Webpack build failing with ERR_OSSL_EVP_UNSUPPORTED

webpack

114,671

Solution 1

I was able to fix it via:

export NODE_OPTIONS=--openssl-legacy-provider

sachaw's comment to Node.js v17.0.0 - Error starting project in development mode #30078

But they say they fixed it: ijjk's comment to Node.js v17.0.0 - Error starting project in development mode #30078:

Hi, this has been updated in v11.1.3-canary.89 of Next.js, please update and give it a try!

For me, it worked only with the annotation above.

I also want to point out that npm run start works with -openssl-legacy-provider, but npm run dev won't.

It seems that there is a patch: Node.js 17: digital envelope routines::unsupported #14532

I personally downgraded to 16-alpine.

Solution 2

I had this problem too. I'd accidentally been running on the latest Node.js (17.0 at time of writing), not the LTS version (14.18) which I'd meant to install. Downgrading my Node.js install to the LTS version fixed the problem for me.

Solution 3

There is a hashing algorithm that comes with Webpack v5.54.0+ that does not rely on OpenSSL.

To use this hash function that relies on a npm-provided dependency instead of an operating system-provided dependency, modify the webpack.config.cjs output key to include the hashFunction: "xxhash64" option.

module.exports = {
    output: {
        hashFunction: "xxhash64"
    }
};

Solution 4

Ryan Brownell's answer is the ideal solution if you are using Webpack v5.54.0+.

If you're using an older version of Webpack, you can still solve this by changing the hash function to one that is not deprecated. (It defaults to the ancient md4, which OpenSSL has removed support for, which is the root cause of the error.) The supported algorithms are any supported by crypto.createHash. For example, to use SHA-256:

module.exports = {
    output: {
        hashFunction: "sha256"
    }
};

Finally, if you are unable to change the Webpack configuration (e.g., if it's a transitive dependency which is running Webpack), you can enable OpenSSL's legacy provider to temporarily enable MD4 during the Webpack build. This is a last resort. Create a file openssl.cnf with this content…

openssl_conf = openssl_init
[openssl_init]
providers = provider_sect
[provider_sect]
default = default_sect
legacy = legacy_sect
[default_sect]
activate = 1
[legacy_sect]
activate = 1

…and then set the environment variable OPENSSL_CONF to the path to that file when running Webpack.

Solution 5

It is not my answer really, but I found this workaround /hack/ to fix my problem Code Check in for a GitHub project... see the bug comments here.

I ran into ERR_OSSL_EVP_UNSUPPORTED after updating with npm install.

I added the following to node_modules\react-scripts\config\webpack.config.js

const crypto = require("crypto");
const crypto_orig_createHash = crypto.createHash;
crypto.createHash = algorithm => crypto_orig_createHash(algorithm == "md4" ? "sha256" : algorithm);

I tried Ryan Brownell's solution and ended up with a different error, but this worked...

View more solutions

114,671

Ryan Brownell

Updated on February 17, 2022

Comments

Ryan Brownell 10 months

I'm having an issue with a Webpack build process that suddenly broke, resulting in the following error...

<s> [webpack.Progress] 10% building 0/1 entries 0/0 dependencies 0/0 modules
node:internal/crypto/hash:67
  this[kHandle] = new _Hash(algorithm, xofLen);
                  ^
Error: error:0308010C:digital envelope routines::unsupported
    at new Hash (node:internal/crypto/hash:67:19)
    at Object.createHash (node:crypto:130:10)
    at BulkUpdateDecorator.hashFactory (/app/node_modules/webpack/lib/util/createHash.js:155:18)
    at BulkUpdateDecorator.update (/app/node_modules/webpack/lib/util/createHash.js:46:50)
    at OriginalSource.updateHash (/app/node_modules/webpack-sources/lib/OriginalSource.js:131:8)
    at NormalModule._initBuildHash (/app/node_modules/webpack/lib/NormalModule.js:888:17)
    at handleParseResult (/app/node_modules/webpack/lib/NormalModule.js:954:10)
    at /app/node_modules/webpack/lib/NormalModule.js:1048:4
    at processResult (/app/node_modules/webpack/lib/NormalModule.js:763:11)
    at /app/node_modules/webpack/lib/NormalModule.js:827:5 {
  opensslErrorStack: [ 'error:03000086:digital envelope routines::initialization error' ],
  library: 'digital envelope routines',
  reason: 'unsupported',
  code: 'ERR_OSSL_EVP_UNSUPPORTED'
}
command terminated with exit code 1

I've tried googling ERR_OSSL_EVP_UNSUPPORTED webpack which yielded almost no useful results, but it did highlight an issue using MD4 as provided by OpenSSL (which is apparently deprecated?) to generate hashes.

The webpack.config.js code is as follows:

const path = require('path');
const webpack = require('webpack');
/*
 * SplitChunksPlugin is enabled by default and replaced
 * deprecated CommonsChunkPlugin. It automatically identifies modules which
 * should be splitted of chunk by heuristics using module duplication count and
 * module category (i. e. node_modules). And splits the chunks…
 *
 * It is safe to remove "splitChunks" from the generated configuration
 * and was added as an educational example.
 *
 * https://webpack.js.org/plugins/split-chunks-plugin/
 *
 */
/*
 * We've enabled TerserPlugin for you! This minifies your app
 * in order to load faster and run less javascript.
 *
 * https://github.com/webpack-contrib/terser-webpack-plugin
 *
 */
const TerserPlugin = require('terser-webpack-plugin');
module.exports = {
    mode: 'development',
    entry: './src/js/scripts.js',
    output: {
        path: path.resolve(__dirname, 'js'),
        filename: 'scripts.js'
    },
    devtool: 'source-map',
    plugins: [new webpack.ProgressPlugin()],
    module: {
        rules: []
    },
    optimization: {
        minimizer: [new TerserPlugin()],
        splitChunks: {
            cacheGroups: {
                vendors: {
                    priority: -10,
                    test: /[\\/]node_modules[\\/]/
                }
            },
            chunks: 'async',
            minChunks: 1,
            minSize: 30000,
            name: 'true'
        }
    }
};

How do I change the hashing algorithm used by Webpack to something else?

Abhinav Saxena about 1 year

github.com/facebook/create-react-app/issues/11562 has the details, why to downgrade NodeJs to v16.13.0

Gustav about 1 year

Same here. Downgrading to 16.x worked as well. Its LTS start in a week (2021-10-26) according to nodejs.org/en/about/releases so I went for that.
Peter about 1 year

Turns out that the hashFunction fix can help. but it might be insufficient: the ConcatenatedModule optimizer in Webpack 4.x hardcodes the use of MD4, so if your build process uses it, you might need to go the openssl.cnf route. I think this might be the general case for Vue CLI 4.x projects.
Daniel B. Chapman about 1 year

This worked fine for me in Webpack4. I'm bouncing between 12LTS / 17 and this is a big time saver.
Terry about 1 year

This should be the accepted answer in 2021. Thank you for describing the folder location of the file as well. It solved my issue. I had previously tried the solution that exports variables to the environment and it caused VSCode to no longer load. So this solves it without globally compromising other programs.
user9681090 about 1 year

it work ! export NODE_OPTIONS=--openssl-legacy-provider
Trip about 1 year

I am having this problem with v16.13.0.
Caleb Santos about 1 year

Thanks. It worked here. I used 'asdf' to run the LTS version locally inside the project.
Abhinav Saxena about 1 year

github.com/facebook/create-react-app/issues/11562 has the details, why to downgrade NodeJs to v16.13.0
Abhinav Saxena about 1 year

@Trip check your package.json for ReactNative. Ask a question.
joekevinrayan96 about 1 year

Thank you very much this fix worked!
Trip about 1 year

@AbhinavSaxena We do not use React, and ReactNative does not appear anywhere in our package-lock.json.
Abhinav Saxena about 1 year

@Trip Okay, [Note: it's package.json and not package-lock.json] I used this solution for ReactNative and saw that it favoured people using ReactJS (web development) as well, so I was curious. I think you can ask a separate question specifying the platform you are using.
emendelski 12 months

This is not a solution to the problem, just a workaround.
Hex 12 months

PowerShell: $env:NODE_OPTIONS="--openssl-legacy-provider"
7FigureSwagger 12 months

This should be accepted, upgrading WebPack solved the issue for me. Thanks!!
Mauzzz0 11 months

Confirm downgrade from v17.2.0 to v16.13.1 is working fine
Harlin 11 months

Where do you put: export NODE_OPTIONS=--openssl-legacy-provider?
Jan 11 months

before you run your server: "scripts": { "debug": "NODE_OPTIONS='--openssl-legacy-provider' next dev -p 5000"
Quinten Cabo 11 months

This worked for me! Downgrading node did not work for me.
Seralto 10 months

You can run all at once: NODE_OPTIONS=--openssl-legacy-provider npm start
Jack 10 months

I'm getting Error: Digest method not supported
Jack 10 months

worked like a charm!
Luca Filip 8 months

Confirm - downgrading Node solved the issue.
Raksha Saini 8 months

It works for me in ubuntu 22.04 , rvm_ruby_version 3.0.1
Jasper Siepkes 7 months

Doesn't work with node v16.14.0 for me on Fedora 36: node: --openssl-legacy-provider is not allowed in NODE_OPTIONS
Narendra Singh 6 months

@emendelski Then, whats the solution?
emendelski 6 months

Check all the other answers: stackoverflow.com/a/69746937/3585513, stackoverflow.com/a/69476335/3585513.
Cesarvspr 6 months

I didnt work here. :( --openssl-legacy-provider is not allowed in NODE_OPTIONS
tno2007 6 months

Thanks. Node Version Manager via nvm or nvm-windows works excellent for switching effortlessly between versions