daohualiuxiang
/
node
mirror of https://github.com/nodejs/node.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
node/lib
History
Adam Majer 9cde7a033e
crypto: don't disable TLS 1.3 without suites 
In the manual page, there is a statement that ciphersuites contain
explicit default settings - all TLS 1.3 ciphersuites enabled.
In node, we assume that an empty setting mean no ciphersuites and
we disable TLS 1.3. A correct approach to disabling TLS 1.3 is to
disable TLS 1.3 and by not override the default ciphersuits
with an empty string.

So, only override OpenSSL's TLS 1.3 ciphersuites with an explicit
list of ciphers. If none are acceptable, the correct approach is
to disable TLS 1.3 instead elsewhere.

Fixes: https://github.com/nodejs/node/issues/43419

PR-URL: https://github.com/nodejs/node/pull/43427
Reviewed-By: Matteo Collina <matteo.collina@gmail.com>
Reviewed-By: Paolo Insogna <paolo@cowtech.it>
Reviewed-By: James M Snell <jasnell@gmail.com>
 		2022-06-27 09:47:13 +01:00
..
assert
dns dns: make promise API fully constructed from `lib/internal/dns/promises` 2022-06-20 19:58:45 +01:00
fs
internal crypto: don't disable TLS 1.3 without suites 2022-06-27 09:47:13 +01:00
path
readline
stream
timers
util
.eslintrc.yaml
_http_agent.js http: fix http agent keep alive 2022-06-18 10:30:04 +01:00
_http_client.js http: add perf_hooks detail for http request and client 2022-06-25 11:37:20 +01:00
_http_common.js http: defer reentrant execution of Parser::Execute 2022-06-22 10:55:18 +02:00
_http_incoming.js
_http_outgoing.js
_http_server.js http: add perf_hooks detail for http request and client 2022-06-25 11:37:20 +01:00
_stream_duplex.js
_stream_passthrough.js
_stream_readable.js
_stream_transform.js
_stream_wrap.js
_stream_writable.js
_tls_common.js tools: report unsafe string and regex primordials as lint errors 2022-06-16 00:21:57 +02:00
_tls_wrap.js
assert.js
async_hooks.js
buffer.js
child_process.js
cluster.js
console.js
constants.js
crypto.js
dgram.js
diagnostics_channel.js
dns.js dns: make promise API fully constructed from `lib/internal/dns/promises` 2022-06-20 19:58:45 +01:00
domain.js
events.js events: fix adding abort listener in `events.once` 2022-06-14 20:30:51 +01:00
fs.js
http.js
http2.js
https.js
inspector.js
module.js
net.js net: fix net.Server keepalive and noDelay 2022-06-22 15:10:18 +01:00
os.js dns: accept `'IPv4'` and `'IPv6'` for `family` 2022-06-15 18:02:01 -04:00
path.js
perf_hooks.js
process.js
punycode.js
querystring.js
readline.js
repl.js tools: report unsafe string and regex primordials as lint errors 2022-06-16 00:21:57 +02:00
stream.js
string_decoder.js
sys.js
test.js
timers.js
tls.js
trace_events.js
tty.js
url.js
util.js
v8.js v8: add v8.startupSnapshot utils 2022-06-17 19:23:56 +08:00
vm.js
wasi.js wasi: use WasmMemoryObject handle for perf (#43544) 2022-06-25 11:02:32 -07:00
worker_threads.js
zlib.js