Log

mod_s2s_auth_dane/mod_s2s_auth_dane.lua @ 5483:f9cecbd03e11

description author age
mod_s2s_auth_dane: Fix traceback in DANE-TA check because unpack() moved Kim Alvefur Wed, 03 Mar 2021 11:51:39 +0100
mod_s2s_auth_dane: Disable now redundant validation done in trunk Kim Alvefur Wed, 03 Mar 2021 11:43:38 +0100
mod_s2s_auth_dane: Fix typo in comment [codespell] Kim Alvefur Sun, 04 Feb 2018 15:55:07 +0100
mod_s2s_auth_dane: Use util.async if available (current prosody trunk) Kim Alvefur Wed, 01 Jun 2016 22:33:51 +0200
mod_s2s_auth_dane: Move pausing code to a function Kim Alvefur Sat, 28 May 2016 16:55:43 +0200
Backed out changeset f00cbfb812cd, it only half-worked and broke things Kim Alvefur Sat, 28 May 2016 13:34:43 +0200
mod_s2s_auth_dane: Remove unused local Kim Alvefur Thu, 26 May 2016 15:36:19 +0200
mod_s2s_auth_dane: Attempt a new approach to async lookups that doesn't depend on connection pausing Kim Alvefur Thu, 26 May 2016 15:35:52 +0200
mod_s2s_auth_dane: Make sure dane field has correct type Kim Alvefur Thu, 26 May 2016 15:31:32 +0200
mod_s2s_auth_dane: Correct message about not being able to support SPKI Kim Alvefur Sun, 31 Jan 2016 12:38:51 +0100
mod_s2s_auth_dane: Check if cert:pubkey() is available Kim Alvefur Sat, 23 Jan 2016 20:34:26 +0100
mod_s2s_auth_dane: Warn only if there enabled uses that can't be supported Kim Alvefur Mon, 11 Jan 2016 15:45:09 +0100
mod_s2s_auth_dane: More DNS related debug logging Kim Alvefur Sat, 12 Dec 2015 17:00:25 +0100
mod_s2s_auth_dane: Abort on bogus reply to SRV lookup Kim Alvefur Sat, 12 Dec 2015 16:59:49 +0100
mod_s2s_auth_dane: Log as much as possible through session logger instance Kim Alvefur Sat, 12 Dec 2015 16:01:58 +0100
mod_s2s_auth_dane: Add a telnet console command that exposes DANE information Kim Alvefur Thu, 10 Dec 2015 23:24:55 +0100
mod_s2s_auth_dane: Keep DANE response around after the connection is established to aid in debugging Kim Alvefur Thu, 10 Dec 2015 23:24:11 +0100
mod_s2s_auth_dane: Some more verbose debug logging Kim Alvefur Thu, 10 Dec 2015 23:23:07 +0100
mod_s2s_auth_dane: Consider TLSA records with PKIX uses as supported (if enabled) even if the chain is invalid (if no match is found the session is considered insecure) Kim Alvefur Mon, 16 Nov 2015 18:03:41 +0100
mod_s2s_auth_dane: Consider the current certificate chain status before checking PKIX-{EE,CA} TLSA records Kim Alvefur Thu, 05 Nov 2015 15:38:31 +0100
mod_s2s_auth_dane: Support servers without SRV records by falling back to port 5269 and the bare hostname for TLSA lookups Kim Alvefur Thu, 05 Nov 2015 14:10:11 +0100
mod_s2s_auth_dane: Ignore mutating of the 'module' global, that is ok in prosody plugins [luacheck] Kim Alvefur Thu, 21 May 2015 11:14:16 +0200
mod_s2s_auth_dane: Validate names of DANE-TA certs Kim Alvefur Thu, 21 May 2015 10:28:02 +0200
mod_s2s_auth_dane: Simplify cases where there are only one SRV record Kim Alvefur Wed, 06 May 2015 00:53:27 +0200
mod_s2s_auth_dane: Don't count number of RRs in DNS reply if the DNS lib already did Kim Alvefur Wed, 06 May 2015 00:51:46 +0200
mod_s2s_auth_dane: Abort earlier for sessions from hosts that don't say who they are Kim Alvefur Mon, 13 Apr 2015 13:36:38 +0200
mod_s2s_auth_dane: Demote log message about failure to ASCII-ify hostname from error to warning Kim Alvefur Mon, 13 Apr 2015 13:35:37 +0200
mod_s2s_auth_dane: Cleanup [luacheck] Kim Alvefur Tue, 07 Apr 2015 17:35:20 +0200
mod_s2s_auth_dane: Update for recent changes in Zashs LuaSec branch Kim Alvefur Tue, 31 Mar 2015 20:57:34 +0200
mod_s2s_auth_dane: Comments and cleanup Kim Alvefur Mon, 16 Mar 2015 16:19:53 +0100