diff options
| author | Matthew Wild <mwild1@gmail.com> | 2010-11-06 18:28:15 +0000 |
|---|---|---|
| committer | Matthew Wild <mwild1@gmail.com> | 2010-11-06 18:28:15 +0000 |
| commit | c6045f3c70bf31cb54f66af60e10e5e788256b10 (patch) | |
| tree | 2ccce526e76f0e3b873ec13133b3eaf9b5edee37 /plugins/mod_tls.lua | |
| parent | c5bcc70db662a51e4e704b034646bf194aed8b35 (diff) | |
| download | prosody-c6045f3c70bf31cb54f66af60e10e5e788256b10.tar.gz prosody-c6045f3c70bf31cb54f66af60e10e5e788256b10.zip | |
certmanager, hostmanager, mod_tls: Move responsibility for creating per-host SSL contexts to mod_tls, meaning reloading certs is now as trivial as reloading mod_tls
Diffstat (limited to 'plugins/mod_tls.lua')
| -rw-r--r-- | plugins/mod_tls.lua | 12 |
1 files changed, 12 insertions, 0 deletions
diff --git a/plugins/mod_tls.lua b/plugins/mod_tls.lua index a2667ff6..fa7b4688 100644 --- a/plugins/mod_tls.lua +++ b/plugins/mod_tls.lua @@ -6,6 +6,7 @@ -- COPYING file in the source package for more information. -- +local create_context = require "core.certmanager".create_context; local st = require "util.stanza"; local secure_auth_only = module:get_option("c2s_require_encryption") or module:get_option("require_encryption"); @@ -87,3 +88,14 @@ module:hook_stanza(xmlns_starttls, "proceed", function (session, stanza) session.secure = false; return true; end); + +function module.load() + local ssl_config = module:get_option("ssl"); + host.ssl_ctx = create_context(host, "client", ssl_config); -- for outgoing connections + host.ssl_ctx_in = create_context(host, "server", ssl_config); -- for incoming connections +end + +function module.unload() + host.ssl_ctx = nil; + host.ssl_ctx_in = nil; +end |