From 8ff47180edb9240f240bb71161b2306603331fcd Mon Sep 17 00:00:00 2001
From: Damian Kaczmarek <rush@rushbase.net>
Date: Tue, 24 Nov 2015 11:34:55 -0600
Subject: [PATCH] Add option to disable tls client renegotiation altogether

---
 src/HttpMasterWorker.js | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/src/HttpMasterWorker.js b/src/HttpMasterWorker.js
index f2fcaba..6b7786e 100644
--- a/src/HttpMasterWorker.js
+++ b/src/HttpMasterWorker.js
@@ -328,6 +328,11 @@ function handleConfig(config, configHandled) {
 
   var errors = {};
 
+  if (config.disableTlsClientRenegotiation) {
+    tls.CLIENT_RENEG_LIMIT = 0;
+    tls.CLIENT_RENEG_WINDOW = 0;
+  }
+
   async.parallel(Object.keys(config.ports || {}).map(function(portEntry) {
     return function(asyncCallback) {
       var m;