jdev - 2021-01-13

  1. alex-a-soto has left
  2. alex-a-soto has joined
  3. wurstsalat has left
  4. mikeye has joined
  5. adityaborikar has joined
  6. marmistrz has joined
  7. marmistrz has left
  8. paul has left
  9. o2 has left
  10. mikeye has left
  11. debacle has left
  12. o2 has joined
  13. frank has left
  14. frank has joined
  15. Beherit has left
  16. SouL has joined
  17. Beherit has joined
  18. mac has joined
  19. SouL has left
  20. SouL has joined
  21. o2 has left
  22. Yagizа has joined
  23. mikeye has joined
  24. mac has left
  25. o2 has joined
  26. o2 has left
  27. o2 has joined
  28. marc has left
  29. mikeye has left
  30. mikeye has joined
  31. mac has joined
  32. paul has joined
  33. mac has left
  34. mac has joined
  35. oibalos has joined
  36. wurstsalat has joined
  37. mac has left
  38. marmistrz has joined
  39. mac has joined
  40. mikeye has left
  41. stefan has left
  42. Martin has left
  43. Martin has joined
  44. mikeye has joined
  45. Guus has left
  46. floretta has left
  47. SouL has left
  48. SouL has joined
  49. belong has joined
  50. esil has joined
  51. Guus has joined
  52. marc has joined
  53. marc has left
  54. marc has joined
  55. stefan has joined
  56. Beherit has left
  57. Beherit has joined
  58. marc has left
  59. goffi has joined
  60. floretta has joined
  61. mac has left
  62. mac has joined
  63. frank has left
  64. frank has joined
  65. mikeye has left
  66. floretta has left
  67. mac has left
  68. marc has joined
  69. mac has joined
  70. floretta has joined
  71. frank has left
  72. mac has left
  73. moparisthebest has left
  74. frank has joined
  75. moparisthebest has joined
  76. debacle has joined
  77. lovetox has joined
  78. lovetox has left
  79. alacer has left
  80. alacer has joined
  81. frank has left
  82. frank has joined
  83. raghavgururajan has left
  84. alacer has left
  85. frank has left
  86. alacer has joined
  87. Syndace has left
  88. Syndace has joined
  89. frank has joined
  90. kikuchiyo has joined
  91. Beherit has left
  92. Beherit has joined
  93. Wojtek has left
  94. Beherit has left
  95. Beherit has joined
  96. kikuchiyo has left
  97. kikuchiyo has joined
  98. frank has left
  99. frank has joined
  100. kikuchiyo has left
  101. kikuchiyo has joined
  102. moparisthebest has left
  103. frank has left
  104. Beherit has left
  105. frank has joined
  106. moparisthebest has joined
  107. Beherit has joined
  108. marmistrz has left
  109. marc has left
  110. frank has left
  111. marmistrz has joined
  112. frank has joined
  113. kikuchiyo has left
  114. marc has joined
  115. marc has left
  116. SouL has left
  117. SouL has joined
  118. kikuchiyo has joined
  119. alacer has left
  120. Guus has left
  121. Guus has joined
  122. alacer has joined
  123. SouL has left
  124. marc has joined
  125. alacer has left
  126. alacer has joined
  127. marc has left
  128. frank has left
  129. frank has joined
  130. marc has joined
  131. SouL has joined
  132. belong has left
  133. belong has joined
  134. debacle has left
  135. Wojtek has joined
  136. stpeter has joined
  137. marc has left
  138. frank has left
  139. marc has joined
  140. debacle has joined
  141. frank has joined
  142. marc has left
  143. marc has joined
  144. marc has left
  145. marc has joined
  146. Sam Whited While testing my server implementation I just realized that bind is broken because I always match the feature being selected by the namespace but bind does its magic IQ stuff. Does everyone else just special case this? I really have no good idea how to handle this in a sane/general way.
  147. Zash Prosody used to special-case pre-binding IQs, explicitly excempting by namespace and stuff. Now it treats them as stream elements until after resource binding.
  148. Sam Whited What does it mean to treat them as stream elements? Does that mean in theory the bind IQ could be sent at any time during the negotiation process?
  149. Zash And then there's a bit of special dispatch for {default namespace}iq, but they're not iq stanzas as far as routing is considered
  150. Sam Whited oh, gotcha
  151. Sam Whited Yah, I don't start IQ handling at all until after the session is negotiated so they're not actually treated as IQs, but I guess I'll have to special case "if you get <iq/> pass that to the bind handler" instead of just relying on namespace
  152. Sam Whited I hate having a magical special case in there though
  153. Zash Yeah, I wasn't a fan of having resource binding or IBR special-cased so early in routing.
  154. Zash Also why I'd like to move away from such iq-looking things.
  155. Sam Whited Oh is IBR special too? I didn't remember that, I'll have to go re-read that one
  156. Zash I don't remember
  157. Zash Hm, could be that it was only binding that was special, since it happens after authentication
  158. Sam Whited hmmm, well, I don't want to deal with that one right now (or possibly ever) so I may just say "if you get an IQ, pass it to the bind handler" to start and ignore IBR until someone complains
  159. Beherit has left
  160. Beherit has joined
  161. kikuchiyo has left
  162. Zash So the change in Prosody was in when <{jabber:client}iq> becomes a stanza, as opposed to a stream element (.... nonza). Before it was at authentication, now it's at resource binding.
  163. kikuchiyo has joined
  164. adityaborikar has left
  165. Zash This makes sense to me since you need a resource for routing.
  166. adityaborikar has joined
  167. Sam Whited I don't understand the distinction
  168. Sam Whited Or how it could be at authentication since it's always used for resource binding?
  169. Zash There's a period in the life of a session between authentication suceeding and resource binding
  170. Zash What happens if you try to send a message before resource binding?
  171. Sam Whited Oh, I don't actually have handlers for messages or anything at that point so it would just think there was no such feature and say that "jabber:client message isn't an advertised stream feature" or something
  172. Sam Whited But that makes sense if you're already handling messages and IQs and what not, which I guess technically I should be since I think in theory you could send them to the server before negotiation is complete
  173. goffi has left
  174. goffi has joined
  175. COM8 has joined
  176. floretta has left
  177. COM8 has left
  178. lovetox has joined
  179. floretta has joined
  180. Beherit has left
  181. lovetox has left
  182. Beherit has joined
  183. Zash Does anyone have a client supporting XEP-0440 and `tls-server-end-point` ?
  184. lovetox has joined
  185. flow Zash, if you provide a server implementation then I would be very tempted to provide the client side implementation
  186. lovetox has left
  187. frank has left
  188. Beherit has left
  189. Beherit has joined
  190. Zash flow: I've got an initial WIP where you need to supply the cert hash yourself, wondering if I should publish as-is or wait for library support for getting the hash to use to get it.
  191. frank has joined
  192. marc has left
  193. marc has joined
  194. Zash Oh dear, dual RSA/EC cert setups are going to cause pain.
  195. flow Zash, with your current approach, where teh cert hash is externally supplied, I assume?
  196. Zash With the next step of the WIP where it tries to hash the configured certificate. Which is already a blocker because it doesn't know what hash function the cert is signed with, and you're supposed to use the same if it's better than sha-256
  197. Zash flow: Not specifically, more in general. Prosody doesn't support it anyways.
  198. Beherit has left
  199. Zash And in the TLS offloading proxy setup where it makes sense to do with a configured cert hash, certificate rollovers will be fun.
  200. marc has left
  201. moparisthebest cert hash or key hash? basically things should only use key hash ever imho
  202. flow Zash, yep, in TLS offloading setups this may be more pain than gain
  203. Zash moparisthebest, I'd actually like to have (maybe even write) a channel binding thing that says "use the SPKI as-is"
  204. moparisthebest oh, channel binding, that's probably fine, I should read first
  205. moparisthebest yea that'd be neat, match up with DANE well (and maybe we can do HPKP for XMPP one day...)
  206. Zash Or drop certificates and use raw public keys!
  207. Zash Of course that's never going to happen. Can't actually have nice things.
  208. moparisthebest I swear there used to be a TLS mode that did that
  209. Zash Raw public keys? Yeah.
  210. moparisthebest I assume it was dropped with TLS 1.3
  211. Zash https://tools.ietf.org/html/rfc7250
  212. Zash Only the web can have nice things.
  213. jonnj has left
  214. Beherit has joined
  215. marc has joined
  216. jonnj has joined
  217. Sam Whited Maybe if you get an IQ instead of the expected thing to start a stream feature it should check the payload and use its namespace to determine which stream feature to select. That seems more general purpose. If the stream feature isn't bind and you somehow get a client sending <iq><sasl> or something, the thing that parses it will just not support the IQ and will fail, so whomever wrote the stream feature implementation could decide whether to support IQs or not (probably just bind, but I dunno, maybe someone wants some other legacy feature that uses IQs at some point)
  218. Sam Whited That seems vaguely more general purpose than just special casing bind, even though I doubt it's very useful.
  219. adityaborikar has left
  220. kikuchiyo has left
  221. kikuchiyo has joined
  222. adityaborikar has joined
  223. Alex has left
  224. Alex has joined
  225. o2 has left
  226. o2 has joined
  227. lovetox has joined
  228. jonnj has left
  229. oibalos has left
  230. oibalos has joined
  231. Zash Event based architecture, dispatch on top level {xmlns}name, hook {jabber:client}iq and further dispatch on the iq payload {xmlns}name. Not exactly how it works in Prosody but sorta.
  232. Zash And something something session state in (unauthed → unbound → ready) or somesuch
  233. adityaborikar has left
  234. marc has left
  235. marc has joined
  236. marc has left
  237. marc has joined
  238. marc has left
  239. marc has joined
  240. marc has left
  241. marc has joined
  242. marc has left
  243. marc has joined
  244. jonnj has joined
  245. marc has left
  246. marc has joined
  247. marc has left
  248. marc has joined
  249. marc has left
  250. marc has joined
  251. marc has left
  252. marc has joined
  253. frank has left
  254. marc has left
  255. marc has joined
  256. marc has left
  257. frank has joined
  258. marc has joined
  259. marc has left
  260. marc has joined
  261. marc has left
  262. marc has joined
  263. marc has left
  264. marc has joined
  265. marc has left
  266. marc has joined
  267. marc has left
  268. marc has joined
  269. marc has left
  270. marc has joined
  271. marc has left
  272. marc has joined
  273. marc has left
  274. marc has joined
  275. marc has left
  276. marc has joined
  277. marc has left
  278. marc has joined
  279. Yagizа has left
  280. marc has left
  281. marc has joined
  282. marc has left
  283. marc has joined
  284. marc has left
  285. stpeter has left
  286. shachontal has joined
  287. marc has joined
  288. marc has left
  289. lovetox has left
  290. jonnj has left
  291. marc has joined
  292. marc has left
  293. marc has joined
  294. marc has left
  295. marc has joined
  296. adityaborikar has joined
  297. jonnj has joined
  298. lovetox has joined
  299. raghavgururajan has joined
  300. marmistrz has left
  301. adityaborikar has left
  302. goffi has left
  303. SouL has left
  304. frank has left
  305. frank has joined
  306. SouL has joined
  307. marc has left
  308. marc has joined
  309. marc has left
  310. marc has joined
  311. marc has left
  312. marc has joined
  313. marmistrz has joined
  314. frank has left
  315. frank has joined
  316. lovetox has left
  317. stpeter has joined
  318. adityaborikar has joined
  319. marc has left
  320. marc has joined
  321. marc has left
  322. marc has joined
  323. marc has left
  324. marc has joined
  325. marc has left
  326. marc has joined
  327. marc has left
  328. marc has joined
  329. marc has left
  330. marc has joined
  331. marc has left
  332. marc has joined
  333. marc has left
  334. marc has joined
  335. marc has left
  336. marc has joined
  337. marc has left
  338. marc has joined
  339. marc has left
  340. marc has joined
  341. marc has left
  342. marc has joined
  343. marc has left
  344. marc has joined
  345. marc has left
  346. marc has joined
  347. marmistrz has left
  348. marc has left
  349. marc has joined
  350. marc has left
  351. marc has joined
  352. marmistrz has joined
  353. marc has left
  354. marc has joined
  355. marc has left
  356. shachontal has left
  357. marc has joined
  358. marc has left
  359. marc has joined
  360. marc has left
  361. marc has joined
  362. marc has left
  363. marc has joined
  364. marc has left
  365. marc has joined
  366. marc has left
  367. marc has joined
  368. shachontal has joined
  369. marc has left
  370. marc has joined
  371. adityaborikar has left
  372. marc has left
  373. marc has joined
  374. marc has left
  375. marc has joined
  376. marc has left
  377. marc has joined
  378. marc has left
  379. marc has joined
  380. marc has left
  381. marc has joined
  382. asterix has left
  383. asterix has joined
  384. marc has left
  385. marc has joined
  386. marc has left
  387. marc has joined
  388. marc has left
  389. marc has joined
  390. marc has left
  391. adityaborikar has joined
  392. marc has joined
  393. marc has left
  394. marc has joined
  395. marc has left
  396. marc has joined
  397. marc has left
  398. marc has joined
  399. marc has left
  400. shachontal has left
  401. marmistrz has left
  402. marc has joined
  403. marc has left
  404. marc has joined
  405. marc has left
  406. marc has joined
  407. marc has left
  408. marc has joined
  409. marc has left
  410. stpeter has left
  411. marc has joined
  412. marc has left
  413. frank has left
  414. marc has joined
  415. marc has left
  416. marc has joined
  417. marc has left
  418. oibalos has left
  419. frank has joined
  420. marc has joined
  421. marc has left
  422. marc has joined
  423. marc has left
  424. marc has joined
  425. marc has left
  426. marc has joined
  427. marc has left
  428. marc has joined
  429. marc has left
  430. marc has joined
  431. marc has left
  432. marc has joined
  433. marc has left
  434. marc has joined
  435. marc has left
  436. marc has joined
  437. marc has left
  438. marc has joined
  439. marc has left
  440. marc has joined
  441. marc has left
  442. marc has joined
  443. marc has left
  444. marc has joined
  445. stpeter has joined
  446. marc has left
  447. marc has joined
  448. marc has left
  449. marc has joined
  450. marc has left
  451. marc has joined
  452. marc has left
  453. marc has joined
  454. marc has left
  455. marc has joined
  456. marc has left
  457. wurstsalat has left
  458. marc has joined
  459. marc has left
  460. marc has joined
  461. marc has left
  462. marc has joined
  463. marc has left
  464. marc has joined
  465. marc has left
  466. marc has joined
  467. marc has left
  468. marc has joined
  469. marc has left
  470. marc has joined
  471. marc has left
  472. marc has joined
  473. marc has left
  474. marc has joined
  475. marc has left
  476. marc has joined
  477. marc has left
  478. marc has joined
  479. marc has left
  480. marc has joined
  481. marc has left
  482. marc has joined
  483. marc has left
  484. marc has joined
  485. marc has left
  486. marc has joined
  487. marc has left
  488. marc has joined
  489. marc has left
  490. mikeye has joined
  491. asterix has left
  492. marc has joined
  493. marc has left
  494. marc has joined
  495. marc has left
  496. asterix has joined
  497. marc has joined
  498. marc has left
  499. marc has joined
  500. marc has left
  501. marc has joined
  502. alex-a-soto has left
  503. marc has left
  504. alex-a-soto has joined
  505. marc has joined
  506. marc has left
  507. marc has joined
  508. marc has left
  509. marc has joined
  510. marc has left
  511. marc has joined
  512. marc has left
  513. marc has joined
  514. marc has left
  515. marc has joined
  516. Wojtek has left
  517. marc has left
  518. marc has joined
  519. marc has left
  520. marc has joined
  521. marc has left
  522. marc has joined
  523. marc has left
  524. marc has joined
  525. marc has left
  526. marc has joined
  527. marc has left
  528. marc has joined
  529. shachontal has joined
  530. debacle has left
  531. marc has left
  532. marc has joined
  533. marc has left
  534. mikeye has left
  535. kikuchiyo has left
  536. shachontal has left
  537. kikuchiyo has joined
  538. marc has joined
  539. marc has left
  540. marc has joined
  541. marc has left
  542. marc has joined
  543. marc has left
  544. marc has joined
  545. marc has left
  546. marc has joined
  547. marc has left
  548. SouL has left
  549. marc has joined
  550. marc has left
  551. marc has joined
  552. marc has left
  553. marc has joined
  554. marc has left
  555. marc has joined