jdev - 2021-01-13

  1. alex-a-soto has left

  2. alex-a-soto has joined

  3. wurstsalat has left

  4. mikeye has joined

  5. adityaborikar has joined

  6. marmistrz has joined

  7. marmistrz has left

  8. paul has left

  9. o2 has left

  10. mikeye has left

  11. debacle has left

  12. o2 has joined

  13. frank has left

  14. frank has joined

  15. Beherit has left

  16. SouL has joined

  17. Beherit has joined

  18. mac has joined

  19. SouL has left

  20. SouL has joined

  21. o2 has left

  22. Yagizа has joined

  23. mikeye has joined

  24. mac has left

  25. o2 has joined

  26. o2 has left

  27. o2 has joined

  28. marc has left

  29. mikeye has left

  30. mikeye has joined

  31. mac has joined

  32. paul has joined

  33. mac has left

  34. mac has joined

  35. oibalos has joined

  36. wurstsalat has joined

  37. mac has left

  38. marmistrz has joined

  39. mac has joined

  40. mikeye has left

  41. stefan has left

  42. Martin has left

  43. Martin has joined

  44. mikeye has joined

  45. Guus has left

  46. floretta has left

  47. SouL has left

  48. SouL has joined

  49. belong has joined

  50. esil has joined

  51. Guus has joined

  52. marc has joined

  53. marc has left

  54. marc has joined

  55. stefan has joined

  56. Beherit has left

  57. Beherit has joined

  58. marc has left

  59. goffi has joined

  60. floretta has joined

  61. mac has left

  62. mac has joined

  63. frank has left

  64. frank has joined

  65. mikeye has left

  66. floretta has left

  67. mac has left

  68. marc has joined

  69. mac has joined

  70. floretta has joined

  71. frank has left

  72. mac has left

  73. moparisthebest has left

  74. frank has joined

  75. moparisthebest has joined

  76. debacle has joined

  77. lovetox has joined

  78. lovetox has left

  79. alacer has left

  80. alacer has joined

  81. frank has left

  82. frank has joined

  83. raghavgururajan has left

  84. alacer has left

  85. frank has left

  86. alacer has joined

  87. Syndace has left

  88. Syndace has joined

  89. frank has joined

  90. kikuchiyo has joined

  91. Beherit has left

  92. Beherit has joined

  93. Wojtek has left

  94. Beherit has left

  95. Beherit has joined

  96. kikuchiyo has left

  97. kikuchiyo has joined

  98. frank has left

  99. frank has joined

  100. kikuchiyo has left

  101. kikuchiyo has joined

  102. moparisthebest has left

  103. frank has left

  104. Beherit has left

  105. frank has joined

  106. moparisthebest has joined

  107. Beherit has joined

  108. marmistrz has left

  109. marc has left

  110. frank has left

  111. marmistrz has joined

  112. frank has joined

  113. kikuchiyo has left

  114. marc has joined

  115. marc has left

  116. SouL has left

  117. SouL has joined

  118. kikuchiyo has joined

  119. alacer has left

  120. Guus has left

  121. Guus has joined

  122. alacer has joined

  123. SouL has left

  124. marc has joined

  125. alacer has left

  126. alacer has joined

  127. marc has left

  128. frank has left

  129. frank has joined

  130. marc has joined

  131. SouL has joined

  132. belong has left

  133. belong has joined

  134. debacle has left

  135. Wojtek has joined

  136. stpeter has joined

  137. marc has left

  138. frank has left

  139. marc has joined

  140. debacle has joined

  141. frank has joined

  142. marc has left

  143. marc has joined

  144. marc has left

  145. marc has joined

  146. Sam Whited

    While testing my server implementation I just realized that bind is broken because I always match the feature being selected by the namespace but bind does its magic IQ stuff. Does everyone else just special case this? I really have no good idea how to handle this in a sane/general way.

  147. Zash

    Prosody used to special-case pre-binding IQs, explicitly excempting by namespace and stuff. Now it treats them as stream elements until after resource binding.

  148. Sam Whited

    What does it mean to treat them as stream elements? Does that mean in theory the bind IQ could be sent at any time during the negotiation process?

  149. Zash

    And then there's a bit of special dispatch for {default namespace}iq, but they're not iq stanzas as far as routing is considered

  150. Sam Whited

    oh, gotcha

  151. Sam Whited

    Yah, I don't start IQ handling at all until after the session is negotiated so they're not actually treated as IQs, but I guess I'll have to special case "if you get <iq/> pass that to the bind handler" instead of just relying on namespace

  152. Sam Whited

    I hate having a magical special case in there though

  153. Zash

    Yeah, I wasn't a fan of having resource binding or IBR special-cased so early in routing.

  154. Zash

    Also why I'd like to move away from such iq-looking things.

  155. Sam Whited

    Oh is IBR special too? I didn't remember that, I'll have to go re-read that one

  156. Zash

    I don't remember

  157. Zash

    Hm, could be that it was only binding that was special, since it happens after authentication

  158. Sam Whited

    hmmm, well, I don't want to deal with that one right now (or possibly ever) so I may just say "if you get an IQ, pass it to the bind handler" to start and ignore IBR until someone complains

  159. Beherit has left

  160. Beherit has joined

  161. kikuchiyo has left

  162. Zash

    So the change in Prosody was in when <{jabber:client}iq> becomes a stanza, as opposed to a stream element (.... nonza). Before it was at authentication, now it's at resource binding.

  163. kikuchiyo has joined

  164. adityaborikar has left

  165. Zash

    This makes sense to me since you need a resource for routing.

  166. adityaborikar has joined

  167. Sam Whited

    I don't understand the distinction

  168. Sam Whited

    Or how it could be at authentication since it's always used for resource binding?

  169. Zash

    There's a period in the life of a session between authentication suceeding and resource binding

  170. Zash

    What happens if you try to send a message before resource binding?

  171. Sam Whited

    Oh, I don't actually have handlers for messages or anything at that point so it would just think there was no such feature and say that "jabber:client message isn't an advertised stream feature" or something

  172. Sam Whited

    But that makes sense if you're already handling messages and IQs and what not, which I guess technically I should be since I think in theory you could send them to the server before negotiation is complete

  173. goffi has left

  174. goffi has joined

  175. COM8 has joined

  176. floretta has left

  177. COM8 has left

  178. lovetox has joined

  179. floretta has joined

  180. Beherit has left

  181. lovetox has left

  182. Beherit has joined

  183. Zash

    Does anyone have a client supporting XEP-0440 and `tls-server-end-point` ?

  184. lovetox has joined

  185. flow

    Zash, if you provide a server implementation then I would be very tempted to provide the client side implementation

  186. lovetox has left

  187. frank has left

  188. Beherit has left

  189. Beherit has joined

  190. Zash

    flow: I've got an initial WIP where you need to supply the cert hash yourself, wondering if I should publish as-is or wait for library support for getting the hash to use to get it.

  191. frank has joined

  192. marc has left

  193. marc has joined

  194. Zash

    Oh dear, dual RSA/EC cert setups are going to cause pain.

  195. flow

    Zash, with your current approach, where teh cert hash is externally supplied, I assume?

  196. Zash

    With the next step of the WIP where it tries to hash the configured certificate. Which is already a blocker because it doesn't know what hash function the cert is signed with, and you're supposed to use the same if it's better than sha-256

  197. Zash

    flow: Not specifically, more in general. Prosody doesn't support it anyways.

  198. Beherit has left

  199. Zash

    And in the TLS offloading proxy setup where it makes sense to do with a configured cert hash, certificate rollovers will be fun.

  200. marc has left

  201. moparisthebest

    cert hash or key hash? basically things should only use key hash ever imho

  202. flow

    Zash, yep, in TLS offloading setups this may be more pain than gain

  203. Zash

    moparisthebest, I'd actually like to have (maybe even write) a channel binding thing that says "use the SPKI as-is"

  204. moparisthebest

    oh, channel binding, that's probably fine, I should read first

  205. moparisthebest

    yea that'd be neat, match up with DANE well (and maybe we can do HPKP for XMPP one day...)

  206. Zash

    Or drop certificates and use raw public keys!

  207. Zash

    Of course that's never going to happen. Can't actually have nice things.

  208. moparisthebest

    I swear there used to be a TLS mode that did that

  209. Zash

    Raw public keys? Yeah.

  210. moparisthebest

    I assume it was dropped with TLS 1.3

  211. Zash


  212. Zash

    Only the web can have nice things.

  213. jonnj has left

  214. Beherit has joined

  215. marc has joined

  216. jonnj has joined

  217. Sam Whited

    Maybe if you get an IQ instead of the expected thing to start a stream feature it should check the payload and use its namespace to determine which stream feature to select. That seems more general purpose. If the stream feature isn't bind and you somehow get a client sending <iq><sasl> or something, the thing that parses it will just not support the IQ and will fail, so whomever wrote the stream feature implementation could decide whether to support IQs or not (probably just bind, but I dunno, maybe someone wants some other legacy feature that uses IQs at some point)

  218. Sam Whited

    That seems vaguely more general purpose than just special casing bind, even though I doubt it's very useful.

  219. adityaborikar has left

  220. kikuchiyo has left

  221. kikuchiyo has joined

  222. adityaborikar has joined

  223. Alex has left

  224. Alex has joined

  225. o2 has left

  226. o2 has joined

  227. lovetox has joined

  228. jonnj has left

  229. oibalos has left

  230. oibalos has joined

  231. Zash

    Event based architecture, dispatch on top level {xmlns}name, hook {jabber:client}iq and further dispatch on the iq payload {xmlns}name. Not exactly how it works in Prosody but sorta.

  232. Zash

    And something something session state in (unauthed → unbound → ready) or somesuch

  233. adityaborikar has left

  234. marc has left

  235. marc has joined

  236. marc has left

  237. marc has joined

  238. marc has left

  239. marc has joined

  240. marc has left

  241. marc has joined

  242. marc has left

  243. marc has joined

  244. jonnj has joined

  245. marc has left

  246. marc has joined

  247. marc has left

  248. marc has joined

  249. marc has left

  250. marc has joined

  251. marc has left

  252. marc has joined

  253. frank has left

  254. marc has left

  255. marc has joined

  256. marc has left

  257. frank has joined

  258. marc has joined

  259. marc has left

  260. marc has joined

  261. marc has left

  262. marc has joined

  263. marc has left

  264. marc has joined

  265. marc has left

  266. marc has joined

  267. marc has left

  268. marc has joined

  269. marc has left

  270. marc has joined

  271. marc has left

  272. marc has joined

  273. marc has left

  274. marc has joined

  275. marc has left

  276. marc has joined

  277. marc has left

  278. marc has joined

  279. Yagizа has left

  280. marc has left

  281. marc has joined

  282. marc has left

  283. marc has joined

  284. marc has left

  285. stpeter has left

  286. shachontal has joined

  287. marc has joined

  288. marc has left

  289. lovetox has left

  290. jonnj has left

  291. marc has joined

  292. marc has left

  293. marc has joined

  294. marc has left

  295. marc has joined

  296. adityaborikar has joined

  297. jonnj has joined

  298. lovetox has joined

  299. raghavgururajan has joined

  300. marmistrz has left

  301. adityaborikar has left

  302. goffi has left

  303. SouL has left

  304. frank has left

  305. frank has joined

  306. SouL has joined

  307. marc has left

  308. marc has joined

  309. marc has left

  310. marc has joined

  311. marc has left

  312. marc has joined

  313. marmistrz has joined

  314. frank has left

  315. frank has joined

  316. lovetox has left

  317. stpeter has joined

  318. adityaborikar has joined

  319. marc has left

  320. marc has joined

  321. marc has left

  322. marc has joined

  323. marc has left

  324. marc has joined

  325. marc has left

  326. marc has joined

  327. marc has left

  328. marc has joined

  329. marc has left

  330. marc has joined

  331. marc has left

  332. marc has joined

  333. marc has left

  334. marc has joined

  335. marc has left

  336. marc has joined

  337. marc has left

  338. marc has joined

  339. marc has left

  340. marc has joined

  341. marc has left

  342. marc has joined

  343. marc has left

  344. marc has joined

  345. marc has left

  346. marc has joined

  347. marmistrz has left

  348. marc has left

  349. marc has joined

  350. marc has left

  351. marc has joined

  352. marmistrz has joined

  353. marc has left

  354. marc has joined

  355. marc has left

  356. shachontal has left

  357. marc has joined

  358. marc has left

  359. marc has joined

  360. marc has left

  361. marc has joined

  362. marc has left

  363. marc has joined

  364. marc has left

  365. marc has joined

  366. marc has left

  367. marc has joined

  368. shachontal has joined

  369. marc has left

  370. marc has joined

  371. adityaborikar has left

  372. marc has left

  373. marc has joined

  374. marc has left

  375. marc has joined

  376. marc has left

  377. marc has joined

  378. marc has left

  379. marc has joined

  380. marc has left

  381. marc has joined

  382. asterix has left

  383. asterix has joined

  384. marc has left

  385. marc has joined

  386. marc has left

  387. marc has joined

  388. marc has left

  389. marc has joined

  390. marc has left

  391. adityaborikar has joined

  392. marc has joined

  393. marc has left

  394. marc has joined

  395. marc has left

  396. marc has joined

  397. marc has left

  398. marc has joined

  399. marc has left

  400. shachontal has left

  401. marmistrz has left

  402. marc has joined

  403. marc has left

  404. marc has joined

  405. marc has left

  406. marc has joined

  407. marc has left

  408. marc has joined

  409. marc has left

  410. stpeter has left

  411. marc has joined

  412. marc has left

  413. frank has left

  414. marc has joined

  415. marc has left

  416. marc has joined

  417. marc has left

  418. oibalos has left

  419. frank has joined

  420. marc has joined

  421. marc has left

  422. marc has joined

  423. marc has left

  424. marc has joined

  425. marc has left

  426. marc has joined

  427. marc has left

  428. marc has joined

  429. marc has left

  430. marc has joined

  431. marc has left

  432. marc has joined

  433. marc has left

  434. marc has joined

  435. marc has left

  436. marc has joined

  437. marc has left

  438. marc has joined

  439. marc has left

  440. marc has joined

  441. marc has left

  442. marc has joined

  443. marc has left

  444. marc has joined

  445. stpeter has joined

  446. marc has left

  447. marc has joined

  448. marc has left

  449. marc has joined

  450. marc has left

  451. marc has joined

  452. marc has left

  453. marc has joined

  454. marc has left

  455. marc has joined

  456. marc has left

  457. wurstsalat has left

  458. marc has joined

  459. marc has left

  460. marc has joined

  461. marc has left

  462. marc has joined

  463. marc has left

  464. marc has joined

  465. marc has left

  466. marc has joined

  467. marc has left

  468. marc has joined

  469. marc has left

  470. marc has joined

  471. marc has left

  472. marc has joined

  473. marc has left

  474. marc has joined

  475. marc has left

  476. marc has joined

  477. marc has left

  478. marc has joined

  479. marc has left

  480. marc has joined

  481. marc has left

  482. marc has joined

  483. marc has left

  484. marc has joined

  485. marc has left

  486. marc has joined

  487. marc has left

  488. marc has joined

  489. marc has left

  490. mikeye has joined

  491. asterix has left

  492. marc has joined

  493. marc has left

  494. marc has joined

  495. marc has left

  496. asterix has joined

  497. marc has joined

  498. marc has left

  499. marc has joined

  500. marc has left

  501. marc has joined

  502. alex-a-soto has left

  503. marc has left

  504. alex-a-soto has joined

  505. marc has joined

  506. marc has left

  507. marc has joined

  508. marc has left

  509. marc has joined

  510. marc has left

  511. marc has joined

  512. marc has left

  513. marc has joined

  514. marc has left

  515. marc has joined

  516. Wojtek has left

  517. marc has left

  518. marc has joined

  519. marc has left

  520. marc has joined

  521. marc has left

  522. marc has joined

  523. marc has left

  524. marc has joined

  525. marc has left

  526. marc has joined

  527. marc has left

  528. marc has joined

  529. shachontal has joined

  530. debacle has left

  531. marc has left

  532. marc has joined

  533. marc has left

  534. mikeye has left

  535. kikuchiyo has left

  536. shachontal has left

  537. kikuchiyo has joined

  538. marc has joined

  539. marc has left

  540. marc has joined

  541. marc has left

  542. marc has joined

  543. marc has left

  544. marc has joined

  545. marc has left

  546. marc has joined

  547. marc has left

  548. SouL has left

  549. marc has joined

  550. marc has left

  551. marc has joined

  552. marc has left

  553. marc has joined

  554. marc has left

  555. marc has joined