mirror of https://github.com/nodejs/node.git
2cf7e5de6f
After much investigation it turns out that the affected servers are
buggy. user-service.condenastdigital.com:443 in particular seems to
reject large TLS handshake records. Cutting down the number of
advertised ciphers or disabling SNI fixes the issue.
Similarly, passing { secureOptions: constants.SSL_OP_NO_TLSv1_2 }
seems to fix most connection issues with IIS servers.
Having to work around buggy servers is annoying for our users but not
a reason to downgrade OpenSSL. Therefore, revert it.
This reverts commit
|
||
|---|---|---|
| .. | ||
| asm | ||
| config | ||
| openssl | ||
| buildinf.h | ||
| openssl.gyp | ||