prosody
7e9ebdc75ce4
core/certmanager.lua

Find changesets by keywords by author, files, the commit message, revision number or hash, or revset expression.

Software / code / prosody

Log

core/certmanager.lua @ 12480:7e9ebdc75ce4

less more | (0) -100 -60 tip
description author age
net: isolate LuaSec-specifics Jonas Schäfer Wed, 27 Apr 2022 17:44:14 +0200
Merge config-updates+check-turn from timber Matthew Wild Fri, 04 Mar 2022 16:33:41 +0000
core.certmanager: Turn soft dependency on LuaSec into a hard Kim Alvefur Thu, 10 Feb 2022 17:15:55 +0100
core.certmanager: Ensure key exists for fullchain Kim Alvefur Mon, 21 Feb 2022 08:54:39 +0100
core.certmanager: Relax certificate filename check #1713 Kim Alvefur Mon, 14 Feb 2022 18:29:31 +0100
core.certmanager: Use 'tls_profile' instead of 'tls_preset' to match documentation Kim Alvefur Tue, 18 Jan 2022 11:52:35 +0100
core.certmanager: Apply TLS preset before global settings (thanks Menel) Kim Alvefur Tue, 18 Jan 2022 08:04:16 +0100
core.certmanager: Disable DANE name checks (not needed for XMPP) Kim Alvefur Thu, 16 Sep 2021 09:52:51 +0200
core.certmanager: Add curveslist to 'old' Mozilla TLS preset Kim Alvefur Sun, 26 Dec 2021 00:05:16 +0100
core.certmanager: Check index for wildcard certs Kim Alvefur Wed, 22 Dec 2021 15:13:49 +0100
prosodyctl cert: use the indexing functions for better UX Jonas Schäfer Tue, 21 Dec 2021 21:20:21 +0100
core.certmanager: Rename preset option to 'tls_preset' Kim Alvefur Wed, 22 Dec 2021 14:24:26 +0100
core.certmanager: Add "legacy" preset for keeping previous default settings Kim Alvefur Wed, 22 Dec 2021 14:12:10 +0100
core.certmanager: Add TLS 1.3 cipher suites to Mozilla TLS presets Kim Alvefur Wed, 03 Nov 2021 12:23:29 +0100
core.certmanager: Presets based on Mozilla SSL Configuration Generator Kim Alvefur Sun, 22 Dec 2019 02:25:37 +0100
core.certmanager: Support 'use_dane' setting to enable DANE support Kim Alvefur Sun, 18 Jul 2021 22:46:57 +0200
core.certmanager: Skip service certificate lookup for https client Kim Alvefur Thu, 27 May 2021 09:22:07 +0200
Merge 0.11->trunk Matthew Wild Thu, 13 May 2021 11:17:13 +0100
certmanager: Disable renegotiation by default 0.11 Matthew Wild Tue, 11 May 2021 14:14:15 +0100
core.certmanager: Test for SSL options in absence of LuaSec config 0.11 Kim Alvefur Mon, 26 Apr 2021 15:32:05 +0200
core.certmanager: Attempt to directly access LuaSec config table 0.11 Kim Alvefur Mon, 26 Apr 2021 15:30:13 +0200
core.certmanager: Catch error from lfs Kim Alvefur Fri, 07 May 2021 16:47:58 +0200
core.certmanager: Resolve certs path relative to config dir Kim Alvefur Fri, 07 May 2021 16:35:37 +0200
core.certmanager: Skip directly to guessing of key from cert filename Kim Alvefur Wed, 05 May 2021 15:56:39 +0200
core.certmanager: Join paths with OS-aware util.paths function Kim Alvefur Wed, 05 May 2021 15:54:05 +0200
core.certmanager: Build an index over certificates Kim Alvefur Sat, 10 Apr 2021 14:45:40 +0200
core.certmanager: Check for complete filename Kim Alvefur Sat, 10 Apr 2021 14:45:03 +0200
core.certmanager: Add comments explaining the 'verifyext' TLS settings Kim Alvefur Sat, 06 Feb 2021 22:12:38 +0100
core.certmanager: Add TODO about LuaSec issue Kim Alvefur Sun, 07 Jun 2020 02:12:50 +0200
Merge 0.11->trunk Kim Alvefur Mon, 13 Apr 2020 16:14:39 +0200
core.certmanager: Move EECDH ciphers before EDH in default cipherstring (fixes #1513) 0.11 Kim Alvefur Sun, 25 Aug 2019 20:22:35 +0200
Merge 0.11->trunk Kim Alvefur Fri, 10 Apr 2020 19:03:36 +0200
core.certmanager: Look for privkey.pem to go with fullchain.pem (fix #1526) 0.11 Kim Alvefur Fri, 10 Apr 2020 16:11:09 +0200
core.portmanager: Fix TLS context inheritance for SNI hosts (completes SNI support) Kim Alvefur Fri, 29 Nov 2019 23:24:14 +0100
core.certmanager: Lower severity for tls config not having cert Kim Alvefur Sat, 07 Sep 2019 00:00:40 +0200
core.certmanager: Remove unused import [luacheck] Kim Alvefur Sun, 25 Aug 2019 23:25:42 +0200
Remove COMPAT with temporary luasec fork Kim Alvefur Sun, 25 Aug 2019 23:12:55 +0200
core.certmanager: Move EECDH ciphers before EDH in default cipherstring Kim Alvefur Sun, 25 Aug 2019 20:22:35 +0200
core.certmanager: Do not ask for client certificates by default Kim Alvefur Sun, 10 Mar 2019 19:58:28 +0100
Merge 0.10->trunk Kim Alvefur Fri, 25 May 2018 03:33:13 +0200
core.certmanager: Allow all non-whitespace in service name (fixes #1019) Kim Alvefur Fri, 25 May 2018 03:30:16 +0200
vairious: Add annotation when an empty environment is set [luacheck] Kim Alvefur Wed, 28 Feb 2018 20:06:26 +0100
certmanager: Check for missing certificate before key in configuration (should be marginally less confusing) Kim Alvefur Thu, 28 Dec 2017 17:32:56 +0100
certmanager: Set single curve conditioned on LuaSec advertising EC crypto support Kim Alvefur Mon, 20 Nov 2017 00:27:26 +0100
certmanager: Filter out curves not supported by LuaSec Kim Alvefur Mon, 20 Nov 2017 00:26:41 +0100
certmanager: Change table representing LuaSec capabilities to match capabilities table exposed in LuaSec 0.7 Kim Alvefur Mon, 20 Nov 2017 00:25:18 +0100
core.certmanager: Set a default curveslist [sic], fixes #879, #943, #951 if used along with luasec 0.7 and openssl 1.1 Kim Alvefur Wed, 27 Sep 2017 15:45:07 +0200
prosodyctl: cert import: Reuse function from certmanager for locating certificates and keys Kim Alvefur Wed, 27 Sep 2017 15:21:20 +0200
certmanager: Add debug logging (thanks av6) Matthew Wild Sat, 23 Sep 2017 17:13:29 +0100
certmanager: Update the 'certificates' option after the config has been reloaded (fixes #929) Kim Alvefur Thu, 01 Jun 2017 14:03:50 +0200
core.certmanager: Translate "no start line" to something friendlier (thanks santiago) Kim Alvefur Sat, 26 Nov 2016 20:08:48 +0100
core.certmanager: Split cipher list into array with comments explaining each part Kim Alvefur Mon, 12 Sep 2016 15:49:24 +0200
certmanager: Assume default config path of '.' (fixes prosodyctl check certs when not installed) Kim Alvefur Fri, 29 Jul 2016 11:24:28 +0200
certmanager: Explicitly tonumber() version number segments before doing arithmetic and avoid relying on implicit coercion (thanks David Favro) Matthew Wild Sat, 26 Mar 2016 19:55:08 +0000
certmanager: Localize tonumber Matthew Wild Thu, 18 Feb 2016 13:48:45 +0000
certmanager: Try filename.key if certificate is set to a full filename ending with .crt Kim Alvefur Fri, 05 Feb 2016 16:12:01 +0100
certmanager: Apply global ssl config later so certificate/key is not overwritten by magic Kim Alvefur Fri, 05 Feb 2016 15:03:39 +0100
certmanager: Support new certificate configuration for non-XMPP services too (fixes #614) Matthew Wild Fri, 05 Feb 2016 00:03:41 +0000
core.certmanager: Look for certificate and key in a few different places Kim Alvefur Wed, 03 Feb 2016 22:44:29 +0100
core.certmanager: Remove non-string filenames (allows setting eg capath to false to disable the built in default) Kim Alvefur Sun, 11 Oct 2015 19:44:15 +0200
less more | (0) -100 -60 tip