node/test/parallel/test-crypto-keygen-no-rsassa-pss-params.js

'use strict';

const common = require('../common');
if (!common.hasCrypto)
  common.skip('missing crypto');

const assert = require('assert');
const {
  generateKeyPair,
} = require('crypto');

// 'rsa-pss' should not add a RSASSA-PSS-params sequence by default.
// Regression test for: https://github.com/nodejs/node/issues/39936
{
  generateKeyPair('rsa-pss', {
    modulusLength: 512
  }, common.mustSucceed((publicKey, privateKey) => {
    const expectedKeyDetails = {
      modulusLength: 512,
      publicExponent: 65537n
    };
    assert.deepStrictEqual(publicKey.asymmetricKeyDetails, expectedKeyDetails);
    assert.deepStrictEqual(privateKey.asymmetricKeyDetails, expectedKeyDetails);

    // To allow backporting the fix to versions that do not support
    // asymmetricKeyDetails for RSA-PSS params, also verify that the exported
    // AlgorithmIdentifier member of the SubjectPublicKeyInfo has the expected
    // length of 11 bytes (as opposed to > 11 bytes if node added params).
    const spki = publicKey.export({ format: 'der', type: 'spki' });
    assert.strictEqual(spki[3], 11, spki.toString('hex'));
  }));
}
test: split test-crypto-keygen.js To avoid timing out on ARM machines in the CI. PR-URL: https://github.com/nodejs/node/pull/49221 Refs: https://github.com/nodejs/node/issues/49202 Refs: https://github.com/nodejs/node/issues/41206 Reviewed-By: Luigi Pinca <luigipinca@gmail.com> 2023-08-17 23:25:13 +00:00			`'use strict';`

			`const common = require('../common');`
			`if (!common.hasCrypto)`
			`common.skip('missing crypto');`

			`const assert = require('assert');`
			`const {`
			`generateKeyPair,`
			`} = require('crypto');`

			`// 'rsa-pss' should not add a RSASSA-PSS-params sequence by default.`
			`// Regression test for: https://github.com/nodejs/node/issues/39936`
			`{`
			`generateKeyPair('rsa-pss', {`
			`modulusLength: 512`
			`}, common.mustSucceed((publicKey, privateKey) => {`
			`const expectedKeyDetails = {`
			`modulusLength: 512,`
			`publicExponent: 65537n`
			`};`
			`assert.deepStrictEqual(publicKey.asymmetricKeyDetails, expectedKeyDetails);`
			`assert.deepStrictEqual(privateKey.asymmetricKeyDetails, expectedKeyDetails);`

			`// To allow backporting the fix to versions that do not support`
			`// asymmetricKeyDetails for RSA-PSS params, also verify that the exported`
			`// AlgorithmIdentifier member of the SubjectPublicKeyInfo has the expected`
			`// length of 11 bytes (as opposed to > 11 bytes if node added params).`
			`const spki = publicKey.export({ format: 'der', type: 'spki' });`
			`assert.strictEqual(spki[3], 11, spki.toString('hex'));`
			`}));`
			`}`