Software `/` code `/` prosody

Comparison

plugins/mod_tls.lua @ 12207:65e252940337

mod_s2s: Retrieve TLS context for outgoing Direct TLS connections from mod_tls So that the same TLS context is used for both Direct TLS and starttls, since they are supposed to be functionally identical apart from the few extra round trips. A new event is added because the 's2s-created' event fires much later, after a connection has already been established, where we need the TLS context before that.

author	Kim Alvefur <zash@zash.se>
date	Fri, 21 Jan 2022 18:42:38 +0100
parent	11766:6ad335cd43f9
child	12211:5c2ae28f536e

comparison

equal deleted inserted replaced

-:77ac0d96ac24
+:65e252940337
 end
 module:hook_global("config-reloaded", module.load);
 local function can_do_tls(session)
-	if not session.conn.starttls then
+	if session.conn and not session.conn.starttls then
 		if not session.secure then
 			session.log("debug", "Underlying connection does not support STARTTLS");
 		end
 		return false;
 	elseif session.ssl_ctx ~= nil then
 		session.log("debug", "Should be able to do TLS but no context available");
 		return false;
 	end
 	return session.ssl_ctx;
 end
+module:hook("s2sout-created", function (event)
+	-- Initialize TLS context for outgoing connections
+	can_do_tls(event.session);
+end);
 -- Hook <starttls/>
 module:hook("stanza/urn:ietf:params:xml:ns:xmpp-tls:starttls", function(event)
 	local origin = event.origin;
 	if can_do_tls(origin) then

prosody

65e252940337

plugins/mod_tls.lua

Software / code / prosody

Comparison

plugins/mod_tls.lua @ 12207:65e252940337

Software `/` code `/` prosody