lukechilds
/
node
mirror of https://github.com/lukechilds/node.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

tls: introduce `secureContext` for `tls.connect` 

Add `secureContext` option to `tls.connect`. It is useful for caching
client certificates, key, and CA certificates.

PR-URL: https://github.com/nodejs/node/pull/4246
Reviewed-By: James M Snell <jasnell@gmail.com>
process-exit-stdio-flushing
Fedor Indutny 9 years ago
parent
425a3545d2
commit
c5b4f6bc99
3 changed files with 43 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 4
      doc/api/tls.markdown
  2. 2
      lib/_tls_wrap.js
  3. 38
      test/parallel/test-tls-connect-secure-context.js

4
doc/api/tls.markdown
View File

@ -597,6 +597,10 @@ Creates a new client connection to the given `port` and `host` (old API) or
SSL version 3. The possible values depend on your installation of SSL version 3. The possible values depend on your installation of
OpenSSL and are defined in the constant [SSL_METHODS][]. OpenSSL and are defined in the constant [SSL_METHODS][].
- `secureContext`: An optional TLS context object from
`tls.createSecureContext( ... )`. Could it be used for caching client
certificates, key, and CA certificates.
- `session`: A `Buffer` instance, containing TLS session. - `session`: A `Buffer` instance, containing TLS session.
- `minDHSize`: Minimum size of DH parameter in bits to accept a TLS - `minDHSize`: Minimum size of DH parameter in bits to accept a TLS

2
lib/_tls_wrap.js
View File

@ -984,7 +984,7 @@ exports.connect = function(/* [port, host], options, cb */) {
'localhost', 'localhost',
NPN = {}, NPN = {},
ALPN = {}, ALPN = {},
context = tls.createSecureContext(options); context = options.secureContext || tls.createSecureContext(options);
tls.convertNPNProtocols(options.NPNProtocols, NPN); tls.convertNPNProtocols(options.NPNProtocols, NPN);
tls.convertALPNProtocols(options.ALPNProtocols, ALPN); tls.convertALPNProtocols(options.ALPNProtocols, ALPN);

38
test/parallel/test-tls-connect-secure-context.js
View File

@ -0,0 +1,38 @@
'use strict';
const common = require('../common');
const assert = require('assert');
if (!common.hasCrypto) {
console.log('1..0 # Skipped: missing crypto');
return;
}
const tls = require('tls');
const fs = require('fs');
const path = require('path');
const keysDir = path.join(common.fixturesDir, 'keys');
const ca = fs.readFileSync(path.join(keysDir, 'ca1-cert.pem'));
const cert = fs.readFileSync(path.join(keysDir, 'agent1-cert.pem'));
const key = fs.readFileSync(path.join(keysDir, 'agent1-key.pem'));
const server = tls.createServer({
cert: cert,
key: key
}, function(c) {
c.end();
}).listen(common.PORT, function() {
const secureContext = tls.createSecureContext({
ca: ca
});
const socket = tls.connect({
secureContext: secureContext,
servername: 'agent1',
port: common.PORT
}, common.mustCall(function() {
server.close();
socket.end();
}));
});
Write Preview
Loading…
Cancel
Save