OSSForks/node
1
0
Fork 0
mirror of https://github.com/zebrajr/node.git synced 2025-12-06 00:20:08 +01:00
Code Issues Actions 8 Packages Projects Releases Wiki Activity

doc: update OpenSSL default security level to 2

Browse Source 
The default OpenSSL security level changed from 1 to 2 in OpenSSL 3.2,
which was included in Node.js 24.5. This change enforces stricter
cryptographic requirements.

Fixes: https://github.com/nodejs/node/issues/59715
PR-URL: https://github.com/nodejs/node/pull/59723
Reviewed-By: Richard Lau <richard.lau@ibm.com>
Reviewed-By: Luigi Pinca <luigipinca@gmail.com>
This commit is contained in:
Jeetu Suthar 2025-09-08 13:27:40 +05:30 committed by GitHub
parent b4af647920
commit 072da1ad2a
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
doc/api/tls.md
View File

@ -454,7 +454,7 @@ are not enabled by default since they offer less security.
The OpenSSL library enforces security levels to control the minimum acceptable
level of security for cryptographic operations. OpenSSL's security levels range
from 0 to 5, with each level imposing stricter security requirements. The default
security level is 1, which is generally suitable for most modern applications.
security level is 2, which is generally suitable for most modern applications.
However, some legacy features and protocols, such as TLSv1, require a lower
security level (`SECLEVEL=0`) to function properly. For more detailed information,
please refer to the [OpenSSL documentation on security levels][].