Log

core/certmanager.lua @ 6779:6236668da30a

description author age
core.*: Remove use of module() function Kim Alvefur Sat, 21 Feb 2015 10:42:19 +0100
certmanager: Fix compat for MattJs old LuaSec fork Kim Alvefur Thu, 05 Feb 2015 17:23:53 +0100
certmanager: Fix previous commit Kim Alvefur Thu, 05 Feb 2015 17:21:05 +0100
certmanager: Limit certificate chain depth to 9 Kim Alvefur Thu, 05 Feb 2015 16:59:34 +0100
certmanager: Options that appear to be available since LuaSec 0.2 Kim Alvefur Thu, 05 Feb 2015 16:56:28 +0100
certmanager: Improve "detection" of features that depend on LuaSec version Kim Alvefur Thu, 05 Feb 2015 16:20:50 +0100
certmanager: Add locals for ssl.context and ssl.x509 Kim Alvefur Thu, 05 Feb 2015 15:14:35 +0100
certmanager: Early return from the entire module if LuaSec is unavailable Kim Alvefur Thu, 05 Feb 2015 15:10:23 +0100
certmanager: Make global variable access explicit Matthew Wild Tue, 20 Jan 2015 11:29:38 +0000
certmanager, mod_tls: Return final ssl config as third return value (fix for c6caaa440e74, portmanager assumes non-falsy second return value is an error) (thanks deoren) Kim Alvefur Sat, 22 Nov 2014 11:51:54 +0100
certmanager: Return final ssl config along with ssl context on success Kim Alvefur Wed, 19 Nov 2014 14:47:03 +0100
Merge 0.9->0.10 Kim Alvefur Sun, 26 Oct 2014 20:57:06 +0100
certmanager, net.http: Disable SSLv3 by default 0.9.6 Matthew Wild Tue, 14 Oct 2014 18:55:08 +0100
core.certmanager: Make create_context() support an arbitrary number of option sets, merging all Kim Alvefur Thu, 03 Jul 2014 15:32:26 +0200
core.certmanager: Use util.sslconfig Kim Alvefur Thu, 03 Jul 2014 15:31:12 +0200
core.certmanager, core.moduleapi, mod_storage_sql, mod_storage_sql2: Import from util.paths Kim Alvefur Fri, 09 May 2014 19:35:29 +0200
certmanager: Move ssl.protocol handling to after ssl.options is a table (thanks Ralph) Kim Alvefur Mon, 21 Apr 2014 02:43:09 +0200
certmanager: Fix traceback if no global 'ssl' section set (thanks albert) Kim Alvefur Sun, 20 Apr 2014 21:25:26 +0200
certmanager: Update ssl_compression when config is reloaded Kim Alvefur Tue, 15 Apr 2014 01:02:56 +0200
certmanager: Reformat core ssl defaults Kim Alvefur Tue, 15 Apr 2014 00:49:17 +0200
certmanager: Support ssl.protocol syntax like "tlsv1+" that disables older protocols Kim Alvefur Tue, 15 Apr 2014 00:45:07 +0200
certmanager: Merge ssl.options, verify etc from core defaults and global ssl settings with inheritance while allowing options to be disabled per virtualhost Kim Alvefur Tue, 15 Apr 2014 00:32:11 +0200
certmanager: Wrap long line and add comment Kim Alvefur Mon, 14 Apr 2014 23:41:26 +0200
certmanager: Concatenate cipher list if given as a table Kim Alvefur Mon, 14 Apr 2014 23:34:35 +0200
certmanager: Allow non-server contexts to be without certificate and key Kim Alvefur Mon, 14 Apr 2014 23:09:28 +0200
certmanager: Check for non-nil values instead of true-ish values, allows removing defaults Kim Alvefur Mon, 14 Apr 2014 23:00:44 +0200
Merge 0.9->0.10 Matthew Wild Thu, 21 Nov 2013 02:14:23 +0000
certmanager: Further cipher string tweaking. Re-enable ciphers required for DSA and ECDH certs/keys. Matthew Wild Thu, 21 Nov 2013 02:11:09 +0000
Merge 0.9->0.10 Matthew Wild Tue, 12 Nov 2013 02:23:02 +0000
Back out 1b0ac7950129, as SSLv3 appears to still be in moderate use on the network. Also, although obsolete, SSLv3 isn't documented to have any weaknesses that TLS 1.0 (the most common version used today) doesn't also have. Get your act together clients! Matthew Wild Tue, 12 Nov 2013 02:13:01 +0000