Merge 0.11->trunk

author: Kim Alvefur <zash@zash.se> 2020-11-05 22:31:25 +0100
committer: Kim Alvefur <zash@zash.se> 2020-11-05 22:31:25 +0100
commit: 0c94d96263cffcdbe0cf5ea59ef0b172b32258c2 (patch)
tree: 58547de6e7795740633c1b93e67c217eb621fe8f /plugins/mod_s2s_auth_certs.lua
parent: 20cb21003f0374e7078e1a29ffb36a7028c6b9ef (diff)
parent: 4afbfc6854ebc374acc34729fdc6e472b44b07f1 (diff)
download: prosody-0c94d96263cffcdbe0cf5ea59ef0b172b32258c2.tar.gz
prosody-0c94d96263cffcdbe0cf5ea59ef0b172b32258c2.zip
1 files changed, 1 insertions, 3 deletions
diff --git a/plugins/mod_s2s_auth_certs.lua b/plugins/mod_s2s_auth_certs.lua
index dd0eb3cb..37519aa1 100644
--- a/plugins/mod_s2s_auth_certs.lua
+++ b/plugins/mod_s2s_auth_certs.lua
@@ -17,9 +17,6 @@ module:hook("s2s-check-certificate", function(event)
 	local chain_valid, errors;
 	if conn.getpeerverification then
 		chain_valid, errors = conn:getpeerverification();
-	elseif conn.getpeerchainvalid then -- COMPAT mw/luasec-hg
-		chain_valid, errors = conn:getpeerchainvalid();
-		errors = (not chain_valid) and { { errors } } or nil;
 	else
 		chain_valid, errors = false, { { "Chain verification not supported by this version of LuaSec" } };
 	end
@@ -30,6 +27,7 @@ module:hook("s2s-check-certificate", function(event)
 			log("debug", "certificate error(s) at depth %d: %s", depth-1, table.concat(t, ", "))
 		end
 		session.cert_chain_status = "invalid";
+		session.cert_chain_errors = errors;
 	else
 		log("debug", "certificate chain validation result: valid");
 		session.cert_chain_status = "valid";
author	Kim Alvefur <zash@zash.se>	2020-11-05 22:31:25 +0100
committer	Kim Alvefur <zash@zash.se>	2020-11-05 22:31:25 +0100
commit	0c94d96263cffcdbe0cf5ea59ef0b172b32258c2 (patch)
tree	58547de6e7795740633c1b93e67c217eb621fe8f /plugins/mod_s2s_auth_certs.lua
parent	20cb21003f0374e7078e1a29ffb36a7028c6b9ef (diff)
parent	4afbfc6854ebc374acc34729fdc6e472b44b07f1 (diff)
download	prosody-0c94d96263cffcdbe0cf5ea59ef0b172b32258c2.tar.gz prosody-0c94d96263cffcdbe0cf5ea59ef0b172b32258c2.zip