Software `/` code `/` prosody

Comparison

plugins/mod_tls.lua @ 3571:675d65036f31

certmanager, hostmanager, mod_tls: Move responsibility for creating per-host SSL contexts to mod_tls, meaning reloading certs is now as trivial as reloading mod_tls

author	Matthew Wild <mwild1@gmail.com>
date	Sat, 06 Nov 2010 18:28:15 +0000
parent	3397:f376f0bd1d1f
child	3574:1e088ec07d33

comparison

equal deleted inserted replaced

-:6ef68af9431c
+:675d65036f31
 --
 -- This project is MIT/X11 licensed. Please see the
 -- COPYING file in the source package for more information.
 --
+local create_context = require "core.certmanager".create_context;
 local st = require "util.stanza";
 local secure_auth_only = module:get_option("c2s_require_encryption") or module:get_option("require_encryption");
 local secure_s2s_only = module:get_option("s2s_require_encryption");
 local allow_s2s_tls = module:get_option("s2s_allow_encryption") ~= false;
 	local ssl_ctx = session.from_host and hosts[session.from_host].ssl_ctx or global_ssl_ctx;
 	session.conn:starttls(ssl_ctx);
 	session.secure = false;
 	return true;
 end);
+function module.load()
+	local ssl_config = module:get_option("ssl");
+	host.ssl_ctx = create_context(host, "client", ssl_config); -- for outgoing connections
+	host.ssl_ctx_in = create_context(host, "server", ssl_config); -- for incoming connections
+end
+function module.unload()
+	host.ssl_ctx = nil;
+	host.ssl_ctx_in = nil;
+end

prosody

675d65036f31

plugins/mod_tls.lua

Software / code / prosody

Comparison

plugins/mod_tls.lua @ 3571:675d65036f31

Software `/` code `/` prosody