diff options
| author | Kim Alvefur <zash@zash.se> | 2022-12-21 21:34:07 +0100 |
|---|---|---|
| committer | Kim Alvefur <zash@zash.se> | 2022-12-21 21:34:07 +0100 |
| commit | 62f32cd01d26e3d1bad0d63a9e418838eb9ea212 (patch) | |
| tree | ac68619200114e660782808ccbe47dbfb81b9668 /plugins | |
| parent | e3d771baf90b7fbc33d56e0ed2558c76f6ad9b24 (diff) | |
| download | prosody-62f32cd01d26e3d1bad0d63a9e418838eb9ea212.tar.gz prosody-62f32cd01d26e3d1bad0d63a9e418838eb9ea212.zip | |
Revert unintentionally committed parts of 12bd40b8e105
Diffstat (limited to 'plugins')
| -rw-r--r-- | plugins/mod_s2s_auth_certs.lua | 10 |
1 files changed, 0 insertions, 10 deletions
diff --git a/plugins/mod_s2s_auth_certs.lua b/plugins/mod_s2s_auth_certs.lua index 5f5cce02..bde3cb82 100644 --- a/plugins/mod_s2s_auth_certs.lua +++ b/plugins/mod_s2s_auth_certs.lua @@ -12,8 +12,6 @@ module:hook("s2s-check-certificate", function(event) local conn = session.conn; local log = session.log or log; - local secure_hostname = conn.extra and conn.extra.dane_hostname; - if not cert then log("warn", "No certificate provided by %s", host or "unknown host"); return; @@ -39,14 +37,6 @@ module:hook("s2s-check-certificate", function(event) -- We'll go ahead and verify the asserted identity if the -- connecting server specified one. - if secure_hostname then - if cert_verify_identity(secure_hostname, "xmpp-server", cert) then - module:log("info", "Secure SRV name delegation %q -> %q", secure_hostname, host); - session.cert_identity_status = "valid" - else - session.cert_identity_status = "invalid" - end - end if host then if cert_verify_identity(host, "xmpp-server", cert) then session.cert_identity_status = "valid" |