Tree: 6f8aa24d1e

V8-icu-patch-4.x

archived-io.js-v0.10

archived-io.js-v0.12

canary-base

cpu-docs

master

process-exit-stdio-flushing

v0.10

v0.10-staging

v0.10.0-release

v0.10.1-release

v0.10.10-release

v0.10.11-release

v0.10.12-release

v0.10.13-release

v0.10.14-release

v0.10.15-release

v0.10.16-release

v0.10.17-release

v0.10.18-release

v0.10.19-release

v0.10.2-release

v0.10.20-release

v0.10.21-release

v0.10.22-release

v0.10.23-release

v0.10.24-release

v0.10.25-release

v0.10.26-release

v0.10.27-release

v0.10.28-release

v0.10.29-release

v0.10.3-release

v0.10.30-release

v0.10.31-release

v0.10.32-release

v0.10.33-release

v0.10.34-release

v0.10.35-release

v0.10.36-release

v0.10.37-release

v0.10.38-release

v0.10.39-release

v0.10.4-release

v0.10.5-release

v0.10.6-release

v0.10.7-release

v0.10.8-release

v0.10.9-release

v0.11.0-release

v0.11.1-release

v0.11.10-release

v0.11.11-release

v0.11.12-release

v0.11.13-release

v0.11.14-release

v0.11.15-release

v0.11.16-release

v0.11.2-release

v0.11.3-release

v0.11.4-release

v0.11.5-release

v0.11.6-release

v0.11.7-release

v0.11.8-release

v0.11.9-release

v0.12

v0.12-staging

v0.12.0-release

v0.12.1-release

v0.12.2-release

v0.12.3-release

v0.12.4-release

v0.12.5-release

v0.12.6-release

v0.7.4-release

v0.8.10-release

v0.8.11-release

v0.8.12-release

v0.8.13-release

v0.8.14-release

v0.8.15-release

v0.8.16-release

v0.8.17-release

v0.8.18-release

v0.8.19-release

v0.8.20-release

v0.8.21-release

v0.8.22-release

v0.8.23-release

v0.8.24-release

v0.8.25-release

v0.8.26-release

v0.8.27-release

v0.8.28-release

v0.8.7-release

v0.8.8-release

v0.8.9-release

v0.9.1-release

v0.9.10-release

v0.9.11-release

v0.9.12-release

v0.9.2-release

v0.9.3-release

v0.9.4-release

v0.9.5-release

v0.9.6-release

v0.9.7-release

v0.9.8-release

v0.9.9-release

v1.8.0-commit

v1.x

v2.0.2

v2.3.1-release

v3.x

v4.0.0-rc

v4.8.5-proposal

v4.x

v4.x-staging

v5.x

v6

v6.12.0-proposal

v6.x

v6.x-staging

v7.x

v7.x-staging

v8.x

v8.x-staging

v9.0.0-proposal

v9.x

v9.x-staging

heads/tags/v0.5.6

jenkins-accept-commit-temp2

jenkins-accept-pull-request-temp2

jenkins-test-pull-request-temp

v0.0.1

v0.0.2

v0.0.3

v0.0.4

v0.0.5

v0.0.6

v0.1.0

v0.1.1

v0.1.10

v0.1.100

v0.1.101

v0.1.102

v0.1.103

v0.1.104

v0.1.11

v0.1.12

v0.1.13

v0.1.14

v0.1.15

v0.1.16

v0.1.17

v0.1.18

v0.1.19

v0.1.2

v0.1.20

v0.1.21

v0.1.22

v0.1.23

v0.1.24

v0.1.25

v0.1.26

v0.1.27

v0.1.28

v0.1.29

v0.1.3

v0.1.30

v0.1.31

v0.1.32

v0.1.33

v0.1.4

v0.1.5

v0.1.6

v0.1.7

v0.1.8

v0.1.9

v0.1.90

v0.1.91

v0.1.92

v0.1.93

v0.1.94

v0.1.95

v0.1.96

v0.1.97

v0.1.98

v0.1.99

v0.10.0

v0.10.1

v0.10.10

v0.10.11

v0.10.12

v0.10.13

v0.10.14

v0.10.15

v0.10.16

v0.10.17

v0.10.18

v0.10.19

v0.10.2

v0.10.20

v0.10.21

v0.10.22

v0.10.23

v0.10.24

v0.10.25

v0.10.26

v0.10.27

v0.10.28

v0.10.29

v0.10.3

v0.10.30

v0.10.31

v0.10.32

v0.10.33

v0.10.34

v0.10.35

v0.10.36

v0.10.37

v0.10.38

v0.10.39

v0.10.4

v0.10.40

v0.10.41

v0.10.41-rc.1

v0.10.42

v0.10.43

v0.10.44

v0.10.45

v0.10.46

v0.10.47

v0.10.48

v0.10.5

v0.10.6

v0.10.7

v0.10.8

v0.10.9

v0.11.0

v0.11.1

v0.11.10

v0.11.11

v0.11.12

v0.11.13

v0.11.14

v0.11.15

v0.11.16

v0.11.2

v0.11.3

v0.11.4

v0.11.5

v0.11.6

v0.11.7

v0.11.8

v0.11.9

v0.12.0

v0.12.1

v0.12.10

v0.12.11

v0.12.12

v0.12.13

v0.12.14

v0.12.15

v0.12.16

v0.12.17

v0.12.18

v0.12.2

v0.12.3

v0.12.4

v0.12.5

v0.12.6

v0.12.7

v0.12.8

v0.12.8-rc.1

v0.12.9

v0.2.0

v0.2.1

v0.2.2

v0.2.3

v0.2.4

v0.2.5

v0.2.6

v0.3.0

v0.3.1

v0.3.2

v0.3.3

v0.3.4

v0.3.5

v0.3.6

v0.3.7

v0.3.8

v0.4.0

v0.4.1

v0.4.10

v0.4.11

v0.4.12

v0.4.2

v0.4.3

v0.4.4

v0.4.5

v0.4.6

v0.4.7

v0.4.8

v0.4.9

v0.5.0

v0.5.1

v0.5.10

v0.5.2

v0.5.3

v0.5.4

v0.5.5

v0.5.5-rc1

v0.5.6

v0.5.7

v0.5.8

v0.5.9

v0.6.0

v0.6.1

v0.6.10

v0.6.11

v0.6.12

v0.6.13

v0.6.14

v0.6.15

v0.6.16

v0.6.17

v0.6.18

v0.6.19

v0.6.2

v0.6.20

v0.6.21

v0.6.3

v0.6.4

v0.6.5

v0.6.6

v0.6.7

v0.6.8

v0.6.9

v0.7.0

v0.7.1

v0.7.10

v0.7.10-fixed

v0.7.11

v0.7.12

v0.7.2

v0.7.3

v0.7.4

v0.7.5

v0.7.6

v0.7.7

v0.7.8

v0.7.9

v0.8.0

v0.8.1

v0.8.10

v0.8.11

v0.8.12

v0.8.13

v0.8.14

v0.8.15

v0.8.16

v0.8.17

v0.8.18

v0.8.19

v0.8.2

v0.8.20

v0.8.21

v0.8.22

v0.8.23

v0.8.24

v0.8.25

v0.8.26

v0.8.27

v0.8.28

v0.8.3

v0.8.4

v0.8.5

v0.8.6

v0.8.7

v0.8.8

v0.8.9

v0.9.0

v0.9.1

v0.9.10

v0.9.11

v0.9.12

v0.9.2

v0.9.3

v0.9.4

v0.9.5

v0.9.6

v0.9.7

v0.9.8

v0.9.9

v1.0.0

v1.0.0-release

v1.0.1

v1.0.1-release

v1.0.2

v1.0.2-release

v1.0.3

v1.0.4

v1.1.0

v1.2.0

v1.3.0

v1.4.1

v1.4.2

v1.4.3

v1.5.0

v1.5.1

v1.6.0

v1.6.1

v1.6.2

v1.6.3

v1.6.4

v1.7.0

v1.7.1

v1.8.1

v1.8.2

v1.8.3

v1.8.4

v2.0.0

v2.0.1

v2.0.2

v2.1.0

v2.2.0

v2.2.1

v2.3.0

v2.3.1

v2.3.2

v2.3.3

v2.3.4

v2.4.0

v2.5.0

v3.0.0

v3.0.0-rc.3

v3.0.0-rc.4

v3.0.0-rc.5

v3.0.0-rc.6

v3.0.0-rc.7

v3.0.0-rc1

v3.0.0-rc2

v3.1.0

v3.2.0

v3.3.0

v3.3.1

v4.0.0

v4.0.0-rc.1

v4.0.0-rc.2

v4.0.0-rc.3

v4.0.0-rc.4

v4.0.0-rc.5

v4.1.0

v4.1.1

v4.1.2

v4.2.0

v4.2.1

v4.2.2

v4.2.2-rc.1

v4.2.2-rc.2

v4.2.3

v4.2.4

v4.2.4-rc.1

v4.2.5

v4.2.6

v4.3.0

v4.3.1

v4.3.1-rc.1

v4.3.1-rc.2

v4.3.2

v4.4.0

v4.4.0-rc.1

v4.4.0-rc.2

v4.4.0-rc.3

v4.4.0-rc.4

v4.4.1

v4.4.2

v4.4.3

v4.4.4

v4.4.5

v4.4.6

v4.4.7

v4.5.0

v4.6.0

v4.6.1

v4.6.2

v4.7.0

v4.7.1

v4.7.2

v4.7.3

v4.8.0

v4.8.1

v4.8.2

v4.8.3

v4.8.4

v5.0.0

v5.0.0-rc.1

v5.0.0-rc.2

v5.1.0

v5.1.1

v5.10.0

v5.10.1

v5.11.0

v5.11.1

v5.12.0

v5.2.0

v5.3.0

v5.4.0

v5.4.1

v5.5.0

v5.6.0

v5.7.0

v5.7.1

v5.8.0

v5.8.1-rc.1

v5.9.0

v5.9.1

v6.0.0

v6.1.0

v6.10.0

v6.10.1

v6.10.2

v6.10.3

v6.11.0

v6.11.1

v6.11.2

v6.11.3

v6.11.4

v6.2.0

v6.2.1

v6.2.2

v6.3.0

v6.3.1

v6.4.0

v6.5.0

v6.6.0

v6.7.0

v6.8.0

v6.8.1

v6.9.0

v6.9.1

v6.9.2

v6.9.3

v6.9.4

v6.9.5

v7.0.0

v7.1.0

v7.10.0

v7.10.1

v7.2.0

v7.2.1

v7.3.0

v7.4.0

v7.5.0

v7.6.0

v7.7.0

v7.7.1

v7.7.2

v7.7.3

v7.7.4

v7.8.0

v7.9.0

v8.0.0

v8.1.0

v8.1.1

v8.1.2

v8.1.3

v8.1.4

v8.2.0

v8.2.1

v8.3.0

v8.4.0

v8.5.0

v8.6.0

v8.7.0

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from '6f8aa24d1e'

${ noResults }

Commit Graph

194 Commits (6f8aa24d1ee0c8502ec4c3dae3820668ae7fc435)

Author	SHA1	Message	Date
Fedor Indutny	8e0c830cd0	tls: async session storage	12 years ago
Shigeki Ohtsu	f347077e78	tls: support unix domain socket/named pipe in tls.connect	12 years ago
Ben Noordhuis	8bec26122d	tls, https: throw exception on missing key/cert Throw an exception in the tls.Server constructor when the options object doesn't contain either a PFX or a key/certificate combo. Said change exposed a bug in simple/test-tls-junk-closes-server. Addressed. Fixes #3941.	12 years ago
isaacs	ee200942dd	lint	12 years ago
Ben Noordhuis	badbd1af27	tls: update default cipher list Update the default cipher list from RC4-SHA:AES128-SHA:AES256-SHA to ECDHE-RSA-AES128-SHA256:AES128-GCM-SHA256:RC4:HIGH:!MD5:!aNULL:!EDH in order to mitigate BEAST attacks. The documentation suggested AES256-SHA but unfortunately that's a CBC cipher and therefore susceptible to attacks. Fixes #3900.	12 years ago
Ben Noordhuis	c492d43f48	tls: fix segfault in pummel/test-tls-ci-reneg-attack Commit 4e5fe2d changed the way how process.nextTick() works: process.nextTick(function foo() { process.nextTick(function bar() { // ... }); }); Before said commit, foo() and bar() used to run on separate event loop ticks but that is no longer the case. However, that's exactly the behavior that the TLS renegotiation attack guard relies on. It gets called by OpenSSL and needs to defer the 'error' event to a later tick because the default action is to destroy the TLS context - the same context that OpenSSL currently operates on. When things change underneath your feet, bad things happen and OpenSSL is no exception. Ergo, use setImmediate() instead of process.nextTick() to ensure that the 'error' event is actually emitted at a later tick. Fixes #3840.	12 years ago
Ben Noordhuis	6b18e88b68	tls: handle multiple CN fields when verifying cert Fixes #3861.	12 years ago
Fedor Indutny	42c6952edb	tls: pass linting	12 years ago
Fedor Indutny	85185bbbaa	tls: pass linting	12 years ago
Fedor Indutny	92e7433ff9	tls: fix 'hostless' tls connection verification And fix last failing tests	12 years ago
Fedor Indutny	50122fed8a	tls: fix 'hostless' tls connection verification And fix last failing tests	12 years ago
Fedor Indutny	93d496a4ec	tls: revert accidental API change socket.authorizationError should always be string. Also make sni test pass.	12 years ago
Fedor Indutny	5950db197c	tls: revert accidental API change socket.authorizationError should always be string. Also make sni test pass.	12 years ago
Fedor Indutny	4aa09d1e0e	tls: localhost is valid against identity-check	12 years ago
Fedor Indutny	0cf235410d	tls: localhost is valid against identity-check	12 years ago
Fedor Indutny	eb2ca10462	tls: veryify server's identity	12 years ago
Fedor Indutny	8ba189b8d3	tls: veryify server's identity	12 years ago
isaacs	3ad07ed0b8	lint	12 years ago
Jonas Westerlund	4cfdc57712	Inline timeout function, avoiding declaration in conditional Moving it out would require an anonymous function, or bind(), anyway. Luckily It's a tiny function. Fixes crash in strict mode.	12 years ago
Fedor Indutny	f210530f46	tls: use slab allocator	12 years ago
Ben Noordhuis	ff552ddbaa	tls: fix off-by-one error in renegotiation check Make CLIENT_RENEG_LIMIT inclusive instead of exclusive, i.e. a limit of 2 means the peer can renegotiate twice, not just once. Update pummel/test-tls-ci-reneg-attack accordingly and make it less timing sensitive (and run faster) while we're at it.	13 years ago
Andreas Madsen	1e0ce5d1bd	domain: the EventEmitter constructor is now always called in nodecore	13 years ago
isaacs	9611354f08	lint	13 years ago
ssuda	fb7348ae06	crypto: add PKCS12/PFX support Fixes #2845.	13 years ago
fukayatsu	0f95a93a2c	tls: remove duplicate line	13 years ago
Yosef Dinerstein	d7c96cf289	tls: reduce memory overhead, reuse buffer Instead of allocating a new 64KB buffer each time when checking if there is something to transform, continue to use the same buffer. Once the buffer is exhausted, allocate a new buffer. This solves the problem of huge allocations when small fragments of data are processed, but will also continue to work well with big pieces of data.	13 years ago
Shigeki Ohtsu	e1199fa335	tls: fix CryptoStream.setKeepAlive()	13 years ago
ssuda	9b672bcaa2	tls: parsing multiple values of a key in ssl certificate Fixes #2864.	13 years ago
Dmitry Nizovtsev	1e9bcf26ce	net, http, https: add localAddress option Binds to a local address before making the outgoing connection.	13 years ago
isaacs	959a19e118	lint	13 years ago
Jimb Esser	78db18739a	tls: proxy set(Timeout|NoDelay|KeepAlive) methods - fix crash calling ClientRequest::setKeepAlive if the underlying request is HTTPS. - fix discarding of callback parameter when calling ClientRequest::setTimeout on HTTPS requests. - fix discarding of noDelay parameter when calling ClientRequest::setNoDelay on HTTPS requests.	13 years ago
Blake Miner	7343f8e776	tls: add `honorCipherOrder` option to tls.createServer() Documented how to mitigate BEAST attacks.	13 years ago
Maciej Małecki	da908364a8	tls http https: don't pollute user's `options` object	13 years ago
isaacs	0cdf85e28d	Lint all the JavaScripts.	13 years ago
Ben Noordhuis	3415427dbf	tls: mitigate session renegotiation attacks The TLS protocol allows (and sometimes requires) clients to renegotiate the session. However, renegotiation requires a disproportional amount of server-side resources, particularly CPU time, which makes it a potential vector for denial-of-service attacks. To mitigate this issue, we keep track of and limit the number of renegotiation requests over time, emitting an error if the threshold is exceeded.	13 years ago
koichik	b19b8836c3	tls: Allow establishing secure connection on the existing socket	13 years ago
Ben Noordhuis	e806ad39d0	net, tls, http: remove socket.ondrain Replace the ondrain hack with a regular 'drain' listener. Speeds up the bytes/1024 http benchmark by about 1.2%.	13 years ago
koichik	534df2f8d2	tls: fix double 'error' events on HTTPS Requests Fixes #2549.	13 years ago
koichik	c1a63a9e90	tls: Allow establishing secure connection on the existing socket This is necessary to use SSL over HTTP tunnels. Refs #2259, #2474. Fixes #2489.	13 years ago
Maciej Małecki	4b4d059791	tls: make `tls.connect` accept port and host in `options` Previous API used form: tls.connect(443, "google.com", options, ...) now it's replaced with: tls.connect({port: 443, host: "google.com", ...}, ...) It simplifies argument parsing in `tls.connect` and makes the API consistent with other parts. Fixes #1983.	13 years ago
koichik	b962ff35dd	tls: fix test-https-client-reject fails Fixes #2417.	13 years ago
koichik	07c27e040e	tls: Fix node swallows openssl error on request Fixes #2308. Fixes #2246.	13 years ago
Ben Noordhuis	7a7f1062bf	tls: remove duplicate assignment	13 years ago
koichik	f8c335d0ca	tls: enable rejectUnauthorized option to client Fiexes #2247.	13 years ago
koichik	5451ba3aa8	tls: fix https with fs.openReadStream hangs Fixes #2185. Fixes #2198.	13 years ago
Ben Noordhuis	5e3b0095de	tls: make cipher list configurable options.ciphers existed but didn't work, the cipher list was effectively hard-coded to RC4-SHA:AES128-SHA:AES256-SHA. Fixes #2066.	13 years ago
koichik	f53d092a2a	tls, https: add passphrase option Fixes #1925.	13 years ago
koichik	cbcaeedba9	tls: add address(), remoteAddress/remotePort Fixes #758. Fixes #1055.	13 years ago
koichik	0e8a55d2a2	tls: does not emit 'end' from EncryptedStream de09168 and 4cdf9d4 breaks `test/pummel/test-https-large-response.js`. It is never finished. Fixes #1936.	13 years ago
Ryan Dahl	de09168e5a	Emit 'end' from crypto streams on close Fixes test/simple/test-tls-peer-certificate.js on Windows Patch from bnoordhuis. See also 75a0cf970f	13 years ago