mirrors/prosody
1
0
Fork 0
mirror of https://github.com/bjc/prosody.git synced 2025-04-04 05:37:39 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions
9920 commits 12 branches 101 tags 40 MiB
Commit graph

1670 commits

Author SHA1 Message Date
Matthew Wild
f0c2ed1201 certmanager: Disable renegotiation by default 
This requires LuaSec 0.7+ and OpenSSL 1.1.1+
 2021-05-11 14:14:15 +01:00
Kim Alvefur
b369dea3d8 core.certmanager: Test for SSL options in absence of LuaSec config 2021-04-26 15:32:05 +02:00
Kim Alvefur
a174420e52 core.certmanager: Attempt to directly access LuaSec config table 
Due to a bug this field was not properly exported before
See https://github.com/brunoos/luasec/issues/149
 2021-04-26 15:30:13 +02:00
Kim Alvefur
5291ea4c7c core.certmanager: Move EECDH ciphers before EDH in default cipherstring (fixes #1513) 
Backport of 94e341dee51c

The original intent of having kEDH before kEECDH was that if a `dhparam`
file was specified, this would be interpreted as a preference by the
admin for old and well-tested Diffie-Hellman key agreement over newer
elliptic curve ones. Otherwise the faster elliptic curve ciphersuites
would be preferred. This didn't really work as intended since this
affects the ClientHello on outgoing s2s connections, leading to some
servers using poorly configured kEDH.

With Debian shipping OpenSSL settings that enforce a higher security
level, this caused interoperability problems with servers that use DH
params smaller than 2048 bits. E.g. jabber.org at the time of this
writing has 1024 bit DH params.

MattJ says
> Curves have won, and OpenSSL is less weird about them now
 2019-08-25 20:22:35 +02:00
Kim Alvefur
96620cafe5 core.certmanager: Look for privkey.pem to go with fullchain.pem (fix #1526) 
This makes
`prosodyctl cert import example.com /path/to/example.com/fullchain.pem`
work. This was never intended to, yet users commonly tried this and got
problems.
 2020-04-10 16:11:09 +02:00
Kim Alvefur
bb3d150756 core.rostermanager: Cache rosters of offline users for faster access (fixes #1233) 
(grafted from 42a3e3a2824822cef7640ac56d182c59bdd4224e)
 2018-12-16 02:56:11 +01:00
Kim Alvefur
7ac5e467ba core.modulemanager: Disable mod_vcard if mod_vcard_legacy is enabled to prevent conflict (#1469) 2019-11-23 23:11:03 +01:00
Kim Alvefur
06cf2e641a core.portmanager: Log debug message for each kind of TLS context created 2019-04-23 19:21:06 +02:00
Matthew Wild
d833e2c6d4 modulemanager: Fix issues introduced in previous commit acf74ad0b795 [thanks luacheck, scansion] 2018-10-26 19:53:02 +01:00
Matthew Wild
f5f6460b2e Many things: switch from hacky multi-arg xpcall implementations to a standard util.xpcall 2018-10-26 19:32:00 +01:00
Kim Alvefur
fb6abdb161 moduleapi: Prevent loading disabled module as dependency of enabled one 
Explicitly disabled module should stay disabled.
 2018-10-25 17:11:10 +02:00
Kim Alvefur
49c6847837 stanza_router: Remove deprecation warning for core routing functions from global scope (deprecated in 0.9) 2018-10-21 14:45:22 +02:00
Kim Alvefur
2de254acf7 core.moduleapi: Remove redundant condition 2018-10-18 00:49:29 +02:00
Matthew Wild
13f865a607 rostermanager: Use util.id to generate ids for roster pushed 2018-09-13 16:08:38 +01:00
Matthew Wild
c9cc5d4a6e configmanager: Allow referencing environment variables in the config as as ENV_<name> 2018-09-03 17:45:30 +01:00
Matthew Wild
10fe4432f4 moduleapi: Remove multiple-parameters feature from module:shared() 
Multiple paths are rarely used, and leads to less clear code than just
calling module:shared() once per shared table. It also prevents us from
extending the API with new parameters in the future.
 2018-08-08 08:19:01 +01:00
Kim Alvefur
15de51f8c5 sessionmanager, mod_s2s: Bring debug line for outgoing stanzas in line with that for incoming 2018-07-24 19:07:26 +02:00
Kim Alvefur
59716b64dd core.stanza_router: Reduce logging of common routing (#776) 2018-07-22 19:44:58 +02:00
Kim Alvefur
0bda4af7bb sessionmanager: Log top tag of outgoing stanzas on c2s (#776) 2018-07-22 19:41:29 +02:00
Kim Alvefur
c86e5f565c moduleapi: Use :send API from :broadcast for compactness 2018-07-14 21:25:34 +02:00
Kim Alvefur
b58c44e43a moduleapi: Lazy-load statsmanager on demand 2018-07-07 21:55:18 +02:00
Kim Alvefur
5884db59cc moduleapi: Lazy-load configmanager on demand simplify dependency graph 2018-07-07 21:55:00 +02:00
Matthew Wild
06a10d3a77 modulemanager: Expose function to get the list of modules that should be loaded on a host 2018-06-20 10:41:02 +01:00
Kim Alvefur
5305e12336 sessionmanager: Generate shorter random resoures 2018-05-29 06:51:52 +02:00
Kim Alvefur
dedba5658e Merge 0.10->trunk 2018-05-25 03:33:13 +02:00
Kim Alvefur
400d3337aa core.certmanager: Allow all non-whitespace in service name (fixes #1019) 2018-05-25 03:30:16 +02:00
Kim Alvefur
1d903e3442 loggingmanager: Remove luacheck annotations for global log functions that are now set in util.startup 2018-04-10 22:43:13 +02:00
Kim Alvefur
b594f3b843 util.startup: Set up event hooks for reloading logging here instead of in loggingmanager to simplify startup dependencies 2018-04-05 17:53:51 +02:00
Kim Alvefur
eacc7b0dd3 util.startup: Initialize prosody.log / _G.log here instead of in loggingmanager to reduce dependencies 2018-04-05 17:52:37 +02:00
Kim Alvefur
77fbea8cdc core: Use prosody.hosts instead of _G.hosts for consistency 2018-03-29 16:58:06 +02:00
Kim Alvefur
6684c9901a loggingmanager: Hook event for reopening log files instead of config reloaded 2018-03-25 17:02:39 +02:00
Kim Alvefur
7e64fa124a configmanager: Move firing of the 'config-reloaded' event into util.startup (fixes #1117) 2018-03-25 17:02:00 +02:00
Matthew Wild
54c57625fa storagemanager: Default storage_async_check to false for a while 2018-03-25 12:45:24 +01:00
Kim Alvefur
dad6f67294 stanza_router: Limit scope of deprecated warning function since it is not used anywhere else [luacheck] 2018-03-23 13:15:19 +01:00
Kim Alvefur
d70c07e53f s2smanager: Explicitly export the incoming_s2s table [luacheck] 2018-03-23 13:14:05 +01:00
Kim Alvefur
2c96ad6b4e storagemanager: Remove unused variable [luacheck] 2018-03-22 23:20:06 +01:00
Matthew Wild
576f77a1c8 storagemanager: Log warning on storage access outside of async contexts 2018-03-22 16:25:20 +00:00
Kim Alvefur
d03099c7cc Merge 0.10->trunk 2018-03-06 01:45:58 +01:00
Kim Alvefur
43b814a83b vairious: Add annotation when an empty environment is set [luacheck] 2018-02-28 20:06:26 +01:00
Kim Alvefur
6210465091 hostmanager: Add a logging close method in case something tries to close the origin of local-originated stanzas (see #1084) 2018-02-24 19:40:18 +01:00
Kim Alvefur
61c6bb76de moduleapi: Remove unused and undocumented :has_feature and :has_identity 2018-02-23 17:11:59 +01:00
Kim Alvefur
76d18a8464 rostermanager: Explicitly remove old-style 'pending' table from rosters (or it stays forever due to map stores) 2017-12-29 20:49:19 +01:00
Kim Alvefur
b8915c9db4 certmanager: Check for missing certificate before key in configuration (should be marginally less confusing) 2017-12-28 17:32:56 +01:00
Kim Alvefur
0158bad7ad certmanager: Set single curve conditioned on LuaSec advertising EC crypto support 2017-11-20 00:27:26 +01:00
Kim Alvefur
b9005e7b8a certmanager: Filter out curves not supported by LuaSec 2017-11-20 00:26:41 +01:00
Kim Alvefur
0315d775b2 certmanager: Change table representing LuaSec capabilities to match capabilities table exposed in LuaSec 0.7 2017-11-20 00:25:18 +01:00
Kim Alvefur
efcd11b541 rostermanager: Log warning if removal self-contact failed 2017-10-29 00:07:45 +02:00
Kim Alvefur
04bdf078d3 rostermanager: Use internal method for storing removal of self-contact 2017-10-29 00:07:18 +02:00
Kim Alvefur
314beadb4b rostermanager: Demote warning to debug message 2017-10-29 00:06:26 +02:00
Kim Alvefur
bf3bb71ed6 rostermanager: Capitalize log message 2017-10-29 00:05:26 +02:00