| Mon, 19 May 2014 17:00:12 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Fix potential traceback in logging if SRV target fails nameprep
|
| Mon, 19 May 2014 16:28:43 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Unreference DNS lookup when reply arrives (thanks LordVan)
|
| Thu, 15 May 2014 11:12:31 +0200 |
Kim Alvefur |
Backout 33f132c3f4b7 until 0.10
|
| Thu, 08 May 2014 15:43:58 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Fix traceback if session.srv_hosts is nil
|
| Wed, 07 May 2014 17:08:47 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Change how TLSA support is detected
|
| Wed, 07 May 2014 17:07:10 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Fix logic precedence issue
|
| Sun, 27 Apr 2014 01:43:43 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Add support for DANE-TA and PKIX-CA (requires LuaSec changes)
|
| Sun, 27 Apr 2014 01:40:20 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Use PEM to DER function from util.x509 (0.10+)
|
| Sun, 27 Apr 2014 01:24:03 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Launch DANE queries when sending or receiving stream-features instead of monkeypatching s2sout.lib
|
| Thu, 24 Apr 2014 18:34:10 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Clean up no longer needed DNS replies
|
| Thu, 24 Apr 2014 18:33:13 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Skip dns queries for already authenticated s2sin connections
|
| Thu, 24 Apr 2014 18:32:25 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Remove non-working bogus handling
|
| Thu, 24 Apr 2014 18:19:09 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Break out DANE check into a function
|
| Thu, 10 Apr 2014 22:40:11 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Improve debug message and log it on the session
|
| Mon, 24 Mar 2014 13:04:24 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Merge functionality from mod_s2s_auth_dnssec_srv
|
| Thu, 20 Mar 2014 15:55:37 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Fix typo in debug statement
|
| Thu, 20 Mar 2014 15:31:15 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Pause s2sin while doing SRV and TLSA lookups, fixes race condition (Can haz util.async plz)
|
| Wed, 19 Mar 2014 19:48:06 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Fix tb when no hostname sent by remote
|
| Wed, 19 Mar 2014 14:33:10 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Verify that the SRV is secure
|
| Wed, 19 Mar 2014 14:04:09 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Abort module loading if luaunbound is unavailable
|
| Tue, 18 Mar 2014 16:09:51 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Drop support for domains without SRV for now
|
| Tue, 18 Mar 2014 16:02:24 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Fix for a17c2c4043e5
|
| Tue, 18 Mar 2014 15:54:08 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Skip TLSA lookups if SRV is insecure
|
| Tue, 18 Mar 2014 15:36:23 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Hack for domains without SRV
|
| Tue, 18 Mar 2014 15:20:28 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Don't pass nil to hash functions in case of unsupported selectors
|
| Tue, 18 Mar 2014 15:12:11 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Back to _port._tcp.srvtarget.example.net
|
| Fri, 14 Mar 2014 14:30:33 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Bogus replies should have no RRdata
|
| Fri, 14 Mar 2014 14:23:27 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Comments and TODOs
|
| Fri, 14 Mar 2014 14:18:18 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Make supported DANE usages configurable, default to DANE-EE
|
| Fri, 14 Mar 2014 14:15:56 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Simplify, but diverge from DANE-SRV draft. Will now look for _xmpp-server.example.com IN TLSA for both directions
|
| Tue, 11 Mar 2014 21:13:40 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Only invalidate trust if we found any supported DANE records
|
| Sun, 09 Mar 2014 23:17:17 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Improve handling of bogus data
|
