mirrors/nodejs
mirrors/nodejs
0
0
Fork 0
mirror of https://github.com/nodejs/node.git synced 2024-11-30 15:30:56 +01:00
Code Issues Releases Activity
3415427dbf
nodejs/lib
History
Ben Noordhuis 3415427dbf tls: mitigate session renegotiation attacks 
The TLS protocol allows (and sometimes requires) clients to renegotiate the
session. However, renegotiation requires a disproportional amount of server-side
resources, particularly CPU time, which makes it a potential vector for
denial-of-service attacks.

To mitigate this issue, we keep track of and limit the number of renegotiation
requests over time, emitting an error if the threshold is exceeded.
2012-02-16 18:15:21 +01:00
..
_debugger.js debugger: Request backtrace w/o refs, see #1745 2011-12-19 13:30:43 -08:00
_linklist.js
assert.js Fixed a lot of jslint errors. 2011-10-05 18:51:06 -07:00
buffer_ieee754.js Fixed a lot of jslint errors. 2011-10-05 18:51:06 -07:00
buffer.js buffer: don't pollute global namespace in buffer.readInt* 2011-12-22 23:26:43 +01:00
child_process.js child_process: add errno property to exceptions 2012-01-17 18:37:02 +01:00
cluster.js cluster: don't always kill the master on uncaughtException 2012-01-18 00:45:02 +01:00
console.js Fixes #1860. Remove process.writeError 2011-10-18 13:12:50 -07:00
constants.js
crypto.js tls, https: add passphrase option 2011-10-31 17:36:43 +09:00
dgram.js dgram: handle close of dgram socket before DNS lookup completes 2012-02-14 14:10:21 +01:00
dns.js getaddrinfo returns ENOTFOUND for invalid domain names 2011-10-21 15:19:53 -07:00
events.js events: fix checking max listeners with 1 2012-01-09 04:02:01 +01:00
freelist.js
fs.js fs: fix ReadStream fails to read from existing fd 2012-02-04 22:14:58 +01:00
http.js http: fix free http-parser too early 2012-01-31 00:16:01 +09:00
https.js http.request(url.parse(x)) 2011-10-22 14:14:40 +09:00
module.js debugger: fix --debug-brk 2012-02-07 23:16:40 +01:00
net.js set readable/writable for pipes 2012-02-10 11:28:43 -08:00
os.js util: add internal function _deprecationWarning() 2011-12-14 13:36:21 +01:00
path.js Windows: get rid of process._cwdForDrive() 2012-02-16 00:10:51 +01:00
punycode.js punycode: Update to v0.2.1 2011-11-30 15:28:48 +01:00
querystring.js Make QueryString.parse run faster 2012-02-01 16:04:01 -08:00
readline.js Fixes #2052. Readline get win cols correctly 2011-11-08 13:37:08 -08:00
repl.js Fix #2034 repl message for .clear when useGlobal=true 2011-12-31 03:20:41 +01:00
stream.js throw from stdout.end and stderr.end 2011-11-10 14:51:16 -08:00
string_decoder.js
sys.js util: add internal function _deprecationWarning() 2011-12-14 13:36:21 +01:00
timers.js timers: add v0.4 compatibility hack 2012-01-30 14:12:23 +01:00
tls.js tls: mitigate session renegotiation attacks 2012-02-16 18:15:21 +01:00
tty.js Add missing TTY key translations for F1-F5 on Windows 2012-01-18 16:00:55 +01:00
url.js url: add '.' '+' and '-' in url protocol 2011-11-04 13:36:06 +01:00
util.js util: use getOwnPropertyDescripter 2012-01-22 17:29:40 +09:00
vm.js
zlib.js Fix #2365 zlib crashing on invalid input 2012-01-20 13:12:32 -08:00