HTTP2 client incorrectly sets TLS ServerName to an IP address

### Version

v23.3.0

### Platform

```text
Linux d5c04eefb9b4 5.15.167.4-microsoft-standard-WSL2 #1 SMP Tue Nov 5 00:21:55 UTC 2024 x86_64 GNU/Linux
```


### Subsystem

http2

### What steps will reproduce the bug?

```js
const http2 = require('http2');
const session = http2.connect('https://1.1.1.1');
session.once('remoteSettings', () => {
    session.close();
});
```

### How often does it reproduce? Is there a required condition?

always

### What is the expected behavior? Why is that the expected behavior?

* no deprecation warning about TLS server name should appear because I'm not passing any and it's added in the http2 module
* TLS server name should not be set because it's not permitted by RFC 6066

### What do you see instead?

* a deprecation warning:
```console
# node --trace-deprecation repro.js
(node:275) [DEP0123] DeprecationWarning: Setting the TLS ServerName to an IP address is not permitted by RFC 6066. This will be ignored in a future version.
    at Object.connect (node:_tls_wrap:1812:15)
    at Object.connect (node:internal/http2/core:3332:22)
    at Object.<anonymous> (/repro.js:2:23)
    at Module._compile (node:internal/modules/cjs/loader:1546:14)
    at Object..js (node:internal/modules/cjs/loader:1698:10)
    at Module.load (node:internal/modules/cjs/loader:1303:32)
    at Function._load (node:internal/modules/cjs/loader:1117:12)
    at TracingChannel.traceSync (node:diagnostics_channel:322:14)
    at wrapModuleLoad (node:internal/modules/cjs/loader:218:24)
    at Function.executeUserEntryPoint [as runMain] (node:internal/modules/run_main:170:5)
```
* the outgoing request contains `1.1.1.1` as the `server_name` TLS extension

![image](https://github.com/user-attachments/assets/b0eb0c7b-292b-47c6-ad01-1c4cd1d1c428)


### Additional information

The server name is set in [`http2/core.js`](https://github.com/nodejs/node/blob/0547dcfc005ae7d9b60d31a7edc90f5a180f907a/lib/internal/http2/core.js#L3143). That function is missing a check for `net.isIP` that's used in [`_http_agent.js`](https://github.com/nodejs/node/blob/0547dcfc005ae7d9b60d31a7edc90f5a180f907a/lib/_http_agent.js#L357) for example.

However the fix isn't that simple because the `servername` is then used to construct [`originSet`](https://github.com/nodejs/node/blob/80c0055e38b9c79b27a2c3b7da3b62e8d0f5e435/lib/internal/http2/core.js#L639) and just adding the check would probably regress #39919.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

HTTP2 client incorrectly sets TLS ServerName to an IP address #56189

Version

Platform

Subsystem

What steps will reproduce the bug?

How often does it reproduce? Is there a required condition?

What is the expected behavior? Why is that the expected behavior?

What do you see instead?

Additional information

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Uh oh!

HTTP2 client incorrectly sets TLS ServerName to an IP address #56189

Description

Version

Platform

Subsystem

What steps will reproduce the bug?

How often does it reproduce? Is there a required condition?

What is the expected behavior? Why is that the expected behavior?

What do you see instead?

Additional information

Metadata

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Issue actions