aboutsummaryrefslogtreecommitdiffstats
path: root/core/certmanager.lua
Commit message (Expand)AuthorAgeFilesLines
* certmanager: Limit certificate chain depth to 9Kim Alvefur2015-02-051-0/+1
* certmanager: Options that appear to be available since LuaSec 0.2Kim Alvefur2015-02-051-3/+3
* certmanager: Improve "detection" of features that depend on LuaSec versionKim Alvefur2015-02-051-11/+15
* certmanager: Add locals for ssl.context and ssl.x509Kim Alvefur2015-02-051-3/+5
* certmanager: Early return from the entire module if LuaSec is unavailableKim Alvefur2015-02-051-12/+18
* certmanager: Make global variable access explicitMatthew Wild2015-01-201-1/+1
* certmanager, mod_tls: Return final ssl config as third return value (fix for ...Kim Alvefur2014-11-221-3/+1
* certmanager: Return final ssl config along with ssl context on successKim Alvefur2014-11-191-1/+3
* core.certmanager: Make create_context() support an arbitrary number of option...Kim Alvefur2014-07-031-3/+6
* core.certmanager: Use util.sslconfigKim Alvefur2014-07-031-71/+14
* core.certmanager, core.moduleapi, mod_storage_sql, mod_storage_sql2: Import f...Kim Alvefur2014-05-091-1/+1
* certmanager: Move ssl.protocol handling to after ssl.options is a table (than...Kim Alvefur2014-04-211-8/+9
* certmanager: Fix traceback if no global 'ssl' section set (thanks albert)Kim Alvefur2014-04-201-1/+3
* certmanager: Update ssl_compression when config is reloadedKim Alvefur2014-04-151-0/+3
* certmanager: Reformat core ssl defaultsKim Alvefur2014-04-151-9/+9
* certmanager: Support ssl.protocol syntax like "tlsv1+" that disables older pr...Kim Alvefur2014-04-151-2/+13
* certmanager: Merge ssl.options, verify etc from core defaults and global ssl ...Kim Alvefur2014-04-151-0/+29
* certmanager: Wrap long line and add commentKim Alvefur2014-04-141-1/+5
* certmanager: Concatenate cipher list if given as a tableKim Alvefur2014-04-141-0/+6
* certmanager: Allow non-server contexts to be without certificate and keyKim Alvefur2014-04-141-2/+4
* certmanager: Check for non-nil values instead of true-ish values, allows remo...Kim Alvefur2014-04-141-2/+3
* Merge 0.9->0.10Matthew Wild2013-11-211-1/+1
|\
| * certmanager: Further cipher string tweaking. Re-enable ciphers required for D...Matthew Wild2013-11-211-1/+1
| * Back out 1b0ac7950129, as SSLv3 appears to still be in moderate use on the ne...Matthew Wild2013-11-121-1/+1
* | Merge 0.9->0.10Matthew Wild2013-11-101-1/+1
|\|
| * certmanager: Update default cipher string to prefer forward-secrecy over ciph...Matthew Wild2013-11-101-1/+1
* | Merge 0.9->0.10Matthew Wild2013-11-091-1/+1
|\|
| * certmanager: Fix order of options, so that the dynamic option is at the end o...Matthew Wild2013-11-091-1/+1
| * certmanager: Default to using the server's cipher preference order by default...Matthew Wild2013-11-091-1/+1
* | Merge 0.9 -> 0.10Kim Alvefur2013-10-311-1/+1
|\|
| * certmanager: Disable SSLv3 by defaultKim Alvefur2013-10-311-1/+1
| * certmanager: Fix dhparam callback, missing imports (Testing, pfft)0.9.1Kim Alvefur2013-09-031-3/+5
| * certmanager: Allow for specifying the dhparam option as a path to a file inst...Kim Alvefur2013-09-031-0/+11
| * certmanager: Fix for working around a bug with LuaSec 0.4.1 that causes it to...Matthew Wild2013-09-031-4/+4
* | certmanager: Fix. Again.Kim Alvefur2013-10-151-2/+2
* | certmanager: Add back single_dh_use and single_ecdh_use to default options (Z...Kim Alvefur2013-10-151-2/+6
* | certmanager: Allow for specifying the dhparam option as a path to a file inst...Kim Alvefur2013-09-031-2/+17
* | Remove all trailing whitespaceFlorian Zeitz2013-08-091-1/+1
* | Merge 0.9->trunkMatthew Wild2013-07-131-0/+1
|\|
| * certmanager: Set our own default cipher string, which includes only ciphers r...Matthew Wild2013-07-131-0/+1
* | certmanager: Overhaul of how ssl configs are built.Kim Alvefur2013-06-131-38/+45
* | Merge 0.9->trunkMatthew Wild2013-06-131-0/+5
|\|
| * certmanager: Add single_dh_use and single_ecdh_use to default optionsMatthew Wild2013-06-131-0/+5
* | Merge 0.9->trunkMatthew Wild2013-06-131-1/+1
|\|
| * certmanager: Set ssl.curve to 'secp384r1' by default, to enable ECC ciphersMatthew Wild2013-06-131-1/+1
* | Merge 0.9->trunkMatthew Wild2013-06-111-0/+2
|\|
| * certmanager: Use 'curve' and 'dhparam' options from ssl config if presentMatthew Wild2013-06-111-0/+2
* | certmanager: Complain if key or certificate is missing from SSL config.Kim Alvefur2013-06-071-0/+2
|/
* certmanager: Disable SSL compression if possible (LuaSec 0.5 or 0.4.1+OpenSSL...Matthew Wild2013-05-221-1/+5
* core.*: Complete removal of all traces of the "core" section and section-rela...Kim Alvefur2013-03-231-2/+2