create-elm-app: error when trying to start development server

Describe the bug

Running elm-app start after creating a new project fails.

Steps To Reproduce

Steps to reproduce the behavior:

Create a new create-elm-app project (since create-elm-app is broken, you can work around it by cping the create-elm-app template directory)
Run elm-app start
You’ll get the following error:

Starting the development server...

Error: error:0308010C:digital envelope routines::unsupported
    at new Hash (node:internal/crypto/hash:71:19)
    at Object.createHash (node:crypto:133:10)
    at module.exports (/nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/node_modules/webpack/lib/util/createHash.js:135:53)
    at NormalModule._initBuildHash (/nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/node_modules/webpack/lib/NormalModule.js:417:16)
    at handleParseError (/nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/node_modules/webpack/lib/NormalModule.js:471:10)
    at /nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/node_modules/webpack/lib/NormalModule.js:503:5
    at /nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/node_modules/webpack/lib/NormalModule.js:358:12
    at /nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/node_modules/loader-runner/lib/LoaderRunner.js:373:3
    at iterateNormalLoaders (/nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/node_modules/loader-runner/lib/LoaderRunner.js:214:10)
    at iterateNormalLoaders (/nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/node_modules/loader-runner/lib/LoaderRunner.js:221:10)
/nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/scripts/start.js:11
  throw err;
  ^

Error: error:0308010C:digital envelope routines::unsupported
    at new Hash (node:internal/crypto/hash:71:19)
    at Object.createHash (node:crypto:133:10)
    at module.exports (/nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/node_modules/webpack/lib/util/createHash.js:135:53)
    at NormalModule._initBuildHash (/nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/node_modules/webpack/lib/NormalModule.js:417:16)
    at /nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/node_modules/webpack/lib/NormalModule.js:452:10
    at /nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/node_modules/webpack/lib/NormalModule.js:323:13
    at /nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/node_modules/loader-runner/lib/LoaderRunner.js:367:11
    at /nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/node_modules/loader-runner/lib/LoaderRunner.js:233:18
    at context.callback (/nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/node_modules/loader-runner/lib/LoaderRunner.js:111:13)
    at /nix/store/1chp9xbv27ny3c9bwbgj6bgfa6xyr7sj-create-elm-app-5.22.0/lib/node_modules/create-elm-app/node_modules/babel-loader/lib/index.js:59:103 {
  opensslErrorStack: [ 'error:03000086:digital envelope routines::initialization error' ],
  library: 'digital envelope routines',
  reason: 'unsupported',
  code: 'ERR_OSSL_EVP_UNSUPPORTED'
}

Node.js v18.12.1

Expected behavior

The development server starts.

Additional context

Here’s the flake.nix I’m using (I’m on nixpkgs commit 8c54d842d9544361aac5f5b212ba04e4089e8efe):

{
  inputs.nixpkgs.url = "github:NixOS/nixpkgs/release-22.11";
  outputs = { self, nixpkgs }: let
    pkgs = import nixpkgs { system = "x86_64-linux"; };
  in {
    devShell.x86_64-linux = pkgs.mkShell {
      packages = [
        pkgs.elmPackages.elm
        pkgs.elmPackages.create-elm-app
      ];
    };
  };
}

Notify maintainers

@turboMaCk

Metadata

❯ nix-shell -p nix-info --run "nix-info -m"
 - system: `"x86_64-linux"`
 - host os: `Linux 5.15.80, NixOS, 22.11 (Raccoon), 22.11.20230105.046e976`
 - multi-user?: `yes`
 - sandbox: `yes`
 - version: `nix-env (Nix) 2.11.1`
 - channels(sephi): `""`
 - channels(root): `"nixos-22.05, nixos-hardware, nixos-unstable, taxi"`
 - nixpkgs: `/nix/var/nix/profiles/per-user/root/channels/nixos`

Unfortunately not :(

❯ elm-app start
/nix/store/m7gfmi8pk8d383vqdz2gkk9gr4kwjy6c-nodejs-14.21.1/bin/node: --openssl-legacy-provider is not allowed in NODE_OPTIONS

❯ node --version
v18.12.1

❯ node --help
Usage: node [options] [ script.js ] [arguments]
       node inspect [options] [ script.js | host:port ] [arguments]

Options:
  -                              script read from stdin (default if no file
                                 name is provided, interactive mode if a tty)
  --                             indicate the end of node options
  --abort-on-uncaught-exception  aborting instead of exiting causes a core
                                 file to be generated for analysis
  --build-snapshot               Generate a snapshot blob when the process
                                 exits. Currently only supported in the
                                 node_mksnapshot binary.
  -c, --check                    syntax check script without executing
  --completion-bash              print source-able bash completion script
  -C, --conditions=...           additional user conditions for conditional
                                 exports and imports
  --cpu-prof                     Start the V8 CPU profiler on start up, and
                                 write the CPU profile to disk before exit.
                                 If --cpu-prof-dir is not specified, write
                                 the profile to the current working
                                 directory.
  --cpu-prof-dir=...             Directory where the V8 profiles generated by
                                 --cpu-prof will be placed. Does not affect
                                 --prof.
  --cpu-prof-interval=...        specified sampling interval in microseconds
                                 for the V8 CPU profile generated with
                                 --cpu-prof. (default: 1000)
  --cpu-prof-name=...            specified file name of the V8 CPU profile
                                 generated with --cpu-prof
  --diagnostic-dir=...           set dir for all output files (default:
                                 current working directory)
  --disable-proto=...            disable Object.prototype.__proto__
  --disallow-code-generation-from-strings
                                 disallow eval and friends
  --dns-result-order=...         set default value of verbatim in dns.lookup.
                                 Options are 'ipv4first' (IPv4 addresses are
                                 placed before IPv6 addresses) 'verbatim'
                                 (addresses are in the order the DNS resolver
                                 returned)
  --enable-fips                  enable FIPS crypto at startup
  --enable-source-maps           Source Map V3 support for stack traces
  -e, --eval=...                 evaluate script
  --experimental-global-customevent
                                 expose experimental CustomEvent on the
                                 global scope
  --experimental-global-webcrypto
                                 expose experimental Web Crypto API on the
                                 global scope
  --experimental-import-meta-resolve
                                 experimental ES Module import.meta.resolve()
                                 support
  --loader, --experimental-loader=...
                                 use the specified module as a custom loader
  --experimental-network-imports experimental https: support for the ES
                                 Module loader
  --experimental-policy=...      use the specified file as a security policy
  --es-module-specifier-resolution, --experimental-specifier-resolution=...
                                 Select extension resolution algorithm for es
                                 modules; either 'explicit' (default) or
                                 'node'
  --experimental-vm-modules      experimental ES Module support in vm module
  --experimental-wasi-unstable-preview1
                                 experimental WASI support
  --experimental-wasm-modules    experimental ES Module support for
                                 webassembly modules
  --force-context-aware          disable loading non-context-aware addons
  --force-fips                   force FIPS crypto (cannot be disabled)
  --force-node-api-uncaught-exceptions-policy
                                 enforces 'uncaughtException' event on Node
                                 API asynchronous callbacks
  --frozen-intrinsics            experimental frozen intrinsics support
  --heap-prof                    Start the V8 heap profiler on start up, and
                                 write the heap profile to disk before exit.
                                 If --heap-prof-dir is not specified, write
                                 the profile to the current working
                                 directory.
  --heap-prof-dir=...            Directory where the V8 heap profiles
                                 generated by --heap-prof will be placed.
  --heap-prof-interval=...       specified sampling interval in bytes for the
                                 V8 heap profile generated with --heap-prof.
                                 (default: 512 * 1024)
  --heap-prof-name=...           specified file name of the V8 heap profile
                                 generated with --heap-prof
  --heapsnapshot-near-heap-limit=...
                                 Generate heap snapshots whenever V8 is
                                 approaching the heap limit. No more than the
                                 specified number of heap snapshots will be
                                 generated.
  --heapsnapshot-signal=...      Generate heap snapshot on specified signal
  -h, --help                     print node command line options (currently
                                 set)
  --huge-max-old-generation-size increase default maximum heap size on
                                 machines with 16GB memory or more
  --icu-data-dir=...             set ICU data load path to dir (overrides
                                 NODE_ICU_DATA) (note: linked-in ICU data is
                                 present)
  --input-type=...               set module type for string input
  --insecure-http-parser         use an insecure HTTP parser that accepts
                                 invalid HTTP headers
  --inspect[=[host:]port]        activate inspector on host:port (default:
                                 127.0.0.1:9229)
  --inspect-brk[=[host:]port]    activate inspector on host:port and break at
                                 start of user script
  --debug-port, --inspect-port=[host:]port
                                 set host:port for inspector
  --inspect-publish-uid=...      comma separated list of destinations for
                                 inspector uid(default: stderr,http)
  -i, --interactive              always enter the REPL even if stdin does not
                                 appear to be a terminal
  --interpreted-frames-native-stack
                                 help system profilers to translate
                                 JavaScript interpreted frames
  --jitless                      disable runtime allocation of executable
                                 memory
  --max-http-header-size=...     set the maximum size of HTTP headers
                                 (default: 16384 (16KB))
  --no-addons                    disable loading native addons
  --no-deprecation               silence deprecation warnings
  --no-experimental-fetch        experimental Fetch API
  --no-experimental-repl-await   experimental await keyword support in REPL
  --no-extra-info-on-fatal-exception
                                 hide extra information on fatal exception
                                 that causes exit
  --no-force-async-hooks-checks  disable checks for async_hooks
  --no-global-search-paths       disable global module search paths
  --no-warnings                  silence all process warnings
  --node-memory-debug            Run with extra debug checks for memory leaks
                                 in Node.js itself
  --openssl-config=...           load OpenSSL configuration from the
                                 specified file (overrides OPENSSL_CONF)
  --openssl-legacy-provider      enable OpenSSL 3.0 legacy provider
                                 (currently set)
  --openssl-shared-config        enable OpenSSL shared configuration
  --pending-deprecation          emit pending deprecation warnings
  --policy-integrity=...         ensure the security policy contents match
                                 the specified integrity
  --preserve-symlinks            preserve symbolic links when resolving
  --preserve-symlinks-main       preserve symbolic links when resolving the
                                 main module
  -p, --print [...]              evaluate script and print result
  --prof                         Generate V8 profiler output.
  --prof-process                 process V8 profiler output generated using
                                 --prof
  --redirect-warnings=...        write warnings to file instead of stderr
  --report-compact               output compact single-line JSON
  --report-directory, --report-dir=...
                                 define custom report pathname. (default:
                                 current working directory)
  --report-filename=...          define custom report file name. (default:
                                 YYYYMMDD.HHMMSS.PID.SEQUENCE#.txt)
  --report-on-fatalerror         generate diagnostic report on fatal
                                 (internal) errors
  --report-on-signal             generate diagnostic report upon receiving
                                 signals
  --report-signal=...            causes diagnostic report to be produced on
                                 provided signal, unsupported in Windows.
                                 (default: SIGUSR2)
  --report-uncaught-exception    generate diagnostic report on uncaught
                                 exceptions
  -r, --require=...              module to preload (option can be repeated)
  --secure-heap=...              total size of the OpenSSL secure heap
  --secure-heap-min=...          minimum allocation size from the OpenSSL
                                 secure heap
  --snapshot-blob=...            Path to the snapshot blob that's either the
                                 result of snapshotbuilding, or the blob that
                                 is used to restore the application state
  --test                         launch test runner on startup
  --test-name-pattern=...        run tests whose name matches this regular
                                 expression
  --test-only                    run tests with 'only' option set
  --throw-deprecation            throw an exception on deprecations
  --title=...                    the process title to use on startup
  --tls-cipher-list=...          use an alternative default TLS cipher list
  --tls-keylog=...               log TLS decryption keys to named file for
                                 traffic analysis
  --tls-max-v1.2                 set default TLS maximum to TLSv1.2 (default:
                                 TLSv1.3)
  --tls-max-v1.3                 set default TLS maximum to TLSv1.3 (default:
                                 TLSv1.3)
  --tls-min-v1.0                 set default TLS minimum to TLSv1.0 (default:
                                 TLSv1.2)
  --tls-min-v1.1                 set default TLS minimum to TLSv1.1 (default:
                                 TLSv1.2)
  --tls-min-v1.2                 set default TLS minimum to TLSv1.2 (default:
                                 TLSv1.2)
  --tls-min-v1.3                 set default TLS minimum to TLSv1.3 (default:
                                 TLSv1.2)
  --trace-atomics-wait           (deprecated) trace Atomics.wait() operations
  --trace-deprecation            show stack traces on deprecations
  --trace-event-categories=...   comma separated list of trace event
                                 categories to record
  --trace-event-file-pattern=... Template string specifying the filepath for
                                 the trace-events data, it supports
                                 ${rotation} and ${pid}.
  --trace-exit                   show stack trace when an environment exits
  --trace-sigint                 enable printing JavaScript stacktrace on
                                 SIGINT
  --trace-sync-io                show stack trace when use of sync IO is
                                 detected after the first tick
  --trace-tls                    prints TLS packet trace information to
                                 stderr
  --trace-uncaught               show stack traces for the `throw` behind
                                 uncaught exceptions
  --trace-warnings               show stack traces on process warnings
  --track-heap-objects           track heap object allocations for heap
                                 snapshots
  --unhandled-rejections=...     define unhandled rejections behavior.
                                 Options are 'strict' (always raise an
                                 error), 'throw' (raise an error unless
                                 'unhandledRejection' hook is set), 'warn'
                                 (log a warning), 'none' (silence warnings),
                                 'warn-with-error-code' (log a warning and
                                 set exit code 1 unless 'unhandledRejection'
                                 hook is set). (default: throw)
  --update-assert-snapshot       update assert snapshot files
  --use-bundled-ca               use bundled CA store (default)
  --use-largepages=...           Map the Node.js static code to large pages.
                                 Options are 'off' (the default value,
                                 meaning do not map), 'on' (map and ignore
                                 failure, reporting it to stderr), or
                                 'silent' (map and silently ignore failure)
  --use-openssl-ca               use OpenSSL's default CA store
  --v8-options                   print V8 command line options
  --v8-pool-size=...             set V8's thread pool size
  -v, --version                  print Node.js version
  --watch                        run in watch mode
  --watch-path=...               path to watch
  --zero-fill-buffers            automatically zero-fill all newly allocated
                                 Buffer and SlowBuffer instances

Environment variables:
FORCE_COLOR                    when set to 'true', 1, 2, 3, or an empty
                               string causes NO_COLOR and
                               NODE_DISABLE_COLORS to be ignored.
NO_COLOR                       Alias for NODE_DISABLE_COLORS
NODE_DEBUG                     ','-separated list of core modules that
                               should print debug information
NODE_DEBUG_NATIVE              ','-separated list of C++ core debug
                               categories that should print debug output
NODE_DISABLE_COLORS            set to 1 to disable colors in the REPL
NODE_EXTRA_CA_CERTS            path to additional CA certificates file.
                               Only read once during process startup.
NODE_NO_WARNINGS               set to 1 to silence process warnings
NODE_PATH                      ':'-separated list of directories prefixed
                               to the module search path
NODE_PENDING_DEPRECATION       set to 1 to emit pending deprecation
                               warnings
NODE_PENDING_PIPE_INSTANCES    set the number of pending pipe instance
                               handles on Windows
NODE_PRESERVE_SYMLINKS         set to 1 to preserve symbolic links when
                               resolving and caching modules
NODE_REDIRECT_WARNINGS         write warnings to path instead of stderr
NODE_REPL_EXTERNAL_MODULE      path to a Node.js module which will be
                               loaded in place of the built-in REPL
NODE_REPL_HISTORY              path to the persistent REPL history file
NODE_SKIP_PLATFORM_CHECK       set to 1 to skip the check for a supported
                               platform during Node.js startup
NODE_TLS_REJECT_UNAUTHORIZED   set to 0 to disable TLS certificate
                               validation
NODE_V8_COVERAGE               directory to output v8 coverage JSON to
TZ                             specify the timezone configuration
UV_THREADPOOL_SIZE             sets the number of threads used in libuv's
                               threadpool

Documentation can be found at https://nodejs.org/

NixOS / nixpkgs

create-elm-app: error when trying to start development server #209668