| Commit message (Expand) | Author | Age | Files | Lines |
* | certmanager: Limit certificate chain depth to 9 | Kim Alvefur | 2015-02-05 | 1 | -0/+1 |
* | certmanager: Options that appear to be available since LuaSec 0.2 | Kim Alvefur | 2015-02-05 | 1 | -3/+3 |
* | certmanager: Improve "detection" of features that depend on LuaSec version | Kim Alvefur | 2015-02-05 | 1 | -11/+15 |
* | certmanager: Add locals for ssl.context and ssl.x509 | Kim Alvefur | 2015-02-05 | 1 | -3/+5 |
* | certmanager: Early return from the entire module if LuaSec is unavailable | Kim Alvefur | 2015-02-05 | 1 | -12/+18 |
* | certmanager: Make global variable access explicit | Matthew Wild | 2015-01-20 | 1 | -1/+1 |
* | certmanager, mod_tls: Return final ssl config as third return value (fix for ... | Kim Alvefur | 2014-11-22 | 1 | -3/+1 |
* | certmanager: Return final ssl config along with ssl context on success | Kim Alvefur | 2014-11-19 | 1 | -1/+3 |
* | core.certmanager: Make create_context() support an arbitrary number of option... | Kim Alvefur | 2014-07-03 | 1 | -3/+6 |
* | core.certmanager: Use util.sslconfig | Kim Alvefur | 2014-07-03 | 1 | -71/+14 |
* | core.certmanager, core.moduleapi, mod_storage_sql, mod_storage_sql2: Import f... | Kim Alvefur | 2014-05-09 | 1 | -1/+1 |
* | certmanager: Move ssl.protocol handling to after ssl.options is a table (than... | Kim Alvefur | 2014-04-21 | 1 | -8/+9 |
* | certmanager: Fix traceback if no global 'ssl' section set (thanks albert) | Kim Alvefur | 2014-04-20 | 1 | -1/+3 |
* | certmanager: Update ssl_compression when config is reloaded | Kim Alvefur | 2014-04-15 | 1 | -0/+3 |
* | certmanager: Reformat core ssl defaults | Kim Alvefur | 2014-04-15 | 1 | -9/+9 |
* | certmanager: Support ssl.protocol syntax like "tlsv1+" that disables older pr... | Kim Alvefur | 2014-04-15 | 1 | -2/+13 |
* | certmanager: Merge ssl.options, verify etc from core defaults and global ssl ... | Kim Alvefur | 2014-04-15 | 1 | -0/+29 |
* | certmanager: Wrap long line and add comment | Kim Alvefur | 2014-04-14 | 1 | -1/+5 |
* | certmanager: Concatenate cipher list if given as a table | Kim Alvefur | 2014-04-14 | 1 | -0/+6 |
* | certmanager: Allow non-server contexts to be without certificate and key | Kim Alvefur | 2014-04-14 | 1 | -2/+4 |
* | certmanager: Check for non-nil values instead of true-ish values, allows remo... | Kim Alvefur | 2014-04-14 | 1 | -2/+3 |
* | Merge 0.9->0.10 | Matthew Wild | 2013-11-21 | 1 | -1/+1 |
|\ |
|
| * | certmanager: Further cipher string tweaking. Re-enable ciphers required for D... | Matthew Wild | 2013-11-21 | 1 | -1/+1 |
| * | Back out 1b0ac7950129, as SSLv3 appears to still be in moderate use on the ne... | Matthew Wild | 2013-11-12 | 1 | -1/+1 |
* | | Merge 0.9->0.10 | Matthew Wild | 2013-11-10 | 1 | -1/+1 |
|\| |
|
| * | certmanager: Update default cipher string to prefer forward-secrecy over ciph... | Matthew Wild | 2013-11-10 | 1 | -1/+1 |
* | | Merge 0.9->0.10 | Matthew Wild | 2013-11-09 | 1 | -1/+1 |
|\| |
|
| * | certmanager: Fix order of options, so that the dynamic option is at the end o... | Matthew Wild | 2013-11-09 | 1 | -1/+1 |
| * | certmanager: Default to using the server's cipher preference order by default... | Matthew Wild | 2013-11-09 | 1 | -1/+1 |
* | | Merge 0.9 -> 0.10 | Kim Alvefur | 2013-10-31 | 1 | -1/+1 |
|\| |
|
| * | certmanager: Disable SSLv3 by default | Kim Alvefur | 2013-10-31 | 1 | -1/+1 |
| * | certmanager: Fix dhparam callback, missing imports (Testing, pfft)0.9.1 | Kim Alvefur | 2013-09-03 | 1 | -3/+5 |
| * | certmanager: Allow for specifying the dhparam option as a path to a file inst... | Kim Alvefur | 2013-09-03 | 1 | -0/+11 |
| * | certmanager: Fix for working around a bug with LuaSec 0.4.1 that causes it to... | Matthew Wild | 2013-09-03 | 1 | -4/+4 |
* | | certmanager: Fix. Again. | Kim Alvefur | 2013-10-15 | 1 | -2/+2 |
* | | certmanager: Add back single_dh_use and single_ecdh_use to default options (Z... | Kim Alvefur | 2013-10-15 | 1 | -2/+6 |
* | | certmanager: Allow for specifying the dhparam option as a path to a file inst... | Kim Alvefur | 2013-09-03 | 1 | -2/+17 |
* | | Remove all trailing whitespace | Florian Zeitz | 2013-08-09 | 1 | -1/+1 |
* | | Merge 0.9->trunk | Matthew Wild | 2013-07-13 | 1 | -0/+1 |
|\| |
|
| * | certmanager: Set our own default cipher string, which includes only ciphers r... | Matthew Wild | 2013-07-13 | 1 | -0/+1 |
* | | certmanager: Overhaul of how ssl configs are built. | Kim Alvefur | 2013-06-13 | 1 | -38/+45 |
* | | Merge 0.9->trunk | Matthew Wild | 2013-06-13 | 1 | -0/+5 |
|\| |
|
| * | certmanager: Add single_dh_use and single_ecdh_use to default options | Matthew Wild | 2013-06-13 | 1 | -0/+5 |
* | | Merge 0.9->trunk | Matthew Wild | 2013-06-13 | 1 | -1/+1 |
|\| |
|
| * | certmanager: Set ssl.curve to 'secp384r1' by default, to enable ECC ciphers | Matthew Wild | 2013-06-13 | 1 | -1/+1 |
* | | Merge 0.9->trunk | Matthew Wild | 2013-06-11 | 1 | -0/+2 |
|\| |
|
| * | certmanager: Use 'curve' and 'dhparam' options from ssl config if present | Matthew Wild | 2013-06-11 | 1 | -0/+2 |
* | | certmanager: Complain if key or certificate is missing from SSL config. | Kim Alvefur | 2013-06-07 | 1 | -0/+2 |
|/ |
|
* | certmanager: Disable SSL compression if possible (LuaSec 0.5 or 0.4.1+OpenSSL... | Matthew Wild | 2013-05-22 | 1 | -1/+5 |
* | core.*: Complete removal of all traces of the "core" section and section-rela... | Kim Alvefur | 2013-03-23 | 1 | -2/+2 |