Mercurial Mercurial > prosody > prosody / changeset
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
mod_s2s: Improve log message about forbidding insecure connections
authorKim Alvefur <zash@zash.se>
Sat, 30 Nov 2019 23:29:15 +0100
changeset 10475 ae906d51e3d2
parent 10474 5267f12b038d
child 10476 676e6a1b23d4
mod_s2s: Improve log message about forbidding insecure connections This new wording generator is nice.
plugins/mod_s2s/mod_s2s.lua file | annotate | diff | comparison | revisions 
--- a/plugins/mod_s2s/mod_s2s.lua	Sat Nov 30 21:56:21 2019 +0100
+++ b/plugins/mod_s2s/mod_s2s.lua	Sat Nov 30 23:29:15 2019 +0100
@@ -763,8 +763,8 @@
 	end
 
 	if must_secure and (session.cert_chain_status ~= "valid" or session.cert_identity_status ~= "valid") then
-		module:log("warn", "Forbidding insecure connection to/from %s", host or session.ip or "(unknown host)");
 		local reason = friendly_cert_error(session);
+		module:log("warn", "Forbidding insecure connection to/from %s because its certificate %s", host or session.ip or "(unknown host)", reason);
 		-- XEP-0178 recommends closing outgoing connections without warning
 		-- but does not give a rationale for this.
 		-- In practice most cases are configuration mistakes or forgotten
prosody