nodejs/test/parallel/test-crypto-no-algorithm.js

'use strict';

const common = require('../common');
if (!common.hasCrypto)
  common.skip('missing crypto');

const { hasOpenSSL3 } = require('../common/crypto');

if (!hasOpenSSL3)
  common.skip('this test requires OpenSSL 3.x');

const assert = require('node:assert/strict');
const crypto = require('node:crypto');
const { isMainThread } = require('worker_threads');

if (isMainThread) {
  // TODO(richardlau): Decide if `crypto.setFips` should error if the
  // provider named "fips" is not available.
  crypto.setFips(1);
  crypto.randomBytes(20, common.mustCall((err) => {
    // crypto.randomBytes should either succeed or fail but not hang.
    if (err) {
      assert.match(err.message, /digital envelope routines::unsupported/);
      const expected = /random number generator::unable to fetch drbg/;
      assert(err.opensslErrorStack.some((msg) => expected.test(msg)),
             `did not find ${expected} in ${err.opensslErrorStack}`);
    }
  }));
}

{
  // Startup test. Should not hang.
  const { path } = require('../common/fixtures');
  const { spawnSync } = require('node:child_process');
  const baseConf = path('openssl3-conf', 'base_only.cnf');
  const cp = spawnSync(process.execPath,
                       [ `--openssl-config=${baseConf}`, '-p', '"hello"' ],
                       { encoding: 'utf8' });
  assert(common.nodeProcessAborted(cp.status, cp.signal),
         `process did not abort, code:${cp.status} signal:${cp.signal}`);
}
crypto: avoid hang when no algorithm available Avoid an endless loop if no algorithm is available to seed the cryptographically secure pseudorandom number generator (CSPRNG). Co-authored-by: Anna Henningsen <anna@addaleax.net> PR-URL: https://github.com/nodejs/node/pull/46237 Fixes: https://github.com/nodejs/node/issues/46200 Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl> 2023-01-19 17:31:08 +00:00			`'use strict';`

			`const common = require('../common');`
			`if (!common.hasCrypto)`
			`common.skip('missing crypto');`

test: move crypto related common utilities in common/crypto Since `common/crypto` already exists, it makes sense to keep crypto-related utilities there. The only exception being common.hasCrypto which is needed up front to determine if tests should be skipped. Eliminate the redundant check in hasFipsCrypto and just use crypto.getFips() directly where needed. PR-URL: https://github.com/nodejs/node/pull/56714 Reviewed-By: Yagiz Nizipli <yagiz@nizipli.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> 2025-01-24 16:58:32 -08:00			`const { hasOpenSSL3 } = require('../common/crypto');`

			`if (!hasOpenSSL3)`
crypto: avoid hang when no algorithm available Avoid an endless loop if no algorithm is available to seed the cryptographically secure pseudorandom number generator (CSPRNG). Co-authored-by: Anna Henningsen <anna@addaleax.net> PR-URL: https://github.com/nodejs/node/pull/46237 Fixes: https://github.com/nodejs/node/issues/46200 Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl> 2023-01-19 17:31:08 +00:00			`common.skip('this test requires OpenSSL 3.x');`

			`const assert = require('node:assert/strict');`
			`const crypto = require('node:crypto');`
test: rely less on duplicative common test harness utilities There are several cleanups here that are not just style nits... 1. The `common.isMainThread` was just a passthrough to the `isMainThread` export on the worker_thread module. It's use was inconsistent and just obfuscated the fact that the test file depend on the `worker_threads` built-in. By eliminating it we simplify the test harness a bit and make it clearer which tests depend on the worker_threads check. 2. The `common.isDumbTerminal` is fairly unnecesary since that just wraps a public API check. 3. Several of the `common.skipIf....` checks were inconsistently used and really don't need to be separate utility functions. A key part of the motivation here is to work towards making more of the tests more self-contained and less reliant on the common test harness where possible. PR-URL: https://github.com/nodejs/node/pull/56712 Reviewed-By: Yagiz Nizipli <yagiz@nizipli.com> Reviewed-By: Matteo Collina <matteo.collina@gmail.com> 2025-01-22 14:19:38 -08:00			`const { isMainThread } = require('worker_threads');`
crypto: avoid hang when no algorithm available Avoid an endless loop if no algorithm is available to seed the cryptographically secure pseudorandom number generator (CSPRNG). Co-authored-by: Anna Henningsen <anna@addaleax.net> PR-URL: https://github.com/nodejs/node/pull/46237 Fixes: https://github.com/nodejs/node/issues/46200 Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl> 2023-01-19 17:31:08 +00:00
test: rely less on duplicative common test harness utilities There are several cleanups here that are not just style nits... 1. The `common.isMainThread` was just a passthrough to the `isMainThread` export on the worker_thread module. It's use was inconsistent and just obfuscated the fact that the test file depend on the `worker_threads` built-in. By eliminating it we simplify the test harness a bit and make it clearer which tests depend on the worker_threads check. 2. The `common.isDumbTerminal` is fairly unnecesary since that just wraps a public API check. 3. Several of the `common.skipIf....` checks were inconsistently used and really don't need to be separate utility functions. A key part of the motivation here is to work towards making more of the tests more self-contained and less reliant on the common test harness where possible. PR-URL: https://github.com/nodejs/node/pull/56712 Reviewed-By: Yagiz Nizipli <yagiz@nizipli.com> Reviewed-By: Matteo Collina <matteo.collina@gmail.com> 2025-01-22 14:19:38 -08:00			`if (isMainThread) {`
crypto: avoid hang when no algorithm available Avoid an endless loop if no algorithm is available to seed the cryptographically secure pseudorandom number generator (CSPRNG). Co-authored-by: Anna Henningsen <anna@addaleax.net> PR-URL: https://github.com/nodejs/node/pull/46237 Fixes: https://github.com/nodejs/node/issues/46200 Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl> 2023-01-19 17:31:08 +00:00			// TODO(richardlau): Decide if `crypto.setFips` should error if the
			`// provider named "fips" is not available.`
			`crypto.setFips(1);`
			`crypto.randomBytes(20, common.mustCall((err) => {`
			`// crypto.randomBytes should either succeed or fail but not hang.`
			`if (err) {`
			`assert.match(err.message, /digital envelope routines::unsupported/);`
			`const expected = /random number generator::unable to fetch drbg/;`
			`assert(err.opensslErrorStack.some((msg) => expected.test(msg)),`
			`did not find ${expected} in ${err.opensslErrorStack}`);
			`}`
			`}));`
			`}`

			`{`
			`// Startup test. Should not hang.`
			`const { path } = require('../common/fixtures');`
			`const { spawnSync } = require('node:child_process');`
			`const baseConf = path('openssl3-conf', 'base_only.cnf');`
			`const cp = spawnSync(process.execPath,`
			[ `--openssl-config=${baseConf}`, '-p', '"hello"' ],
			`{ encoding: 'utf8' });`
			`assert(common.nodeProcessAborted(cp.status, cp.signal),`
			`process did not abort, code:${cp.status} signal:${cp.signal}`);
			`}`