1// Copyright Joyent, Inc. and other Node contributors.
2//
3// Permission is hereby granted, free of charge, to any person obtaining a
4// copy of this software and associated documentation files (the
5// "Software"), to deal in the Software without restriction, including
6// without limitation the rights to use, copy, modify, merge, publish,
7// distribute, sublicense, and/or sell copies of the Software, and to permit
8// persons to whom the Software is furnished to do so, subject to the
9// following conditions:
10//
11// The above copyright notice and this permission notice shall be included
12// in all copies or substantial portions of the Software.
13//
14// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
15// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
16// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
17// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
18// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR
19// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE
20// USE OR OTHER DEALINGS IN THE SOFTWARE.
21
22'use strict';
23const common = require('../common');
24
25if (!common.hasCrypto) {
26  common.skip('missing crypto');
27}
28
29if (common.isPi) {
30  common.skip('Too slow for Raspberry Pi devices');
31}
32
33const assert = require('assert');
34const crypto = require('crypto');
35
36// FIPS requires length >= 1024 but we use 512/256 in this test to keep it from
37// taking too long and timing out in CI.
38const length = (common.hasFipsCrypto) ? 1024 : common.hasOpenSSL3 ? 512 : 256;
39
40const p = crypto.createDiffieHellman(length).getPrime();
41
42for (let i = 0; i < 2000; i++) {
43  const a = crypto.createDiffieHellman(p);
44  const b = crypto.createDiffieHellman(p);
45
46  a.generateKeys();
47  b.generateKeys();
48
49  const aSecret = a.computeSecret(b.getPublicKey());
50  const bSecret = b.computeSecret(a.getPublicKey());
51
52  assert.deepStrictEqual(
53    aSecret,
54    bSecret,
55    'Secrets should be equal.\n' +
56    `aSecret: ${aSecret.toString('base64')}\n` +
57    `bSecret: ${bSecret.toString('base64')}`,
58  );
59}
60