Replies: 1 comment
-
Hey MIvanchev, Looks like you're hitting a common snag with the test-https-client-checkServerIdentity test. The error "CA certificate key too weak" typically points to an issue with the strength of the CA certificate being used during the TLS handshake. Here's a breakdown of what's likely happening and some steps to get you past this: What's Happening?The error message suggests that the CA certificate used in the test has a key that's too weak according to current Node.js security policies. This could be due to recent changes in OpenSSL or Node.js itself, which have stricter requirements for key strengths. Steps to ResolveUpdate CA Certificates:
Check OpenSSL Version:Node.js relies heavily on OpenSSL for its cryptographic operations. Make sure the OpenSSL version in your build environment matches the one Node.js expects. You can check the OpenSSL version used by Node.js with:
Ensure that your system’s OpenSSL is not outdated. Generate Stronger Certificates:If the test uses custom or self-signed certificates, they might need to be regenerated with stronger keys. For instance, you can generate a new CA certificate with a 2048-bit key:
Please feel free to ask if the answer does not solve your problem. |
Beta Was this translation helpful? Give feedback.
-
Hey, I'm working on updating Node for Void Linux and some tests are failing. Some I've identified as "flaking" (regarding the issues here) but some are a mystery, for example https://github.com/void-linux/void-packages/actions/runs/9210435171/job/25337434027?pr=50485#step:7:11059
Could someone provide insights what might be going on?
Beta Was this translation helpful? Give feedback.
All reactions