crypto: fix scrypt keylen validation

Fixes: #38381

PR-URL: #38385
Reviewed-By: Nitzan Uziely <[email protected]>
Reviewed-By: James M Snell <[email protected]>
Reviewed-By: Luigi Pinca <[email protected]>
Reviewed-By: Juan José Arboleda <[email protected]>
Reviewed-By: Zijian Liu <[email protected]>
Reviewed-By: Darshan Sen <[email protected]>

Author: aduh95

lib/internal/crypto/scrypt.js

@@ -16,6 +16,7 @@ const {
 const {
   validateCallback,
   validateInteger,
+  validateInt32,
   validateUint32,
 } = require('internal/validators');
 
@@ -90,7 +91,7 @@ function check(password, salt, keylen, options) {
 
   password = getArrayBufferOrView(password, 'password');
   salt = getArrayBufferOrView(salt, 'salt');
-  validateUint32(keylen, 'keylen');
+  validateInt32(keylen, 'keylen', 0);
 
   let { N, r, p, maxmem } = defaults;
   if (options && options !== defaults) {

test/parallel/test-crypto-scrypt.js

@@ -143,6 +143,10 @@ const badargs = [
     args: ['', '', -42],
     expected: { code: 'ERR_OUT_OF_RANGE', message: /"keylen"/ },
   },
+  {
+    args: ['', '', 2147485780],
+    expected: { code: 'ERR_OUT_OF_RANGE', message: /"keylen"/ },
+  },
 ];
 
 for (const options of good) {