interop - 2010-12-06

Blah?

Blah!

Interop Stuff

Anyone know if there's a mailing list for this as well?

http://mail.jabber.org/mailman/listinfo/interop this one maybe? but i don't know who is subscribed there

Well, interestingly, I don't have the password for that list.

This suggests it's not been used recently.

but there're messages in the archive

though one year idle

Kev, I assume you're wearing an iteam/XSF hat for this?

Predominantly.

I have other hats available if it gets cold.

Ok, I've mangled control of the interop mailing list as well, now.

I suggest that people who aren't on that list yet make it so.

interop@xmpp.org?

r

http://mail.jabber.org/mailman/listinfo/interop

So what do we need in terms of client accounts, DNS, and certificates, then?

Aside from someone to run the CA?

You tell me, I'm just here to do what I'm told.

(Or, rather to ask the iteam to)

OK, updated the wiki page with this and the mailing list.

something in the topic would be nice too, maybe a pointer to the wiki page

ok... how do we get certs? Shall we send CSRs or is it easier if you generate privkeys and certs for a given hostname?

fippo: Matt's volunteered to run the CA for the week, so I think we need him to appear first :)

will the certificates used in the interop be made available somewhere for later use (or regression testing?)

s/or/e.g./

fippo, Given what Isode is giving Matt, I don't think it makes any difference whether he generates the CSR/PKEY pair you you do.

scary green man: will there be 'meeting minutes' of this week? I.e. what was tested etc.

morning gents.

admin@im.flosoft.biz: Morning!

soo ... I'm ready to add the vhosts ...

surprise - I'm in the UK for a while now so time zones a bit easier than when I was in Sydney

remko, Should do that, shouldn't we?

should yes

dbanes: so you're also freezing to death?

yes, that's the down side

arriving at Heathrow in shorts was not a good idea :)

haha

On the upside, it's a once in a lifetime experience.

Hopefully, anyway.

Freezing to death? The odds are good, I'd say.

indeed. I froze on my way up the hill to campus

arriving at Heathrow in shorts :)

well ... on the other hand... the Finns jump into snow after the sauna too

Client folk - any of you have SCRAM-SHA1-PLUS coded?

lol ... I think that's a no :)

Well... Server folk, then? (I've two clients and a server).

Aw... Ah, well.

hehe

Dave Cridland: Which is the other client?

waqas, Well, We-Isode has a CMU SASL fork which now has channel binding. I also have Polymer, which has had it since, erm, last year or something silly.

waqas, And yes, Polymer *is* a mail client, and quite why it happens to have a small XMPP library in it really is anyone's guess.

Dave Cridland: Perhaps we need a new version of Zawinski's Law.

waqas, This is Zawinski is reverse, though.

in reverse.

what's Zawinski's law?

(sorry ... can't access the web for some reason atm :/)

actually .. DNS is down

As I recall, every software project grows until it can read mail.

Florian: All software evolves until it can real mail

Every application will continue to expand until it has a mail reader, or such, I think.

*read

right :)

thanks for that :)

Hmm, Prosody has a mail sending extension, though not a reading one :)

That's ok, just run it backwards.

Reverse the polarity!

Kev, Do you have access to the domain name's DNS , BTW?

How many server projects have shown interest in the interop event? The last I remember was three.

Kev, If so, we could start setting up that.

waqas, Wiki page has 5.

I have access to everything. I may not have the inclination to touch it, but I have access. I can also poke appropriate people.

http://wiki.xmpp.org/web/Interop

Thanks

XSF Interop 2010 - http://wiki.xmpp.org/web/Interop

Ah. I was going to change the subject, but that seems not to work.

hehe

I thought I was an admin on this service, but I'm not sure with which account :)

Florian, Well, I think it might count as an interop failure, but I don't know if Gajim normally disables that control if it detects it can't change the subject.

:)

Ah, with this account, even. It just doesn't make me a superuser in MUCs :(

don't tell me :)

I use Psi

Kev: Server admins don't automatically become room moderators in the version of Prosody running here sadly

Florian: Did Tigase support SASL EXTERNAL for s2s?

not sure ... inquiring ...

don't think so though

at least it didn't a while back

So, we need domains first of all. What's the domain we're using again?

xmpptest.something, I believe.

I'll look into this now.

I was just sending email about that?

bear, Ah, morning!

I am up late (or very early - either works)

I can give kev my service password if that speeds things up

bear: You've already transferred the DNS server entries over to the XSF haven't you?

you mean nameserver entry?

I've not been following this, but I'm aware the XSF nameservers are willing to answer for it now.

I do.

let me double check

poo - style showing wrong - what is ns1 and ns2 for xmpp?

i'll change it now

bear: I need intosi to reappear before I can answer that.

i only run ns3

let me dig it up (/me brushes off his ops toolset)

we need to change it on ns1

athena.jabber.org

Oh, I can tell you what the NS are (ns1/ns2/ns3).jabber.org and ns.mons.net, I'm just wondering what it makes most sense for you to add :)

Florian: Are you sure? I didn't believe that was true.

oh?

ns1 is athena. ns2 is ds0039 ns3 is sdns1

Indeed.

I believe, however, that we have a hidden master.

ooh, right

where was that though?

That's what I'm trying to work out at the moment.

Unless Edwin reappears before I find it :)

Ok, gottit.

so ns1.jabber.org and ns?.jabber.org ??

ns2 and ns3 are slaves

or be patient and let kev work?

As is ns1

right ... but ns3 is a slave off ns2

bear: I believe just duplicating the entry for xmpp.org is fine.

i.e. ns1.jabber.org ns2.jabber.org ns3.jabber.org and ns1.mons.net

k

brb ...

no MUC on the N900 :(

done

Thanks bear.

np - i'll be online after I handover last weeks work to my team

technically I have today and tomorrow off

Thanks bear, nn.

please do call my cell if anything is urgent +1 215 680 1747

Ok, so, anyone have a machine ready that they'd like to tell me about?

Kev, You can setup M-Link trunk on p.d.c.n if you want.

Ok, I'm setting up r146 at teh moment.

Kev, Most details for twhat's needed are on the Wiki page, but not what domains we'll be using.

Kev, So if you can pick those, I can update the wiki page with them as we can get our servers setup and ready.

Well, keep in mind that I'm configuring bind on a domain for the first time ever, so this may go badly wrong :)

Unless anyone has objections, I'm going to run through the clients and assign them each a username and password pair, that the server guys can then put in for each of their supported domains (when we get those).

GFI.

Done.

Simon Josefsson, Hey. We have SCRAM-SHA1-PLUS, if you want to interop test yours while we're here.

Simon Josefsson: you know of a XMPP client using gsasl and that support scram-sha1-plus?

Tobias, (FWIW, I can do both server and both clients on IMAP at least, as well)

ok ... I seem to be missing the participant list

Florian, In the MUC?

yeh

after the reconnect

switch to useless paranoia mode

Dave Cridland: but i'm not active in IMAP server projects ;)

Tobias, Yeah, but it means I can do interop tests with Simon's implementation.

Florian: Which machine is ns3, did you think?

ns3 is sdns.flosoft-servers.net

it's slaved off of ns2

ns1,ns2 and ns1.mons all seem to be fine, but ns3 doesn't seem to be set up for xmpptest.com

ah

let me check

Dave Cridland: good ;)

xmpptest.com 2010-11-12 16:31:24 91.121.109.155 ACTIVE

it might take a bit to propagate

it's not on ns2 either?

Homer:~ florian$ dig A xmpptest.com @ns2.jabber.org ; <<>> DiG 9.6.0-APPLE-P2 <<>> A xmpptest.com @ns2.jabber.org ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 40305 ;; flags: qr aa rd; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; WARNING: recursion requested but not available ;; QUESTION SECTION: ;xmpptest.com. IN A ;; AUTHORITY SECTION: xmpptest.com. 3600 IN SOA xmpp.org. hostmaster.xmpp.org. 2010120602 14400 3600 604800 43200 ;; Query time: 16 msec ;; SERVER: 91.121.109.155#53(91.121.109.155) ;; WHEN: Mon Dec 6 12:30:20 2010 ;; MSG SIZE rcvd: 85

nor on ns1?

We don't want an A record, do we?

dig @athena.jabber.org -t srv _xmpp-server._tcp.rooms.mlinkrelease.xmpptest.com

yeah, in that case ... ns3 needs some more time

ah

actually

it's not in the authority section

;; AUTHORITY SECTION: xmpptest.com. 3600 IN NS ns2.jabber.org. xmpptest.com. 3600 IN NS ns1.mons.net. xmpptest.com. 3600 IN NS ns1.jabber.org.

Ah, fine then :)

Florian: You're running the Tigase server aren't you?

If so, what machine is it running on, and what ports, please?

Then I'll set up tigasetrunk.xmpptest.com and rooms.tigasetrunk.xmpptest.com to point to you.

ok

Kev, Have you done Prosody and ejabberd?

waqas: Similar question for you and Prosody - is it idev.prosody.im you want?

here's a guide :D

http://jabber.me/2010/04/use-your-own-domain/

tigase.me.

is the host

Dave Cridland: No, I'm working on them now.

Patience, patience.

weren't we supposed to do dns on our own? (at least i've already done that :-)

Kev: dev, not idev

Operation successful. There is no DNS settings for given host: tigasetrunk.xmpptest.com

that's quite cool ... the vhost manager now even tests DNS :)

waqas: Is this prosody trunk or prosody release?

!version mlinktrunk.xmpptest.com

I guess no DNS yet :)

Kev: unreleased 0.8, which is an older trunk

Ok, I think that's prosody (prosody8/rooms.prosody8), ejabberd (ejabberd21/rooms.ejabberd21) and tigase (tigasetrunk/rooms.tigasetrunk) .xmpptest.com set up.

That just leaves psyced, I think.

fippo: What host do you want psyced.xmpptest.com to point to?

Florian / badlop / waqas: There you go, you have domains pointing to you. Please check they look right with e.g. dig @athena.jabber.org -t srv _xmpp-server._tcp.tigasetrunk.xmpptest.com so we can avoid getting incorrect entries cached all over the place :)

looks fine to me

Looks fine

tigasetrunk.xmpptest.com looks fine, rooms.tigasetrunk.xmpptest.com doesn't.

I need to get access to the domain first

kev: I need psyced-db (port 5266), psyced-sasl (port 5267) and psyced-dwd (port 5268) each pointing to lo.symlynx.com

Is that for both the domain and the rooms subdomain?

ah

it's muc.tigasetrunk.xmpptest.com

no rooms subdomain - we are old irc people, we love prefixes :-)

need to see if I can change that ...

!version tigasetrunk.xmpptest.com

Florian: tigasetrunk.xmpptest.com is running Tigase version 5.1.0-b2452 on Linux-amd64-2.6.34.6-xxxx-std-ipv6-64, Java HotSpot(TM) 64-Bit Server VM-16.3-b01-Sun Microsystems Inc.

I didn't actually mean to include that patch. Harrumph.

Florian: Tigase doesn't work unless it's got a 'muc' subdomain?

it works ... but this isn't that kind of tigase

it's the new one

with the massive vhost tools

as we run 40 or so hosts off of it

so the tool automatically sets it up with muc.domain

You now have muc instead.

fippo: you may have what you asked for, please check.

ah cool :)

was just browsing the config

fippo: No you don't, let me fix.

fippo: Now you should.

Florian: If it's an easy fix, I'd rather have rooms. for everyone with a conference component, just because it shows they're not hardcoded to the usual muc. or conference.

right

(Yes, I know of clients that hard-code to only support conference.domain, for example)

I'll inquire :)

kev: works - thanks

Fab.

Florian: I've set up both muc. and rooms. now, so if you get it working, it should just work.

cools :)

Ok, so I think everyone who was offering a server has the server in DNS now.

Next jobs will be getting certs for them all, when Matt appears :)

:)

Dave Cridland: mlinktrunk.xmpptest.com can't be reached via XMPP

Kanchil, Speedy response, there. :-)

soo ... tigase.im currently has 238 users

!version mlinktrunk.xmpptest.com

let's break 10k :)

Dave Cridland: mlinktrunk.xmpptest.com is running Isode M-Link version 15.0a0 on ZX Spectrum 48K

Excellent.

!version mlinkrelease.xmpptest.com

Dave Cridland: mlinkrelease.xmpptest.com is running Isode M-Link version 14.6v4 on an unknown platform

Maybe I should upgrade this to the newest release :)

Kev, No significant changes, are there?

I don't remember.

what kind of platform is a ZX Spectrum 48K?

All client accounts are (or should be) setup ready on mlinktrunk, if people want to give those a try.

Florian, It's actually a 16K, but I didn't want to brag.

haha

the only bragging tool I have: http://cl.ly/0E1T1e0h2j0l3d0r3f0Y

yellow being im.flosoft.biz

Righty. I can see everything on mlinkrelease from mlinktrunk. So yay, Isode M-Link trunk interops with Isode M-Link release.

Florian, Tigase is up too, right?

yup

it's up

'lo

!version jabber.ccc.de

vt100: jabber.ccc.de is running ejabberd version 2.1.5 on unix/linux 2.6.32

I've taken down mlinkrelease for a bit.

kev: can I have another dns record please? psyced6 pointing to xmppinterop01.dhbw-loerrach.de port 5269 (thanks vt100 :-)

Should be done.

thanks

12/ 6 13:43:14 xmppd 11021 (root ) D-MBOX-Auth closed originating s2s connection to domain ejabberd21.xmpptest.com [88.191.78.233] (host-unknown)

badlop, is this one set up yet?

mlinkrelease is back up

After a chat with Kev, I've dropped the usernames and passwords off the Interop wiki page, we'll just have to ask as required.

In any case, server folk may need accounts on other people's servers anyway for testing.

just ping the other server

even though that does not work when you want the other server to initiate the connection

Yes, I suppose I ought to consider bidi, if you've got that up.

brrrrr

MattJ, Indeed. Although nice and sunny, now. No sign of the ice melting, though.

depends on how fast mattj is :-)

When I've defrosted, I'm fast - at what? :)

MattJ: CA duty :)

If server devs want accounts on mlinkrelease as well, just poke me. I've created accounts for the clients, just waiting to be asked for details :)

Where do I start with CA duty?

MattJ, Probably getting the CA software. One sec, I'll sort that out.

thanks

do we have SRV records yet?

We do. And you do.

Oh good

prosody8.xmpptest.com for you.

We explicitly only have SRV records, not A.

Not sure your end's set up yet. (Although I've not checked in a long while)

Perhaps I should set incorrect A records for each domain as well :)

:)

Kev: on friday :-)

Yeah... Outright attempts to break things are fun, but let's get things working in sane environments first.

We will, however, need a small website somewhere, for the CRL DP. ca.xmpptest.com?

Is it easiest if Matt runs that site, if he's controlling the CRL?

Probably.

MattJ: Are you capable of easily hosting a vhost to do this?

Although IIRC, Matt has access to XSF webservers, so I doubt it makes much difference.

Sure, I don't mind

It's just a file to copy about, anyway.

Other than me remembering to do cleanup after.

Yes, but doing it to the XSF machines requires him uploading, sudoing etc.

point it to $(host prosody.im) if you like

MattJ: Up to you, I'll set up a vhost on athena if you'd rather.

I'm on my zonefile serial number 8 for the day.

MattJ: A record set up.

Thanks

Dave Cridland: vhost added, now ejabberd21 should work

badlop: Thanks.

Hmm, mlinkrelease isn't happy.

Oh, because I'm stupid.

Kev, No? I may well have broken things. It is *very* trunk.

It's not ejabberd21.mlinkrelease.xmpptest.com :)

So mlinkrelease and ejabberd21 are happily chatting.

Right, bit of trouble, had to restart Gajim for that.

But ejabberd21 and mlinktrunk are good.

MattJ, Is prosody8 up?

Nearly

Compiling OpenSSL, don't ask...

MattJ, I had to recompile pyOpenSSL this morning, after porting some patches from one hacked version to another, then kicking the Ubuntu packages violently out of the way.

Sounds familiar

Oh, 1.0.0c is out

let's see if this builds any easier than 1.0.0b

I just love the way they encrypt their own documentation.

dave: would be interesting how they document their verify callback behaviour :-)

woohoo, they must have broken the build for 1.0.0b, a and c both work :/

dave: mlinktrunk is not showing a cert currently?

fippo, No cert at all?

ah no... problem on my side (at least it works with openssl)

fippo, I'd expect it to have the cridland.im one.

mlinkrelease should have the (expired) doomsong.co.uk one.

and I'm back ... the OpenJDK VM decided to die

:)

!version im.flosoft.biz

Florian: im.flosoft.biz can't be reached via XMPP

great :)

Dave Cridland, does M-Link cache s2s failures?

MattJ, Nope, shouldn't do.

Dave Cridland: <Artur Hefczyc> unfortunately I am unable to spare any time for the interop week, still working hard on the tls for s2s, (no sasl external support yet and it is not planned soon)

!version prosody8.xmpptest.com

MattJ: prosody8.xmpptest.com is running Prosody version hg:c8fcd63e9526 on Linux

No idea what certs, but I'll hopefully be able to generate some soon

looks like a self-signed one

!version im.flosoft.biz

Florian: im.flosoft.biz is running Tigase version 5.1.0-b2457 on Linux-i386-2.6.34.6-xxxx-std-ipv6-32, OpenJDK Server VM-16.0-b13-Sun Microsystems Inc.

!version jabber.me

Florian: jabber.me can't be reached via XMPP

that's not right :/

heh

!version jabber.me

Dave Cridland: jabber.me is running Tigase version 5.1.0-b2452 on Linux-amd64-2.6.34.6-xxxx-std-ipv6-64, Java HotSpot(TM) 64-Bit Server VM-16.3-b01-Sun Microsystems Inc.

quite verbose

vt100, And not nearly as cool as a ZX Spectrum, either.

Indeed.

mattj: do you keep plaintext logs on prosody8? I just spotted an interesting failure, removed the rawlog and now I can not reproduce it :-/

Hm, speaking of Prosody, how's the v6 implementation of lua going?

vt100, not yet begun - unless you want /only/ IPv6 :)

mattj: we might test /only/ IPv6 - then we know that it works at least and can take care of the 4/6 issues later :-)

fippo, me? keep logs? I have several GB of them :)

MattJ: Bah. :)

:)

vt100, I can't do everything at once :)

well, tigase.me has an IPv6

I judged s2s TLS as higher priority

MattJ: No offence :)

which was the other thing the relevant Lua library was missing

IPv6 should be a breeze in comparison

Florian, Might want to note that Tigase is serving IPv6, too.

Florian, I mean on the Wiki page.

oo, ipv6, i'ld like to test that too

remko, mlinktrunk does it as well.

yeah, but it requires an ipv6 network i'm told

i was hoping someone could test that for me :)

remko, Ah not got IPv6 at your end?

no

and i haven't the slightest clue how to set it up :)

remko, Hang on, I'll give it a spin. Assuming I can find a Swift build.

remko, Pretty easy - I'm using he.com's tunnel server.

http://swift.im/releases/swift-1.0beta8/

remko, `cd ~/src/swift; git pull`

that works :)

he.com, huh

interesting, i'll look into that

he or sixxs

OT, but "muahahaha" - Highways Agency alerts delivered via pubsub to desktop notifications (and no, I still don't drive)

vt100, sixxs if you happen to enjoy random firewalling.

Dave Cridland: Or Theo de Rant like support.

vt100, I dropped sixxs and suffered the renumber when I discovered I could no longer talk to Gajim's servers.

vt100, I looked at the small print and figured that it was technically against the sixxs T&C to run an XMPP service.

Dave Cridland: I've got a sixxs tunnel at home, no problems so far.

Eh? Well, one of their admins is not too far from here, we share some mailing lists, I could ask him if there's trouble.

Are the xmpptest records mirrored across all of ns1.jabber.org, ns2.jabber.org, ns1.mons.net?

MattJ, That was certainlt the intention.

Just had a random DNS failure here, no records returned for a SRV query

mattj: technically, you want to send a dialback error instead of a stream error - but even I don't do that yet :-)

Agreed, it's added to my todo :)

Oh. No rejoin.so I've desynced when isode.com crashed. (It's running a different "trunk" too at the moment)

dave: if you do, you don't announce it in stream features (at least not on release)

http://conference.prosody.im:5280/pastebin/98089d9c-a95a-43aa-8237-8a4c60363cff

getsrv is just a dig-wrapping script

At least this makes things a little more "interesting"

I get the correct response from all three dns servers

MattJ: All of xmpp.org's nameserver's should be mirroring.

MattJ: Can you tell me which on you think isn't?

Nope, they all seem to respond when queried individually

So, do we need some sort of checklist of things we'd like to check between servers? I'm assuming just basic XMPP like "Can s2s without using dialback for auth if there are trusted certs", "Can reject all connections not presenting a trusted cert", "Doesn't send junk over s2s in jabber:client" etc.

We probably do. Seeing if anyone does dialback errors, too. (Which we don't I just checked. But easy to change)

We do dialback errors when the token doesn't validate

I think we do - at least the host-unkonwn variant

but not when the dialbacking connection fails

oh... we could test piggybacking - even though I am sure that googlemail/gmail does a pretty good job at enforcing it :-)

fippo: I'm happy to test stuff like that, but I'm not sure it's worth it as a baseline for interop testing.

fippo, Oh, that's interesting - what's the right error condition for "Yes, I know who you are, but I kjust don't want to talk to you" - the ones I'd expect to use are all specified for TLS/X.509 usage.

I'll go for forbidden.

Right, done and updated.

policy-violation?

fippo, XEP-0220 specifies that as meaning requiring TLS. forbidden seemed to be reasonable.

fippo, I was tempted to go for payment-required just to irritate. :-)

haha

you would :P

lol

:)

dave: I think you would send a policy violation stream error in response to the initial stream header in that case

fippo, Yeah, except that if you receive it as a pggybacked request, you don't want to kill the other multiplexed pairs.

so if you know that you don't like domain X you still like domain Y hosted on the same server?

fippo, Yes, yes, it's astonishingly unlikely.

btw... we should start making a list of things that are known to work - first item are srv-lookups and ports other than 5269

fippo: Sonuds like a good plan.

What we should also do is make a blog post about how wonderfully successful each day has been.

Monday: Success, Kev played with bind9 for the first time, and managed to not break the XSF infrastructure.

\o/

Ok, I guess I'm now accepting CSRs to mwild1@gmail.com

CSRs? geee!

:)

http://ca.xmpptest.com/

Dave Cridland: do you mind if I forward your email to the xmpp@ietf.org list?

stpeter, Which one? Interop one? Go for it.

yeha

yeah even

yeah, usually I'm not so courteous :P

WOw, libjingle now speaking XEP-0166. Does that have implication that the GTalk client might also do so?

libjingle was the first step, as I understand it from having chatted with Harald in Beijin

Have they officially released such a version? I heard/saw they were actively updating the code repo on code.google.com

darkrain: yes

darkrain: well, a version of the library, not of the client yet

Right.

Nice :)

indeed

Did the ditchabillity of legacy pre-xep jingle code increase? :)

do you doubt it as well ? :p

well

doubt VP8 support?

or their support for the XEPs?

both

the folks I've talked with on the Talk team are committed to supporting the XEPs

and the folks I've talked with are in a position to make that happen

cool

http://code.google.com/p/libjingle/wiki/FAQ does say: What XEPs does libjingle support?¶ Libjingle has basic support for XEP-166 and XEP-167. It also supports the pre-standard versions of those protocols that Google Talk currently uses (web-based Google Talk will be updated to speak jingle soon). Libjingle does not yet have support for XEP-176 because it uses a pre-standard version of ICE-UDP. We're looking at how we can fully implement XEP-176 and ICE-UDP.

:)

Ok, prosody8 restarted with certs signed by ca.xmpptest.com

Hey bear

MattJ: Can you issue for mlinkrelease and rooms.mlinkrelease please?

looks like things are moving nicely

Or do you need me to work out how to get a CSR generated? :)

Kev, I think I did, for Dave

i'm going to go over the wiki page and the log scrollback later this afternoon and whack up a "day 1 summary"

Ah no, that was mlinktrunk

Kev, then I need a CSR, but I guess I can make one for you :)

if anyone is inclined, patches accepted for any text snippets :)

MattJ: That'd be nice please.

Thanks

fippo, I don't know how you did it, but congratulations

Your CSR crashes the Isode CA software :)

\o/

Hopefully Dave will reappear with a solution

MattJ: You wrote some CA implementation?

No, Isode did

yay!

mattj: they were elmex'ed

Thanks to Zash Prosody can generate OpenSSL configurations to feed into OpenSSL to generate a self-signed cert or CSR

but a bit short of a CA

mattj: if it's easier for you, you can make me a cert instead of using that cert

.o0( I wonder if this bot here will count karma points for people crashing other people servers in interop test )

people's

No crashed /servers/, yet anyway :)

MattJ: Received, thanks.

mattj: prosody8 doesn't show me starttls - and does not attempt it either

hi all

That'll be interesting.

Nÿco: just in time! I'm here

If client devs want passwords for the servers, please poke the server admins. I've got accounts created for each of the clients on the interop page, ready.

Kev: ok thanks, maybe later during the week

Not that it's all that interesting.

Is it the same password as my luggage?

We know Gajim works with M-Link, and Prosody, and ejabberd anyway :)

no but testing how clients behaves with all servers, all cert things (is it only s2s certs that has been generated?)

Certs are good for both s2s and c2s.

Not that I've installed the one for mlinkrelease yet, I intend doing that tomorrow morning.

*Client* certs?

Oh, we don't have certs for the clients.

Although we could get them.

I'm happy to set up certs on mlinkrelease for strong auth for clients.

Although MattJ would probably have to provide them so they're from the same CA.

Kev, Not, actually. You could setup your own CA for that.

Yes, but that would mean me setting up a CA.

Although I actually have one somewhere.

apropos gajim on ejabberd compatibility, i just can't login using latest version from hg, it authentication, bind, and session worked ok, i guess it failed when ejabberd returned error when gajim tried to delete some pep node

i can send log if someone is interested

I use gajim on ejabberd without problem. ejabberd replies with errors when deleting pep things, that's normal and it's not a problem

brb

prefiks: What stanza are you sending, and what's the error response you get back?

(or is the server uncleanly terminating the connection?)

one moment let me consult ejabberd logs

prefiks, Gajim doesn't delete a PEP node, but it does publish empty Activity and Mood on connect.

(Which mildly annoys me, although I only noticed when I was trying to test persistent PEP)

I'm not convinced that's the Right Thing to do, fwiw.

ups, sorry looks like this is fault of my ejabberd (it's not vanilla one, it's quite heavy patched)

Kev: But, if you set a status like "I'm going to sleep now", and then shuts down the client, it won't make that much sence when restarting

Kev, I understand why - it's because Gajim's presence system regards the status message, activity, and mood as a three-tuple that gets set together, so when it comes online and sets its status message it sets all three.

Zash, It's slightly more annoying if you set PEPness in another client then spin up the laptop briefly...

Zash: Yes, but that's an argument for removing it at logout, not at login :)

(And only if you set it)

For the reasons Dave says.

I think on login you just see what's there, unless you've been explicitly told to set something else.

as wash said, there are also cases when that doesn't mean anything to keep last pep informatio...

+n

prefiks: is it you there: http://trac.gajim.org/ticket/6041

Nÿco: ping?

Asterix: no

ayes

Nÿco: nice, we go in pm?

Whoops. Seems my "IPv6" claim was a little exaggerated. Now told my router to route IPv6 instead of looking at it blankly.

yes

did the certs get sorted?

Asterix: The one you linked to looks like https://support.process-one.net/browse/EJAB-939

on the phone

;-)

over Jingle

quality quite ok

\o/

and works the first time (when I use a non-buggy Gajim ;) )

http://twitter.com/#!/nyconyco/status/11891978551693312

;)

OneTeam also works against an N900 client

That sounds pretty cool.

I can see the headline - "Jingle interoperability proven! Even works in French!"

:D

to be honest, I don't use often the voice calls... I will... more than before

I've tried it once or twice with Florian, occasionally with some success.

Dave Cridland: to be completely sure, and test at 100 % the Jingle calls, I need to test 'Humor over Jingle'

yeah

See? Interop failure right there.

just testing with Nyco

It's "humour". ;-)

do you remember the noise?

Florian, The background noise, or that ghastly sound you make when you speak?

background noise :p

Dave Cridland: Surely that's an interop issue for written communication, but not verbal?

just sending the recording via mail

and then sharing

ok

listen to this

http://cl.ly/141I0X251G2B1l3c3m1F

when nyco talks (5s in) there is a noise

voice qualities differ

"Backlog too deep"

Ace. Nice debug message from the heroku developers.

Florian, Sounds like Nÿco's speaking through a sock. One that's clicking, too.

haha

right ... the clicking

I assume it's recording you locally, which doesn't help - the contrast between the sound quality makes it more apparent.

right

it's a small app on the N900 that allows you to record phone conversations :)

Nifty.

great if you borrow someone your phone to make a "private call" :)

Evil.

i'd call it genious :)

But only if you can't spell "genius".

:p

sjoerd.simons: Isn't that called "customers"? ;)

hah

indirectly i guess :)

anyone tested N900, Gajim and video? Me and a friend tested a while ago, but I don't remember if it worked

just testing audio N900 <-> OneTeam

Zash, I've tried that with Florian. I can't remember if I could see him but not hear him, or something else.

it was weird

it was or audio or video worked

but not both :)

Zash, I do remember writing things down on my whiteboard in order to communicate, actually.

Zash, Which was quite funny.

Hah

Zash, And, of course, demonstrated that there's no need for a dedicated whiteboarding protocol in XMPP after all.

he then realized that XMPP has this thing that allows you to send text :)

haha :D

just in: VodafoneUK blocks Jingle

Why not just go straight ahead to svg-sxe.. aw

doesn't block SIP though

I think we found the problem

Vodafone has some nifty routing: N900 -> 10.252.225.53 -> 10.252.224.21 -> 10.206.64.82 -> 10.206.64.145 -> Internet

bye all

Florian, How many of those are NATs?

I guess all of them

or none

Nÿco, See you tomorrow.

I dunno tbh

SIP works

Jingle doesn't

but!

SIP goes to a public server IP

jingle was to Nÿco behind a NAT

single nat worked ... i.e. N900 on WiFi

Jingle nodes?

yup

where ?

Iduno, but I guess that's what would be needed :/

Asterix, Have you looked into IGD/UPnP at all in Gajim?

doesn't gstreamer handle that for us?

Asterix, I don't know, actually.

Asterix: depends, are you using farsight and nice ?

yes we are

then it should do upnp automagically assume your distro compiled things properly

So running up a upnpd on ym router might help. Interesting.

Mmmm.. UPnP IGD ..

Zash, I think it needs a clearer name, though.

Zash, Maybe UFMP.

Zash, "Unauthenticated Firewall Manipulation Protocol".

Universal Forward My Port!

Dave Cridland: It needs more 'X'-es, since it uses SOAP, and therefore XML

I wish I wrote a SOAP server. Then I could make loads of gags about how clean the code was.

lol

I'd actually love to have an XMPP2SOAP gateway :)

Florian, There's a gag there somewhere, I just can't see it.

XMPP over SOAP over HTTP over UDP?

.. over IP over avian carrier

lol

Zash, Reminds me of that time in Brussels a couple of years ago, when Dirk Meyer had HTTP over Jingle over XMPP working, and everyone who heard suggested running BOSH over it.

hehe

haha, awesome

well ... that's where I heard about: Jingle over TCP over UDP over ICE

or something like that

that was 200

*2007

Hmm... + mod_tcpproxy = TCP over XMPP over BOSH over HTTP over Jingle over XMPP orver TCP over IP...

And then you do all of it over that again!

ok ... wtf ... why does iPlayer recommend BBC Wales Today?!

I'm not in Wales

I'm in London

and I guess the chick from my Uni finally got fired in the Apprentice

y'know, I'm getting a bit tired of the RFC revision process :)

hehe

ok, bbl

looks like I'll be joining the Hackday too :)