lib: deprecate _tls_common and _tls_wrap

[dario-piotrowicz]

This PR is for runtime deprecation of the _tls_common and _tls_wrap modules

My hope is to manage to gradually deprecate the various _ modules that are not documented
and that should not be part of node.js' public API (for more context see: #57540 (comment))

Interestingly as you can see:

common and wrap expose respectively:

• SecureContext
• createSecureContext
• translatePeerCertificate
  and
• TLSSocket
• Server
• createServer
• connect

All of these, seem to already being re-exported by node:tls:

node/lib/tls.js

Lines 389 to 394 in 186bbf7

	exports.createSecureContext = _tls_common.createSecureContext;
	exports.SecureContext = _tls_common.SecureContext;
	exports.TLSSocket = _tls_wrap.TLSSocket;
	exports.Server = _tls_wrap.Server;
	exports.createServer = _tls_wrap.createServer;
	exports.connect = _tls_wrap.connect;

the only exception being translatePeerCertificate (which I am not really very familiar with, but by the looks of it
seems like a rather simple function that can be re-implemented externally)

So I don't think that deprecating these modules should have huge impacts to users and that importing from
node:tls instead is a viable alternative

@BridgeAR 🙂👍

[nodejs-github-bot]

Review requested:

• @nodejs/crypto
• @nodejs/net

[dario-piotrowicz]

@BridgeAR I know you said that the runtime deprecation wasn't completely necessary but I really wanted to give it a shot (and I really like how it turned out 😄) I hope you don't mind 🙂

[codecov]

Codecov Report

Attention: Patch coverage is 94.68846% with 104 lines in your changes missing coverage. Please review.

Project coverage is 90.18%. Comparing base (535c2f7) to head (f96445c).
Report is 25 commits behind head on main.

Files with missing lines	Patch %	Lines
lib/internal/tls/wrap.js	94.38%	98 Missing and 2 partials ⚠️
lib/internal/tls/common.js	97.43%	4 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main   #57643      +/-   ##
==========================================
+ Coverage   90.12%   90.18%   +0.06%     
==========================================
  Files         629      631       +2     
  Lines      186638   186662      +24     
  Branches    36618    36656      +38     
==========================================
+ Hits       168202   168344     +142     
+ Misses      11222    11122     -100     
+ Partials     7214     7196      -18     

Files with missing lines	Coverage Δ
lib/_tls_common.js	100.00% <100.00%> (+2.56%)	⬆️
lib/_tls_wrap.js	100.00% <100.00%> (+5.61%)	⬆️
lib/internal/crypto/x509.js	91.75% <100.00%> (ø)
lib/tls.js	95.93% <100.00%> (ø)
src/node_builtins.cc	79.17% <ø> (ø)
lib/internal/tls/common.js	97.43% <97.43%> (ø)
lib/internal/tls/wrap.js	94.38% <94.38%> (ø)

... and 42 files with indirect coverage changes

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[mcollina]

lgtm

[mcollina]

lgtm

[nodejs-github-bot]

CI: https://ci.nodejs.org/job/node-test-pull-request/66100/

[nodejs-github-bot]

CI: https://ci.nodejs.org/job/node-test-pull-request/66217/

[jasnell]

Just noting... it's an unfortunate truth that while these are deprecated we likely will never be able to actually remove them. See require('sys') ....

[dario-piotrowicz]

oh I see.. that's pretty disappointing 🥲 (although I understand the security implications...)

I like your suggestion of throwing an error though, it'd be pretty nice if we could do that at some point 🙂

[dario-piotrowicz]

mh... or maybe the _ modules could be removed at some point since npm doesn't support such modules anyways? 🤔

#26292 (comment)
https://github.com/npm/validate-npm-package-name?tab=readme-ov-file#naming-rules

🤔

[jasnell]

npm may not but an attacker could still locally inject a module which would still be problematic.

[dario-piotrowicz]

oh I see what you mean... like with a postinstall script or something that drops an _ module in the node_modules right? 🤔

oh too bad then 😓 (but I am still hoping for the throwing idea! 😀)

[nodejs-github-bot]

CI: https://ci.nodejs.org/job/node-test-pull-request/66606/

[nodejs-github-bot]

CI: https://ci.nodejs.org/job/node-test-pull-request/66643/

[nodejs-github-bot]

CI: https://ci.nodejs.org/job/node-test-pull-request/66675/

[nodejs-github-bot]

CI: https://ci.nodejs.org/job/node-test-pull-request/66679/

[nodejs-github-bot]

CI: https://ci.nodejs.org/job/node-test-pull-request/66682/

[nodejs-github-bot]

CI: https://ci.nodejs.org/job/node-test-pull-request/66696/

[nodejs-github-bot]

CI: https://ci.nodejs.org/job/node-test-pull-request/66697/

[jasnell]

Best to leave the trademark headers in place even if the rest is being removed

[dario-piotrowicz]

ok thanks 🙂

or should I move those to the new internal modules which contain the original copy-pasted code?

[dario-piotrowicz]

Copyright comments restored (into the new files): f96445c

I hope this works for you 🙏

[nodejs-github-bot]

CI: https://ci.nodejs.org/job/node-test-pull-request/66741/

[nodejs-github-bot]

CI: https://ci.nodejs.org/job/node-test-pull-request/66744/

[nodejs-github-bot]

Landed in a822a1c