crypto: improve prime size argument validation #42234

tniessen · 2022-03-06T16:06:18Z

The current validation in JavaScript is insufficient and also produces an incorrect error message, restricting the size parameter to 32-bit values, whereas the C++ backend restricts the size parameter to the positive range of an int.

This change tightens the validation in JavaScript and adapts the error message accordingly, making the validation in C++ superfluous.

Refs: #42207

The current validation in JavaScript is insufficient and also produces an incorrect error message, restricting the size parameter to 32-bit values, whereas the C++ backend restricts the size parameter to the positive range of an int. This change tightens the validation in JavaScript and adapts the error message accordingly, making the validation in C++ superfluous. Refs: nodejs#42207

nodejs-github-bot · 2022-03-06T16:06:22Z

Review requested:

@nodejs/crypto

tniessen · 2022-03-06T16:37:45Z

The test failure on alpine-last-latest-x64 does not seem related, but still interesting: test.parallel/test-crypto-key-objects has status crashed (-6).

nodejs-github-bot · 2022-03-06T18:43:47Z

CI: https://ci.nodejs.org/job/node-test-pull-request/42888/

nodejs-github-bot · 2022-03-08T17:33:40Z

Landed in e8697cf

bengl · 2022-03-21T17:10:11Z

This doesn't land on 17.x, and it looks like it's because it's modifying code added in a semver-major, so I'm adding the dont-land-on-17 label. Please comment if you think it should land.

The current validation in JavaScript is insufficient and also produces an incorrect error message, restricting the size parameter to 32-bit values, whereas the C++ backend restricts the size parameter to the positive range of an int. This change tightens the validation in JavaScript and adapts the error message accordingly, making the validation in C++ superfluous. Refs: nodejs#42207 PR-URL: nodejs#42234 Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Filip Skokan <panva.ip@gmail.com> Reviewed-By: James M Snell <jasnell@gmail.com>

The current validation in JavaScript is insufficient and also produces an incorrect error message, restricting the size parameter to 32-bit values, whereas the C++ backend restricts the size parameter to the positive range of an int. This change tightens the validation in JavaScript and adapts the error message accordingly, making the validation in C++ superfluous. Refs: #42207 PR-URL: #42234 Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Filip Skokan <panva.ip@gmail.com> Reviewed-By: James M Snell <jasnell@gmail.com>

The current validation in JavaScript is insufficient and also produces an incorrect error message, restricting the size parameter to 32-bit values, whereas the C++ backend restricts the size parameter to the positive range of an int. This change tightens the validation in JavaScript and adapts the error message accordingly, making the validation in C++ superfluous. Refs: nodejs/node#42207 PR-URL: nodejs/node#42234 Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Filip Skokan <panva.ip@gmail.com> Reviewed-By: James M Snell <jasnell@gmail.com>

nodejs-github-bot added c++ Issues and PRs that require attention from people who are familiar with C++. crypto Issues and PRs related to the crypto subsystem. needs-ci PRs that need a full CI run. labels Mar 6, 2022

tniessen added the request-ci Add this label to start a Jenkins CI on a PR. label Mar 6, 2022

github-actions bot removed the request-ci Add this label to start a Jenkins CI on a PR. label Mar 6, 2022

This comment was marked as outdated.

Sign in to view

addaleax approved these changes Mar 6, 2022

View reviewed changes

tniessen added the author ready PRs that have at least one approval, no pending requests for changes, and a CI started. label Mar 7, 2022

VoltrexKeyva removed the needs-ci PRs that need a full CI run. label Mar 7, 2022

panva approved these changes Mar 7, 2022

View reviewed changes

jasnell approved these changes Mar 7, 2022

View reviewed changes

github-actions bot mentioned this pull request Mar 8, 2022

CI Reliability 2022-03-08 nodejs/reliability#214

Open

11 tasks

tniessen added the commit-queue Add this label to land a pull request using GitHub Actions. label Mar 8, 2022

nodejs-github-bot removed the commit-queue Add this label to land a pull request using GitHub Actions. label Mar 8, 2022

nodejs-github-bot merged commit e8697cf into nodejs:master Mar 8, 2022

bengl added the dont-land-on-v17.x label Mar 21, 2022

BethGriggs mentioned this pull request Apr 9, 2022

2022-04-19, Version 18.0.0 (Current) #42262

Merged

juanarbol mentioned this pull request May 31, 2022

2022-05-XX, Version 16.16.0 'Gallium' (LTS) #43268

Closed

targos mentioned this pull request Aug 3, 2022

v16.17.0 release proposal #44098

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

crypto: improve prime size argument validation #42234

crypto: improve prime size argument validation #42234

tniessen commented Mar 6, 2022

nodejs-github-bot commented Mar 6, 2022

This comment was marked as outdated.

tniessen commented Mar 6, 2022

nodejs-github-bot commented Mar 6, 2022

nodejs-github-bot commented Mar 8, 2022

bengl commented Mar 21, 2022

crypto: improve prime size argument validation #42234

crypto: improve prime size argument validation #42234

Conversation

tniessen commented Mar 6, 2022

nodejs-github-bot commented Mar 6, 2022

This comment was marked as outdated.

tniessen commented Mar 6, 2022

nodejs-github-bot commented Mar 6, 2022

nodejs-github-bot commented Mar 8, 2022

bengl commented Mar 21, 2022