crypto: Improve control of FIPS mode

[stefanmb]

In Issue #3819 requests were made to support a FIPS OpenSSL build of Node.js running in a non-FIPS mode. In PR #3820 an attempt was made to introduce this feature.

In this PR I've attempted to merge all requests and discussion from #3819 and #3820.

The following features are introduced:

1. Default to FIPS off even in FIPS builds: FIPS mode now has to be explicitly enabled by command line argument, OpenSSL config file, or JavaScript API call.
2. Add JS API to check and control FIPS mode: Allow JavaScript applications to check if they are executing in FIPS mode and to enable/disable FIPS mode if applicable.
3. Add command line arguments to force FIPS on/off: --[disable|enable]-fips have been added, and they will override all other options.
4. Respect OPENSSL_CONF variable and read the config: OpenSSL provides a standard mechanism for reading a config file from the "OPENSSL_CONF" environment variable. Load this config file, which permits, among other things, to control FIPS mode.
5. Add testing for new features: Test combinations of features from 1 and 4.

As always, I'm open to any suggestions and improvements, especially if there is a better way to pass global options such as the enable/disable flags (instead of extern C variables).

These features were added as a result of discussion in #3819 and #3820, please refer to them for background information.

Note also that going forward we will need to run regression testing in FIPS builds twice: once with FIPS enabled at runtime, and once with FIPS disabled.

[stefanmb]

@mhdawson @indutny @shigeki @jasnell @lordjabez @ScarletTanager This PR should include suggestions from all of you, any comments are greatly appreciated. Thanks!

[mscdex]

Maybe defining a getter/setter simply called fips would be simpler instead of having separate methods?

[mhdawson]

Added semver-major tag since it changes default behaviour

[indutny]

Nit: function hasFipsCrypto

[indutny]

Ditto.

[indutny]

Nit: indent.

[indutny]

Ditto.

[indutny]

Nit: indent, does make cpplint pass?

[stefanmb]

Sadly yes, reports 0 errors found. I'll fix all this stuff.

[indutny]

Yikes, too bad for it. Thank you! 👍

[indutny]

Ditto.

[indutny]

Let's make common.hasFipsCrypto a getter instead, should save us from fixing all tests and make them compatible to older node.js versions.

[indutny]

Nit: style, please put brace on the previous line. Does it pass make lint?

[stefanmb]

It does :( I'll resolve the style problems.

[indutny]

Nit: Let's use path.join() here.

[indutny]

.replace(/\n|>/g, '').trim()?

[indutny]

It should be either console.error or nothing at all. Doesn't play well with TAP output.

[indutny]

Ditto.

[indutny]

Perhaps it should wait until end event to accumulate all data? I'm afraid of the situation where stdout could be chunked.

[indutny]

Also, this way it will be possible able to share lots of code between fips and non-fips branches in this function.

[indutny]

Possibly this will be called several times as mentioned above.

[lordjabez]

This is a great change, and addresses all my concerns. Thanks!

[indutny]

Overall I have really good impression from the PR. Thank you for your work!

[mhdawson]

In terms of the command line options I'm wondering about the case were we want it enabled by default but then the application can turn on/off. I also wonder about the need to prevent an app from turning it on. Maybe the following would make sense ?

--enable-fips - enables FIPs, overrides setting in openssl file
--force-fips - enables FIPs. overrides seeting in openss file, app cannot disable

[stefanmb]

@mscdex I've switched to using a "crypto.fips" property as you suggested, thanks!
@indutny Thanks for the super quick feedback. I think I've addressed most of your concerns, I now use the 'end' event to validate output and 'data' event to buffer it. The handler is now shared between the FIPS and non-FIPS test branches. I'll double check the formatting issues.
@mhdawson I will remove --disable-fips and add a --force-fips tomorrow, as per our discussion there is no point in having disable-fips since that's the new default, instead we should provide a way to turn it on by default (--enable-fips) and a way to force it (--force-fips, does not allow it to be turned off).

[stefanmb]

@mhdawson @indutny I've updated this PR to resolve issues encountered while attempting to setup the CI:

1. test/common.js still used the stale API (crypto.hasFipsCrypto instead of fips.crypto)

2. I've updated the testing to survive a polluted environment (i.e. one where OPENSSL_CONF may already be defined, note that OpenSSL will not allow you to set the FIPS mode to on if it's already on, an exception will be thrown).

3. During CI for a FIPS build we must now run the test suite twice, once with FIPS enabled and once with FIPS disabled. One way to do so is to use the OPENSSL_CONF environment variable, however this will cause test failures for those tests that use opensslCli from test/common.js because the OPENSSL_CONF variable will affect the standalone OpenSSL utilities. We could filter out the OPENSSL_CONF variable from the environment in common.js, but this does not strike me as a clean solution. The alternative is to pass "--enable-fips" to each test, however there was no obvious way to pass the --enable-fips argument through the "make test-ci" target. The "--special-command" argument comes close, but is only able to suffix or prefix the entire invocation. I have made a separate PR to deal with this problem since it outside the scope of this PR: #5376

[mhdawson]

LTGM to latest changes, and successful test run in both fiips/non-fips enabled in updated test here: https://ci.nodejs.org/job/node-test-commit-linux-fips-dawson/

Will sync landing this and updating the test job.

One last regular CI run so that we have a current one: https://ci.nodejs.org/job/node-test-pull-request/1752/

[mhdawson]

CI run is green, landing

[mhdawson]

Landed as 7c48cb5

Updated fits test, CI run here to validate test is updated ok: https://ci.nodejs.org/job/node-test-commit/2345/

[mhdawson]

CI all good closing