crypto: don't reference |freelist_max_len| in OpenSSL 1.1.0.

[agl]

The |freelist_max_len| (and the freelist itself) has been removed in
OpenSSL 1.1.0. Thus this change will be necessary at some point but,
for now, it makes it a little easier to build with 1.1.0 without
breaking anything for previous versions of OpenSSL.

Checklist

• make -j4 test (UNIX), or vcbuild test (Windows) passes
• commit message follows commit guidelines

Affected core subsystem(s)

crypto

[sam-github]

I'm OK with this, but another approach would be to simply not define .setFreeListLength() for ossl versions that don't support it. Its not a public API, we don't have to keep it, and then the code in _tls_common.js would just not call the API if it doesn't exist.

[agl]

Happy to do this if people prefer, although you would have to tell me what the recommended pattern in Javascript is for testing whether a function exists or not.

[sam-github]

Lets get one more person to weigh in. My pitch is that it is the first step towards just removing the function, which we will want to do, why keep a function around that does nothing? Its very confusing! Also, it makes feature testing very easy.

But its a waste of your time to refactor like I suggest unless @nodejs/crypto or someone else agrees. Lets listen.

You would basically take the ifdef you have around the fn internals now and move them to https://github.com/agl/node/blob/c6404a264e5587dedd0a495f1c91e6d90edcc7ac/src/node_crypto.cc#L297 so the js binding does not get defined. If there are no other uses of SetFreeListLength, you'd have to ifdef out its prototype and def'n as well to avoid compiler whinging.

pattern for testing whether function exists before use is just

if(c.context.setFreeListLength)
  c.context.setFreeListLength(0);

[bnoordhuis]

I think the current approach is fine. Sam's suggestion would make the diff quite a bit larger.

[indutny]

I agree, current approach is better. We can clean up all at once later.

[sam-github]

Commit message shouldn't have a ., and should be <= 50 chars. You can remove the test checkbox from the PR description, and the docs, it needs neither.

[agl]

Commit updated so that the first line is <= 50 chars.

[mscdex]

Minor nit: I think the pipes can be dropped in the commit message.

[bnoordhuis]

I think the current approach is fine. Sam's suggestion would make the diff quite a bit larger.

[indutny]

LGTM

[indutny]

I agree, current approach is better. We can clean up all at once later.

[sam-github]

Sam's suggestion would make the diff quite a bit larger.

Isn't bigger better? 💪

OK, I'm good with approach as-is, LGTM (still)

[shigeki]

How about disabling freelist entirely? It gives more simplicity and compatibility between 1.0.2 and 1.1.0.

diff --git a/deps/openssl/openssl.gypi b/deps/openssl/openssl.gypi
index 871cec0..e260cb5 100644
--- a/deps/openssl/openssl.gypi
+++ b/deps/openssl/openssl.gypi
@@ -1268,6 +1268,9 @@
       # the real driver but that poses a security liability when an attacker
       # is able to create a malicious DLL in one of the default search paths.
       'OPENSSL_NO_HW',
+
+      # Disable freelist for it has no longer benefits
+      'OPENSSL_NO_BUF_FREELISTS'
     ],
     'openssl_default_defines_win': [
       'MK1MF_BUILD',
diff --git a/src/node_crypto.cc b/src/node_crypto.cc
index f843667..af2d729 100644
--- a/src/node_crypto.cc
+++ b/src/node_crypto.cc
@@ -1150,7 +1150,7 @@ void SecureContext::SetFreeListLength(const FunctionCallbackInfo
   SecureContext* wrap;
   ASSIGN_OR_RETURN_UNWRAP(&wrap, args.Holder());

-  wrap->ctx_->freelist_max_len = args[0]->Int32Value();
+  // Do nothing. To be deprecated in the future.
 }

[bnoordhuis]

@shigeki I had the same thought but that would reintroduce the memory consumption issue in builds that link against a shared openssl. If we feel that's acceptable, then by all means go for it.

[sam-github]

I read through #1522 and I don't see the connection to "shared ssl", @bnoordhuis, what is different about shared SSL vs ours?

[bnoordhuis]

@sam-github The system openssl won't be compiled with -DOPENSSL_NO_BUF_FREELISTS so if we don't zero freelist_max_len, it's going to use (lots) more memory.

[sam-github]

I don't think we should break user's of system SSL, it seems unhelpful to linux distros, with not much gain to us. Once we move to new OpenSSL versions, this code seems like it will naturally go away, so long term, we won't have to maintain it.

[shigeki]

I missed thinking of shared openssl. It means we cannot change and fix ssl behaviors by using build defines or opensslconf.h unfortunately.
This PR has enough approvals so I will land this now.

[shigeki]

CI is running on https://ci.nodejs.org/job/node-test-pull-request/5991/

[shigeki]

CI is green. Landed in a57e2f2. Thanks.

[MylesBorins]

I've gone ahead and landed this on v4.x and v6.x staging... the test suites are passing.

if for any reason this should be reverted please @ me

[sam-github]

I think backporting is right, @nodejs/crypto any of you disagree?

[shigeki]

I agree this. It gives a code consistency.