1// Copyright Joyent, Inc. and other Node contributors. 2// 3// Permission is hereby granted, free of charge, to any person obtaining a 4// copy of this software and associated documentation files (the 5// "Software"), to deal in the Software without restriction, including 6// without limitation the rights to use, copy, modify, merge, publish, 7// distribute, sublicense, and/or sell copies of the Software, and to permit 8// persons to whom the Software is furnished to do so, subject to the 9// following conditions: 10// 11// The above copyright notice and this permission notice shall be included 12// in all copies or substantial portions of the Software. 13// 14// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS 15// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF 16// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN 17// NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, 18// DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR 19// OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE 20// USE OR OTHER DEALINGS IN THE SOFTWARE. 21 22'use strict'; 23const common = require('../common'); 24if (!common.hasCrypto) 25 common.skip('missing crypto'); 26 27const assert = require('assert'); 28const fixtures = require('../common/fixtures'); 29const https = require('https'); 30 31const options = { 32 key: fixtures.readKey('agent3-key.pem'), 33 cert: fixtures.readKey('agent3-cert.pem') 34}; 35 36const server = https.createServer(options, common.mustCall(function(req, res) { 37 res.writeHead(200); 38 res.end(); 39 req.resume(); 40})).listen(0, function() { 41 authorized(); 42}); 43 44function authorized() { 45 const req = https.request({ 46 port: server.address().port, 47 rejectUnauthorized: true, 48 ca: [fixtures.readKey('ca2-cert.pem')] 49 }, common.mustNotCall()); 50 req.on('error', function(err) { 51 override(); 52 }); 53 req.end(); 54} 55 56function override() { 57 const options = { 58 port: server.address().port, 59 rejectUnauthorized: true, 60 ca: [fixtures.readKey('ca2-cert.pem')], 61 checkServerIdentity: function(host, cert) { 62 return false; 63 } 64 }; 65 options.agent = new https.Agent(options); 66 const req = https.request(options, function(res) { 67 assert(req.socket.authorized); 68 server.close(); 69 }); 70 req.on('error', function(err) { 71 throw err; 72 }); 73 req.end(); 74} 75