mirrors/prosody
1
0
Fork 0
mirror of https://github.com/bjc/prosody.git synced 2025-04-03 21:27:38 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions

mod_tls: Attempt STARTTLS even if not advertised as per RFC 7590

Browse source
This commit is contained in:
Kim Alvefur 2021-01-29 23:17:08 +01:00
parent 89944af9a4
commit 2b988f0786
2 changed files with 7 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

1
doc/doap.xml
View file

@ -54,6 +54,7 @@
<implements rdf:resource="https://www.rfc-editor.org/info/rfc6455"/>
<implements rdf:resource="https://www.rfc-editor.org/info/rfc7301"/>
<implements rdf:resource="https://www.rfc-editor.org/info/rfc7395"/>
<implements rdf:resource="https://www.rfc-editor.org/info/rfc7390"/>
<implements rdf:resource="https://datatracker.ietf.org/doc/draft-cridland-xmpp-session/">
<!-- since=0.6.0 note=Added in hg:0bbbc9042361 -->
</implements>

8
plugins/mod_tls.lua
View file

@ -150,8 +150,12 @@ end);
-- For s2sout connections, start TLS if we can
module:hook_tag("http://etherx.jabber.org/streams", "features", function (session, stanza)
module:log("debug", "Received features element");
if can_do_tls(session) and stanza:get_child("starttls", xmlns_starttls) then
module:log("debug", "%s is offering TLS, taking up the offer...", session.to_host);
if can_do_tls(session) then
if stanza:get_child("starttls", xmlns_starttls) then
module:log("debug", "%s is offering TLS, taking up the offer...", session.to_host);
else
module:log("debug", "%s is *not* offering TLS, trying anyways!", session.to_host);
end
session.sends2s(starttls_initiate);
return true;
end