Skip to content
This repository has been archived by the owner on Apr 26, 2024. It is now read-only.

Logging improvements around TLS certs #4615

Merged
merged 1 commit into from
Feb 12, 2019

Conversation

richvdh
Copy link
Member

@richvdh richvdh commented Feb 11, 2019

Log which file we're reading keys and certs from, and refactor the code a bit
in preparation for other work

Log which file we're reading keys and certs from, and refactor the code a bit
in preparation for other work
@codecov-io
Copy link

Codecov Report

Merging #4615 into develop will decrease coverage by 0.01%.
The diff coverage is 82.35%.

Impacted file tree graph

@@             Coverage Diff             @@
##           develop    #4615      +/-   ##
===========================================
- Coverage    75.31%   75.29%   -0.02%     
===========================================
  Files          338      338              
  Lines        34540    34543       +3     
  Branches      5643     5643              
===========================================
- Hits         26013    26009       -4     
- Misses        6941     6951      +10     
+ Partials      1586     1583       -3
Impacted Files Coverage Δ
synapse/app/_base.py 56.56% <0%> (-0.87%) ⬇️
synapse/config/tls.py 68.35% <93.33%> (+2.13%) ⬆️
synapse/storage/__init__.py 70.88% <0%> (-5.7%) ⬇️
synapse/app/homeserver.py 54.29% <0%> (-0.31%) ⬇️
synapse/handlers/device.py 80.47% <0%> (+0.79%) ⬆️
synapse/util/file_consumer.py 82.45% <0%> (+1.75%) ⬆️

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 5d27730...086f6f2. Read the comment docs.

@erikjohnston erikjohnston merged commit 086f6f2 into develop Feb 12, 2019
richvdh added a commit that referenced this pull request Feb 14, 2019
Synapse 0.99.1 (2019-02-14)
===========================

Features
--------

- Include m.room.encryption on invites by default ([\#3902](#3902))
- Federation OpenID listener resource can now be activated even if federation is disabled ([\#4420](#4420))
- Synapse's ACME support will now correctly reprovision a certificate that approaches its expiry while Synapse is running. ([\#4522](#4522))
- Add ability to update backup versions ([\#4580](#4580))
- Allow the "unavailable" presence status for /sync.
  This change makes Synapse compliant with r0.4.0 of the Client-Server specification. ([\#4592](#4592))
- There is no longer any need to specify `no_tls`: it is inferred from the absence of TLS listeners ([\#4613](#4613), [\#4615](#4615), [\#4617](#4617), [\#4636](#4636))
- The default configuration no longer requires TLS certificates. ([\#4614](#4614))

Bugfixes
--------

- Copy over room federation ability on room upgrade. ([\#4530](#4530))
- Fix noisy "twisted.internet.task.TaskStopped" errors in logs ([\#4546](#4546))
- Synapse is now tolerant of the `tls_fingerprints` option being None or not specified. ([\#4589](#4589))
- Fix 'no unique or exclusion constraint' error ([\#4591](#4591))
- Transfer Server ACLs on room upgrade. ([\#4608](#4608))
- Fix failure to start when not TLS certificate was given even if TLS was disabled. ([\#4618](#4618))
- Fix self-signed cert notice from generate-config. ([\#4625](#4625))
- Fix performance of `user_ips` table deduplication background update ([\#4626](#4626), [\#4627](#4627))

Internal Changes
----------------

- Change the user directory state query to use a filtered call to the db instead of a generic one. ([\#4462](#4462))
- Reject federation transactions if they include more than 50 PDUs or 100 EDUs. ([\#4513](#4513))
- Reduce duplication of ``synapse.app`` code. ([\#4567](#4567))
- Fix docker upload job to push -py2 images. ([\#4576](#4576))
- Add port configuration information to ACME instructions. ([\#4578](#4578))
- Update MSC1711 FAQ to calrify .well-known usage ([\#4584](#4584))
- Clean up default listener configuration ([\#4586](#4586))
- Clarifications for reverse proxy docs ([\#4607](#4607))
- Move ClientTLSOptionsFactory init out of `refresh_certificates` ([\#4611](#4611))
- Fail cleanly if listener config lacks a 'port' ([\#4616](#4616))
- Remove redundant entries from docker config ([\#4619](#4619))
- README updates ([\#4621](#4621))
@richvdh richvdh deleted the rav/tls_config_logging_fixes branch February 20, 2019 11:54
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants