coolaj86
/
greenlock.js-ARCHIVED
3
3
Fork 0
Code Issues 6 Pull Requests 1 Releases Activity

v2.4.8: only do fronting checks on TLS sockets

This commit is contained in:
AJ ONeal 2018-11-05 00:39:04 -07:00
parent bc13451368
commit 2abdfcc665
2 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
index.js
View File

@ -557,7 +557,8 @@ Greenlock.create = function (gl) {
req.headers.host = host.join(':'); req.headers.host = host.join(':');
} }
if (!gl.__sni_allow_domain_fronting) { // Note: This sanitize function is also called on plain sockets, which don't need Domain Fronting checks
if (req.socket.encrypted && !gl.__sni_allow_domain_fronting) {
if (req.socket && 'string' === typeof req.socket.servername) { if (req.socket && 'string' === typeof req.socket.servername) {
// Workaround for https://github.com/nodejs/node/issues/22389 // Workaround for https://github.com/nodejs/node/issues/22389
if (!gl._checkServername(safehost, req.socket.servername.toLowerCase())) { if (!gl._checkServername(safehost, req.socket.servername.toLowerCase())) {

2
package.json
View File

@ -1,6 +1,6 @@
{ {
"name": "greenlock", "name": "greenlock",
"version": "2.4.7", "version": "2.4.8",
"description": "Let's Encrypt for node.js on npm", "description": "Let's Encrypt for node.js on npm",
"main": "index.js", "main": "index.js",
"files": [ "files": [