1berry/nodejs
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

tls: deprecate parseCertString & move to internal

Browse Source 
`tls.parseCertString()` exposed by accident. Now move this function to
`internal/tls` and mark the original one as deprecated.

PR-URL: https://github.com/nodejs/node/pull/14249
Refs: https://github.com/nodejs/node/issues/14193
Reviewed-By: Refael Ackermann <refack@gmail.com>
Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl>
Reviewed-By: James M Snell <jasnell@gmail.com>
Reviewed-By: Ruben Bridgewater <ruben@bridgewater.de>
Reviewed-By: Sakthipriyan Vairamani <thechargingvolcano@gmail.com>
This commit is contained in:
XadillaX 2017-09-08 15:58:54 +08:00 committed by Ruben Bridgewater
parent f68ab39f8e
commit 468110b327
No known key found for this signature in database
GPG Key ID: F07496B3EB3C1762
6 changed files with 60 additions and 29 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
doc/api/deprecations.md
View File

@ -664,7 +664,7 @@ Type: Runtime
<a id="DEP00XX"></a> <a id="DEP00XX"></a>
### DEP00XX: tls.parseCertString() ### DEP00XX: tls.parseCertString()
Type: Documentation-only Type: Runtime
`tls.parseCertString()` is a trivial parsing helper that was made public by `tls.parseCertString()` is a trivial parsing helper that was made public by
mistake. This function can usually be replaced with: mistake. This function can usually be replaced with:

5
lib/_tls_common.js
View File

@ -21,6 +21,7 @@
'use strict'; 'use strict';
const { parseCertString } = require('internal/tls');
const tls = require('tls'); const tls = require('tls');
const errors = require('internal/errors'); const errors = require('internal/errors');
@ -202,11 +203,11 @@ exports.translatePeerCertificate = function translatePeerCertificate(c) {
if (!c) if (!c)
return null; return null;
if (c.issuer != null) c.issuer = tls.parseCertString(c.issuer); if (c.issuer != null) c.issuer = parseCertString(c.issuer);
if (c.issuerCertificate != null && c.issuerCertificate !== c) { if (c.issuerCertificate != null && c.issuerCertificate !== c) {
c.issuerCertificate = translatePeerCertificate(c.issuerCertificate); c.issuerCertificate = translatePeerCertificate(c.issuerCertificate);
} }
if (c.subject != null) c.subject = tls.parseCertString(c.subject); if (c.subject != null) c.subject = parseCertString(c.subject);
if (c.infoAccess != null) { if (c.infoAccess != null) {
var info = c.infoAccess; var info = c.infoAccess;
c.infoAccess = Object.create(null); c.infoAccess = Object.create(null);

28
lib/internal/tls.js Normal file
View File

@ -0,0 +1,28 @@
'use strict';
// Example:
// C=US\nST=CA\nL=SF\nO=Joyent\nOU=Node.js\nCN=ca1\nemailAddress=ry@clouds.org
function parseCertString(s) {
var out = Object.create(null);
var parts = s.split('\n');
for (var i = 0, len = parts.length; i < len; i++) {
var sepIndex = parts[i].indexOf('=');
if (sepIndex > 0) {
var key = parts[i].slice(0, sepIndex);
var value = parts[i].slice(sepIndex + 1);
if (key in out) {
if (!Array.isArray(out[key])) {
out[key] = [out[key]];
}
out[key].push(value);
} else {
out[key] = value;
}
}
}
return out;
}
module.exports = {
parseCertString
};

28
lib/tls.js
View File

@ -23,6 +23,7 @@
const errors = require('internal/errors'); const errors = require('internal/errors');
const internalUtil = require('internal/util'); const internalUtil = require('internal/util');
const internalTLS = require('internal/tls');
internalUtil.assertCrypto(); internalUtil.assertCrypto();
const net = require('net'); const net = require('net');
@ -228,28 +229,11 @@ exports.checkServerIdentity = function checkServerIdentity(host, cert) {
} }
}; };
// Example: exports.parseCertString = internalUtil.deprecate(
// C=US\nST=CA\nL=SF\nO=Joyent\nOU=Node.js\nCN=ca1\nemailAddress=ry@clouds.org internalTLS.parseCertString,
exports.parseCertString = function parseCertString(s) { 'tls.parseCertString() is deprecated. ' +
var out = Object.create(null); 'Please use querystring.parse() instead.',
var parts = s.split('\n'); 'DEP00XX');
for (var i = 0, len = parts.length; i < len; i++) {
var sepIndex = parts[i].indexOf('=');
if (sepIndex > 0) {
var key = parts[i].slice(0, sepIndex);
var value = parts[i].slice(sepIndex + 1);
if (key in out) {
if (!Array.isArray(out[key])) {
out[key] = [out[key]];
}
out[key].push(value);
} else {
out[key] = value;
}
}
}
return out;
};
// Public API // Public API
exports.createSecureContext = require('_tls_common').createSecureContext; exports.createSecureContext = require('_tls_common').createSecureContext;

1
node.gyp
View File

@ -112,6 +112,7 @@
'lib/internal/repl.js', 'lib/internal/repl.js',
'lib/internal/socket_list.js', 'lib/internal/socket_list.js',
'lib/internal/test/unicode.js', 'lib/internal/test/unicode.js',
'lib/internal/tls.js',
'lib/internal/url.js', 'lib/internal/url.js',
'lib/internal/util.js', 'lib/internal/util.js',
'lib/internal/http2/core.js', 'lib/internal/http2/core.js',

25
test/parallel/test-tls-parse-cert-string.js
View File

@ -1,16 +1,22 @@
/* eslint-disable no-proto */ /* eslint-disable no-proto */
'use strict'; 'use strict';
const common = require('../common'); const common = require('../common');
if (!common.hasCrypto) if (!common.hasCrypto)
common.skip('missing crypto'); common.skip('missing crypto');
const assert = require('assert'); const assert = require('assert');
// Flags: --expose_internals
const internalTLS = require('internal/tls');
const tls = require('tls'); const tls = require('tls');
const noOutput = common.mustNotCall();
common.hijackStderr(noOutput);
{ {
const singles = 'C=US\nST=CA\nL=SF\nO=Node.js Foundation\nOU=Node.js\n' + const singles = 'C=US\nST=CA\nL=SF\nO=Node.js Foundation\nOU=Node.js\n' +
'CN=ca1\nemailAddress=ry@clouds.org'; 'CN=ca1\nemailAddress=ry@clouds.org';
const singlesOut = tls.parseCertString(singles); const singlesOut = internalTLS.parseCertString(singles);
assert.deepStrictEqual(singlesOut, { assert.deepStrictEqual(singlesOut, {
__proto__: null, __proto__: null,
C: 'US', C: 'US',
@ -26,7 +32,7 @@ const tls = require('tls');
{ {
const doubles = 'OU=Domain Control Validated\nOU=PositiveSSL Wildcard\n' + const doubles = 'OU=Domain Control Validated\nOU=PositiveSSL Wildcard\n' +
'CN=*.nodejs.org'; 'CN=*.nodejs.org';
const doublesOut = tls.parseCertString(doubles); const doublesOut = internalTLS.parseCertString(doubles);
assert.deepStrictEqual(doublesOut, { assert.deepStrictEqual(doublesOut, {
__proto__: null, __proto__: null,
OU: [ 'Domain Control Validated', 'PositiveSSL Wildcard' ], OU: [ 'Domain Control Validated', 'PositiveSSL Wildcard' ],
@ -36,7 +42,7 @@ const tls = require('tls');
{ {
const invalid = 'fhqwhgads'; const invalid = 'fhqwhgads';
const invalidOut = tls.parseCertString(invalid); const invalidOut = internalTLS.parseCertString(invalid);
assert.deepStrictEqual(invalidOut, { __proto__: null }); assert.deepStrictEqual(invalidOut, { __proto__: null });
} }
@ -45,5 +51,16 @@ const tls = require('tls');
const expected = Object.create(null); const expected = Object.create(null);
expected.__proto__ = 'mostly harmless'; expected.__proto__ = 'mostly harmless';
expected.hasOwnProperty = 'not a function'; expected.hasOwnProperty = 'not a function';
assert.deepStrictEqual(tls.parseCertString(input), expected); assert.deepStrictEqual(internalTLS.parseCertString(input), expected);
}
common.restoreStderr();
{
common.expectWarning('DeprecationWarning',
'tls.parseCertString() is deprecated. ' +
'Please use querystring.parse() instead.');
const ret = tls.parseCertString('foo=bar');
assert.deepStrictEqual(ret, { __proto__: null, foo: 'bar' });
} }