We recently upgraded from 0.4.12 to 0.8.14 (about freaking time, huh?)
and our SSL certificate checking is having some troubles with some
CAs.
We're receiving the following error when we test for 'authorized'.
"Hostname/IP doesn't match certificate's altnames"
Here's the pertinent code to reproduce.
var tls = require('tls');
var s = tls.connect(443, 'graph.facebook.com',function(err, response){
if(s.authorized){
console.log('authorized');
}else{
console.log('cert auth error: ', s.authorizationError);
}
});
We're seeing this with some digicert and some thawte certs so far.
Most don't throw the error.
Anything change in the CA handling or checkServerIdentity function of
0.8.14 that would make these connections show as unauthorized now?
Thanks,
Shawn
--
Job Board: http://jobs.nodejs.org/
Posting guidelines:
https://github.com/joyent/node/wiki/Mailing-List-Posting-Guidelines
You received this message because you are subscribed to the Google
Groups "nodejs" group.
To post to this group, send email to nodejs@googlegroups.com
To unsubscribe from this group, send email to
nodejs+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/nodejs?hl=en?hl=en
