Merge 0.11->trunk

author: Kim Alvefur <zash@zash.se> 2019-12-24 00:39:45 +0100
committer: Kim Alvefur <zash@zash.se> 2019-12-24 00:39:45 +0100
commit: 1eabf5bdb449b0312dfa272884e02cc84175775c (patch)
tree: 94b4ebcb9443e8e6751e1903ade3c9dc8ec9d678 /plugins/mod_s2s_auth_certs.lua
parent: 575cd4c57d062a1addc761aa0036b1db752900a9 (diff)
parent: 8537138d41a6bca5e855040c8928ef2aae59802f (diff)
download: prosody-1eabf5bdb449b0312dfa272884e02cc84175775c.tar.gz
prosody-1eabf5bdb449b0312dfa272884e02cc84175775c.zip
1 files changed, 1 insertions, 3 deletions
diff --git a/plugins/mod_s2s_auth_certs.lua b/plugins/mod_s2s_auth_certs.lua
index dd0eb3cb..37519aa1 100644
--- a/plugins/mod_s2s_auth_certs.lua
+++ b/plugins/mod_s2s_auth_certs.lua
@@ -17,9 +17,6 @@ module:hook("s2s-check-certificate", function(event)
 	local chain_valid, errors;
 	if conn.getpeerverification then
 		chain_valid, errors = conn:getpeerverification();
-	elseif conn.getpeerchainvalid then -- COMPAT mw/luasec-hg
-		chain_valid, errors = conn:getpeerchainvalid();
-		errors = (not chain_valid) and { { errors } } or nil;
 	else
 		chain_valid, errors = false, { { "Chain verification not supported by this version of LuaSec" } };
 	end
@@ -30,6 +27,7 @@ module:hook("s2s-check-certificate", function(event)
 			log("debug", "certificate error(s) at depth %d: %s", depth-1, table.concat(t, ", "))
 		end
 		session.cert_chain_status = "invalid";
+		session.cert_chain_errors = errors;
 	else
 		log("debug", "certificate chain validation result: valid");
 		session.cert_chain_status = "valid";
author	Kim Alvefur <zash@zash.se>	2019-12-24 00:39:45 +0100
committer	Kim Alvefur <zash@zash.se>	2019-12-24 00:39:45 +0100
commit	1eabf5bdb449b0312dfa272884e02cc84175775c (patch)
tree	94b4ebcb9443e8e6751e1903ade3c9dc8ec9d678 /plugins/mod_s2s_auth_certs.lua
parent	575cd4c57d062a1addc761aa0036b1db752900a9 (diff)
parent	8537138d41a6bca5e855040c8928ef2aae59802f (diff)
download	prosody-1eabf5bdb449b0312dfa272884e02cc84175775c.tar.gz prosody-1eabf5bdb449b0312dfa272884e02cc84175775c.zip