Skip to content

crypto: throw on uninitialized DH computeSecret#63922

Open
panva wants to merge 1 commit into
nodejs:mainfrom
panva:throw-unitialized-dh
Open

crypto: throw on uninitialized DH computeSecret#63922
panva wants to merge 1 commit into
nodejs:mainfrom
panva:throw-unitialized-dh

Conversation

@panva

@panva panva commented Jun 15, 2026

Copy link
Copy Markdown
Member

Reject DiffieHellman computeSecret() when the instance does not have private key material instead of returning an empty buffer.

Fixes: #63674

@panva
crypto: throw on uninitialized DH computeSecret
70f82de 
Reject DiffieHellman computeSecret() when the instance does not
have private key material instead of returning an empty buffer.

Fixes: nodejs#63674

Signed-off-by: Filip Skokan <panva.ip@gmail.com>
@panva panva requested a review from ChALkeR June 15, 2026 08:47
@nodejs-github-bot

nodejs-github-bot commented Jun 15, 2026

Copy link
Copy Markdown
Collaborator

Review requested:

  • @nodejs/crypto
  • @nodejs/security-wg

@nodejs-github-bot nodejs-github-bot added lib / src Issues and PRs related to general changes in the lib or src directory. needs-ci PRs that need a full CI run. labels Jun 15, 2026
@panva panva added the semver-major PRs that contain breaking changes and should be released in the next major version. label Jun 15, 2026
@panva

panva commented Jun 15, 2026

Copy link
Copy Markdown
Member Author

cc @nodejs/tsc for semver-major PRs that contain breaking changes and should be released in the next major version.

@panva panva added author ready PRs that have at least one approval, no pending requests for changes, and a CI started. request-ci Add this label to start a Jenkins CI on a PR. labels Jun 15, 2026
@github-actions github-actions Bot removed the request-ci Add this label to start a Jenkins CI on a PR. label Jun 15, 2026
@nodejs-github-bot

nodejs-github-bot commented Jun 15, 2026

Copy link
Copy Markdown
Collaborator

CI: https://ci.nodejs.org/job/node-test-pull-request/74149/

@nodejs-github-bot

nodejs-github-bot commented Jun 15, 2026

Copy link
Copy Markdown
Collaborator

CI: https://ci.nodejs.org/job/node-test-pull-request/74153/

@panva panva added the commit-queue Add this label to land a pull request using GitHub Actions. label Jun 15, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@anonrig anonrig anonrig approved these changes

@tniessen tniessen tniessen approved these changes

@ChALkeR ChALkeR Awaiting requested review from ChALkeR

Assignees

No one assigned

Labels

author ready PRs that have at least one approval, no pending requests for changes, and a CI started. commit-queue Add this label to land a pull request using GitHub Actions. lib / src Issues and PRs related to general changes in the lib or src directory. needs-ci PRs that need a full CI run. semver-major PRs that contain breaking changes and should be released in the next major version.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Uninitialized DH computeSecret should throw instead of returning empty buffers

4 participants

@panva @nodejs-github-bot @anonrig @tniessen