aboutsummaryrefslogtreecommitdiffstats
path: root/core/certmanager.lua
Commit message (Expand)AuthorAgeFilesLines
* core.certmanager: Add TLS 1.3 cipher suites to Mozilla TLS presetsKim Alvefur2021-11-031-1/+7
* core.certmanager: Presets based on Mozilla SSL Configuration GeneratorKim Alvefur2019-12-221-0/+60
* core.certmanager: Support 'use_dane' setting to enable DANE supportKim Alvefur2021-07-181-0/+2
* core.certmanager: Skip service certificate lookup for https clientKim Alvefur2021-05-271-1/+2
* Merge 0.11->trunkMatthew Wild2021-05-131-9/+12
|\
| * certmanager: Disable renegotiation by defaultMatthew Wild2021-05-111-0/+2
| * core.certmanager: Test for SSL options in absence of LuaSec configKim Alvefur2021-04-261-5/+9
| * core.certmanager: Attempt to directly access LuaSec config tableKim Alvefur2021-04-261-1/+1
| * core.certmanager: Move EECDH ciphers before EDH in default cipherstring (fixe...Kim Alvefur2019-08-251-1/+1
* | core.certmanager: Catch error from lfsKim Alvefur2021-05-071-1/+11
* | core.certmanager: Resolve certs path relative to config dirKim Alvefur2021-05-071-3/+3
* | core.certmanager: Skip directly to guessing of key from cert filenameKim Alvefur2021-05-051-2/+17
* | core.certmanager: Join paths with OS-aware util.paths functionKim Alvefur2021-05-051-2/+3
* | core.certmanager: Build an index over certificatesKim Alvefur2021-04-101-0/+79
* | core.certmanager: Check for complete filenameKim Alvefur2021-04-101-1/+1
* | core.certmanager: Add comments explaining the 'verifyext' TLS settingsKim Alvefur2021-02-061-1/+4
* | core.certmanager: Add TODO about LuaSec issueKim Alvefur2020-06-071-0/+3
* | Merge 0.11->trunkKim Alvefur2020-04-101-6/+8
|\|
| * core.certmanager: Look for privkey.pem to go with fullchain.pem (fix #1526)Kim Alvefur2020-04-101-6/+8
* | core.portmanager: Fix TLS context inheritance for SNI hosts (completes SNI su...Kim Alvefur2019-11-291-0/+1
* | core.certmanager: Lower severity for tls config not having certKim Alvefur2019-09-071-2/+4
* | core.certmanager: Remove unused import [luacheck]Kim Alvefur2019-08-251-1/+0
* | Remove COMPAT with temporary luasec forkKim Alvefur2019-08-251-7/+0
* | core.certmanager: Move EECDH ciphers before EDH in default cipherstringKim Alvefur2019-08-251-1/+1
* | core.certmanager: Do not ask for client certificates by defaultKim Alvefur2019-03-101-1/+1
|/
* Merge 0.10->trunkKim Alvefur2018-05-251-1/+1
|\
| * core.certmanager: Allow all non-whitespace in service name (fixes #1019)Kim Alvefur2018-05-251-1/+1
* | vairious: Add annotation when an empty environment is set [luacheck]Kim Alvefur2018-02-281-0/+1
|/
* certmanager: Check for missing certificate before key in configuration (shoul...Kim Alvefur2017-12-281-1/+1
* certmanager: Set single curve conditioned on LuaSec advertising EC crypto sup...Kim Alvefur2017-11-201-1/+1
* certmanager: Filter out curves not supported by LuaSecKim Alvefur2017-11-201-0/+12
* certmanager: Change table representing LuaSec capabilities to match capabilit...Kim Alvefur2017-11-201-13/+20
* core.certmanager: Set a default curveslist [sic], fixes #879, #943, #951 if u...Kim Alvefur2017-09-271-0/+6
* prosodyctl: cert import: Reuse function from certmanager for locating certifi...Kim Alvefur2017-09-271-0/+1
* certmanager: Add debug logging (thanks av6)Matthew Wild2017-09-231-0/+4
* certmanager: Update the 'certificates' option after the config has been reloa...Kim Alvefur2017-06-011-0/+1
* core.certmanager: Translate "no start line" to something friendlier (thanks s...Kim Alvefur2016-11-261-0/+5
* core.certmanager: Split cipher list into array with comments explaining each ...Kim Alvefur2016-09-121-1/+10
* certmanager: Assume default config path of '.' (fixes prosodyctl check certs ...Kim Alvefur2016-07-291-1/+1
* certmanager: Explicitly tonumber() version number segments before doing arith...Matthew Wild2016-03-261-1/+1
* certmanager: Localize tonumberMatthew Wild2016-02-181-1/+1
* certmanager: Try filename.key if certificate is set to a full filename ending...Kim Alvefur2016-02-051-3/+2
* certmanager: Apply global ssl config later so certificate/key is not overwrit...Kim Alvefur2016-02-051-1/+1
* certmanager: Support new certificate configuration for non-XMPP services too ...Matthew Wild2016-02-051-6/+23
* core.certmanager: Look for certificate and key in a few different placesKim Alvefur2016-02-031-0/+28
* core.certmanager: Remove non-string filenames (allows setting eg capath to fa...Kim Alvefur2015-10-111-0/+2
* core.*: Remove use of module() functionKim Alvefur2015-02-211-4/+7
* certmanager: Fix compat for MattJs old LuaSec forkKim Alvefur2015-02-051-1/+1
* certmanager: Fix previous commitKim Alvefur2015-02-051-1/+1
* certmanager: Limit certificate chain depth to 9Kim Alvefur2015-02-051-0/+1