrandom 318
-@@ -369,22 +353,6 @@ int uv__dup3(int oldfd, int newfd, int flags) {
- }
-
-
--int uv__statx(int dirfd,
--              const char* path,
--              int flags,
--              unsigned int mask,
--              struct uv__statx* statxbuf) {
--  /* __NR_statx make Android box killed by SIGSYS.
--   * That looks like a seccomp2 sandbox filter rejecting the system call.
--   */
--#if defined(__NR_statx) && !defined(__ANDROID__)
--  return syscall(__NR_statx, dirfd, path, flags, mask, statxbuf);
--#else
--  return errno = ENOSYS, -1;
--#endif
--}
--
--
- ssize_t uv__getrandom(void* buf, size_t buflen, unsigned flags) {
- #if defined(__NR_getrandom)
-   return syscall(__NR_getrandom, buf, buflen, flags);
-diff --git a/deps/uv/src/unix/linux-syscalls.h b/deps/uv/src/unix/linux-syscalls.h
-index b7729b8..7312b0c 100644
---- a/deps/uv/src/unix/linux-syscalls.h
-+++ b/deps/uv/src/unix/linux-syscalls.h
-@@ -80,36 +80,6 @@
- #define UV__IN_DELETE_SELF    0x400
- #define UV__IN_MOVE_SELF      0x800
-
--struct uv__statx_timestamp {
--  int64_t tv_sec;
--  uint32_t tv_nsec;
--  int32_t unused0;
--};
--
--struct uv__statx {
--  uint32_t stx_mask;
--  uint32_t stx_blksize;
--  uint64_t stx_attributes;
--  uint32_t stx_nlink;
--  uint32_t stx_uid;
--  uint32_t stx_gid;
--  uint16_t stx_mode;
--  uint16_t unused0;
--  uint64_t stx_ino;
--  uint64_t stx_size;
--  uint64_t stx_blocks;
--  uint64_t stx_attributes_mask;
--  struct uv__statx_timestamp stx_atime;
--  struct uv__statx_timestamp stx_btime;
--  struct uv__statx_timestamp stx_ctime;
--  struct uv__statx_timestamp stx_mtime;
--  uint32_t stx_rdev_major;
--  uint32_t stx_rdev_minor;
--  uint32_t stx_dev_major;
--  uint32_t stx_dev_minor;
--  uint64_t unused1[14];
--};
--
- struct uv__inotify_event {
-   int32_t wd;
-   uint32_t mask;
-@@ -143,11 +113,6 @@ int uv__sendmmsg(int fd,
- ssize_t uv__preadv(int fd, const struct iovec *iov, int iovcnt, int64_t offset);
- ssize_t uv__pwritev(int fd, const struct iovec *iov, int iovcnt, int64_t offset);
- int uv__dup3(int oldfd, int newfd, int flags);
--int uv__statx(int dirfd,
--              const char* path,
--              int flags,
--              unsigned int mask,
--              struct uv__statx* statxbuf);
- ssize_t uv__getrandom(void* buf, size_t buflen, unsigned flags);
-
- #endif /* UV_LINUX_SYSCALL_H_ */
---
-2.24.1
-
diff --git a/SOURCES/0004-Revert-new-options-using-unsupported-OpenSSL-feature.patch b/SOURCES/0004-Revert-new-options-using-unsupported-OpenSSL-feature.patch
deleted file mode 100644
index 87f5fb0..0000000
--- a/SOURCES/0004-Revert-new-options-using-unsupported-OpenSSL-feature.patch
+++ /dev/null
@@ -1,576 +0,0 @@
-From 564a2856960790325f08726147b0eb9dde2bb10d Mon Sep 17 00:00:00 2001
-From: =?UTF-8?q?Jan=20Stan=C4=9Bk?= <jstanek@redhat.com>
-Date: Thu, 16 Jan 2020 11:41:47 +0100
-Subject: [PATCH 4/4] Revert new options using unsupported OpenSSL features
-
-Reverts 54f327b4dcb37f373bc4146686c7e4edcd9c524d
-https://github.com/nodejs/node/commit/54f327b4dcb37f373bc4146686c7e4edcd9c524d
-
-Reverts 6272f82c07e913a76a316a786c9aadbc09f953ff
-https://github.com/nodejs/node/commit/6272f82c07e913a76a316a786c9aadbc09f953ff
-
-Signed-off-by: Jan Staněk <jstanek@redhat.com>
----
- doc/api/crypto.md                      |   6 --
- doc/api/tls.md                         |  10 --
- lib/_tls_common.js                     |  13 ---
- lib/_tls_wrap.js                       |   4 -
- lib/internal/crypto/cipher.js          |  10 +-
- src/node_crypto.cc                     | 123 -------------------------
- src/node_crypto.h                      |   4 -
- test/fixtures/rsa-oaep-test-vectors.js |  30 ------
- test/parallel/test-crypto-rsa-dsa.js   |  65 +++++++++----
- test/parallel/test-tls-set-sigalgs.js  |  74 ---------------
- 10 files changed, 48 insertions(+), 291 deletions(-)
- delete mode 100644 test/fixtures/rsa-oaep-test-vectors.js
- delete mode 100644 test/parallel/test-tls-set-sigalgs.js
-
-diff --git a/doc/api/crypto.md b/doc/api/crypto.md
-index cf651fb..e72006a 100644
---- a/doc/api/crypto.md
-+++ b/doc/api/crypto.md
-@@ -2383,9 +2383,6 @@ An array of supported digest functions can be retrieved using
- <!-- YAML
- added: v0.11.14
- changes:
--  - version: v12.11.0
--    pr-url: https://github.com/nodejs/node/pull/29489
--    description: The `oaepLabel` option was added.
-   - version: v12.9.0
-     pr-url: https://github.com/nodejs/node/pull/28335
-     description: The `oaepHash` option was added.
-@@ -2470,9 +2467,6 @@ be passed instead of a public key.
- <!-- YAML
- added: v0.11.14
- changes:
--  - version: v12.11.0
--    pr-url: https://github.com/nodejs/node/pull/29489
--    description: The `oaepLabel` option was added.
-   - version: v12.9.0
-     pr-url: https://github.com/nodejs/node/pull/28335
-     description: The `oaepHash` option was added.
-diff --git a/doc/api/tls.md b/doc/api/tls.md
-index 3fd8e8c..09c0fa5 100644
---- a/doc/api/tls.md
-+++ b/doc/api/tls.md
-@@ -1362,10 +1362,6 @@ changes:
-     pr-url: https://github.com/nodejs/node/pull/28973
-     description: Added `privateKeyIdentifier` and `privateKeyEngine` options
-                  to get private key from an OpenSSL engine.
--  - version: v12.11.0
--    pr-url: https://github.com/nodejs/node/pull/29598
--    description: Added `sigalgs` option to override supported signature
--                 algorithms.
-   - version: v12.0.0
-     pr-url: https://github.com/nodejs/node/pull/26209
-     description: TLSv1.3 support added.
-@@ -1426,12 +1422,6 @@ changes:
-     order as their private keys in `key`. If the intermediate certificates are
-     not provided, the peer will not be able to validate the certificate, and the
-     handshake will fail.
--  * `sigalgs` {string} Colon-separated list of supported signature algorithms.
--    The list can contain digest algorithms (`SHA256`, `MD5` etc.), public key
--    algorithms (`RSA-PSS`, `ECDSA` etc.), combination of both (e.g
--    'RSA+SHA384') or TLS v1.3 scheme names (e.g. `rsa_pss_pss_sha512`).
--    See [OpenSSL man pages](https://www.openssl.org/docs/man1.1.1/man3/SSL_CTX_set1_sigalgs_list.html)
--    for more info.
-   * `ciphers` {string} Cipher suite specification, replacing the default. For
-     more information, see [modifying the default cipher suite][]. Permitted
-     ciphers can be obtained via [`tls.getCiphers()`][]. Cipher names must be
-diff --git a/lib/_tls_common.js b/lib/_tls_common.js
-index 17c3e3a..f31b1eb 100644
---- a/lib/_tls_common.js
-+++ b/lib/_tls_common.js
-@@ -152,19 +152,6 @@ exports.createSecureContext = function createSecureContext(options) {
-     }
-   }
-
--  const sigalgs = options.sigalgs;
--  if (sigalgs !== undefined) {
--    if (typeof sigalgs !== 'string') {
--      throw new ERR_INVALID_ARG_TYPE('options.sigalgs', 'string', sigalgs);
--    }
--
--    if (sigalgs === '') {
--      throw new ERR_INVALID_OPT_VALUE('sigalgs', sigalgs);
--    }
--
--    c.context.setSigalgs(sigalgs);
--  }
--
-   const { privateKeyIdentifier, privateKeyEngine } = options;
-   if (privateKeyIdentifier !== undefined) {
-     if (privateKeyEngine === undefined) {
-diff --git a/lib/_tls_wrap.js b/lib/_tls_wrap.js
-index 778afa7..f9dcaa1 100644
---- a/lib/_tls_wrap.js
-+++ b/lib/_tls_wrap.js
-@@ -861,7 +861,6 @@ function makeSocketMethodProxy(name) {
-
- [
-   'getCipher',
--  'getSharedSigalgs',
-   'getEphemeralKeyInfo',
-   'getFinished',
-   'getPeerFinished',
-@@ -1117,8 +1116,6 @@ Server.prototype.setSecureContext = function(options) {
-   else
-     this.crl = undefined;
-
--  this.sigalgs = options.sigalgs;
--
-   if (options.ciphers)
-     this.ciphers = options.ciphers;
-   else
-@@ -1160,7 +1157,6 @@ Server.prototype.setSecureContext = function(options) {
-     clientCertEngine: this.clientCertEngine,
-     ca: this.ca,
-     ciphers: this.ciphers,
--    sigalgs: this.sigalgs,
-     ecdhCurve: this.ecdhCurve,
-     dhparam: this.dhparam,
-     minVersion: this.minVersion,
-diff --git a/lib/internal/crypto/cipher.js b/lib/internal/crypto/cipher.js
-index 1d6f32b..73fab0f 100644
---- a/lib/internal/crypto/cipher.js
-+++ b/lib/internal/crypto/cipher.js
-@@ -50,16 +50,10 @@ function rsaFunctionFor(method, defaultPadding, keyType) {
-         preparePrivateKey(options) :
-         preparePublicOrPrivateKey(options);
-     const padding = options.padding || defaultPadding;
--    const { oaepHash, oaepLabel } = options;
-+    const { oaepHash } = options;
-     if (oaepHash !== undefined && typeof oaepHash !== 'string')
-       throw new ERR_INVALID_ARG_TYPE('options.oaepHash', 'string', oaepHash);
--    if (oaepLabel !== undefined && !isArrayBufferView(oaepLabel)) {
--      throw new ERR_INVALID_ARG_TYPE('options.oaepLabel',
--                                     ['Buffer', 'TypedArray', 'DataView'],
--                                     oaepLabel);
--    }
--    return method(data, format, type, passphrase, buffer, padding, oaepHash,
--                  oaepLabel);
-+    return method(data, format, type, passphrase, buffer, padding, oaepHash);
-   };
- }
-
-diff --git a/src/node_crypto.cc b/src/node_crypto.cc
-index 7bafe1e..17a69b8 100644
---- a/src/node_crypto.cc
-+++ b/src/node_crypto.cc
-@@ -737,7 +737,6 @@ void SecureContext::Initialize(Environment* env, Local<Object> target) {
-   env->SetProtoMethod(t, "addRootCerts", AddRootCerts);
-   env->SetProtoMethod(t, "setCipherSuites", SetCipherSuites);
-   env->SetProtoMethod(t, "setCiphers", SetCiphers);
--  env->SetProtoMethod(t, "setSigalgs", SetSigalgs);
-   env->SetProtoMethod(t, "setECDHCurve", SetECDHCurve);
-   env->SetProtoMethod(t, "setDHParam", SetDHParam);
-   env->SetProtoMethod(t, "setMaxProto", SetMaxProto);
-@@ -1021,24 +1020,6 @@ void SecureContext::SetKey(const FunctionCallbackInfo<Value>& args) {
-   }
- }
-
--void SecureContext::SetSigalgs(const FunctionCallbackInfo<Value>& args) {
--  SecureContext* sc;
--  ASSIGN_OR_RETURN_UNWRAP(&sc, args.Holder());
--  Environment* env = sc->env();
--  ClearErrorOnReturn clear_error_on_return;
--
--  CHECK_EQ(args.Length(), 1);
--  CHECK(args[0]->IsString());
--
--  const node::Utf8Value sigalgs(env->isolate(), args[0]);
--
--  int rv = SSL_CTX_set1_sigalgs_list(sc->ctx_.get(), *sigalgs);
--
--  if (rv == 0) {
--    return ThrowCryptoError(env, ERR_get_error());
--  }
--}
--
- #ifndef OPENSSL_NO_ENGINE
- // Helpers for the smart pointer.
- void ENGINE_free_fn(ENGINE* engine) { ENGINE_free(engine); }
-@@ -2080,7 +2061,6 @@ void SSLWrap<Base>::AddMethods(Environment* env, Local<FunctionTemplate> t) {
-   env->SetProtoMethodNoSideEffect(t, "isSessionReused", IsSessionReused);
-   env->SetProtoMethodNoSideEffect(t, "verifyError", VerifyError);
-   env->SetProtoMethodNoSideEffect(t, "getCipher", GetCipher);
--  env->SetProtoMethodNoSideEffect(t, "getSharedSigalgs", GetSharedSigalgs);
-   env->SetProtoMethod(t, "endParser", EndParser);
-   env->SetProtoMethod(t, "certCbDone", CertCbDone);
-   env->SetProtoMethod(t, "renegotiate", Renegotiate);
-@@ -3038,88 +3018,6 @@ void SSLWrap<Base>::GetCipher(const FunctionCallbackInfo<Value>& args) {
- }
-
-
--template <class Base>
--void SSLWrap<Base>::GetSharedSigalgs(const FunctionCallbackInfo<Value>& args) {
--  Base* w;
--  ASSIGN_OR_RETURN_UNWRAP(&w, args.Holder());
--  Environment* env = w->ssl_env();
--  std::vector<Local<Value>> ret_arr;
--
--  SSL* ssl = w->ssl_.get();
--  int nsig = SSL_get_shared_sigalgs(ssl, 0, nullptr, nullptr, nullptr, nullptr,
--                                    nullptr);
--
--  for (int i = 0; i < nsig; i++) {
--    int hash_nid;
--    int sign_nid;
--    std::string sig_with_md;
--
--    SSL_get_shared_sigalgs(ssl, i, &sign_nid, &hash_nid, nullptr, nullptr,
--                           nullptr);
--
--    switch (sign_nid) {
--      case EVP_PKEY_RSA:
--        sig_with_md = "RSA+";
--        break;
--
--      case EVP_PKEY_RSA_PSS:
--        sig_with_md = "RSA-PSS+";
--        break;
--
--      case EVP_PKEY_DSA:
--        sig_with_md = "DSA+";
--        break;
--
--      case EVP_PKEY_EC:
--        sig_with_md = "ECDSA+";
--        break;
--
--      case NID_ED25519:
--        sig_with_md = "Ed25519+";
--        break;
--
--      case NID_ED448:
--        sig_with_md = "Ed448+";
--        break;
--#ifndef OPENSSL_NO_GOST
--      case NID_id_GostR3410_2001:
--        sig_with_md = "gost2001+";
--        break;
--
--      case NID_id_GostR3410_2012_256:
--        sig_with_md = "gost2012_256+";
--        break;
--
--      case NID_id_GostR3410_2012_512:
--        sig_with_md = "gost2012_512+";
--        break;
--#endif  // !OPENSSL_NO_GOST
--      default:
--        const char* sn = OBJ_nid2sn(sign_nid);
--
--        if (sn != nullptr) {
--          sig_with_md = std::string(sn) + "+";
--        } else {
--          sig_with_md = "UNDEF+";
--        }
--        break;
--    }
--
--    const char* sn_hash = OBJ_nid2sn(hash_nid);
--    if (sn_hash != nullptr) {
--      sig_with_md += std::string(sn_hash);
--    } else {
--      sig_with_md += "UNDEF";
--    }
--
--    ret_arr.push_back(OneByteString(env->isolate(), sig_with_md.c_str()));
--  }
--
--  args.GetReturnValue().Set(
--                 Array::New(env->isolate(), ret_arr.data(), ret_arr.size()));
--}
--
--
- template <class Base>
- void SSLWrap<Base>::GetProtocol(const FunctionCallbackInfo<Value>& args) {
-   Base* w;
-@@ -5720,8 +5618,6 @@ bool PublicKeyCipher::Cipher(Environment* env,
-                              const ManagedEVPPKey& pkey,
-                              int padding,
-                              const EVP_MD* digest,
--                             const void* oaep_label,
--                             size_t oaep_label_len,
-                              const unsigned char* data,
-                              int len,
-                              AllocatedBuffer* out) {
-@@ -5738,17 +5634,6 @@ bool PublicKeyCipher::Cipher(Environment* env,
-       return false;
-   }
-
--  if (oaep_label_len != 0) {
--    // OpenSSL takes ownership of the label, so we need to create a copy.
--    void* label = OPENSSL_memdup(oaep_label, oaep_label_len);
--    CHECK_NOT_NULL(label);
--    if (0 >= EVP_PKEY_CTX_set0_rsa_oaep_label(ctx.get(), label,
--                                              oaep_label_len)) {
--      OPENSSL_free(label);
--      return false;
--    }
--  }
--
-   size_t out_len = 0;
-   if (EVP_PKEY_cipher(ctx.get(), nullptr, &out_len, data, len) <= 0)
-     return false;
-@@ -5794,12 +5679,6 @@ void PublicKeyCipher::Cipher(const FunctionCallbackInfo<Value>& args) {
-       return THROW_ERR_OSSL_EVP_INVALID_DIGEST(env);
-   }
-
--  ArrayBufferViewContents<unsigned char> oaep_label;
--  if (!args[offset + 3]->IsUndefined()) {
--    CHECK(args[offset + 3]->IsArrayBufferView());
--    oaep_label.Read(args[offset + 3].As<ArrayBufferView>());
--  }
--
-   AllocatedBuffer out;
-
-   ClearErrorOnReturn clear_error_on_return;
-@@ -5809,8 +5688,6 @@ void PublicKeyCipher::Cipher(const FunctionCallbackInfo<Value>& args) {
-       pkey,
-       padding,
-       digest,
--      oaep_label.data(),
--      oaep_label.length(),
-       buf.data(),
-       buf.length(),
-       &out);
-diff --git a/src/node_crypto.h b/src/node_crypto.h
-index 9de1616..b225cba 100644
---- a/src/node_crypto.h
-+++ b/src/node_crypto.h
-@@ -164,7 +164,6 @@ class SecureContext : public BaseObject {
-   static void AddRootCerts(const v8::FunctionCallbackInfo<v8::Value>& args);
-   static void SetCipherSuites(const v8::FunctionCallbackInfo<v8::Value>& args);
-   static void SetCiphers(const v8::FunctionCallbackInfo<v8::Value>& args);
--  static void SetSigalgs(const v8::FunctionCallbackInfo<v8::Value>& args);
-   static void SetECDHCurve(const v8::FunctionCallbackInfo<v8::Value>& args);
-   static void SetDHParam(const v8::FunctionCallbackInfo<v8::Value>& args);
-   static void SetOptions(const v8::FunctionCallbackInfo<v8::Value>& args);
-@@ -297,7 +296,6 @@ class SSLWrap {
-   static void IsSessionReused(const v8::FunctionCallbackInfo<v8::Value>& args);
-   static void VerifyError(const v8::FunctionCallbackInfo<v8::Value>& args);
-   static void GetCipher(const v8::FunctionCallbackInfo<v8::Value>& args);
--  static void GetSharedSigalgs(const v8::FunctionCallbackInfo<v8::Value>& args);
-   static void EndParser(const v8::FunctionCallbackInfo<v8::Value>& args);
-   static void CertCbDone(const v8::FunctionCallbackInfo<v8::Value>& args);
-   static void Renegotiate(const v8::FunctionCallbackInfo<v8::Value>& args);
-@@ -762,8 +760,6 @@ class PublicKeyCipher {
-                      const ManagedEVPPKey& pkey,
-                      int padding,
-                      const EVP_MD* digest,
--                     const void* oaep_label,
--                     size_t oaep_label_size,
-                      const unsigned char* data,
-                      int len,
-                      AllocatedBuffer* out);
-diff --git a/test/fixtures/rsa-oaep-test-vectors.js b/test/fixtures/rsa-oaep-test-vectors.js
-deleted file mode 100644
-index 47e681f..0000000
---- a/test/fixtures/rsa-oaep-test-vectors.js
-+++ /dev/null
-@@ -1,30 +0,0 @@
--{
--  "comment": "RSA-OAEP test vectors for test-crypto-rsa-dsa.js",
--  "decryptionTests": [
--    {
--      "ct": "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"
--    },
--    {
--      "ct": "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",
--      "oaepHash": "sha1"
--    },
--    {
--      "ct": "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",
--      "oaepHash": "sha256"
--    },
--    {
--      "ct": "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",
--      "oaepHash": "sha512"
--    },
--    {
--      "ct": "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",
--      "oaepHash": "sha384",
--      "oaepLabel": "01020304"
--    },
--    {
--      "ct": "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",
--      "oaepHash": "sha1",
--      "oaepLabel": "00112233445566778899"
--    }
--  ]
--}
-diff --git a/test/parallel/test-crypto-rsa-dsa.js b/test/parallel/test-crypto-rsa-dsa.js
-index 30ef7ec..c773aae 100644
---- a/test/parallel/test-crypto-rsa-dsa.js
-+++ b/test/parallel/test-crypto-rsa-dsa.js
-@@ -202,21 +202,59 @@ common.expectsError(() => {
- // The following RSA-OAEP test cases were created using the WebCrypto API to
- // ensure compatibility when using non-SHA1 hash functions.
- {
--  const { decryptionTests } =
--      JSON.parse(fixtures.readSync('rsa-oaep-test-vectors.js', 'utf8'));
--
--  for (const { ct, oaepHash, oaepLabel } of decryptionTests) {
-+  function testDecrypt(oaepHash, ciphertext) {
-     const decrypted = crypto.privateDecrypt({
-       key: rsaPkcs8KeyPem,
--      oaepHash,
--      oaepLabel: oaepLabel ? Buffer.from(oaepLabel, 'hex') : undefined
--    }, Buffer.from(ct, 'hex'));
-+      oaepHash
-+    }, Buffer.from(ciphertext, 'hex'));
-
-     assert.strictEqual(decrypted.toString('utf8'), 'Hello Node.js');
-   }
-+
-+  testDecrypt(undefined, '16ece59cf985a8cf1a3434e4b9707c922c20638fdf9abf7e5dc' +
-+                         '7943f4136899348c54116d15b2c17563b9c7143f9d5b85b4561' +
-+                         '5ad0598ea6d21c900f3957b65400612306a9bebae441f005646' +
-+                         'f7a7c97129a103ab54e777168ef966514adb17786b968ea0ff4' +
-+                         '30a524904c4a11c683764b7c8dbb60df0952768381cdba4d665' +
-+                         'e5006034393a10d56d33e75b2714db824a18da46441ef7f94a3' +
-+                         '4a7058c0bbad0394083a038558bcc6dd370f8e518e1bd8d73b2' +
-+                         '96fc51d77da44799e4ee774926ded7910e8768f92db76f63107' +
-+                         '338d33354b735d3ad094240dbd7ffdfda27ef0255306dcf4a64' +
-+                         '62849492abd1a97fdd37743ff87c4d2ec89866c5cdbb696bd2b' +
-+                         '30');
-+  testDecrypt('sha1', '16ece59cf985a8cf1a3434e4b9707c922c20638fdf9abf7e5dc794' +
-+                      '3f4136899348c54116d15b2c17563b9c7143f9d5b85b45615ad059' +
-+                      '8ea6d21c900f3957b65400612306a9bebae441f005646f7a7c9712' +
-+                      '9a103ab54e777168ef966514adb17786b968ea0ff430a524904c4a' +
-+                      '11c683764b7c8dbb60df0952768381cdba4d665e5006034393a10d' +
-+                      '56d33e75b2714db824a18da46441ef7f94a34a7058c0bbad039408' +
-+                      '3a038558bcc6dd370f8e518e1bd8d73b296fc51d77da44799e4ee7' +
-+                      '74926ded7910e8768f92db76f63107338d33354b735d3ad094240d' +
-+                      'bd7ffdfda27ef0255306dcf4a6462849492abd1a97fdd37743ff87' +
-+                      'c4d2ec89866c5cdbb696bd2b30');
-+  testDecrypt('sha256', '16ccf09afe5eb0130182b9fc1ca4af61a38e772047cac42146bf' +
-+                        'a0fa5879aa9639203e4d01442d212ff95bddfbe4661222215a2e' +
-+                        '91908c37ab926edea7cfc53f83357bc27f86af0f5f2818ae141f' +
-+                        '4e9e934d4e66189aff30f062c9c3f6eb9bc495a59082cb978f99' +
-+                        'b56ce5fa530a8469e46129258e5c42897cb194b6805e936e5cbb' +
-+                        'eaa535bad6b1d3cdfc92119b7dd325a2e6d2979e316bdacc9f80' +
-+                        'e29c7bbdf6846d738e380deadcb48df8c1e8aabf7a9dd2f8c71d' +
-+                        '6681dbec7dcadc01887c51288674268796bc77fdf8f1c94c9ca5' +
-+                        '0b1cc7cddbaf4e56cb151d23e2c699d2844c0104ee2e7e9dcdb9' +
-+                        '07cfab43339120a40c59ca54f32b8d21b48a29656c77');
-+  testDecrypt('sha512', '831b72e8dd91841729ecbddf2647d6f19dc0094734f8803d8c65' +
-+                        '1b5655a12ae6156b74d9b594bcc0eacd002728380b94f46e8657' +
-+                        'f130f354e03b6e7815ee257eda78dba296d67d24410c31c48e58' +
-+                        '75cc79e4bde594b412be5f357f57a7ac1f1d18b718e408df162d' +
-+                        '1795508e6a0616192b647ad942ea068a44fb2b323d35a3a61b92' +
-+                        '6feb105d6c0b2a8fc8050222d1cf4a9e44da1f95bbc677fd6437' +
-+                        '49c6c89ac551d072f04cd9320c97a8d94755c8a804954c082bed' +
-+                        '7fa59199a00aca154c14a7b584b63c538daf9b9c7c90abfca193' +
-+                        '87d2131f9d9b9ecfc8672249c33144d1be3bfc41558a13f99466' +
-+                        '3661a3af24fd0a97619d508db36f5fc131af86fc68cf');
- }
-
--// Test invalid oaepHash and oaepLabel options.
-+// Test invalid oaepHash options.
- for (const fn of [crypto.publicEncrypt, crypto.privateDecrypt]) {
-   assert.throws(() => {
-     fn({
-@@ -237,17 +275,6 @@ for (const fn of [crypto.publicEncrypt, crypto.privateDecrypt]) {
-       code: 'ERR_INVALID_ARG_TYPE'
-     });
-   }
--
--  for (const oaepLabel of [0, false, null, Symbol(), () => {}, {}, 'foo']) {
--    common.expectsError(() => {
--      fn({
--        key: rsaPubPem,
--        oaepLabel
--      }, Buffer.alloc(10));
--    }, {
--      code: 'ERR_INVALID_ARG_TYPE'
--    });
--  }
- }
-
- // Test RSA key signing/verification
-diff --git a/test/parallel/test-tls-set-sigalgs.js b/test/parallel/test-tls-set-sigalgs.js
-deleted file mode 100644
-index 59dc2ca..0000000
---- a/test/parallel/test-tls-set-sigalgs.js
-+++ /dev/null
-@@ -1,74 +0,0 @@
--'use strict';
--const common = require('../common');
--if (!common.hasCrypto) common.skip('missing crypto');
--const fixtures = require('../common/fixtures');
--
--// Test sigalgs: option for TLS.
--
--const {
--  assert, connect, keys
--} = require(fixtures.path('tls-connect'));
--
--function assert_arrays_equal(left, right) {
--  assert.strictEqual(left.length, right.length);
--  for (let i = 0; i < left.length; i++) {
--    assert.strictEqual(left[i], right[i]);
--  }
--}
--
--function test(csigalgs, ssigalgs, shared_sigalgs, cerr, serr) {
--  assert(shared_sigalgs || serr || cerr, 'test missing any expectations');
--  connect({
--    client: {
--      checkServerIdentity: (servername, cert) => { },
--      ca: `${keys.agent1.cert}\n${keys.agent6.ca}`,
--      cert: keys.agent2.cert,
--      key: keys.agent2.key,
--      sigalgs: csigalgs
--    },
--    server: {
--      cert: keys.agent6.cert,
--      key: keys.agent6.key,
--      ca: keys.agent2.ca,
--      context: {
--        requestCert: true,
--        rejectUnauthorized: true
--      },
--      sigalgs: ssigalgs
--    },
--  }, common.mustCall((err, pair, cleanup) => {
--    if (shared_sigalgs) {
--      assert.ifError(err);
--      assert.ifError(pair.server.err);
--      assert.ifError(pair.client.err);
--      assert(pair.server.conn);
--      assert(pair.client.conn);
--      assert_arrays_equal(pair.server.conn.getSharedSigalgs(), shared_sigalgs);
--    } else {
--      if (serr) {
--        assert(pair.server.err);
--        assert(pair.server.err.code, serr);
--      }
--
--      if (cerr) {
--        assert(pair.client.err);
--        assert(pair.client.err.code, cerr);
--      }
--    }
--
--    return cleanup();
--  }));
--}
--
--// Have shared sigalgs
--test('RSA-PSS+SHA384', 'RSA-PSS+SHA384', ['RSA-PSS+SHA384']);
--test('RSA-PSS+SHA256:RSA-PSS+SHA512:ECDSA+SHA256',
--     'RSA-PSS+SHA256:ECDSA+SHA256',
--     ['RSA-PSS+SHA256', 'ECDSA+SHA256']);
--
--// Do not have shared sigalgs.
--test('RSA-PSS+SHA384', 'ECDSA+SHA256',
--     undefined, 'ECONNRESET', 'ERR_SSL_NO_SHARED_SIGNATURE_ALGORITMS');
--
--test('RSA-PSS+SHA384:ECDSA+SHA256', 'ECDSA+SHA384:RSA-PSS+SHA256',
--     undefined, 'ECONNRESET', 'ERR_SSL_NO_SHARED_SIGNATURE_ALGORITMS');
---
-2.24.1
-
diff --git a/SOURCES/0004-deps-Remove-statx-from-libuv.patch b/SOURCES/0004-deps-Remove-statx-from-libuv.patch
new file mode 100644
index 0000000..c0c678b
--- /dev/null
+++ b/SOURCES/0004-deps-Remove-statx-from-libuv.patch
@@ -0,0 +1,237 @@
+From b432ec3d812467099f3a632e2e69a00371de39c4 Mon Sep 17 00:00:00 2001
+From: Zuzana Svetlikova <zsvetlik@redhat.com>
+Date: Wed, 19 Feb 2020 10:32:33 +0000
+Subject: [PATCH 4/4] fix libuv
+
+---
+ deps/uv/src/unix/fs.c             | 91 ---------------------------------------
+ deps/uv/src/unix/linux-syscalls.c | 32 --------------
+ deps/uv/src/unix/linux-syscalls.h | 35 ---------------
+ 3 files changed, 158 deletions(-)
+
+diff --git a/deps/uv/src/unix/fs.c b/deps/uv/src/unix/fs.c
+index 916d710..c227f4c 100644
+--- a/deps/uv/src/unix/fs.c
++++ b/deps/uv/src/unix/fs.c
+@@ -1278,93 +1278,10 @@ static void uv__to_stat(struct stat* src, uv_stat_t* dst) {
+ }
+ 
+ 
+-static int uv__fs_statx(int fd,
+-                        const char* path,
+-                        int is_fstat,
+-                        int is_lstat,
+-                        uv_stat_t* buf) {
+-  STATIC_ASSERT(UV_ENOSYS != -1);
+-#ifdef __linux__
+-  static int no_statx;
+-  struct uv__statx statxbuf;
+-  int dirfd;
+-  int flags;
+-  int mode;
+-  int rc;
+-
+-  if (no_statx)
+-    return UV_ENOSYS;
+-
+-  dirfd = AT_FDCWD;
+-  flags = 0; /* AT_STATX_SYNC_AS_STAT */
+-  mode = 0xFFF; /* STATX_BASIC_STATS + STATX_BTIME */
+-
+-  if (is_fstat) {
+-    dirfd = fd;
+-    flags |= 0x1000; /* AT_EMPTY_PATH */
+-  }
+-
+-  if (is_lstat)
+-    flags |= AT_SYMLINK_NOFOLLOW;
+-
+-  rc = uv__statx(dirfd, path, flags, mode, &statxbuf);
+-
+-  switch (rc) {
+-  case 0:
+-    break;
+-  case -1:
+-    /* EPERM happens when a seccomp filter rejects the system call.
+-     * Has been observed with libseccomp < 2.3.3 and docker < 18.04.
+-     */
+-    if (errno != EINVAL && errno != EPERM && errno != ENOSYS)
+-      return -1;
+-    /* Fall through. */
+-  default:
+-    /* Normally on success, zero is returned and On error, -1 is returned.
+-     * Observed on S390 RHEL running in a docker container with statx not
+-     * implemented, rc might return 1 with 0 set as the error code in which
+-     * case we return ENOSYS.
+-     */
+-    no_statx = 1;
+-    return UV_ENOSYS;
+-  }
+-
+-  buf->st_dev = 256 * statxbuf.stx_dev_major + statxbuf.stx_dev_minor;
+-  buf->st_mode = statxbuf.stx_mode;
+-  buf->st_nlink = statxbuf.stx_nlink;
+-  buf->st_uid = statxbuf.stx_uid;
+-  buf->st_gid = statxbuf.stx_gid;
+-  buf->st_rdev = statxbuf.stx_rdev_major;
+-  buf->st_ino = statxbuf.stx_ino;
+-  buf->st_size = statxbuf.stx_size;
+-  buf->st_blksize = statxbuf.stx_blksize;
+-  buf->st_blocks = statxbuf.stx_blocks;
+-  buf->st_atim.tv_sec = statxbuf.stx_atime.tv_sec;
+-  buf->st_atim.tv_nsec = statxbuf.stx_atime.tv_nsec;
+-  buf->st_mtim.tv_sec = statxbuf.stx_mtime.tv_sec;
+-  buf->st_mtim.tv_nsec = statxbuf.stx_mtime.tv_nsec;
+-  buf->st_ctim.tv_sec = statxbuf.stx_ctime.tv_sec;
+-  buf->st_ctim.tv_nsec = statxbuf.stx_ctime.tv_nsec;
+-  buf->st_birthtim.tv_sec = statxbuf.stx_btime.tv_sec;
+-  buf->st_birthtim.tv_nsec = statxbuf.stx_btime.tv_nsec;
+-  buf->st_flags = 0;
+-  buf->st_gen = 0;
+-
+-  return 0;
+-#else
+-  return UV_ENOSYS;
+-#endif /* __linux__ */
+-}
+-
+-
+ static int uv__fs_stat(const char *path, uv_stat_t *buf) {
+   struct stat pbuf;
+   int ret;
+ 
+-  ret = uv__fs_statx(-1, path, /* is_fstat */ 0, /* is_lstat */ 0, buf);
+-  if (ret != UV_ENOSYS)
+-    return ret;
+-
+   ret = stat(path, &pbuf);
+   if (ret == 0)
+     uv__to_stat(&pbuf, buf);
+@@ -1377,10 +1294,6 @@ static int uv__fs_lstat(const char *path, uv_stat_t *buf) {
+   struct stat pbuf;
+   int ret;
+ 
+-  ret = uv__fs_statx(-1, path, /* is_fstat */ 0, /* is_lstat */ 1, buf);
+-  if (ret != UV_ENOSYS)
+-    return ret;
+-
+   ret = lstat(path, &pbuf);
+   if (ret == 0)
+     uv__to_stat(&pbuf, buf);
+@@ -1393,10 +1306,6 @@ static int uv__fs_fstat(int fd, uv_stat_t *buf) {
+   struct stat pbuf;
+   int ret;
+ 
+-  ret = uv__fs_statx(fd, "", /* is_fstat */ 1, /* is_lstat */ 0, buf);
+-  if (ret != UV_ENOSYS)
+-    return ret;
+-
+   ret = fstat(fd, &pbuf);
+   if (ret == 0)
+     uv__to_stat(&pbuf, buf);
+diff --git a/deps/uv/src/unix/linux-syscalls.c b/deps/uv/src/unix/linux-syscalls.c
+index 9503878..9560fe6 100644
+--- a/deps/uv/src/unix/linux-syscalls.c
++++ b/deps/uv/src/unix/linux-syscalls.c
+@@ -187,22 +187,6 @@
+ # endif
+ #endif /* __NR_pwritev */
+ 
+-#ifndef __NR_statx
+-# if defined(__x86_64__)
+-#  define __NR_statx 332
+-# elif defined(__i386__)
+-#  define __NR_statx 383
+-# elif defined(__aarch64__)
+-#  define __NR_statx 397
+-# elif defined(__arm__)
+-#  define __NR_statx (UV_SYSCALL_BASE + 397)
+-# elif defined(__ppc__)
+-#  define __NR_statx 383
+-# elif defined(__s390__)
+-#  define __NR_statx 379
+-# endif
+-#endif /* __NR_statx */
+-
+ #ifndef __NR_getrandom
+ # if defined(__x86_64__)
+ #  define __NR_getrandom 318
+@@ -369,22 +353,6 @@ int uv__dup3(int oldfd, int newfd, int flags) {
+ }
+ 
+ 
+-int uv__statx(int dirfd,
+-              const char* path,
+-              int flags,
+-              unsigned int mask,
+-              struct uv__statx* statxbuf) {
+-  /* __NR_statx make Android box killed by SIGSYS.
+-   * That looks like a seccomp2 sandbox filter rejecting the system call.
+-   */
+-#if defined(__NR_statx) && !defined(__ANDROID__)
+-  return syscall(__NR_statx, dirfd, path, flags, mask, statxbuf);
+-#else
+-  return errno = ENOSYS, -1;
+-#endif
+-}
+-
+-
+ ssize_t uv__getrandom(void* buf, size_t buflen, unsigned flags) {
+ #if defined(__NR_getrandom)
+   return syscall(__NR_getrandom, buf, buflen, flags);
+diff --git a/deps/uv/src/unix/linux-syscalls.h b/deps/uv/src/unix/linux-syscalls.h
+index b7729b8..7312b0c 100644
+--- a/deps/uv/src/unix/linux-syscalls.h
++++ b/deps/uv/src/unix/linux-syscalls.h
+@@ -80,36 +80,6 @@
+ #define UV__IN_DELETE_SELF    0x400
+ #define UV__IN_MOVE_SELF      0x800
+ 
+-struct uv__statx_timestamp {
+-  int64_t tv_sec;
+-  uint32_t tv_nsec;
+-  int32_t unused0;
+-};
+-
+-struct uv__statx {
+-  uint32_t stx_mask;
+-  uint32_t stx_blksize;
+-  uint64_t stx_attributes;
+-  uint32_t stx_nlink;
+-  uint32_t stx_uid;
+-  uint32_t stx_gid;
+-  uint16_t stx_mode;
+-  uint16_t unused0;
+-  uint64_t stx_ino;
+-  uint64_t stx_size;
+-  uint64_t stx_blocks;
+-  uint64_t stx_attributes_mask;
+-  struct uv__statx_timestamp stx_atime;
+-  struct uv__statx_timestamp stx_btime;
+-  struct uv__statx_timestamp stx_ctime;
+-  struct uv__statx_timestamp stx_mtime;
+-  uint32_t stx_rdev_major;
+-  uint32_t stx_rdev_minor;
+-  uint32_t stx_dev_major;
+-  uint32_t stx_dev_minor;
+-  uint64_t unused1[14];
+-};
+-
+ struct uv__inotify_event {
+   int32_t wd;
+   uint32_t mask;
+@@ -143,11 +113,6 @@ int uv__sendmmsg(int fd,
+ ssize_t uv__preadv(int fd, const struct iovec *iov, int iovcnt, int64_t offset);
+ ssize_t uv__pwritev(int fd, const struct iovec *iov, int iovcnt, int64_t offset);
+ int uv__dup3(int oldfd, int newfd, int flags);
+-int uv__statx(int dirfd,
+-              const char* path,
+-              int flags,
+-              unsigned int mask,
+-              struct uv__statx* statxbuf);
+ ssize_t uv__getrandom(void* buf, size_t buflen, unsigned flags);
+ 
+ #endif /* UV_LINUX_SYSCALL_H_ */
+-- 
+1.8.3.1
+
diff --git a/SPECS/nodejs.spec b/SPECS/nodejs.spec
index c5961ce..d47d3cf 100644
--- a/SPECS/nodejs.spec
+++ b/SPECS/nodejs.spec
@@ -17,7 +17,7 @@
 # feature releases that are only supported for nine months, which is shorter
 # than a Fedora release lifecycle.
 %global nodejs_major 12
-%global nodejs_minor 14
+%global nodejs_minor 16
 %global nodejs_patch 1
 %global nodejs_abi %{nodejs_major}.%{nodejs_minor}
 %global nodejs_version %{nodejs_major}.%{nodejs_minor}.%{nodejs_patch}
@@ -26,9 +26,9 @@
 # == Bundled Dependency Versions ==
 # v8 - from deps/v8/include/v8-version.h
 %global v8_major 7
-%global v8_minor 6
-%global v8_build 303
-%global v8_patch 29
+%global v8_minor 8
+%global v8_build 279
+%global v8_patch 23
 # V8 presently breaks ABI at least every x.y release while never bumping SONAME
 %global v8_abi %{v8_major}.%{v8_minor}
 %global v8_version %{v8_major}.%{v8_minor}.%{v8_build}.%{v8_patch}
@@ -41,27 +41,27 @@
 
 # http-parser - from deps/http_parser/http_parser.h
 %global http_parser_major 2
-%global http_parser_minor 8
-%global http_parser_patch 0
+%global http_parser_minor 9
+%global http_parser_patch 3
 %global http_parser_version %{http_parser_major}.%{http_parser_minor}.%{http_parser_patch}
 
 # llhttp - from deps/llhttp/include/llhttp.h
-%global llhttp_major 1
-%global llhttp_minor 1
+%global llhttp_major 2
+%global llhttp_minor 0
 %global llhttp_patch 4
 %global llhttp_version %{llhttp_major}.%{llhttp_minor}.%{llhttp_patch}
 
 # libuv - from deps/uv/include/uv-version/h
 %global libuv_major 1
-%global libuv_minor 31
+%global libuv_minor 34
 %global libuv_patch 0
 %global libuv_version %{libuv_major}.%{libuv_minor}.%{libuv_patch}
 
 # nghttp2 - from deps/nghttp2/lib/includes/nghttp2/nghttp2ver.h
 
 %global nghttp2_major 1
-%global nghttp2_minor 39
-%global nghttp2_patch 2
+%global nghttp2_minor 40
+%global nghttp2_patch 0
 %global nghttp2_version %{nghttp2_major}.%{nghttp2_minor}.%{nghttp2_patch}
 
 # punycode - from lib/punycode.js
@@ -74,10 +74,16 @@
 
 # npm - from deps/npm/package.json
 %global npm_major 6
-%global npm_minor 10
-%global npm_patch 3
+%global npm_minor 13
+%global npm_patch 4
 %global npm_version %{npm_major}.%{npm_minor}.%{npm_patch}
 
+# uvwasi - from deps/uvwasi/include/uvwasi.h
+%global uvwasi_major 0
+%global uvwasi_minor 0
+%global uvwasi_patch 3
+%global uvwasi_version %{uvwasi_major}.%{uvwasi_minor}.%{uvwasi_patch}
+
 # zlib version - from deps/zlib/CMakeLists.txt
 # Note: Only required/bundled on RHEL-7
 %global zlib_major 1
@@ -112,24 +118,24 @@ Source100: %{pkg_name}-tarball.sh
 
 # Patch for making nodejs compatible with older openssl
 Patch1: 0001-Remove-or-backport-OpenSSL-features.patch
-Patch2: 0002-Adjust-tests-for-missing-OpenSSL-features.patch
+Patch2: 0002-Revert-new-options-using-unsupported-OpenSSL-feature.patch
+Patch3: 0003-Adjust-tests-for-missing-OpenSSL-features.patch
 # Remove libuv attempts to use statx syscall – rhbz#1760184
-Patch3: 0003-deps-Remove-statx-from-libuv.patch
+Patch4: 0004-deps-Remove-statx-from-libuv.patch
 
-Patch: 0004-Revert-new-options-using-unsupported-OpenSSL-feature.patch
 
 %{?scl:Requires: %{scl}-runtime}
 %{?scl:BuildRequires: %{scl}-runtime}
 BuildRequires: python-devel
 #BuildRequires: libicu-devel
 BuildRequires: zlib-devel
-BuildRequires: devtoolset-7-gcc
-BuildRequires: devtoolset-7-gcc-c++
+BuildRequires: devtoolset-8-gcc
+BuildRequires: devtoolset-8-gcc-c++
 # needed for tests
 BuildRequires: procps-ng
 BuildRequires: systemtap-sdt-devel
 BuildRequires: chrpath
-BuildRequires: devtoolset-7-libatomic-devel
+BuildRequires: devtoolset-8-libatomic-devel
 
 
 BuildRequires: openssl-devel >= 1:1.0.2
@@ -191,6 +197,9 @@ Provides: bundled(%{?scl_prefix}nghttp2) = %{nghttp2_version}
 # Bundle zlib on RHEL7, as the system version is too old
 Provides: bundled(%{?scl_prefix}zlib) = %{zlib_version}
 
+# Bundle uvwasi, since it is not available on RHEL7
+Provides: bundled(%{?scl_prefix}uvwasi) = %{uvwasi_version}
+
 # Make sure we keep NPM up to date when we update Node.js
 Requires: %{?scl_prefix}npm = %{npm_version}-%{npm_release}%{?dist}
 
@@ -253,7 +262,7 @@ find deps/ -name '*.c' -o -name '*.h' -exec chmod 0644 '{}' +
 
 %build
 
-%{?scl:scl enable %{scl} devtoolset-7 - << \EOF}
+%{?scl:scl enable %{scl} devtoolset-8 - << \EOF}
 
 # _pkgdocdir does not support subpackage with different version
 %{?rhel7:%global _pkgdocdir %{_docdir}/%{name}-%{nodejs_version}}
@@ -300,7 +309,8 @@ export CXXFLAGS="$(echo ${CXXFLAGS} | tr '\n\\' '  ')"
            --openssl-use-def-ca-store
 %endif
 
-make BUILDTYPE=Release %{?_smp_mflags}
+# make BUILDTYPE=Release %%{?_smp_mflags}
+make BUILDTYPE=Release -j4
 %if 0%{?with_debug} == 1
 make BUILDTYPE=Debug %{?_smp_mflags}
 %endif
@@ -387,7 +397,7 @@ done
 
 
 #%check
-%{?scl:scl enable %{scl} devtoolset-7 - << \EOF}
+%{?scl:scl enable %{scl} devtoolset-8 - << \EOF}
 set -ex
 # Fail the build if the versions don't match
 #%{buildroot}/%{_bindir}/node -e "require('assert').equal(process.versions.node, '%{nodejs_version}')"
@@ -477,6 +487,14 @@ python2 tools/test.py "${RUN_SUITES[@]}" || :
 
 
 %changelog
+* Wed Feb 19 2020 Zuzana Svetlikova <zsvetlik@redhat.com> - 12.16.1
+- Resolves: RHBZ#1800402, RHBZ#1800401, RHBZ#1800377, RHBZ#1774113
+- also 1788310, 1788305, 1788301 (December security release)
+- also 1793482
+- use devtoolset-8, build with -j4
+- added uvwasi bundled dependency
+- revert more features #23188, #30637, #29598, #29292, #29489, #30055, #30053
+
 * Thu Jan 16 2020 Jan Staněk <jstanek@redhat.com> - 12.14.1-1
 - Rebase to 12.14.1