prosody
0c5091b8b833
core/certmanager.lua
Software / code / prosody
Comparison
core/certmanager.lua @ 4889:0c5091b8b833
certmanager: Add no_ticket option for OpenSSL (we don't support resumption yet)
| author | Matthew Wild <mwild1@gmail.com> |
|---|---|
| date | Fri, 18 May 2012 00:31:23 +0100 |
| parent | 4855:a31ea431d906 |
| child | 4890:7d4ec9609957 |
comparison
equal
deleted
inserted
replaced
| 4888:c3e17766aead | 4889:0c5091b8b833 |
|---|---|
| 20 module "certmanager" | 20 module "certmanager" |
| 21 | 21 |
| 22 -- Global SSL options if not overridden per-host | 22 -- Global SSL options if not overridden per-host |
| 23 local default_ssl_config = configmanager.get("*", "core", "ssl"); | 23 local default_ssl_config = configmanager.get("*", "core", "ssl"); |
| 24 local default_capath = "/etc/ssl/certs"; | 24 local default_capath = "/etc/ssl/certs"; |
| 25 local default_verify = (ssl and ssl.x509 and { "peer", "client_once", "continue", "ignore_purpose" }) or "none"; | 25 local default_verify = (ssl and ssl.x509 and { "peer", "client_once", "continue", "ignore_purpose", "no_ticket" }) or "no_ticket"; |
| 26 local default_options = { "no_sslv2" }; | 26 local default_options = { "no_sslv2" }; |
| 27 | 27 |
| 28 function create_context(host, mode, user_ssl_config) | 28 function create_context(host, mode, user_ssl_config) |
| 29 user_ssl_config = user_ssl_config or default_ssl_config; | 29 user_ssl_config = user_ssl_config or default_ssl_config; |
| 30 | 30 |
