aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorPaul Aurich <paul@darkrain42.org>2012-04-28 08:35:34 -0700
committerPaul Aurich <paul@darkrain42.org>2012-04-28 08:35:34 -0700
commit712235990b38806ec957a2a891f06a7f6e2b4fc8 (patch)
tree3805eddbc146fc2328aa0d74ad1f3488e1a4ce41
parent54fc3f7da85c174d090d5eeba548302766b61769 (diff)
downloadprosody-712235990b38806ec957a2a891f06a7f6e2b4fc8.tar.gz
prosody-712235990b38806ec957a2a891f06a7f6e2b4fc8.zip
mod_s2s: Log certificate errors, for troubleshooting goodness
-rw-r--r--plugins/s2s/mod_s2s.lua3
1 files changed, 3 insertions, 0 deletions
diff --git a/plugins/s2s/mod_s2s.lua b/plugins/s2s/mod_s2s.lua
index f44ab43d..cee7d6f6 100644
--- a/plugins/s2s/mod_s2s.lua
+++ b/plugins/s2s/mod_s2s.lua
@@ -134,6 +134,9 @@ local function check_cert_status(session)
-- Is there any interest in printing out all/the number of errors here?
if not chain_valid then
(session.log or log)("debug", "certificate chain validation result: invalid");
+ for depth, t in ipairs(errors) do
+ (session.log or log)("debug", "certificate error(s) at depth %d: %s", depth-1, table.concat(t, ", "))
+ end
session.cert_chain_status = "invalid";
else
(session.log or log)("debug", "certificate chain validation result: valid");