nodejs
diff --git a/Collapse file
‎doc/api/tls.markdown‎
Copy file name to clipboardExpand all lines: doc/api/tls.markdown
+3-1Lines changed: 3 additions & 1 deletion
Display the source diff
Display the rich diff b/Collapse file
‎doc/api/tls.markdown‎
Copy file name to clipboardExpand all lines: doc/api/tls.markdown
+3-1Lines changed: 3 additions & 1 deletion
Display the source diff
Display the rich diff
diff --git a/Collapse file
‎lib/_tls_legacy.js‎
Copy file name to clipboardExpand all lines: lib/_tls_legacy.js
+4-2Lines changed: 4 additions & 2 deletions b/Collapse file
‎lib/_tls_legacy.js‎
Copy file name to clipboardExpand all lines: lib/_tls_legacy.js
+4-2Lines changed: 4 additions & 2 deletions
diff --git a/Collapse file
‎test/fixtures/google_ssl_hello.bin‎
Copy file name to clipboard
517 Bytes b/Collapse file
‎test/fixtures/google_ssl_hello.bin‎
Copy file name to clipboard
517 Bytes
diff --git a/Collapse file
‎test/parallel/test-tls-securepair-fiftharg.js‎
Copy file name to clipboard
+27Lines changed: 27 additions & 0 deletions b/Collapse file
‎test/parallel/test-tls-securepair-fiftharg.js‎
Copy file name to clipboard
+27Lines changed: 27 additions & 0 deletions
@@ -511,7 +511,7 @@ publicly trusted list of CAs as given in
 <http://mxr.mozilla.org/mozilla/source/security/nss/lib/ckfw/builtins/certdata.txt>.
 
 
-## tls.createSecurePair([context][, isServer][, requestCert][, rejectUnauthorized])
+## tls.createSecurePair([context][, isServer][, requestCert][, rejectUnauthorized][, options])
 
 Creates a new secure pair object with two streams, one of which reads/writes
 encrypted data, and one reads/writes cleartext data.
@@ -530,6 +530,8 @@ and the cleartext one is used as a replacement for the initial encrypted stream.
    automatically reject clients with invalid certificates. Only applies to
    servers with `requestCert` enabled.
 
+ - `options`: An object with common SSL options. See [tls.TLSSocket][].
+
 `tls.createSecurePair()` returns a SecurePair object with `cleartext` and
 `encrypted` stream properties.
 
 
@@ -761,11 +761,13 @@ function securePairNT(self, options) {
 exports.createSecurePair = function(context,
                                     isServer,
                                     requestCert,
-                                    rejectUnauthorized) {
+                                    rejectUnauthorized,
+                                    options) {
   var pair = new SecurePair(context,
                             isServer,
                             requestCert,
-                            rejectUnauthorized);
+                            rejectUnauthorized,
+                            options);
   return pair;
 };
 
 
@@ -0,0 +1,27 @@
+'use strict';
+
+const common = require('../common');
+const assert = require('assert');
+const fs = require('fs');
+const tls = require('tls');
+
+const sslcontext = tls.createSecureContext({
+  cert: fs.readFileSync(common.fixturesDir + '/test_cert.pem'),
+  key: fs.readFileSync(common.fixturesDir + '/test_key.pem')
+});
+
+var catchedServername;
+const pair = tls.createSecurePair(sslcontext, true, false, false, {
+  SNICallback: common.mustCall(function(servername, cb) {
+    catchedServername = servername;
+  })
+});
+
+// captured traffic from browser's request to https://www.google.com
+const sslHello = fs.readFileSync(common.fixturesDir + '/google_ssl_hello.bin');
+
+pair.encrypted.write(sslHello);
+
+process.on('exit', function() {
+  assert.strictEqual('www.google.com', catchedServername);
+});