Tree: 1c35ee8695

V8-icu-patch-4.x

archived-io.js-v0.10

archived-io.js-v0.12

canary-base

cpu-docs

master

process-exit-stdio-flushing

v0.10

v0.10-staging

v0.10.0-release

v0.10.1-release

v0.10.10-release

v0.10.11-release

v0.10.12-release

v0.10.13-release

v0.10.14-release

v0.10.15-release

v0.10.16-release

v0.10.17-release

v0.10.18-release

v0.10.19-release

v0.10.2-release

v0.10.20-release

v0.10.21-release

v0.10.22-release

v0.10.23-release

v0.10.24-release

v0.10.25-release

v0.10.26-release

v0.10.27-release

v0.10.28-release

v0.10.29-release

v0.10.3-release

v0.10.30-release

v0.10.31-release

v0.10.32-release

v0.10.33-release

v0.10.34-release

v0.10.35-release

v0.10.36-release

v0.10.37-release

v0.10.38-release

v0.10.39-release

v0.10.4-release

v0.10.5-release

v0.10.6-release

v0.10.7-release

v0.10.8-release

v0.10.9-release

v0.11.0-release

v0.11.1-release

v0.11.10-release

v0.11.11-release

v0.11.12-release

v0.11.13-release

v0.11.14-release

v0.11.15-release

v0.11.16-release

v0.11.2-release

v0.11.3-release

v0.11.4-release

v0.11.5-release

v0.11.6-release

v0.11.7-release

v0.11.8-release

v0.11.9-release

v0.12

v0.12-staging

v0.12.0-release

v0.12.1-release

v0.12.2-release

v0.12.3-release

v0.12.4-release

v0.12.5-release

v0.12.6-release

v0.7.4-release

v0.8.10-release

v0.8.11-release

v0.8.12-release

v0.8.13-release

v0.8.14-release

v0.8.15-release

v0.8.16-release

v0.8.17-release

v0.8.18-release

v0.8.19-release

v0.8.20-release

v0.8.21-release

v0.8.22-release

v0.8.23-release

v0.8.24-release

v0.8.25-release

v0.8.26-release

v0.8.27-release

v0.8.28-release

v0.8.7-release

v0.8.8-release

v0.8.9-release

v0.9.1-release

v0.9.10-release

v0.9.11-release

v0.9.12-release

v0.9.2-release

v0.9.3-release

v0.9.4-release

v0.9.5-release

v0.9.6-release

v0.9.7-release

v0.9.8-release

v0.9.9-release

v1.8.0-commit

v1.x

v2.0.2

v2.3.1-release

v3.x

v4.0.0-rc

v4.8.5-proposal

v4.x

v4.x-staging

v5.x

v6

v6.12.0-proposal

v6.x

v6.x-staging

v7.x

v7.x-staging

v8.x

v8.x-staging

v9.0.0-proposal

v9.x

v9.x-staging

heads/tags/v0.5.6

jenkins-accept-commit-temp2

jenkins-accept-pull-request-temp2

jenkins-test-pull-request-temp

v0.0.1

v0.0.2

v0.0.3

v0.0.4

v0.0.5

v0.0.6

v0.1.0

v0.1.1

v0.1.10

v0.1.100

v0.1.101

v0.1.102

v0.1.103

v0.1.104

v0.1.11

v0.1.12

v0.1.13

v0.1.14

v0.1.15

v0.1.16

v0.1.17

v0.1.18

v0.1.19

v0.1.2

v0.1.20

v0.1.21

v0.1.22

v0.1.23

v0.1.24

v0.1.25

v0.1.26

v0.1.27

v0.1.28

v0.1.29

v0.1.3

v0.1.30

v0.1.31

v0.1.32

v0.1.33

v0.1.4

v0.1.5

v0.1.6

v0.1.7

v0.1.8

v0.1.9

v0.1.90

v0.1.91

v0.1.92

v0.1.93

v0.1.94

v0.1.95

v0.1.96

v0.1.97

v0.1.98

v0.1.99

v0.10.0

v0.10.1

v0.10.10

v0.10.11

v0.10.12

v0.10.13

v0.10.14

v0.10.15

v0.10.16

v0.10.17

v0.10.18

v0.10.19

v0.10.2

v0.10.20

v0.10.21

v0.10.22

v0.10.23

v0.10.24

v0.10.25

v0.10.26

v0.10.27

v0.10.28

v0.10.29

v0.10.3

v0.10.30

v0.10.31

v0.10.32

v0.10.33

v0.10.34

v0.10.35

v0.10.36

v0.10.37

v0.10.38

v0.10.39

v0.10.4

v0.10.40

v0.10.41

v0.10.41-rc.1

v0.10.42

v0.10.43

v0.10.44

v0.10.45

v0.10.46

v0.10.47

v0.10.48

v0.10.5

v0.10.6

v0.10.7

v0.10.8

v0.10.9

v0.11.0

v0.11.1

v0.11.10

v0.11.11

v0.11.12

v0.11.13

v0.11.14

v0.11.15

v0.11.16

v0.11.2

v0.11.3

v0.11.4

v0.11.5

v0.11.6

v0.11.7

v0.11.8

v0.11.9

v0.12.0

v0.12.1

v0.12.10

v0.12.11

v0.12.12

v0.12.13

v0.12.14

v0.12.15

v0.12.16

v0.12.17

v0.12.18

v0.12.2

v0.12.3

v0.12.4

v0.12.5

v0.12.6

v0.12.7

v0.12.8

v0.12.8-rc.1

v0.12.9

v0.2.0

v0.2.1

v0.2.2

v0.2.3

v0.2.4

v0.2.5

v0.2.6

v0.3.0

v0.3.1

v0.3.2

v0.3.3

v0.3.4

v0.3.5

v0.3.6

v0.3.7

v0.3.8

v0.4.0

v0.4.1

v0.4.10

v0.4.11

v0.4.12

v0.4.2

v0.4.3

v0.4.4

v0.4.5

v0.4.6

v0.4.7

v0.4.8

v0.4.9

v0.5.0

v0.5.1

v0.5.10

v0.5.2

v0.5.3

v0.5.4

v0.5.5

v0.5.5-rc1

v0.5.6

v0.5.7

v0.5.8

v0.5.9

v0.6.0

v0.6.1

v0.6.10

v0.6.11

v0.6.12

v0.6.13

v0.6.14

v0.6.15

v0.6.16

v0.6.17

v0.6.18

v0.6.19

v0.6.2

v0.6.20

v0.6.21

v0.6.3

v0.6.4

v0.6.5

v0.6.6

v0.6.7

v0.6.8

v0.6.9

v0.7.0

v0.7.1

v0.7.10

v0.7.10-fixed

v0.7.11

v0.7.12

v0.7.2

v0.7.3

v0.7.4

v0.7.5

v0.7.6

v0.7.7

v0.7.8

v0.7.9

v0.8.0

v0.8.1

v0.8.10

v0.8.11

v0.8.12

v0.8.13

v0.8.14

v0.8.15

v0.8.16

v0.8.17

v0.8.18

v0.8.19

v0.8.2

v0.8.20

v0.8.21

v0.8.22

v0.8.23

v0.8.24

v0.8.25

v0.8.26

v0.8.27

v0.8.28

v0.8.3

v0.8.4

v0.8.5

v0.8.6

v0.8.7

v0.8.8

v0.8.9

v0.9.0

v0.9.1

v0.9.10

v0.9.11

v0.9.12

v0.9.2

v0.9.3

v0.9.4

v0.9.5

v0.9.6

v0.9.7

v0.9.8

v0.9.9

v1.0.0

v1.0.0-release

v1.0.1

v1.0.1-release

v1.0.2

v1.0.2-release

v1.0.3

v1.0.4

v1.1.0

v1.2.0

v1.3.0

v1.4.1

v1.4.2

v1.4.3

v1.5.0

v1.5.1

v1.6.0

v1.6.1

v1.6.2

v1.6.3

v1.6.4

v1.7.0

v1.7.1

v1.8.1

v1.8.2

v1.8.3

v1.8.4

v2.0.0

v2.0.1

v2.0.2

v2.1.0

v2.2.0

v2.2.1

v2.3.0

v2.3.1

v2.3.2

v2.3.3

v2.3.4

v2.4.0

v2.5.0

v3.0.0

v3.0.0-rc.3

v3.0.0-rc.4

v3.0.0-rc.5

v3.0.0-rc.6

v3.0.0-rc.7

v3.0.0-rc1

v3.0.0-rc2

v3.1.0

v3.2.0

v3.3.0

v3.3.1

v4.0.0

v4.0.0-rc.1

v4.0.0-rc.2

v4.0.0-rc.3

v4.0.0-rc.4

v4.0.0-rc.5

v4.1.0

v4.1.1

v4.1.2

v4.2.0

v4.2.1

v4.2.2

v4.2.2-rc.1

v4.2.2-rc.2

v4.2.3

v4.2.4

v4.2.4-rc.1

v4.2.5

v4.2.6

v4.3.0

v4.3.1

v4.3.1-rc.1

v4.3.1-rc.2

v4.3.2

v4.4.0

v4.4.0-rc.1

v4.4.0-rc.2

v4.4.0-rc.3

v4.4.0-rc.4

v4.4.1

v4.4.2

v4.4.3

v4.4.4

v4.4.5

v4.4.6

v4.4.7

v4.5.0

v4.6.0

v4.6.1

v4.6.2

v4.7.0

v4.7.1

v4.7.2

v4.7.3

v4.8.0

v4.8.1

v4.8.2

v4.8.3

v4.8.4

v5.0.0

v5.0.0-rc.1

v5.0.0-rc.2

v5.1.0

v5.1.1

v5.10.0

v5.10.1

v5.11.0

v5.11.1

v5.12.0

v5.2.0

v5.3.0

v5.4.0

v5.4.1

v5.5.0

v5.6.0

v5.7.0

v5.7.1

v5.8.0

v5.8.1-rc.1

v5.9.0

v5.9.1

v6.0.0

v6.1.0

v6.10.0

v6.10.1

v6.10.2

v6.10.3

v6.11.0

v6.11.1

v6.11.2

v6.11.3

v6.11.4

v6.2.0

v6.2.1

v6.2.2

v6.3.0

v6.3.1

v6.4.0

v6.5.0

v6.6.0

v6.7.0

v6.8.0

v6.8.1

v6.9.0

v6.9.1

v6.9.2

v6.9.3

v6.9.4

v6.9.5

v7.0.0

v7.1.0

v7.10.0

v7.10.1

v7.2.0

v7.2.1

v7.3.0

v7.4.0

v7.5.0

v7.6.0

v7.7.0

v7.7.1

v7.7.2

v7.7.3

v7.7.4

v7.8.0

v7.9.0

v8.0.0

v8.1.0

v8.1.1

v8.1.2

v8.1.3

v8.1.4

v8.2.0

v8.2.1

v8.3.0

v8.4.0

v8.5.0

v8.6.0

v8.7.0

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from '1c35ee8695'

${ noResults }

Commit Graph

140 Commits (1c35ee8695aee8537ac929d9eed386b23ac65354)

Author	SHA1	Message	Date
Fedor Indutny	31583be042	tls: follow RFC6125 more stricly * Allow wildcards only in left-most part of hostname identifier. * Do not match CN if altnames are present	12 years ago
Fedor Indutny	e70d1bfe64	Revert "Revert "tls: allow wildcards in common name"" This reverts commit 30e237041d. Works properly with b4b750b	12 years ago
Ben Noordhuis	30e237041d	Revert "tls: allow wildcards in common name" This reverts commit 45024e7b75. It's making test/simple/test-tls-check-server-identity.js fail: AssertionError: Test#4 failed: { host: 'b.a.com', cert: { subject: { CN: '*.a.com' } }, result: false } at <omitted>/test/simple/test-tls-check-server-identity.js:201:10	12 years ago
Fedor Indutny	45024e7b75	tls: allow wildcards in common name see #4592	12 years ago
Ben Noordhuis	121ed91331	tls: fix tls.connect() resource leak The 'secureConnect' event listener was attached with .on(), which blocked it from getting garbage collected. Use .once() instead. Fixes #4308.	12 years ago
isaacs	411d46087f	tls: lint cc @indutny >_<	12 years ago
Fedor Indutny	7651228ab2	tls: use slab allocator	13 years ago
Shigeki Ohtsu	f347077e78	tls: support unix domain socket/named pipe in tls.connect	13 years ago
isaacs	ee200942dd	lint	13 years ago
Ben Noordhuis	badbd1af27	tls: update default cipher list Update the default cipher list from RC4-SHA:AES128-SHA:AES256-SHA to ECDHE-RSA-AES128-SHA256:AES128-GCM-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH in order to mitigate BEAST attacks. The documentation suggested AES256-SHA but unfortunately that's a CBC cipher and therefore susceptible to attacks. Fixes #3900.	13 years ago
Ben Noordhuis	6b18e88b68	tls: handle multiple CN fields when verifying cert Fixes #3861.	13 years ago
Fedor Indutny	42c6952edb	tls: pass linting	13 years ago
Fedor Indutny	50122fed8a	tls: fix 'hostless' tls connection verification And fix last failing tests	13 years ago
Fedor Indutny	5950db197c	tls: revert accidental API change socket.authorizationError should always be string. Also make sni test pass.	13 years ago
Fedor Indutny	4aa09d1e0e	tls: localhost is valid against identity-check	13 years ago
Fedor Indutny	eb2ca10462	tls: veryify server's identity	13 years ago
Jonas Westerlund	4cfdc57712	Inline timeout function, avoiding declaration in conditional Moving it out would require an anonymous function, or bind(), anyway. Luckily It's a tiny function. Fixes crash in strict mode.	13 years ago
Ben Noordhuis	ff552ddbaa	tls: fix off-by-one error in renegotiation check Make CLIENT_RENEG_LIMIT inclusive instead of exclusive, i.e. a limit of 2 means the peer can renegotiate twice, not just once. Update pummel/test-tls-ci-reneg-attack accordingly and make it less timing sensitive (and run faster) while we're at it.	13 years ago
Andreas Madsen	1e0ce5d1bd	domain: the EventEmitter constructor is now always called in nodecore	13 years ago
isaacs	9611354f08	lint	13 years ago
ssuda	fb7348ae06	crypto: add PKCS12/PFX support Fixes #2845.	13 years ago
fukayatsu	0f95a93a2c	tls: remove duplicate line	13 years ago
Yosef Dinerstein	d7c96cf289	tls: reduce memory overhead, reuse buffer Instead of allocating a new 64KB buffer each time when checking if there is something to transform, continue to use the same buffer. Once the buffer is exhausted, allocate a new buffer. This solves the problem of huge allocations when small fragments of data are processed, but will also continue to work well with big pieces of data.	13 years ago
Shigeki Ohtsu	e1199fa335	tls: fix CryptoStream.setKeepAlive()	13 years ago
ssuda	9b672bcaa2	tls: parsing multiple values of a key in ssl certificate Fixes #2864.	13 years ago
Dmitry Nizovtsev	1e9bcf26ce	net, http, https: add localAddress option Binds to a local address before making the outgoing connection.	13 years ago
isaacs	959a19e118	lint	13 years ago
Jimb Esser	78db18739a	tls: proxy set(Timeout|NoDelay|KeepAlive) methods - fix crash calling ClientRequest::setKeepAlive if the underlying request is HTTPS. - fix discarding of callback parameter when calling ClientRequest::setTimeout on HTTPS requests. - fix discarding of noDelay parameter when calling ClientRequest::setNoDelay on HTTPS requests.	13 years ago
Blake Miner	7343f8e776	tls: add `honorCipherOrder` option to tls.createServer() Documented how to mitigate BEAST attacks.	13 years ago
Maciej Małecki	da908364a8	tls http https: don't pollute user's `options` object	13 years ago
isaacs	0cdf85e28d	Lint all the JavaScripts.	13 years ago
Ben Noordhuis	3415427dbf	tls: mitigate session renegotiation attacks The TLS protocol allows (and sometimes requires) clients to renegotiate the session. However, renegotiation requires a disproportional amount of server-side resources, particularly CPU time, which makes it a potential vector for denial-of-service attacks. To mitigate this issue, we keep track of and limit the number of renegotiation requests over time, emitting an error if the threshold is exceeded.	13 years ago
koichik	b19b8836c3	tls: Allow establishing secure connection on the existing socket	13 years ago
Ben Noordhuis	e806ad39d0	net, tls, http: remove socket.ondrain Replace the ondrain hack with a regular 'drain' listener. Speeds up the bytes/1024 http benchmark by about 1.2%.	13 years ago
koichik	534df2f8d2	tls: fix double 'error' events on HTTPS Requests Fixes #2549.	13 years ago
koichik	c1a63a9e90	tls: Allow establishing secure connection on the existing socket This is necessary to use SSL over HTTP tunnels. Refs #2259, #2474. Fixes #2489.	13 years ago
Maciej Małecki	4b4d059791	tls: make `tls.connect` accept port and host in `options` Previous API used form: tls.connect(443, "google.com", options, ...) now it's replaced with: tls.connect({port: 443, host: "google.com", ...}, ...) It simplifies argument parsing in `tls.connect` and makes the API consistent with other parts. Fixes #1983.	13 years ago
koichik	b962ff35dd	tls: fix test-https-client-reject fails Fixes #2417.	13 years ago
koichik	07c27e040e	tls: Fix node swallows openssl error on request Fixes #2308. Fixes #2246.	13 years ago
Ben Noordhuis	7a7f1062bf	tls: remove duplicate assignment	13 years ago
koichik	f8c335d0ca	tls: enable rejectUnauthorized option to client Fiexes #2247.	13 years ago
koichik	5451ba3aa8	tls: fix https with fs.openReadStream hangs Fixes #2185. Fixes #2198.	13 years ago
Ben Noordhuis	5e3b0095de	tls: make cipher list configurable options.ciphers existed but didn't work, the cipher list was effectively hard-coded to RC4-SHA:AES128-SHA:AES256-SHA. Fixes #2066.	13 years ago
koichik	f53d092a2a	tls, https: add passphrase option Fixes #1925.	13 years ago
koichik	cbcaeedba9	tls: add address(), remoteAddress/remotePort Fixes #758. Fixes #1055.	13 years ago
koichik	0e8a55d2a2	tls: does not emit 'end' from EncryptedStream de09168 and 4cdf9d4 breaks `test/pummel/test-https-large-response.js`. It is never finished. Fixes #1936.	13 years ago
Ryan Dahl	de09168e5a	Emit 'end' from crypto streams on close Fixes test/simple/test-tls-peer-certificate.js on Windows Patch from bnoordhuis. See also 75a0cf970f	13 years ago
koichik	68cc173c6d	tls: The TLS API is inconsistent with the TCP API Add 'secureConnect' event to tls.CleartextStream. Fixes #1467.	13 years ago
koichik	19a855382c	tls: requestCert unusable with Firefox and Chrome Fixes #1516.	13 years ago
koichik	4cdf9d4158	tls: Improve TLS flow control Fixes #1775.	13 years ago