Kim Alvefur <zash@zash.se> [Tue, 13 Jul 2021 14:55:21 +0200] rev 11680
net.server_epoll: Refactor immediate TLS handshake start
Kim Alvefur <zash@zash.se> [Tue, 13 Jul 2021 14:51:05 +0200] rev 11679
net.server_epoll: Keep socket registered in epoll trough TLS wrapping
There's the theory that the socket isn't the same before/after wrap(),
but since epoll operates on FD numbers this shouldn't matter.
Kim Alvefur <zash@zash.se> [Tue, 13 Jul 2021 14:27:46 +0200] rev 11678
net.server_epoll: Use TLS handshake timeout after initiating handshake
The :init() method sets a different timeout than the TLS related methods.
Kim Alvefur <zash@zash.se> [Tue, 13 Jul 2021 14:20:26 +0200] rev 11677
net.server_epoll: Start TLS handshake immediately on newly accepted connections
Since TLS is a client-first protocol there is a chance that the
ClientHello message is available already. TLS Fast Open and/or the
TCP_DEFER_ACCEPT socket option would increase that chance.
Kim Alvefur <zash@zash.se> [Tue, 13 Jul 2021 14:20:24 +0200] rev 11676
net.server_epoll: Factor out TLS initialization into a method
So there's :startls(), :inittls() and :tlshandshake()
:starttls() prepares for plain -> TLS upgrade and ensures that the
(unencrypted) write buffer is drained before proceeding.
:inittls() wraps the connection and does things like SNI, DANE etc.
:tlshandshake() steps the TLS negotiation forward until it completes
Kim Alvefur <zash@zash.se> [Tue, 13 Jul 2021 02:05:35 +0200] rev 11675
net.server_epoll: Fix typo
Kim Alvefur <zash@zash.se> [Sun, 11 Jul 2021 12:41:32 +0200] rev 11674
mod_s2s: Log debug message on attempted close of an connectionless session
This should probably never happen, but probably does anyways.
A debug message would show the truth of the matter.
Kim Alvefur <zash@zash.se> [Sun, 11 Jul 2021 12:37:51 +0200] rev 11673
mod_s2s: Drop level of indentation by inverting a condition and early return
Nicer to get rid of a conditional that covers such a large portion of a
pretty big function.
Kim Alvefur <zash@zash.se> [Sun, 11 Jul 2021 12:36:08 +0200] rev 11672
mod_s2s: Use module API to fire events
These direct accesses are probably more optimized, but weird when the
module API has methods for these things.
Kim Alvefur <zash@zash.se> [Sun, 11 Jul 2021 10:09:10 +0200] rev 11671
scansion tests: Allow specifying network settings via environment variable
Allows testing e.g. opportunistic writes or other settings easily in CI
or otherwise without editing the config file.
make integration-test PROSODY_NETWORK_SETTINGS='{"opportunistic_writes":true}'