Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Set SNI to the server_name, not whatever was in the SRV record | Richard van der Hoff | 2018-09-18 | 1 | -3/+10 |
| | | | | Fixes #3843 | ||||
* | Merge remote-tracking branch 'upstream/develop' into ↵ | Jeroen | 2018-07-14 | 1 | -7/+5 |
|\ | | | | | | | | | | | | | send_sni_for_federation_requests # Conflicts: # synapse/crypto/context_factory.py | ||||
| * | run isort | Amber Brown | 2018-07-09 | 1 | -7/+5 |
| | | |||||
* | | Merge branch 'develop' into send_sni_for_federation_requests | Jeroen | 2018-07-09 | 1 | -11/+78 |
|\| | | | | | | | | | # Conflicts: # synapse/http/endpoint.py | ||||
| * | More server_name validation | Richard van der Hoff | 2018-07-04 | 1 | -5/+42 |
| | | | | | | | | | | | | | | | | We need to do a bit more validation when we get a server name, but don't want to be re-doing it all over the shop, so factor out a separate parse_and_validate_server_name, and do the extra validation. Also, use it to verify the server name in the config file. | ||||
| * | Reject invalid server names (#3480) | Richard van der Hoff | 2018-07-03 | 1 | -3/+31 |
| | | | | | | | | | | Make sure that server_names used in auth headers are sane, and reject them with a sensible error code, before they disappear off into the depths of the system. | ||||
| * | Need to pass reactor to endpoint fac | Erik Johnston | 2018-06-25 | 1 | -1/+1 |
| | | |||||
| * | Remove all global reactor imports & pass it around explicitly (#3424) | Amber Brown | 2018-06-25 | 1 | -7/+9 |
| | | |||||
* | | allow self-signed certificates | Jeroen | 2018-06-26 | 1 | -1/+1 |
| | | |||||
* | | formatting changes for pep8 | Jeroen | 2018-06-25 | 1 | -1/+2 |
| | | |||||
* | | send SNI for federation requests | Jeroen | 2018-06-24 | 1 | -6/+5 |
|/ | |||||
* | Merge pull request #3182 from Half-Shot/hs/fix-twisted-shutdown | Richard van der Hoff | 2018-05-03 | 1 | -3/+8 |
|\ | | | | | Fix 'Unhandled Error' logs with Twisted 18.4 | ||||
| * | Don't abortConnection() if the transport connection has already closed. | Will Hunt | 2018-05-03 | 1 | -3/+8 |
| | | |||||
* | | more bytes strings | Adrian Tschira | 2018-04-29 | 1 | -1/+1 |
| | | | | | | | | Signed-off-by: Adrian Tschira <nota@notafile.com> | ||||
* | | Remove address resolution of hosts in SRV records | Silke | 2018-04-04 | 1 | -95/+8 |
| | | | | | | | | Signed-off-by: Silke Hofstra <silke@slxh.eu> | ||||
* | | Remove spurious log argument | Richard van der Hoff | 2018-01-30 | 1 | -2/+1 |
| | | | | | | | | ... which would cause scary-looking and unhelpful errors in the log on dns fail | ||||
* | | Fix error handling on dns lookup | Richard van der Hoff | 2017-11-24 | 1 | -2/+4 |
| | | | | | | | | | | | | pass the right arguments to the errback handler Fixes "TypeError('eb() takes exactly 2 arguments (1 given)',)" | ||||
* | | Handle SERVFAILs when doing AAAA lookups for federation (#2477) | Richard van der Hoff | 2017-09-28 | 1 | -5/+17 |
| | | | | | | | | | | ... to cope with people with broken dnssec setups, mostly | ||||
* | | Do an AAAA lookup on SRV record targets (#2462) | Richard van der Hoff | 2017-09-22 | 1 | -20/+96 |
|/ | | | | | Support SRV records which point at AAAA records, as well as A records. Fixes https://github.com/matrix-org/synapse/issues/2405 | ||||
* | Merge branch 'release-v0.18.6' into develop | Mark Haines | 2016-12-29 | 1 | -4/+66 |
|\ | |||||
| * | Manually abort the underlying TLS connection. | Mark Haines | 2016-12-29 | 1 | -2/+10 |
| | | | | | | | | | | | | | | | | | | | | | | | | The abort() method calls loseConnection() which tries to shutdown the TLS connection cleanly. We now call abortConnection() directly which should promptly close both the TLS connection and the underlying TCP connection. I also added some TODO markers to consider cancelling the old previous timeout rather than checking time.time(). But given how urgently we want to get this code released I'd rather leave the existing code with the duplicate timeouts and the time.time() check. | ||||
| * | Spelling and comments | Erik Johnston | 2016-12-29 | 1 | -4/+6 |
| | | |||||
| * | Clean up | Erik Johnston | 2016-12-29 | 1 | -2/+4 |
| | | |||||
| * | Wrap connections in an N minute timeout to ensure they get reaped correctly | Erik Johnston | 2016-12-29 | 1 | -4/+54 |
| | | |||||
* | | Fixup for #1689 and #1690 | Johannes Löthberg | 2016-12-12 | 1 | -4/+6 |
| | | | | | | | | Signed-off-by: Johannes Löthberg <johannes@kyriasis.com> | ||||
* | | IPv6 support for endpoint.py | Glyph | 2016-12-11 | 1 | -4/+4 |
|/ | | | Similar to https://github.com/matrix-org/synapse/pull/1689, but for endpoint.py | ||||
* | add a url_preview_ip_range_whitelist config param so we can whitelist the ↵ | Matthew Hodgson | 2016-05-01 | 1 | -5/+9 |
| | | | | matrix.org IP space | ||||
* | Merge pull request #688 from matrix-org/matthew/preview_urls | Matthew Hodgson | 2016-04-11 | 1 | -2/+33 |
|\ | | | | | URL previewing support | ||||
| * | Add url_preview_enabled config option to turn on/off preview_url endpoint. ↵ | Matthew Hodgson | 2016-04-08 | 1 | -2/+33 |
| | | | | | | | | | | | | | | | | | | defaults to off. Add url_preview_ip_range_blacklist to let admins specify internal IP ranges that must not be spidered. Add url_preview_url_blacklist to let admins specify URL patterns that must not be spidered. Implement a custom SpiderEndpoint and associated support classes to implement url_preview_ip_range_blacklist Add commentary and generally address PR feedback | ||||
* | | Allow clock to be passed in to func | Erik Johnston | 2016-03-31 | 1 | -3/+3 |
| | | |||||
* | | Read from DNS cache if within TTL | Erik Johnston | 2016-03-31 | 1 | -16/+23 |
|/ | |||||
* | Fix AttributeError | Erik Johnston | 2016-01-21 | 1 | -1/+1 |
| | |||||
* | Cache dns lookups, and use the cache if we fail to lookup servers later | Erik Johnston | 2016-01-20 | 1 | -30/+71 |
| | |||||
* | copyrights | Matthew Hodgson | 2016-01-07 | 1 | -1/+1 |
| | |||||
* | Update copyright notices | Mark Haines | 2015-01-06 | 1 | -1/+1 |
| | |||||
* | Fix pep8 and pyflakes warnings | Mark Haines | 2014-11-20 | 1 | -1/+1 |
| | |||||
* | Separate out the matrix http client completely because just about all of its ↵ | David Baker | 2014-11-20 | 1 | -1/+1 |
| | | | | code it now separate from the simple case we need for standard HTTP(S) | ||||
* | fix the copyright holder from matrix.org to OpenMarket Ltd, as matrix.org ↵ | Matthew Hodgson | 2014-09-03 | 1 | -1/+1 |
| | | | | hasn't been incorporated in time for launch. | ||||
* | Update default endpoint port to match the default ports in the config | Erik Johnston | 2014-09-02 | 1 | -2/+2 |
| | |||||
* | Fix SSL for federation http client | Mark Haines | 2014-09-01 | 1 | -1/+1 |
| | |||||
* | add in whitespace after copyright statements to improve legibility | Matthew Hodgson | 2014-08-13 | 1 | -0/+1 |
| | |||||
* | Reference Matrix Home Server | matrix.org | 2014-08-12 | 1 | -0/+171 |