mod_s2s: Improve log message about forbidding insecure connections
This new wording generator is nice.
--- a/plugins/mod_s2s/mod_s2s.lua Sat Nov 30 21:56:21 2019 +0100
+++ b/plugins/mod_s2s/mod_s2s.lua Sat Nov 30 23:29:15 2019 +0100
@@ -763,8 +763,8 @@
end
if must_secure and (session.cert_chain_status ~= "valid" or session.cert_identity_status ~= "valid") then
- module:log("warn", "Forbidding insecure connection to/from %s", host or session.ip or "(unknown host)");
local reason = friendly_cert_error(session);
+ module:log("warn", "Forbidding insecure connection to/from %s because its certificate %s", host or session.ip or "(unknown host)", reason);
-- XEP-0178 recommends closing outgoing connections without warning
-- but does not give a rationale for this.
-- In practice most cases are configuration mistakes or forgotten