Mercurial > prosody-modules
comparison mod_s2s_auth_dnssec_srv/mod_s2s_auth_dnssec_srv.lua @ 1361:b9213ddb860f
mod_s2s_auth_dnssec_srv: Don't break DANE
author | Kim Alvefur <zash@zash.se> |
---|---|
date | Wed, 19 Mar 2014 19:39:03 +0100 |
parents | 6ee395396333 |
children | 478b3288192f |
comparison
equal
deleted
inserted
replaced
1360:6ee395396333 | 1361:b9213ddb860f |
---|---|
41 module:hook("s2s-stream-features", function(event) | 41 module:hook("s2s-stream-features", function(event) |
42 local host_session = event.origin; | 42 local host_session = event.origin; |
43 local name = to_ascii(host_session.from_host); | 43 local name = to_ascii(host_session.from_host); |
44 if not name then return end | 44 if not name then return end |
45 dns_lookup(function (answer) | 45 dns_lookup(function (answer) |
46 if host_session.dane ~= nil then return end | |
46 if not answer.secure or #answer == 1 | 47 if not answer.secure or #answer == 1 |
47 and answer[1].srv.target == "." then return end | 48 and answer[1].srv.target == "." then return end |
48 local srv_hosts = { answer = answer }; | 49 local srv_hosts = { answer = answer }; |
49 for _, record in ipairs(answer) do | 50 for _, record in ipairs(answer) do |
50 t_insert(srv_hosts, record.srv); | 51 t_insert(srv_hosts, record.srv); |