Diff

plugins/tls.lua @ 61:6adddfdf974b

verse.plugins.tls: Support for TLS encryption! (thanks Azelphur for the final push)
author Matthew Wild <mwild1@gmail.com>
date Tue, 11 May 2010 22:41:09 +0100
child 63:311e61176159
line wrap: on
line diff
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/plugins/tls.lua	Tue May 11 22:41:09 2010 +0100
@@ -0,0 +1,30 @@
+local st = require "util.stanza";
+local xmlns_tls = "urn:ietf:params:xml:ns:xmpp-tls";
+
+function verse.plugins.tls(stream)
+	local function handle_features(features_stanza)
+		if stream.authenticated then return; end
+		if features_stanza:get_child("starttls", xmlns_tls) then
+			stream:debug("Negotiating TLS...");
+			stream:send(st.stanza("starttls", { xmlns = xmlns_tls }));
+			return true;
+		else
+			stream:debug("Server doesn't offer TLS :(");
+		end
+	end
+	local function handle_tls(tls_status)
+		if tls_status.name == "proceed" then
+			stream:debug("Server says proceed, handshake starting...");
+			stream.conn:starttls({mode="client", protocol="sslv23", options="no_sslv2"}, true);
+		end
+	end
+	local function handle_status(new_status)
+		if new_status == "ssl-handshake-complete" then
+			stream:debug("Re-opening stream...");
+			stream:reopen();
+		end
+	end
+	stream:hook("stream-features", handle_features, 400);
+	stream:hook("stream/"..xmlns_tls, handle_tls);
+	stream:hook("status", handle_status, 400);
+end