mirror of https://github.com/lukechilds/node.git
Browse Source
tls.connect(options) with no options.host should accept a certificate with CN: 'localhost'. Fix Error: Hostname/IP doesn't match certificate's altnames: "Host: undefined. is not cert's CN: localhost" 'localhost' is not added directly to defaults because that is not always desired (for example, when using options.socket) PR-URL: https://github.com/iojs/io.js/pull/1493 Fixes: https://github.com/iojs/io.js/issues/1489 Reviewed-By: Brendan Ashworth <brendan.ashworth@me.com> Reviewed-By: Roman Reiss <me@silverwind.io>v2.0.2
Guilherme Souza
10 years ago
committed by
Roman Reiss
Roman Reiss
2 changed files with 36 additions and 1 deletions
@ -0,0 +1,34 @@ |
|||
var common = require('../common'); |
|||
|
|||
if (!common.hasCrypto) { |
|||
console.log('1..0 # Skipped: missing crypto'); |
|||
process.exit(); |
|||
} |
|||
var tls = require('tls'); |
|||
|
|||
var assert = require('assert'); |
|||
var fs = require('fs'); |
|||
var path = require('path'); |
|||
|
|||
var cert = fs.readFileSync(path.join(common.fixturesDir, 'test_cert.pem')); |
|||
var key = fs.readFileSync(path.join(common.fixturesDir, 'test_key.pem')); |
|||
|
|||
// https://github.com/iojs/io.js/issues/1489
|
|||
// tls.connect(options) with no options.host should accept a cert with
|
|||
// CN:'localhost'
|
|||
tls.createServer({ |
|||
key: key, |
|||
cert: cert |
|||
}).listen(common.PORT); |
|||
|
|||
var socket = tls.connect({ |
|||
port: common.PORT, |
|||
ca: cert, |
|||
// No host set here. 'localhost' is the default,
|
|||
// but tls.checkServerIdentity() breaks before the fix with:
|
|||
// Error: Hostname/IP doesn't match certificate's altnames:
|
|||
// "Host: undefined. is not cert's CN: localhost"
|
|||
}, function() { |
|||
assert(socket.authorized); |
|||
process.exit(); |
|||
}); |
|||
Loading…
Reference in new issue