apitech
/
prosody
mirror of https://github.com/bjc/prosody
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
11850 Commits
12 Branches
101 Tags
54 MiB
Tag: Branch: Tree: 21eeadecc7
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '21eeadecc7'
${ noResults }
Commit Graph

110 Commits (21eeadecc7c94a07ea1ebdb1666dd40fa2ea8a9d)

Author SHA1 Message Date
Kim Alvefur e3c0a877bf mod_tls: Attempt STARTTLS on outgoing unencrypted legacy s2s connections
4 years ago
Kim Alvefur c506269ff5 Fix various spelling errors (thanks codespell)
4 years ago
Kim Alvefur 7c18043404 mod_tls: Log when certificates are (re)loaded
6 years ago
Kim Alvefur d7b7a25e73 mod_tls: Add "support" for <failure> by closing gracefully
5 years ago
Kim Alvefur 02cead40db mod_tls: Fix order of debug messages and tls context creation
5 years ago
Kim Alvefur 03a1ac4f69 mod_tls: Bail out if session got destroyed while sending <proceed/>
5 years ago
Kim Alvefur da0482b226 mod_tls: Ignore lack of STARTTLS offer only when s2s_require_encryption set
5 years ago
Kim Alvefur eb9e818e43 mod_tls: Attempt STARTTLS even if not advertised as per RFC 7590
5 years ago
Kim Alvefur 86ed7cd44e mod_tls: Log debug message for each kind of TLS context created
7 years ago
Kim Alvefur f0abacc215 mod_tls: Rebuild SSL context objects on configuration reload - #701
9 years ago
Kim Alvefur b1b108de84 mod_tls: Switch to hook_tag from hook_stanza which was renamed in 2087d42f1e77
9 years ago
Kim Alvefur 3405d89baa mod_tls: Suppress debug message if already using encryption
9 years ago
Kim Alvefur a193e1d9f4 mod_tls: Log reasons for not being able to do TLS
9 years ago
Kim Alvefur c8b213ff4f mod_tls: Check that connection has starttls method first to prevent offering starttls over tls (thanks Remko and Tobias)
9 years ago
Kim Alvefur c7da30f634 mod_tls: Return session.ssl_ctx if not nil, like when doing the full session type check
9 years ago
Kim Alvefur 3258500edb mod_tls: Add debug logging for when TLS should be doable but no ssl context was set
9 years ago
Kim Alvefur 272e5d06b4 mod_tls: Verify that TLS is available before proceeding
9 years ago
Kim Alvefur a7a8fa91e3 mod_tls: Only accept <proceed> on outgoing s2s connections
9 years ago
Kim Alvefur 1a12e55904 mod_tls: Ignore unused argument [luacheck]
9 years ago
Kim Alvefur 57fe905a8c mod_tls: Fix ssl option fallback to a "parent" host if current host does not have ssl options set (thanks 70b1)
10 years ago
Kim Alvefur edc8079032 mod_tls: Remove unused reference to global ssl config option (certmanager adds that to the context)
10 years ago
Kim Alvefur 7b18c25101 mod_tls: Fix inhertinance of 'ssl' option from "parent" host to subdomain (fixes #511)
10 years ago
Kim Alvefur 72dde1c231 mod_tls: Treat session.ssl_ctx being false as a signal that TLS is disabled
11 years ago
Kim Alvefur 3f9b683457 mod_tls: Build <starttls/> as a stanza instead of with string concatenation
11 years ago
Kim Alvefur 49ba0ce08d certmanager, mod_tls: Return final ssl config as third return value (fix for c6caaa440e74, portmanager assumes non-falsy second return value is an error) (thanks deoren)
11 years ago
Kim Alvefur 184d6ce60b mod_tls: Keep ssl config around and attach them to sessions
11 years ago
Kim Alvefur ac43c71ec2 mod_legacyauth, mod_saslauth, mod_tls: Pass require_encryption as default option to s2s_require_encryption so the later overrides the former
11 years ago
Kim Alvefur 8003a40b0a mod_lastactivity, mod_legacyauth, mod_presence, mod_saslauth, mod_tls: Use the newer stanza:get_child APIs and optimize away some table lookups
12 years ago
Kim Alvefur 4e88341951 mod_tls: Simplify and use new ssl config merging in certmanager
12 years ago
Matthew Wild 342de92462 mod_tls: Log error when TLS initialization fails
12 years ago
Florian Zeitz 1d833bb807 Remove all trailing whitespace
13 years ago
Kim Alvefur 7c51e9ec71 mod_tls: Remove debug statement
13 years ago
Kim Alvefur 410ab5d97b mod_tls: Let s2s_secure_auth override s2s_require_encryption and warn if they differ
12 years ago
Kim Alvefur 573c5bea61 mod_tls: Rename variables to be less confusing
12 years ago
Kim Alvefur 3786afa97f mod_tls: Refactor to allow separate SSL configuration for c2s and s2s connections
13 years ago
Kim Alvefur 16c7c4e78d mod_tls: More use of config sections removed
13 years ago
Kim Alvefur 27dc3a5b9a mod_announce, mod_auth_anonymous, mod_c2s, mod_c2s, mod_component, mod_iq, mod_message, mod_presence, mod_tls: Access prosody.{hosts,bare_sessions,full_sessions} instead of the old globals
13 years ago
Kim Alvefur b246b00f85 mod_tls: Restore querying for certificates on s2s
7 years ago
Kim Alvefur e6b7c91ebc mod_tls: Keep TLS context errors and repeat them again for each session
7 years ago
Matthew Wild 32d3713a7a mod_tls: Fix log statement (thanks Zash)
14 years ago
Matthew Wild 2d8a08de12 mod_tls: Fix for components to more reliably inherit SSL settings from their parenthost (thanks Link Mauve)
15 years ago
Matthew Wild e3c845abcf mod_tls: Drop 'TLS negotiation started for ...' to debug level from info
15 years ago
Matthew Wild 2f3b7c048e mod_tls: Drop 'TLS negotiation started for ...' to debug level from info
15 years ago
Waqas Hussain 86eb430400 mod_tls: Let hosts without an 'ssl' option inherit it from their parent hosts.
15 years ago
Matthew Wild 8e91da96f8 mod_tls: Pass the hostname rather than host session to certmanager.create_context() (thanks darkrain)
15 years ago
Matthew Wild c6045f3c70 certmanager, hostmanager, mod_tls: Move responsibility for creating per-host SSL contexts to mod_tls, meaning reloading certs is now as trivial as reloading mod_tls
15 years ago
Matthew Wild 16fa172b23 mod_tls: Remove extraneous flag to starttls() for s2sout connecections
16 years ago
Matthew Wild 67a0c4e8db mod_tls: Add s2s_allow_encryption option which, when set to false, disabled TLS for s2s
16 years ago
Matthew Wild 2bc0606453 Update copyright headers for 2010
16 years ago
Matthew Wild 8a18a4cc28 mod_tls: Only negotiate TLS on outgoing s2s connections if we have an SSL context (thanks Flo...)
16 years ago