fix(checkStream): integrityStream now takes opts.integrity algos into…

… account
npm · Jan 18, 2018 · d262910 · d262910
1 parent d0343e0
commit d262910
Show file tree

Hide file tree

Showing 2 changed files with 32 additions and 1 deletion.
diff --git a/index.js b/index.js
@@ -237,7 +237,8 @@ function integrityStream (opts) {
   const algorithm = goodSri && sri.pickAlgorithm(opts)
   const digests = goodSri && sri[algorithm]
   // Calculating stream
-  const algorithms = opts.algorithms || [algorithm || 'sha512']
+  const algorithms = (opts.algorithms || ['sha512'])
+  .concat(algorithm ? [algorithm] : [])
   const hashes = algorithms.map(crypto.createHash)
   let streamSize = 0
   const stream = new Transform({

diff --git a/test/check.js b/test/check.js
@@ -193,6 +193,36 @@ test('checkStream', t => {
       })['sha384'][0],
       'picks the "strongest" available algorithm, by default'
     )
+    return ssri.checkStream(fileStream(), [
+      `sha1-${hash(TEST_DATA, 'sha1')}`,
+      `sha384-${hash(TEST_DATA, 'sha384')}`,
+      `sha256-${hash(TEST_DATA, 'sha256')}`
+    ].join(' '), {
+      algorithms: ['sha256']
+    })
+  }).then(res => {
+    t.deepEqual(
+      res,
+      ssri.parse({
+        algorithm: 'sha384', digest: hash(TEST_DATA, 'sha384')
+      })['sha384'][0],
+      'opts.algorithm still takes into account algo to check against'
+    )
+    return ssri.checkStream(fileStream(), [
+      `sha1-${hash(TEST_DATA, 'sha1')}`,
+      `sha384-${hash(TEST_DATA, 'sha384')}`,
+      `sha256-${hash(TEST_DATA, 'sha256')}`
+    ].join(' '), {
+      algorithms: ['sha512']
+    })
+  }).then(res => {
+    t.deepEqual(
+      res,
+      ssri.parse({
+        algorithm: 'sha384', digest: hash(TEST_DATA, 'sha384')
+      })['sha384'][0],
+      '...even if opts.algorithms includes a hash that is not present'
+    )
     return ssri.checkStream(
       fileStream(), `sha256-${hash(TEST_DATA, 'sha256')}`, {
         size: TEST_DATA.length - 1