aboutsummaryrefslogtreecommitdiffstats
path: root/plugins/mod_tls.lua
Commit message (Expand)AuthorAgeFilesLines
* mod_tls: tell network backend to stop reading while preparing TLSJonas Schäfer2022-04-021-0/+7
* mod_tls: Do not offer TLS if the connection is considered secureJonas Schäfer2021-09-171-0/+3
* various: Require encryption by default for realKim Alvefur2021-12-251-2/+2
* mod_tls: Set ALPN on outgoing connectionsKim Alvefur2022-01-251-1/+2
* mod_s2s: Retrieve TLS context for outgoing Direct TLS connections from mod_tlsKim Alvefur2022-01-211-1/+6
* mod_tls: Attempt STARTTLS on outgoing unencrypted legacy s2s connectionsKim Alvefur2021-09-011-0/+8
* Fix various spelling errors (thanks codespell)Kim Alvefur2021-07-271-1/+1
* mod_tls: Add "support" for <failure> by closing gracefullyKim Alvefur2021-05-211-0/+6
* mod_tls: Fix order of debug messages and tls context creationKim Alvefur2021-05-051-2/+2
* mod_tls: Bail out if session got destroyed while sending <proceed/>Kim Alvefur2021-04-151-0/+1
* mod_tls: Ignore lack of STARTTLS offer only when s2s_require_encryption setKim Alvefur2021-01-291-1/+4
* mod_tls: Attempt STARTTLS even if not advertised as per RFC 7590Kim Alvefur2021-01-291-2/+6
* Merge 0.11->trunkKim Alvefur2020-04-261-1/+7
|\
| * mod_tls: Log when certificates are (re)loadedKim Alvefur2020-04-261-1/+7
* | Merge 0.11->trunkKim Alvefur2019-04-241-0/+3
|\|
| * mod_tls: Log debug message for each kind of TLS context createdKim Alvefur2019-04-231-0/+3
* | mod_tls: Restore querying for certificates on s2sKim Alvefur2019-03-111-2/+6
* | mod_tls: Keep TLS context errors and repeat them again for each sessionKim Alvefur2018-12-281-7/+17
|/
* mod_tls: Rebuild SSL context objects on configuration reload - #701Kim Alvefur2017-04-251-1/+4
* mod_tls: Switch to hook_tag from hook_stanza which was renamed in 2087d42f1e77Kim Alvefur2017-03-061-2/+2
* mod_tls: Suppress debug message if already using encryptionKim Alvefur2017-02-251-1/+3
* mod_tls: Log reasons for not being able to do TLSKim Alvefur2017-02-151-0/+2
* mod_tls: Check that connection has starttls method first to prevent offering ...Kim Alvefur2017-01-271-3/+3
* mod_tls: Return session.ssl_ctx if not nil, like when doing the full session ...Kim Alvefur2017-01-251-3/+3
* mod_tls: Add debug logging for when TLS should be doable but no ssl context w...Kim Alvefur2017-01-251-0/+4
* mod_tls: Verify that TLS is available before proceedingKim Alvefur2017-01-231-1/+1
* mod_tls: Only accept <proceed> on outgoing s2s connectionsKim Alvefur2017-01-231-5/+7
* mod_tls: Ignore unused argument [luacheck]Kim Alvefur2016-11-021-1/+1
* mod_tls: Fix ssl option fallback to a "parent" host if current host does not ...Kim Alvefur2015-11-091-2/+2
* mod_tls: Remove unused reference to global ssl config option (certmanager add...Kim Alvefur2015-11-091-1/+0
* mod_tls: Fix inhertinance of 'ssl' option from "parent" host to subdomain (fi...Kim Alvefur2015-09-151-10/+12
* mod_tls: Treat session.ssl_ctx being false as a signal that TLS is disabledKim Alvefur2015-05-181-1/+1
* mod_tls: Build <starttls/> as a stanza instead of with string concatenationKim Alvefur2015-05-181-1/+2
* certmanager, mod_tls: Return final ssl config as third return value (fix for ...Kim Alvefur2014-11-221-7/+7
* mod_tls: Keep ssl config around and attach them to sessionsKim Alvefur2014-11-191-6/+12
* mod_legacyauth, mod_saslauth, mod_tls: Pass require_encryption as default opt...Kim Alvefur2014-10-211-1/+1
* mod_lastactivity, mod_legacyauth, mod_presence, mod_saslauth, mod_tls: Use th...Kim Alvefur2014-07-041-1/+1
* mod_tls: Simplify and use new ssl config merging in certmanagerKim Alvefur2014-07-031-15/+17
* Merge 0.9->0.10Matthew Wild2014-01-181-4/+10
|\
| * mod_tls: Let s2s_secure_auth override s2s_require_encryption and warn if they...Kim Alvefur2014-01-151-0/+6
| * mod_tls: Rename variables to be less confusingKim Alvefur2014-01-151-4/+4
| * mod_tls: Log error when TLS initialization fails0.9.3Matthew Wild2014-01-121-2/+9
* | Remove all trailing whitespaceFlorian Zeitz2013-08-091-1/+1
* | mod_tls: Remove debug statementKim Alvefur2013-06-161-1/+0
* | mod_tls: Refactor to allow separate SSL configuration for c2s and s2s connect...Kim Alvefur2013-06-131-26/+36
|/
* mod_tls: More use of config sections removedKim Alvefur2013-03-231-2/+2
* mod_announce, mod_auth_anonymous, mod_c2s, mod_c2s, mod_component, mod_iq, mo...Kim Alvefur2013-03-231-0/+1
* mod_tls: Fix log statement (thanks Zash)Matthew Wild2012-01-181-1/+1
* mod_tls: Fix for components to more reliably inherit SSL settings from their ...Matthew Wild2011-04-061-4/+3
* mod_tls: Drop 'TLS negotiation started for ...' to debug level from infoMatthew Wild2011-02-221-1/+1