aboutsummaryrefslogtreecommitdiffstats
path: root/core
Commit message (Collapse)AuthorAgeFilesLines
* certmanager: Disable renegotiation by defaultMatthew Wild2021-05-111-0/+2
| | | | This requires LuaSec 0.7+ and OpenSSL 1.1.1+
* core.certmanager: Test for SSL options in absence of LuaSec configKim Alvefur2021-04-261-5/+9
|
* core.certmanager: Attempt to directly access LuaSec config tableKim Alvefur2021-04-261-1/+1
| | | | | Due to a bug this field was not properly exported before See https://github.com/brunoos/luasec/issues/149
* core.certmanager: Move EECDH ciphers before EDH in default cipherstring ↵Kim Alvefur2019-08-251-1/+1
| | | | | | | | | | | | | | | | | | | | | | (fixes #1513) Backport of 94e341dee51c The original intent of having kEDH before kEECDH was that if a `dhparam` file was specified, this would be interpreted as a preference by the admin for old and well-tested Diffie-Hellman key agreement over newer elliptic curve ones. Otherwise the faster elliptic curve ciphersuites would be preferred. This didn't really work as intended since this affects the ClientHello on outgoing s2s connections, leading to some servers using poorly configured kEDH. With Debian shipping OpenSSL settings that enforce a higher security level, this caused interoperability problems with servers that use DH params smaller than 2048 bits. E.g. jabber.org at the time of this writing has 1024 bit DH params. MattJ says > Curves have won, and OpenSSL is less weird about them now
* core.certmanager: Look for privkey.pem to go with fullchain.pem (fix #1526)Kim Alvefur2020-04-101-6/+8
| | | | | | | This makes `prosodyctl cert import example.com /path/to/example.com/fullchain.pem` work. This was never intended to, yet users commonly tried this and got problems.
* core.rostermanager: Cache rosters of offline users for faster access (fixes ↵Kim Alvefur2018-12-161-0/+22
| | | | | | #1233) (grafted from 42a3e3a2824822cef7640ac56d182c59bdd4224e)
* core.modulemanager: Disable mod_vcard if mod_vcard_legacy is enabled to ↵Kim Alvefur2019-11-231-0/+5
| | | | prevent conflict (#1469)
* core.portmanager: Log debug message for each kind of TLS context createdKim Alvefur2019-04-231-0/+1
|
* modulemanager: Fix issues introduced in previous commit acf74ad0b795 [thanks ↵Matthew Wild2018-10-261-7/+4
| | | | luacheck, scansion]
* Many things: switch from hacky multi-arg xpcall implementations to a ↵Matthew Wild2018-10-261-7/+2
| | | | standard util.xpcall
* moduleapi: Prevent loading disabled module as dependency of enabled oneKim Alvefur2018-10-251-3/+3
| | | | Explicitly disabled module should stay disabled.
* stanza_router: Remove deprecation warning for core routing functions from ↵Kim Alvefur2018-10-211-10/+0
| | | | global scope (deprecated in 0.9)
* core.moduleapi: Remove redundant conditionKim Alvefur2018-10-181-1/+1
|
* rostermanager: Use util.id to generate ids for roster pushedMatthew Wild2018-09-131-1/+3
|
* configmanager: Allow referencing environment variables in the config as as ↵Matthew Wild2018-09-031-2/+5
| | | | ENV_<name>
* moduleapi: Remove multiple-parameters feature from module:shared()Matthew Wild2018-08-081-25/+24
| | | | | | Multiple paths are rarely used, and leads to less clear code than just calling module:shared() once per shared table. It also prevents us from extending the API with new parameters in the future.
* sessionmanager, mod_s2s: Bring debug line for outgoing stanzas in line with ↵Kim Alvefur2018-07-241-1/+1
| | | | that for incoming
* core.stanza_router: Reduce logging of common routing (#776)Kim Alvefur2018-07-221-2/+1
|
* sessionmanager: Log top tag of outgoing stanzas on c2s (#776)Kim Alvefur2018-07-221-0/+1
|
* moduleapi: Use :send API from :broadcast for compactnessKim Alvefur2018-07-141-1/+1
|
* moduleapi: Lazy-load statsmanager on demandKim Alvefur2018-07-071-1/+1
|
* moduleapi: Lazy-load configmanager on demand simplify dependency graphKim Alvefur2018-07-071-1/+1
|
* modulemanager: Expose function to get the list of modules that should be ↵Matthew Wild2018-06-201-4/+13
| | | | loaded on a host
* sessionmanager: Generate shorter random resouresKim Alvefur2018-05-291-3/+3
|
* Merge 0.10->trunkKim Alvefur2018-05-251-1/+1
|\
| * core.certmanager: Allow all non-whitespace in service name (fixes #1019)Kim Alvefur2018-05-251-1/+1
| |
* | loggingmanager: Remove luacheck annotations for global log functions that ↵Kim Alvefur2018-04-101-1/+0
| | | | | | | | are now set in util.startup
* | util.startup: Set up event hooks for reloading logging here instead of in ↵Kim Alvefur2018-04-051-6/+0
| | | | | | | | loggingmanager to simplify startup dependencies
* | util.startup: Initialize prosody.log / _G.log here instead of in ↵Kim Alvefur2018-04-051-3/+0
| | | | | | | | loggingmanager to reduce dependencies
* | core: Use prosody.hosts instead of _G.hosts for consistencyKim Alvefur2018-03-295-5/+5
| |
* | loggingmanager: Hook event for reopening log files instead of config reloadedKim Alvefur2018-03-251-1/+1
| |
* | configmanager: Move firing of the 'config-reloaded' event into util.startup ↵Kim Alvefur2018-03-251-7/+0
| | | | | | | | (fixes #1117)
* | storagemanager: Default storage_async_check to false for a whileMatthew Wild2018-03-251-1/+1
| |
* | stanza_router: Limit scope of deprecated warning function since it is not ↵Kim Alvefur2018-03-231-1/+1
| | | | | | | | used anywhere else [luacheck]
* | s2smanager: Explicitly export the incoming_s2s table [luacheck]Kim Alvefur2018-03-231-2/+2
| |
* | storagemanager: Remove unused variable [luacheck]Kim Alvefur2018-03-221-1/+1
| |
* | storagemanager: Log warning on storage access outside of async contextsMatthew Wild2018-03-221-0/+32
| |
* | Merge 0.10->trunkKim Alvefur2018-03-061-0/+3
|\|
| * hostmanager: Add a logging close method in case something tries to close the ↵Kim Alvefur2018-02-241-0/+3
| | | | | | | | origin of local-originated stanzas (see #1084)
* | vairious: Add annotation when an empty environment is set [luacheck]Kim Alvefur2018-02-2811-0/+11
| |
* | moduleapi: Remove unused and undocumented :has_feature and :has_identityKim Alvefur2018-02-231-14/+0
| |
* | Merge 0.10->trunkKim Alvefur2017-12-291-0/+8
|\|
| * rostermanager: Explicitly remove old-style 'pending' table from rosters (or ↵Kim Alvefur2017-12-291-0/+8
| | | | | | | | it stays forever due to map stores)
* | Merge 0.10->trunkKim Alvefur2017-12-281-1/+1
|\|
| * certmanager: Check for missing certificate before key in configuration ↵Kim Alvefur2017-12-281-1/+1
| | | | | | | | (should be marginally less confusing)
* | moduleapi: Warn if a module being loaded as a dependency has been disabledKim Alvefur2017-12-271-0/+3
| |
* | Merge 0.10->trunkKim Alvefur2017-11-201-14/+33
|\|
| * certmanager: Set single curve conditioned on LuaSec advertising EC crypto ↵Kim Alvefur2017-11-201-1/+1
| | | | | | | | support
| * certmanager: Filter out curves not supported by LuaSecKim Alvefur2017-11-201-0/+12
| |
| * certmanager: Change table representing LuaSec capabilities to match ↵Kim Alvefur2017-11-201-13/+20
| | | | | | | | capabilities table exposed in LuaSec 0.7
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-26 19:01:59 +0000