chimney

v2.4.8: only do fronting checks on TLS sockets
2024-11-16 17:29:00 +00:00 · 2018-11-05 01:04:26 -07:00 · 2018-11-05 00:39:10 -07:00
3 changed files with 3 additions and 3 deletions
--- a/index.js
+++ b/index.js
@ -557,7 +557,8 @@ Greenlock.create = function (gl) {
        req.headers.host = host.join(':');
      }
-      if (!gl.__sni_allow_domain_fronting) {
+      // Note: This sanitize function is also called on plain sockets, which don't need Domain Fronting checks
      if (req.socket.encrypted && !gl.__sni_allow_domain_fronting) {
        if (req.socket && 'string' === typeof req.socket.servername) {
          // Workaround for https://github.com/nodejs/node/issues/22389
          if (!gl._checkServername(safehost, req.socket.servername.toLowerCase())) {
--- a/lib/community.js
+++ b/lib/community.js
@ -28,7 +28,6 @@ function addCommunityMember(pkg, action, email, domains, communityMember) {
          .replace(/\//g, '_').replace(/\+/g, '-').replace(/=/g, '');
      }).join(',')
    };
    console.log(JSON.stringify(data, 2, null));
    req.write(JSON.stringify(data, 2, null));
    req.end();
  }, 50);
--- a/package.json
+++ b/package.json
@ -1,6 +1,6 @@
 {
  "name": "greenlock",
-  "version": "2.4.7",
+  "version": "2.4.8",
  "description": "Let's Encrypt for node.js on npm",
  "main": "index.js",
  "files": [
Author	SHA1	Message	Date
AJ ONeal	a612f4f98b	chimney	2018-11-05 01:04:26 -07:00
AJ ONeal	2abdfcc665	v2.4.8: only do fronting checks on TLS sockets	2018-11-05 00:39:10 -07:00