daohualiuxiang
/
node
mirror of https://github.com/nodejs/node.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
8,123 Commits
53 Branches
866 Tags
2 GiB
Commit Graph

171 Commits (cd2b9f542c34ce59d2df7820a6237f7911c702f3)

Author SHA1 Message Date
Ryan Dahl 55bff5bab9 TLS: simplify logic 2011-05-06 17:06:36 -07:00
Ryan Dahl 75a0cf970f cleartextstream.destroy() should destroy socket. 
This fixes a critical bug see in MJR's production. Very difficult to build a
test case. Sometimes HTTPS server gets sockets that are hanging in a
half-duplex state.
 2011-05-02 15:03:50 -07:00
Fedor Indutny c9b40da368 OpenSSL NPN in node.js 
closes #926.
 2011-04-19 11:32:26 -07:00
Ryan Dahl 9e6498d5fa Merge branch 'v0.4' 
Conflicts:
	src/node_version.h
 2011-04-18 18:58:16 -07:00
Ryan Dahl bb621f7c2e CryptoStream.write returns false when queue > 128kb 
Previously the return value of write was dependent on if it was paused or
not which was causing a strange error demoed in the previous commit.

Fixes #892
 2011-04-13 20:32:46 -07:00
Ryan Dahl 050bbf0bc4 TLS use RC4-SHA by default 2011-04-13 18:43:08 -07:00
Theo Schlossnagle d6f5b8a2a6 allow setting of ciphers in credentials 
fixes #873
 2011-04-13 18:35:39 -07:00
Theo Schlossnagle 2a88dd3bc1 TLS: Add secureOptions flag 
Also, secureOptions flag was added (and passed through) and allows
the context to have all supported SSL_OP_* set via createCredentials.
All SSL_OP_ flags (outside of ALL) have been added to constants.
 2011-04-13 18:25:33 -07:00
Theo Schlossnagle d0e84b0088 Pass secureProtocol through on tls.Server creation 
The secureProtocol option to building the SSL context was not being properly
passed through in the credentials in the tls code. This is fixed.
 2011-04-13 17:49:50 -07:00
Ryan Dahl c0b461d9a1 Increase TLS pool size for perf increase 2011-03-28 17:37:14 -07:00
Ryan Dahl 7e28630f5e Fix GH-820. CryptoStream.end shouldn't throw if not writable 
This matches the behavior of net.Socket
 2011-03-21 14:36:49 -07:00
Ryan Dahl 55048cdf79 Update copyright headers 2011-03-14 17:37:05 -07:00
Theo Schlossnagle e3925b741c TLS: Finer locks on _cycle. 
Data being sent out of order.
 2011-03-14 12:05:25 -07:00
Ryan Dahl 62f06fb885 CryptoStream.prototype.destroySoon shouldn't die if not writable 2011-03-09 10:53:06 -08:00
Ryan Dahl a2f498a5ef Revert "Add extra debug print statement to tls.js" 
This reverts commit 340291c085.

sometimes circular. would break node_g tests.
 2011-02-24 15:59:40 -08:00
Ryan Dahl 340291c085 Add extra debug print statement to tls.js 2011-02-23 16:38:30 -08:00
Ryan Dahl ab144f4843 Add TODO item 2011-02-23 04:43:13 -08:00
Ryan Dahl c2a62951f6 TLS sockets should not be writable after 'end' 
Closes GH-694.
 2011-02-19 18:25:15 -08:00
Ryan Dahl 19b4c27ebf TLS: Make _cycle reentrant. 2011-02-16 18:10:53 -08:00
Ryan Dahl c365f56061 https was missing 'end' event sometimes 
Closes GH-671.
 2011-02-15 17:13:53 -08:00
Theo Schlossnagle 01a864a29d TLS: CRL support 
Needs more tests.
 2011-02-10 00:49:15 -08:00
Ryan Dahl dafd6d9137 TLS: Don't give up if you can't write 0 bytes 2011-02-09 13:27:23 -08:00
Ryan Dahl a48a075535 better debug messages in net and tls 2011-02-09 10:23:26 -08:00
Ryan Dahl 9de5043b50 tls: only emit data after 'secure' event 2011-02-08 17:29:33 -08:00
Ryan Dahl 448e0f4394 tls fixes 2011-02-07 21:11:43 -08:00
Ryan Dahl f6e5b8986f Clean up 2011-02-03 12:28:20 -08:00
Ryan Dahl 97f7c06451 TLS: fix throttling 
Re-enable test-https-large-response.js

Closes GH-614.
 2011-02-03 12:20:19 -08:00
Ryan Dahl 3e58696c07 TLS: Simplify error handling 2011-02-02 15:39:03 -08:00
Ryan Dahl 41b4ec7952 TLS: flush buffer before destroy 
Also disable test-https-large-response.js. Covered by
test/simple/test-tls-throttle.js
 2011-02-02 15:34:21 -08:00
Ryan Dahl e6f14d6df5 (suck, blow) -> (pull, push) 2011-02-02 14:51:53 -08:00
Ryan Dahl 2ff593ad23 TLS: better error reporting at binding layer 
Closes GH-612.
 2011-02-01 14:14:50 -08:00
Ryan Dahl 3e5b568504 TLS: Add _pendingBytes() 2011-01-31 17:29:11 -08:00
Ryan Dahl 45b30a879b tls: superficial clean up 2011-01-31 16:37:29 -08:00
Ryan Dahl df5d5d6342 Fix option parsing in tls.connect() 2011-01-27 19:25:08 -08:00
Ryan Dahl bfb6a67d60 Another fix for process.assert 2011-01-27 16:59:28 -08:00
Ryan Dahl 9e976abad9 lint 2011-01-24 10:55:30 -08:00
Alexis Sellier 66b418d6f3 make 'readyState' available to CryptoStream 2011-01-18 22:22:50 -08:00
Ryan Dahl 2f6cb66009 Add setEncoding to CryptoStream 2011-01-18 18:30:12 -08:00
Ryan Dahl 4d0416caf6 Add setNoDelay to cryptostream 2011-01-18 17:56:52 -08:00
Ryan Dahl 2e76cd382f TLS: Forward errors to cleartext 
But only after control has been inverted.
 2011-01-07 10:58:13 -08:00
Ryan Dahl 5a05992155 Lint 2011-01-06 16:06:27 -08:00
Ryan Dahl 2957382991 Implement new stream method, destroySoon 
Still missing on fs.WriteStream
 2011-01-04 11:22:19 -08:00
Ryan Dahl 94f8368cf9 First pass at new https server 2011-01-03 15:51:05 -08:00
Ryan Dahl e4dd5cd6fd NODE_DEBUG uses strings instead of bitflags 2011-01-03 15:41:58 -08:00
Ryan Dahl 8db0bbe0dc Add callback to CryptoStream.write 2010-12-20 11:08:51 -08:00
Ryan Dahl 41d73e02a2 cleartext.socket always exists 2010-12-18 16:38:32 -08:00
Ryan Dahl bb27885251 TLS: check we're not disconnected before Cleartext blow 2010-12-18 15:34:10 -08:00
Ryan Dahl 3cf2cbf904 Parse issuer and subject from CryptoStream.getPeerCertificate 2010-12-18 11:26:54 -08:00
Ryan Dahl a59483bd1d TLS: server should die on junk 2010-12-11 02:45:38 -08:00
Ryan Dahl e3d1808ef0 Rename node::SecureStream to node::crypto::Connection 
node::SecureStream is definitely not a "stream" in the Node sense. Renaming
it to avoid ambiguity. (Adding namespace to not confuse with some other
Connection object.)
 2010-12-11 02:13:29 -08:00
Ryan Dahl 6636bfaa0a TLS: Simplify code from suck and blow 2010-12-11 01:42:55 -08:00
Ryan Dahl 66767edf12 Add CryptoStream.destroy() 2010-12-11 01:21:25 -08:00
Ryan Dahl 953561ab06 Factor out CryptoStream.end; support data on end() 2010-12-11 01:18:45 -08:00
Ryan Dahl dc65cbd2e9 Factor out some _cycle functionality into Cleartext and EncrypteStreams 2010-12-10 22:29:46 -08:00
Ryan Dahl 70baeba8a9 Add receivedShutdown() binding 2010-12-10 22:09:46 -08:00
Ryan Dahl d4f1ab00d2 Add EncryptedStream and CleartextStream classes 
Towards half-closed secure sockets.
 2010-12-10 18:25:23 -08:00
Ryan Dahl c444293be9 Start a simple TLS client verification test 2010-12-10 18:02:58 -08:00
Ryan Dahl 5138992f3c Add some verification code to tls.connect() 2010-12-09 02:46:57 -08:00
Ryan Dahl a473b8dafb Move getPeerCertificate and getCipher to CryptoStream 2010-12-09 02:31:22 -08:00
Ryan Dahl 2ca63c8f79 Initial implementation of tls.connect() 
Seems to work checkout test/disabled/tls-client.js
Type "GET /" after connected.
 2010-12-09 00:38:12 -08:00
Ryan Dahl 137c361517 pair.cleartext, pair.encrypted now instances of tls.CryptoStream 2010-12-09 00:10:27 -08:00
Ryan Dahl 0ea0b921b7 TLS: emit 'secureConnection' instead of two events 2010-12-08 12:05:19 -08:00
Ryan Dahl a952231640 remove old todo 2010-12-08 11:55:13 -08:00
Ryan Dahl 13b14300b9 TLS: emit 'end' on both streams 2010-12-08 11:51:41 -08:00
Ryan Dahl a0c55dfe09 TLS: don't use events when control hasn't been inverted 2010-12-08 11:46:19 -08:00
Ryan Dahl 0ec57ea34c Some TLS clean ups 2010-12-08 11:27:17 -08:00
Ryan Dahl 5b8c62f7d1 Add broken, but detailed TLS verify test 
Plus a bunch of keys.
 2010-12-07 11:53:41 -08:00
Ryan Dahl 0b0faceb19 Move securepair stuff into tls.js 2010-12-05 18:19:18 -08:00
Ryan Dahl 5bca100afe Server must not request cert. 2010-12-05 18:13:20 -08:00
Ryan Dahl dd53ceebe4 lint 2010-12-01 20:59:06 -08:00
Ryan Dahl d8f2880ca4 New TLS server API 2010-12-01 13:00:17 -08:00