aboutsummaryrefslogtreecommitdiffstats
path: root/util/sslconfig.lua
Commit message (Collapse)AuthorAgeFilesLines
* util.sslconfig: Support DH parameters as literal stringKim Alvefur2024-07-121-2/+12
| | | | Simplifies shipping well-known DH parameters in the config
* util: Prefix module imports with prosody namespaceKim Alvefur2023-03-171-1/+1
|
* net: refactor sslconfig to not depend on LuaSecJonas Schäfer2022-04-021-16/+25
| | | | | | | | | | | This now requires that the network backend exposes a tls_builder function, which essentially wraps the former util.sslconfig.new() function, passing a factory to create the eventual SSL context. That allows a net.server backend to pick whatever it likes as SSL context factory, as long as it understands the config table passed by the SSL config builder. Heck, a backend could even mock and replace the entire SSL config builder API.
* net: isolate LuaSec-specificsJonas Schäfer2022-04-271-1/+53
| | | | | | | | | | | | | | For this, various accessor functions are now provided directly on the sockets, which reach down into the LuaSec implementation to obtain the information. While this may seem of little gain at first, it hides the implementation detail of the LuaSec+LuaSocket combination that the actual socket and the TLS layer are separate objects. The net gain here is that an alternative implementation does not have to emulate that specific implementation detail and "only" has to expose LuaSec-compatible data structures on the new functions.
* util.sslconfig: Process TLS 1.3-specific cipher listKim Alvefur2020-06-071-0/+3
| | | | Same way as with other cipher list options
* util.sslconfig: Recognise TLS 1.3 as a protocol versionKim Alvefur2018-10-281-1/+1
| | | | This enables it to understand protocol = "tlsv1_3+"
* vairious: Add annotation when an empty environment is set [luacheck]Kim Alvefur2018-02-281-0/+1
|
* util.sslconfig: Treat 'curveslist', added in LuaSec 0.7, as a ↵Kim Alvefur2017-09-271-0/+3
| | | | colon-separated list, like ciphers (see #879, #943, #951)
* util.sslconfig: Remvoe flag merging for 'verify' as this is more of a ↵Kim Alvefur2017-01-261-2/+0
| | | | tri-state field than a set of options
* util.sslconfig: More descriptive variable names and also commentsKim Alvefur2015-12-131-31/+56
|
* util.*: Remove use of module() function, make all module functions local and ↵Kim Alvefur2015-02-211-2/+10
| | | | return them in a table at the end
* util.sslconfig: Rename variable to avoid name clash [luacheck]Matthew Wild2015-05-061-4/+4
|
* util.sslconfig: Add lib to deal with LuaSec SSL context configsKim Alvefur2014-07-031-0/+87