Node.js 17.0.1 Gatsby error - "digital envelope routines::unsupported ... ERR_OSSL_EVP_UNSUPPORTED"

Question

I am building a Gatsby site. I upgraded Node.js to v17.0.1, and when I run a build, there is an error:

Error: digital envelope routines::unsupported

opensslErrorStack: [ 'error:03000086:digital envelope routines::initialization error' ],
library: 'digital envelope routines',
reason: 'unsupported',
code: 'ERR_OSSL_EVP_UNSUPPORTED'

If I downgrade it to v16, it works fine, and the build will be successful. How can I fix this?

From googling, this may be a similar issue: Error: error:06065064:digital envelope routines:EVP_DecryptFinal_ex:bad decrypt #48

score 236 · Answer 1 · edited May 06 '23 at 13:23

This might help. Add these scripts in the package.json file.

React:

"scripts": {
    "start": "export SET NODE_OPTIONS=--openssl-legacy-provider && react-scripts start",
    "build": "export SET NODE_OPTIONS=--openssl-legacy-provider && react-scripts build"
}

If you are on Windows and you are using React.js you can use set instead of export in your scripts as follows:

"scripts": {
    "start": "set SET NODE_OPTIONS=--openssl-legacy-provider && react-scripts start",
    "build": "set SET NODE_OPTIONS=--openssl-legacy-provider && react-scripts build"
}

or

"scripts": {
    "start": "react-scripts --openssl-legacy-provider start",
    "build": "react-scripts --openssl-legacy-provider build",
}

Vue.js:

"scripts": {
    "serve": "export NODE_OPTIONS=--openssl-legacy-provider && vue-cli-service serve",
    "build": "export NODE_OPTIONS=--openssl-legacy-provider && vue-cli-service build",
    "lint": "export NODE_OPTIONS=--openssl-legacy-provider && vue-cli-service lint"
},

If you are on Windows and you are using Vue.js you can use set instead of export in your scripts as follows:

"scripts": {
    "serve": "set NODE_OPTIONS=--openssl-legacy-provider && vue-cli-service serve",
    "build": "set NODE_OPTIONS=--openssl-legacy-provider && vue-cli-service build",
    "lint": "set NODE_OPTIONS=--openssl-legacy-provider && vue-cli-service lint"
},

or

"scripts": {
    "serve": "vue-cli-service --openssl-legacy-provider serve",
    "build": "vue-cli-service --openssl-legacy-provider build",
    "lint": "vue-cli-service --openssl-legacy-provider lint"
},

Angular:

"scripts": {
 "start": "set NODE_OPTIONS=--openssl-legacy-provider  && gulp buildDev && ng serve ",
 "publish": "set NODE_OPTIONS=--openssl-legacy-provider  && gulp build && ng build --prod",
},

He, thanks alot for this. i have a simple question, what really causes this problem. — kaybrian, Feb 12 '23 at 09:46
just run this command, inside the project root. export NODE_OPTIONS=--openssl-legacy-provider — Vidurajith Darshana, Feb 18 '23 at 10:09
This worked, but I still do not understand the what the issue was. What caused this? — Pythoner, Feb 25 '23 at 14:38
I'm using yarn and my package.json contains this command: "build-dev": "yarn install && webpack --config ./Config/webpack.config.dev.js --colors", How can I apply the fix here? Everything I tried did not work — Daniel R, Jul 26 '23 at 07:12

score 163 · Answer 2 · edited Jan 04 '22 at 23:53

163

Quick fix: Run this in a terminal inside your React project.

export NODE_OPTIONS=--openssl-legacy-provider

edited Jan 04 '22 at 23:53

Peter Mortensen

30,738
21
105
131

answered Nov 25 '21 at 19:42

Byusa

2,279
1
16
21

4

worked here with node v17 for Mastodon server. Thx! – MegaTux Dec 01 '21 at 14:26
6

Where does that go? In a script file? Manually in a terminal? When should it be applied? In what context? What should be run afterwards in that terminal? What do you mean by *"Run this in a terminal inside your React project"*? In what environment? In a [Visual Studio Code](https://en.wikipedia.org/wiki/Visual_Studio_Code) context? Something else? Can you elaborate? Please respond by [editing (changing) your answer](https://stackoverflow.com/posts/70116509/edit), not here in comments (***without*** "Edit:", "Update:", or similar - the answer should appear as if it was written today). – Peter Mortensen Jan 04 '22 at 23:55
@PeterMortensen Run this in a terminal inside your React project. eg: ```cd book_react_app``` ```export NODE_OPTIONS=--openssl-legacy-provider``` @PeterMortensen Can you suggest an edit if this is not clear? Thank you – Byusa Jan 05 '22 at 21:26
5

node: --openssl-legacy-provider is not allowed in NODE_OPTIONS – Krishnadas PC May 25 '22 at 17:49
2

What did I write about not here in comments? – Peter Mortensen Aug 18 '22 at 01:50
1

worked for me for an lwc/express server. – Arjee Jan 11 '23 at 13:38
1

work for me on react native project. Using Node.js v18.13.0 – Dannick Bedard Jan 31 '23 at 21:51
1

Oh man, thank you! I've been dealing with this for hours! Again, Thank you! – Labanino Feb 24 '23 at 04:25
3

No idea what it did but it worked. Can someone please explain? I don't see anything in source control so not quite sure what happened here – Jan Peeter Mar 21 '23 at 17:21

romellem · Accepted Answer · 2023-03-27T22:14:53.527

UPDATE ⚠️

This is a webpack issue (most likely)

https://github.com/webpack/webpack/issues/14532

They have since released a fix in version 5.61.0 so upgrading webpack to version 5.61.0 or later should address the issue as well.

https://github.com/webpack/webpack/releases/tag/v5.61.0

A member of the webpack team has stated they do not plan to backport the fix to webpack 4, so if you are on webpack 4, you may need to look to upgrading to webpack 5 first.

The issue was related to webpack using md4 hashes and their fix was to switch to using a WASM implementation of the md4 algorithm rather than node's builtin (of which node's relies on OpenSSL, hence the error).

Original Response:

Gatsby / the tooling used in Gatsby must be using a cryptographic algorithm or key size which is no longer allowed by default with OpenSSL 3.0.

From Node.js 17's announcement post:

If you hit an ERR_OSSL_EVP_UNSUPPORTED error in your application with Node.js 17, it’s likely that your application or a module you’re using is attempting to use an algorithm or key size which is no longer allowed by default with OpenSSL 3.0. A new command-line option, --openssl-legacy-provider, has been added to revert to the legacy provider as a temporary workaround for these tightened restrictions.

Running this on the terminal might look like:

node --openssl-legacy-provider ./node_modules/.bin/gatsby build

You can also pass this in via the NODE_OPTIONS environment variable.

So if you'd like to continue using the NPM script, you can change the build script to:

// package.json
{
  "scripts": {
    "build": "export NODE_OPTIONS=--openssl-legacy-provider; gatsby build"
  }
}

This command does get rid of the error: node --openssl-legacy-provider ./node_modules/.bin/gatsby build Thanks a lot! Does it mean that it is down to Gatsby team (or even any modules it depends) to fix the issue in future? — David, Oct 21 '21 at 16:15
Yes, from the error you posted, I can't be sure if it is gatsby directly or a module they are consuming. I imagine they'll have a bugfix release for this in the near future. — romellem, Oct 21 '21 at 20:18
I upgraded webpack from 5.35.1 to 5.61.0 and it resolved my problem, thanks a lot — 27P, Jul 27 '23 at 04:44

score 26 · Answer 4 · edited Jan 04 '22 at 23:48

26

This issue comes with the new update of Node.js 17. In React you can change the script attribute in the package.json file to:

"scripts": {
    "start": "react-scripts --openssl-legacy-provider start",
    "build": "react-scripts --openssl-legacy-provider build",
    "test": "react-scripts test",
    "eject": "react-scripts eject"
}

edited Jan 04 '22 at 23:48

Peter Mortensen

30,738
21
105
131

answered Nov 10 '21 at 17:52

Kautuk Dwivedi

299
2
2

is there a way to make this work with older and newer versions of node? if you run this with an older version of node, then it throws an error saying the command line flag is not recognized – Colin D Nov 08 '22 at 16:41

score 19 · Answer 5 · edited Jan 04 '22 at 23:34

19

I also had the same problem, so I just degraded the Node.js version:

Uninstall Node.js
Then download and install 16.13.0.

edited Jan 04 '22 at 23:34

Peter Mortensen

30,738
21
105
131

answered Oct 27 '21 at 02:33

Vivek Raj Singh

217
1
7

6

you can also utilize nvm to switch among node versions – Mahmoud Nasr Jun 27 '22 at 21:24
1

I strongly recommend using nvm in every platform because you will have to switch from one to another for some reasons... Managing it manually is much easier than uninstalling etc... – Asqan Jan 22 '23 at 16:20

score 12 · Answer 6 · edited Jan 04 '22 at 23:46

12

I think there are two solutions for this error we encountered after the new Node.js update.

Downgrade Node.js

node_modules\react-scripts\config\webpack.config.js - you should add this code inside the .js file you find here:

    const crypto = require("crypto");
    const crypto_orig_createHash = crypto.createHash;
    crypto.createHash = algorithm => crypto_orig_createHash(algorithm == "md4" ? "sha256" : algorithm);

edited Jan 04 '22 at 23:46

Peter Mortensen

30,738
21
105
131

answered Oct 28 '21 at 22:53

lestonz

149
4

none of the downgrade/export fixes worked! but this worked for me. i think ill use this fix temporarily until I reinstall my OS (it happened after I upgraded to fedora 36). – ctrleffive May 11 '22 at 06:29
2nd solution worked for me, 1st would've also worked, just don't this downgrading is a good idea. – Arkil Shaikh Jun 22 '22 at 11:57
This 2nd solution worked for me as well, setting the `hash` option in Webpack wasn't sufficient, maybe due to scss using the function as well? – nathancahill Aug 30 '22 at 10:26

score 6 · Answer 7 · edited Aug 18 '22 at 02:09

6

Use it as a build command for Vue.js 3 and Node.js v17.0.1:

cross-env NODE_OPTIONS='--openssl-legacy-provider' vue-cli-service build"

edited Aug 18 '22 at 02:09

Peter Mortensen

30,738
21
105
131

answered Jan 07 '22 at 23:09

Sanny Zaycev

61
1
2

Why the double quote? (At the end.) – Peter Mortensen Aug 18 '22 at 02:10

score 5 · Answer 8 · edited Jan 04 '22 at 23:37

Rajiv's approach seems right as a workaround, but the syntax didn't worked for me in Vue.js. What worked was without the keyword "SET":

  "scripts": {
    "serve": "NODE_OPTIONS=--openssl-legacy-provider && vue-cli-service serve",
    "build": "NODE_OPTIONS=--openssl-legacy-provider && vue-cli-service build",
    "test:unit": "NODE_OPTIONS=--openssl-legacy-provider && vue-cli-service test:unit",
    "lint": "NODE_OPTIONS=--openssl-legacy-provider && vue-cli-service lint"
  },

score 4 · Answer 9 · edited Jan 05 '22 at 00:01

4

I have uninstalled my Node.js version 17.0.1 through the control panel.

Then I downloaded the Node.js version 16.13.1 from the nodejs.org and installed it, and then React Native starts and builds fine.

edited Jan 05 '22 at 00:01

Peter Mortensen

30,738
21
105
131

answered Dec 14 '21 at 03:01

user17670454

41
1

Re *"control panel"*: On Windows? – Peter Mortensen Jan 05 '22 at 00:02

score 4 · Answer 10 · edited Aug 18 '22 at 01:51

4

I have faced this similar issue in version 17.3.0.

I have uninstalled Node.js and installed version 16.13.0 and restarted.
By running in the new terminal, it got fixed.

edited Aug 18 '22 at 01:51

Peter Mortensen

30,738
21
105
131

answered Jan 05 '22 at 15:57

hema

41
3

1

This does not provide an answer to the question. Once you have sufficient [reputation](https://stackoverflow.com/help/whats-reputation) you will be able to [comment on any post](https://stackoverflow.com/help/privileges/comment); instead, [provide answers that don't require clarification from the asker](https://meta.stackexchange.com/questions/214173/why-do-i-need-50-reputation-to-comment-what-can-i-do-instead). - [From Review](/review/late-answers/30745970) – bguiz Jan 10 '22 at 02:43

score 0 · Answer 11 · edited Jan 04 '22 at 23:42

0

I was facing the same issue with an Angular application on server -

I just downgraded the Node.js version locally to 14
The Docker image replaced with version 14.18.1. Earlier it was Alpine Linux

You can find more details in Node.js' latest release documentation.

edited Jan 04 '22 at 23:42

Peter Mortensen

30,738
21
105
131

answered Oct 28 '21 at 17:10

neekheel

98
2
18

opensslErrorStack: [ 'error:03000086:digital envelope routines::initialization error' ], library: 'digital envelope routines', reason: 'unsupported', code: 'ERR_OSSL_EVP_UNSUPPORTED' } how to fix this on yarn project – Tanveer Rifu Aug 10 '23 at 15:18

score 0 · Answer 12 · edited Aug 18 '22 at 01:59

0

While patching with --openssl-legacy-provider is more of a hack and a real solution would be to fix OpenSSL key size usage in Vue.js, React, etc.; a temporal workaround may be using an older version of Node.js indeed.

But I'd suggest not to downgrade Node.js; rather install NVM (main/win: nvm-windows/nodist/nvs, the last one being cross-platform) and switch between versions on demand.

edited Aug 18 '22 at 01:59

Peter Mortensen

30,738
21
105
131

answered Feb 07 '22 at 08:16

YakovL

7,557
12
62
102

score 0 · Answer 13 · edited Aug 18 '22 at 02:04

0

I think you should downgrade your Node.js or use nvm to switch between Node.js versions. I did this and React worked fine.

edited Aug 18 '22 at 02:04

Peter Mortensen

30,738
21
105
131

answered Feb 13 '22 at 04:42

Jojo Codes

1
1

2

Your answer could be improved with additional supporting information. Please [edit] to add further details, such as citations or documentation, so that others can confirm that your answer is correct. You can find more information on how to write good answers [in the help center](/help/how-to-answer). – Community Feb 13 '22 at 19:17

Node.js 17.0.1 Gatsby error - "digital envelope routines::unsupported ... ERR_OSSL_EVP_UNSUPPORTED"

13 Answers13

React:

Vue.js:

Angular:

UPDATE ⚠️

Original Response:

Linked

Related