Log

plugins/mod_s2s/mod_s2s.lua @ 10455:698ff3610e57

description author age
mod_s2s: Improve error in bounces due to cert validation problems Kim Alvefur Wed, 27 Nov 2019 23:26:59 +0100
mod_s2s: Add error text for error replies on some s2s failures (#770) Kim Alvefur Sat, 23 Nov 2019 01:32:53 +0100
s2s: Allow passing a custom error for bouncing queued stanzas (#770) Kim Alvefur Sat, 23 Nov 2019 01:29:03 +0100
mod_s2s: Wait for remote to close any connection allowing incoming stanzas Kim Alvefur Mon, 18 Nov 2019 20:37:40 +0100
mod_s2s: Allow passing bounce reason as an util.error object (see #770) Kim Alvefur Fri, 08 Nov 2019 23:03:47 +0100
mod_s2s: Only nameprep stream to/from addresses if they are present Kim Alvefur Sat, 02 Nov 2019 15:43:17 +0100
mod_s2s: Close with a stream error in case neither SASL or Dialback are available Kim Alvefur Sun, 06 Oct 2019 21:14:53 +0200
mod_s2s: Remove warning about hostname mismatch Kim Alvefur Sat, 07 Sep 2019 18:54:59 +0200
mod_s2s: Insert s2sin into outgoing routing table when bidirectional Kim Alvefur Sat, 07 Sep 2019 18:33:16 +0200
mod_s2s: Add function to send replies on s2sout connections that support incoming traffic Kim Alvefur Sat, 07 Sep 2019 18:32:29 +0200
mod_s2s: Handle authentication of s2sin and s2sout the same way Kim Alvefur Sat, 07 Sep 2019 17:44:57 +0200
mod_s2s: Remove obsolete cleanup code Kim Alvefur Sat, 07 Sep 2019 19:00:37 +0200
Remove COMPAT with temporary luasec fork Kim Alvefur Sun, 25 Aug 2019 23:12:55 +0200
mod_s2s: Use net.connect instead of s2sout.lib for outgoing s2s connections Kim Alvefur Sat, 10 Nov 2018 13:37:32 +0100
mod_s2s: Distinguish between high and low level errors in bounces Kim Alvefur Thu, 01 Aug 2019 05:25:34 +0200
plugins: Remove tostring call from logging Kim Alvefur Tue, 30 Jul 2019 02:29:36 +0200
mod_tls: Restore querying for certificates on s2s Kim Alvefur Mon, 11 Mar 2019 13:07:59 +0100
core.certmanager: Do not ask for client certificates by default Kim Alvefur Sun, 10 Mar 2019 19:58:28 +0100
mod_c2s, mod_s2s, mod_component: Log invalid XML escaped (fixes #734) Kim Alvefur Tue, 15 Jan 2019 20:08:30 +0100
mod_s2s: Indicate origin of s2s error Kim Alvefur Mon, 08 Oct 2018 15:03:26 +0200
mod_s2s: Silence all warnings instead of ignoring the entire module Kim Alvefur Sun, 30 Sep 2018 17:49:56 +0200
Merge 0.10->trunk Matthew Wild Mon, 30 Jul 2018 15:13:54 +0100
sessionmanager, mod_s2s: Bring debug line for outgoing stanzas in line with that for incoming Kim Alvefur Tue, 24 Jul 2018 19:07:26 +0200
mod_s2s: Reduce logging (#776) Kim Alvefur Sun, 22 Jul 2018 19:45:58 +0200
sessionmanager, mod_s2s: Bring debug line for outgoing stanzas in line with that for incoming Kim Alvefur Tue, 24 Jul 2018 19:07:26 +0200
mod_s2s: Reduce logging (#776) Kim Alvefur Sun, 22 Jul 2018 19:45:58 +0200
Merge 0.10->trunk Kim Alvefur Fri, 22 Jun 2018 14:18:36 +0200
mod_s2s: Close sockets held by resolver (#1170) Kim Alvefur Sun, 17 Jun 2018 20:02:40 +0200
mod_s2s: Add a counter for IPv6. Emmanuel Gil Peyrot Sat, 09 Sep 2017 14:45:23 +0100
mod_s2s: Don't use string concatenation when passing values to logging Kim Alvefur Sun, 25 Feb 2018 11:20:56 +0100
mod_s2s: Remove tostring() in logging since this is handled by util.format now Kim Alvefur Thu, 21 Dec 2017 07:00:56 +0100
mod_s2s: Restructure some code Kim Alvefur Tue, 05 Dec 2017 13:24:28 +0100
mod_s2s: Remove unused argument [luacheck] Kim Alvefur Tue, 05 Dec 2017 12:35:01 +0100
mod_s2s: Remove unused local [luacheck] Kim Alvefur Tue, 05 Dec 2017 12:34:50 +0100
Merge 0.10->trunk Matthew Wild Tue, 26 Sep 2017 17:24:25 +0100
mod_s2s: Use a separate resolver object for each outgoing session Matthew Wild Mon, 25 Sep 2017 23:12:47 +0100
Merge 0.10->trunk Kim Alvefur Thu, 14 Sep 2017 02:48:34 +0200
Merge 0.9->0.10 Kim Alvefur Thu, 14 Sep 2017 02:47:40 +0200
mod_component, mod_s2s: Iterate over child tags instead of child nodes (can include text) in stream error (same as 176b7f4e4ac9) Kim Alvefur Thu, 14 Sep 2017 01:27:36 +0200
Merge 0.10->trunk Kim Alvefur Thu, 26 Jan 2017 19:47:33 +0100
mod_c2s, mod_s2s: Remove comment that no longer applies since 946871f6e3c8 Kim Alvefur Wed, 25 Jan 2017 11:18:00 +0100
mod_s2s: Clarify that it is stream features that can't be offered (here too) Kim Alvefur Wed, 25 Jan 2017 11:13:40 +0100
Merge 0.10->trunk Kim Alvefur Fri, 07 Oct 2016 16:52:18 +0200
Merge 0.9->0.10 Kim Alvefur Wed, 28 Sep 2016 14:45:02 +0200
mod_s2s: Lower log message to 'warn' level, standard for remotely-triggered protocol issues 0.9.11 Matthew Wild Tue, 27 Sep 2016 22:01:46 +0100
Merge 0.10->trunk Matthew Wild Mon, 12 Sep 2016 22:31:25 +0100
mod_c2s, mod_s2s: Switch connection counting to 'amount' type and enumerate once per statistics interval Kim Alvefur Mon, 12 Sep 2016 15:01:16 +0200
Merge 0.10->trunk Matthew Wild Wed, 31 Aug 2016 16:25:21 +0100
Backed out changeset a23b5cb8c22b Matthew Wild Wed, 31 Aug 2016 11:42:03 +0100
Merge 0.10->trunk Kim Alvefur Sun, 28 Aug 2016 05:15:13 +0200
mod_s2s: Fire event when s2s connection fails Matthew Wild Sat, 27 Aug 2016 13:40:10 +0100
Merge 0.10->trunk Kim Alvefur Mon, 08 Aug 2016 16:41:09 +0200
mod_s2s: Index session after checking if it exists (fixes traceback in case of a connection without a session having a read timeout) Kim Alvefur Sun, 07 Aug 2016 20:48:37 +0200
Merge 0.10->trunk Kim Alvefur Fri, 08 Jul 2016 15:12:44 +0200
mod_c2s, mod_s2s: Bootstrap connection count statistic on module load Kim Alvefur Thu, 07 Jul 2016 18:48:58 +0200
mod_s2s: Add util.async support Kim Alvefur Mon, 30 May 2016 13:36:43 +0200
Merge 0.10->trunk Kim Alvefur Mon, 30 May 2016 13:30:53 +0200
mod_s2s: Remove compat with namespace issue from Prosody pre-0.6.2 Kim Alvefur Mon, 30 May 2016 13:30:32 +0200
Update every link to the documentation to use HTTPS Emmanuel Gil Peyrot Sat, 16 Apr 2016 21:08:05 +0100
Merge 0.10->trunk Kim Alvefur Mon, 14 Mar 2016 14:20:37 +0100
mod_s2s: Include name of remote server when it's missing the stream ID (thanks Ge0rG) Kim Alvefur Mon, 14 Mar 2016 13:27:02 +0100
Merge 0.10->trunk Kim Alvefur Tue, 26 Jan 2016 14:15:38 +0100
Merge 0.9->0.10 Kim Alvefur Tue, 26 Jan 2016 14:15:00 +0100
mod_c2s, mod_s2s: Lower priority of session shutdown to negative, so that plugins hooking at the default priority run first (fixes #601) Kim Alvefur Tue, 26 Jan 2016 00:28:07 +0100
Merge 0.10->trunk Kim Alvefur Sun, 11 Oct 2015 20:03:00 +0200
mod_s2s: Fire global event for stream features where the remote server has not sent the 'to' stream attribute Kim Alvefur Sun, 11 Oct 2015 14:03:53 +0200
Merge 0.10->trunk Kim Alvefur Fri, 25 Sep 2015 18:03:44 +0200
mod_s2s: Account for connections that time out in connection count measure Kim Alvefur Fri, 25 Sep 2015 15:16:25 +0200
Merge 0.10->trunk Kim Alvefur Thu, 24 Sep 2015 20:15:19 +0200
mod_c2s, mod_s2s: Close incoming connections if there are no features to offer on incomplete streams (fixes #285) Kim Alvefur Thu, 24 Sep 2015 20:05:23 +0200
Merge 0.10->trunk Kim Alvefur Wed, 13 May 2015 22:33:40 +0200
Merge 0.9->0.10 Kim Alvefur Wed, 13 May 2015 22:31:59 +0200
mod_s2s: Mark stream as opened directly after opening stream, prevents session.close opening it again Kim Alvefur Wed, 13 May 2015 21:56:22 +0200
mod_s2s: Don't cache session.sends2s (or do it later), prevents sending data after session was closed Kim Alvefur Wed, 13 May 2015 21:55:08 +0200
Merge 0.10->trunk Matthew Wild Wed, 06 May 2015 19:26:53 +0100
mod_s2s: Fire read timeout event on correct virtualhost for incoming connections Kim Alvefur Wed, 06 May 2015 13:35:34 +0200
Merge 0.10->trunk Kim Alvefur Sun, 26 Apr 2015 00:07:36 +0200
mod_c2s, mod_s2s: Collect statistics on number of connections Kim Alvefur Sun, 26 Apr 2015 00:06:11 +0200
mod_s2s: Catch attempt to close dummy origin of s2s error replies (fixes a top level error) Kim Alvefur Sun, 05 Apr 2015 16:47:49 +0200
Merge with merge merge merge Matthew Wild Fri, 27 Mar 2015 22:19:44 +0000
Merge 0.9->0.10 (third time lucky) Matthew Wild Fri, 27 Mar 2015 22:11:58 +0000
Merge 0.9->0.10 Matthew Wild Thu, 26 Mar 2015 16:48:39 +0000
mod_s2s: to/from attributes are required on s2s stream headers. Set them to '' when not available. Fixes #468. 0.9.8 Matthew Wild Tue, 24 Mar 2015 16:03:37 +0000
Merge 0.9->0.10 Matthew Wild Tue, 14 Oct 2014 10:59:27 +0100
mod_s2s: Capitalize log message Kim Alvefur Fri, 10 Oct 2014 00:56:53 +0200
mod_s2s: Close s2s connections that can not proceed due to mod_dialback not being present Kim Alvefur Tue, 23 Sep 2014 19:41:10 +0200
core.stanza_router, mod_s2s: Move handling of S2S features to mod_s2s from stanza_router Kim Alvefur Tue, 09 Sep 2014 15:05:46 +0200
Merge 0.9->0.10 Kim Alvefur Tue, 02 Sep 2014 22:33:11 +0200
net.http, net.http.server, mod_c2s, mod_s2s, mod_component, mod_admin_telnet, mod_net_multiplex: Add ondetach to release connection from 'sessions' table (or equivalent) Matthew Wild Fri, 29 Aug 2014 11:54:34 +0100
mod_s2s: Close offending s2s streams missing an 'id' attribute with a stream error instead of throwing an unhandled error Kim Alvefur Tue, 02 Sep 2014 17:24:25 +0200
Merge 0.9->0.10 Matthew Wild Thu, 28 Aug 2014 09:23:24 +0100
mod_c2s, mod_s2s: Log received invalid stream headers Matthew Wild Sat, 23 Aug 2014 09:29:17 +0100
mod_s2s: Reset stream ID when resetting stream [compliance] Kim Alvefur Wed, 27 Aug 2014 13:20:08 +0200
mod_s2s: Mark stream as opened earlier for outgoing connections, fixes double stream headers on policy failures Kim Alvefur Tue, 26 Aug 2014 21:50:08 +0200
mod_s2s: Remove unused locals Kim Alvefur Fri, 25 Jul 2014 21:12:21 +0200
mod_s2s_auth_certs: Split PKIX based certificate checking from mod_s2s into new plugin Kim Alvefur Fri, 25 Jul 2014 20:41:54 +0200
mod_dialback: Short-circuit dialback auth if certificate is considered valid Kim Alvefur Fri, 04 Jul 2014 21:48:25 +0200
mod_s2s: Fire a 's2s-created' event when new s2s connections are initialized Kim Alvefur Sat, 24 May 2014 11:17:26 +0200
mod_s2s: Remove redundant setting of session.direction Kim Alvefur Thu, 22 May 2014 22:49:43 +0200
mod_s2s: Move filter initialization to common place Kim Alvefur Thu, 22 May 2014 22:48:06 +0200
mod_s2s: Decide on log function once Kim Alvefur Thu, 22 May 2014 22:45:58 +0200
mod_s2s: Follow XMPP Core on when a stream is to be considered ready Kim Alvefur Tue, 22 Apr 2014 21:56:06 +0200
mod_s2s: Replace open_stream() with function that only adds s2s/dialback attributes to stream header Kim Alvefur Fri, 18 Apr 2014 07:51:41 +0200
mod_s2s: Revert e626ee2fe106 change, it broke Dialback Kim Alvefur Thu, 10 Apr 2014 16:49:59 +0200
mod_c2s, mod_s2s, mod_component, util.xmppstream: Move all session:open_stream() functions to util.xmppstream Kim Alvefur Thu, 10 Apr 2014 13:13:07 +0200
Merge 0.9->0.10 Matthew Wild Sun, 12 Jan 2014 06:19:37 -0500
mod_s2s: Include IP in log messages, if host is unavailable Florian Zeitz Sun, 05 Jan 2014 22:21:50 +0100
mod_c2s, mod_s2s: Set session.encrypted as session.secure does not allways mean encrypted (eg consider_bosh_secure) Kim Alvefur Mon, 07 Oct 2013 12:43:00 +0200
mod_c2s, mod_s2s: Log cipher and encryption info in a more compact and (hopefully) less confusing way Kim Alvefur Wed, 14 Aug 2013 15:00:36 +0200
mod_s2s: Captitalize log messages that begin with a stream direction Kim Alvefur Wed, 14 Aug 2013 14:53:50 +0200
Remove all trailing whitespace Florian Zeitz Fri, 09 Aug 2013 17:48:21 +0200
Merge 0.9->trunk Kim Alvefur Tue, 06 Aug 2013 14:35:03 +0200
mod_admin_telnet, mod_s2s: Fix reporting of certificate chain validation details Kim Alvefur Tue, 06 Aug 2013 14:32:31 +0200
mod_s2s: Improve policy check Kim Alvefur Mon, 05 Aug 2013 20:47:38 +0200
mod_s2s: Log certificate identity validation result Kim Alvefur Sun, 04 Aug 2013 17:33:00 +0200
mod_c2s, mod_s2s: Log a message that stream encryption has been enabled with some details Kim Alvefur Fri, 02 Aug 2013 15:12:24 +0200
mod_s2s: Add missing global hook for read-timeout Kim Alvefur Wed, 26 Jun 2013 13:35:38 +0200
mod_c2s, mod_s2s: Fire an event on read timeouts Kim Alvefur Tue, 11 Jun 2013 21:36:15 +0200
mod_s2s: Set s2s_session.ip Kim Alvefur Sun, 09 Jun 2013 12:54:10 +0200
mod_c2s, mod_c2s: Send a whitespace on read timeout, to prod TCP into detecting if the connection died Kim Alvefur Thu, 30 May 2013 14:32:40 +0200
mod_s2s: Remove unnecessary debug message Matthew Wild Tue, 28 May 2013 16:10:22 +0100
mod_s2s: Fix interaction between s2s_secure_auth and s2s_require_encryption, in particular ensure that when s2s_require_encryption is NOT set, do not require encryption on s2s_insecure_domains. Matthew Wild Sat, 18 May 2013 12:02:25 +0100
mod_s2s: Ensure that to/from on stream headers are always correct, fixes #338 Matthew Wild Mon, 29 Apr 2013 00:33:39 +0100
mod_s2s: Obey tcp_keepalives option for s2s too, and make it individually configurable through s2s_tcp_keepalives (thanks yeled) Matthew Wild Fri, 26 Apr 2013 12:25:25 +0100
mod_c2s, mod_s2s, net.http, net.http.server: Improve tracebacks (omit traceback function), to make it clearer where an error occured Matthew Wild Mon, 22 Apr 2013 12:35:52 +0100
mod_s2s: Add missing space Kim Alvefur Mon, 15 Apr 2013 19:37:15 +0200
mod_s2s: Adjust priority of route/remote hooks to negative values (like most other internal hooks) Kim Alvefur Mon, 08 Apr 2013 22:42:38 +0200
mod_s2s: Add COMPAT cahin verification code for older LuaSec versions Kim Alvefur Thu, 04 Apr 2013 19:21:47 +0200
mod_s2s: Close incoming s2s with stream error when secure and we don't trust their certificate Matthew Wild Mon, 01 Apr 2013 14:45:59 +0100
mod_s2s: Prevent s2s to and from hosts we serve locally Kim Alvefur Wed, 27 Mar 2013 23:09:47 +0100
mod_s2s: Prevent traceback when replying to incoming connection to a host we don't serve Kim Alvefur Tue, 26 Mar 2013 09:25:20 +0100
mod_s2s: session.from_host does not allways exist on incoming connections, true and nil or "our hostname" does not evaluate to what we want here Kim Alvefur Mon, 25 Mar 2013 08:18:49 +0100
mod_s2s: Fix variable usage in check_auth_policy (thanks Florob) Matthew Wild Fri, 22 Mar 2013 15:16:22 +0000
mod_s2s: Remove unused variable Matthew Wild Fri, 22 Mar 2013 14:31:14 +0000
mod_s2s: Add controls for certificate validation via the s2s_secure_auth option. Plugins can now return false from handling s2s-check-certificate to prevent connection establishment (s2sin+s2sout) Matthew Wild Fri, 22 Mar 2013 14:21:02 +0000
s2smanager, mod_s2s, mod_dialback, mod_saslauth: Move s2smanager.make_authenticated() to mod_s2s, and plugins now signal authentication via the s2s-authenticated event Matthew Wild Fri, 22 Mar 2013 14:18:23 +0000
mod_s2s, mod_saslauth, mod_compression: Refactor to have common code for opening streams Kim Alvefur Sat, 16 Mar 2013 17:46:43 +0100
mod_s2s: Do not include xmlns:db declaration in stream header if mod_dialback is not loaded Matthew Wild Tue, 12 Mar 2013 12:30:08 +0000
mod_s2s: Make sure host variable is reachable Kim Alvefur Mon, 11 Mar 2013 21:39:15 +0100
mod_s2s: Fire s2s-check-certificate event after validating a certificate, to allow plugins to override standard procedure Matthew Wild Sun, 10 Mar 2013 17:49:07 +0000
mod_s2s, mod_dialback: Rename s2s-authenticate-legacy event to s2sout-authenticate-legacy for clarity. Also, hello! Matthew Wild Sun, 10 Mar 2013 11:25:05 +0000
mod_s2s: Don't try to close sessions that were destroyed before timeout Kim Alvefur Thu, 24 Jan 2013 00:59:32 +0100
prosody, mod_c2s, mod_s2s: Move closing of c2s and s2s sessions to respective plugins Kim Alvefur Fri, 28 Dec 2012 14:33:47 +0100
mod_s2s: Remove connection from sessions table as soon as we learn it is disconnected. Fixes a connection/session leak. Matthew Wild Fri, 28 Dec 2012 12:47:44 +0000
mod_s2s: Detect TLS compression Kim Alvefur Wed, 24 Oct 2012 19:05:56 +0200
mod_{admin_telnet,c2s,component,http,net_multiplex,s2s}: Use module:provides() instead of module:add_item(). Waqas Hussain Wed, 12 Sep 2012 22:22:31 +0500
mod_admin_adhoc, mod_admin_telnet, mod_bosh, mod_c2s, mod_component, mod_pep, mod_presence, mod_roster, mod_s2s: Import core_post_stanza from the global prosody table. Kim Alvefur Thu, 26 Jul 2012 04:33:17 +0200
mod_s2s: Bump s2s_timeout to 90, to allow for the TCP timeout (in most cases) - this allows us to continue to try other targets Matthew Wild Mon, 23 Jul 2012 18:57:28 +0100
mod_c2s, mod_s2s: Lower 'Disconnecting X' log messages from 'info' to 'debug' Matthew Wild Mon, 23 Jul 2012 18:28:14 +0100
Hopefully inert commit to clean up logging across a number of modules, removing all cases of concatenation when building log messages Matthew Wild Mon, 23 Jul 2012 17:32:33 +0100
mod_s2s: Adjust session:close() in line with mod_c2s's - fixes waiting for </stream:stream> if it has already been sent by the peer Matthew Wild Mon, 23 Jul 2012 13:31:26 +0100
mod_s2s: Don't call ondisconnect manually, don't call conn:close() 3 times (!) and merge its logic and streamdisconnected into session_close - including now waiting for a reply </stream:stream> if there is the chance of further stanzas requiring delivery arriving. session.sends2s() on a half-closed stream returns false. Matthew Wild Sun, 22 Jul 2012 17:07:21 +0100
mod_s2s: Don't treat a stanza as delivered if session.sends2s() returns false Matthew Wild Sun, 22 Jul 2012 17:04:02 +0100
mod_s2s: Make unauthed session timeout a little more aggressive... otherwise it's possible for sessions to slip under the net and never get killed off Matthew Wild Sun, 22 Jul 2012 16:45:27 +0100
mod_s2s, s2sout.lib: Send stream header in onconnect() Matthew Wild Thu, 24 May 2012 03:08:42 +0100
mod_s2s: Only try next target if the stream didn't open Matthew Wild Sun, 13 May 2012 16:03:05 +0100
mod_s2s: Remove TODO comment for SASL/TLS on s2s (thanks Florob) Matthew Wild Fri, 11 May 2012 02:17:20 +0100
mod_s2s, mod_auth_anonymous, hostmanager: Remove disallow_s2s flag, deprecate the config option of the same name (disable mod_s2s instead), and add 'allow_anonymous_s2s' to separately control s2s for anonymous users Matthew Wild Fri, 11 May 2012 00:56:18 +0100
mod_s2s, s2smanager, mod_dialback: Move addition of session.send() on s2sin to after they are authenticated (thus from mod_s2s to s2smanager). Update mod_dialback to fire route/remote directly, as session.send() is no longer available for s2sin_unauthed. Fixes #291. Matthew Wild Thu, 10 May 2012 22:59:01 +0100
mod_s2s: Cache to_host and from_host in local variables, and use these instead of repeated lookups Matthew Wild Fri, 04 May 2012 02:27:26 +0100
mod_s2s: Add session.send() only to incoming streams, and fire the route/remote event on the host (not global anymore) Matthew Wild Fri, 04 May 2012 02:22:26 +0100
mod_s2s: Become a shared module (yay) Matthew Wild Fri, 04 May 2012 01:50:17 +0100
Rename plugins/s2s/ to plugins/mod_s2s/ base plugins/s2s/mod_s2s.lua@764d81f30c04 Matthew Wild Fri, 04 May 2012 00:05:15 +0100