log mod_s2s_auth_dane/mod_s2s_auth_dane.lua @ 5488:9a4556a13cc7

age author description
Wed, 03 Mar 2021 11:51:39 +0100 Kim Alvefur mod_s2s_auth_dane: Fix traceback in DANE-TA check because unpack() moved
Wed, 03 Mar 2021 11:43:38 +0100 Kim Alvefur mod_s2s_auth_dane: Disable now redundant validation done in trunk
Sun, 04 Feb 2018 15:55:07 +0100 Kim Alvefur mod_s2s_auth_dane: Fix typo in comment [codespell]
Wed, 01 Jun 2016 22:33:51 +0200 Kim Alvefur mod_s2s_auth_dane: Use util.async if available (current prosody trunk)
Sat, 28 May 2016 16:55:43 +0200 Kim Alvefur mod_s2s_auth_dane: Move pausing code to a function
Sat, 28 May 2016 13:34:43 +0200 Kim Alvefur Backed out changeset f00cbfb812cd, it only half-worked and broke things
Thu, 26 May 2016 15:36:19 +0200 Kim Alvefur mod_s2s_auth_dane: Remove unused local
Thu, 26 May 2016 15:35:52 +0200 Kim Alvefur mod_s2s_auth_dane: Attempt a new approach to async lookups that doesn't depend on connection pausing
Thu, 26 May 2016 15:31:32 +0200 Kim Alvefur mod_s2s_auth_dane: Make sure dane field has correct type
Sun, 31 Jan 2016 12:38:51 +0100 Kim Alvefur mod_s2s_auth_dane: Correct message about not being able to support SPKI
Sat, 23 Jan 2016 20:34:26 +0100 Kim Alvefur mod_s2s_auth_dane: Check if cert:pubkey() is available
Mon, 11 Jan 2016 15:45:09 +0100 Kim Alvefur mod_s2s_auth_dane: Warn only if there enabled uses that can't be supported
Sat, 12 Dec 2015 17:00:25 +0100 Kim Alvefur mod_s2s_auth_dane: More DNS related debug logging
Sat, 12 Dec 2015 16:59:49 +0100 Kim Alvefur mod_s2s_auth_dane: Abort on bogus reply to SRV lookup
Sat, 12 Dec 2015 16:01:58 +0100 Kim Alvefur mod_s2s_auth_dane: Log as much as possible through session logger instance
Thu, 10 Dec 2015 23:24:55 +0100 Kim Alvefur mod_s2s_auth_dane: Add a telnet console command that exposes DANE information
Thu, 10 Dec 2015 23:24:11 +0100 Kim Alvefur mod_s2s_auth_dane: Keep DANE response around after the connection is established to aid in debugging
Thu, 10 Dec 2015 23:23:07 +0100 Kim Alvefur mod_s2s_auth_dane: Some more verbose debug logging
Mon, 16 Nov 2015 18:03:41 +0100 Kim Alvefur mod_s2s_auth_dane: Consider TLSA records with PKIX uses as supported (if enabled) even if the chain is invalid (if no match is found the session is considered insecure)
Thu, 05 Nov 2015 15:38:31 +0100 Kim Alvefur mod_s2s_auth_dane: Consider the current certificate chain status before checking PKIX-{EE,CA} TLSA records
Thu, 05 Nov 2015 14:10:11 +0100 Kim Alvefur mod_s2s_auth_dane: Support servers without SRV records by falling back to port 5269 and the bare hostname for TLSA lookups
Thu, 21 May 2015 11:14:16 +0200 Kim Alvefur mod_s2s_auth_dane: Ignore mutating of the 'module' global, that is ok in prosody plugins [luacheck]
Thu, 21 May 2015 10:28:02 +0200 Kim Alvefur mod_s2s_auth_dane: Validate names of DANE-TA certs
Wed, 06 May 2015 00:53:27 +0200 Kim Alvefur mod_s2s_auth_dane: Simplify cases where there are only one SRV record
Wed, 06 May 2015 00:51:46 +0200 Kim Alvefur mod_s2s_auth_dane: Don't count number of RRs in DNS reply if the DNS lib already did
Mon, 13 Apr 2015 13:36:38 +0200 Kim Alvefur mod_s2s_auth_dane: Abort earlier for sessions from hosts that don't say who they are
Mon, 13 Apr 2015 13:35:37 +0200 Kim Alvefur mod_s2s_auth_dane: Demote log message about failure to ASCII-ify hostname from error to warning
Tue, 07 Apr 2015 17:35:20 +0200 Kim Alvefur mod_s2s_auth_dane: Cleanup [luacheck]
Tue, 31 Mar 2015 20:57:34 +0200 Kim Alvefur mod_s2s_auth_dane: Update for recent changes in Zashs LuaSec branch
Mon, 16 Mar 2015 16:19:53 +0100 Kim Alvefur mod_s2s_auth_dane: Comments and cleanup