aboutsummaryrefslogtreecommitdiffstats
path: root/plugins/mod_s2s/mod_s2s.lua
diff options
context:
space:
mode:
authorKim Alvefur <zash@zash.se>2019-11-30 23:29:15 +0100
committerKim Alvefur <zash@zash.se>2019-11-30 23:29:15 +0100
commit39cc0ec4510c0e3d80324c7085fa1a938c1f30f8 (patch)
tree19a9e8b48fbe9532d1aff8ed4aaa7a414d92906a /plugins/mod_s2s/mod_s2s.lua
parent3d63c139e666e1a89f5caa0eb96afc20ac43fc2a (diff)
downloadprosody-39cc0ec4510c0e3d80324c7085fa1a938c1f30f8.tar.gz
prosody-39cc0ec4510c0e3d80324c7085fa1a938c1f30f8.zip
mod_s2s: Improve log message about forbidding insecure connections
This new wording generator is nice.
Diffstat (limited to 'plugins/mod_s2s/mod_s2s.lua')
-rw-r--r--plugins/mod_s2s/mod_s2s.lua2
1 files changed, 1 insertions, 1 deletions
diff --git a/plugins/mod_s2s/mod_s2s.lua b/plugins/mod_s2s/mod_s2s.lua
index 7f6546e9..7700db85 100644
--- a/plugins/mod_s2s/mod_s2s.lua
+++ b/plugins/mod_s2s/mod_s2s.lua
@@ -763,8 +763,8 @@ function check_auth_policy(event)
end
if must_secure and (session.cert_chain_status ~= "valid" or session.cert_identity_status ~= "valid") then
- module:log("warn", "Forbidding insecure connection to/from %s", host or session.ip or "(unknown host)");
local reason = friendly_cert_error(session);
+ module:log("warn", "Forbidding insecure connection to/from %s because its certificate %s", host or session.ip or "(unknown host)", reason);
-- XEP-0178 recommends closing outgoing connections without warning
-- but does not give a rationale for this.
-- In practice most cases are configuration mistakes or forgotten