diff options
| author | Hativ <Hativ@users.noreply.github.com> | 2017-11-07 00:08:22 +0100 |
|---|---|---|
| committer | Tobias Nießen <tniessen@tnie.de> | 2017-11-29 00:43:05 +0100 |
| commit | af78840b194528a147e4683aed27a320f9764ea5 (patch) | |
| tree | 5e5095d1fb885581f9681312c3f3d83bb1561171 /lib | |
| parent | 04566d3698fac6c6afc7896619c92cc2e05d1440 (diff) | |
| download | android-node-v8-af78840b194528a147e4683aed27a320f9764ea5.tar.gz android-node-v8-af78840b194528a147e4683aed27a320f9764ea5.tar.bz2 android-node-v8-af78840b194528a147e4683aed27a320f9764ea5.zip | |
tls: set ecdhCurve default to 'auto'
For best out-of-the-box compatibility there should not be one default
`ecdhCurve` for the tls client, OpenSSL should choose them
automatically.
See https://wiki.openssl.org/index.php/Manual:SSL_CTX_set1_curves(3)
PR-URL: https://github.com/nodejs/node/pull/16853
Refs: https://github.com/nodejs/node/issues/16196
Refs: https://github.com/nodejs/node/issues/1495
Refs: https://github.com/nodejs/node/pull/15206
Reviewed-By: Ben Noordhuis <info@bnoordhuis.nl>
Reviewed-By: Fedor Indutny <fedor.indutny@gmail.com>
Reviewed-By: Rich Trott <rtrott@gmail.com>
Reviewed-By: James M Snell <jasnell@gmail.com>
Reviewed-By: Sam Roberts <vieuxtech@gmail.com>
Reviewed-By: Tobias Nießen <tniessen@tnie.de>
Reviewed-By: Luigi Pinca <luigipinca@gmail.com>
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/tls.js | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/tls.js b/lib/tls.js index a82535df61..5b20cade2e 100644 --- a/lib/tls.js +++ b/lib/tls.js @@ -45,7 +45,7 @@ exports.SLAB_BUFFER_SIZE = 10 * 1024 * 1024; exports.DEFAULT_CIPHERS = process.binding('constants').crypto.defaultCipherList; -exports.DEFAULT_ECDH_CURVE = 'prime256v1'; +exports.DEFAULT_ECDH_CURVE = 'auto'; exports.getCiphers = internalUtil.cachedResult( () => internalUtil.filterDuplicateStrings(binding.getSSLCiphers(), true) |