-
lovetox
Ge0rG, its not old, a few weeks
-
lovetox
thoug i take back the "by default"
-
lovetox
who knows what i changed in my wisdom
-
lovetox
but the option in openwrt is really bad named, i try to find it
-
lovetox
https://share.hoerist.com/philipp/QB1JMKjEDlfQGJfx/b1abc041-690c-4d7a-a7d9-403e619eadc4.png
-
lovetox
There tell me you see this option and think, No i defenitly want useless requests
-
lovetox
so i leave this unchecked
-
lovetox
turns out the useless request are not that useless
-
lovetox
thought to be fair thats not openwrt
-
lovetox
thats LUCI a webinterface for openwrt
-
Zash
Wat!
-
Martin
What are 'useless requests' in openwrt jargon translated to plain english,✎ -
Martin
What are 'useless requests' in openwrt jargon translated to plain english? ✏
-
lovetox
in dnsmask config which openwrt uses there is a decade old configswitch
-
lovetox
-f, --filterwin2k Later versions of windows make periodic DNS requests which don't get sensible answers from the public DNS and can cause problems by trigger- ing dial-on-demand links. This flag turns on an option to filter such requests. The requests blocked are for records of types SOA and SRV, and type ANY where the requested name has underscores, to catch LDAP requests.
-
lovetox
this LUCI option turns this on, and filters all srv requests
-
lovetox
seems 12 years ago srv records counted as useless
-
lovetox
sorry all srv records with underscore
-
lovetox
which xmpp uses
-
lovetox
but i doubt this is on by default, i probably activated it because it looked good, when i configured my router
-
lovetox
goes to show that you should not push buttons if you dont know what they do
-
Zash
Win2k?!
-
lovetox
yeah more like 2 decades old :D
-
lovetox
but that option is so bad named in in luci
-
lovetox
the only reason to not activate that is when you actually know the background of what it does
-
lovetox
but if Zash wouldnt have made that issue, i would probably never know that srv requests didnt work, like i wasnt impacted at all by this
-
selurvedu
https://git.openwrt.org/?p=project/luci.git;a=blob;f=modules/luci-mod-network/htdocs/luci-static/resources/view/network/dhcp.js;h=f425bd060509167d9be4ca6b50fd1c258fe45969;hb=HEAD#l385 https://thekelleys.org.uk/gitweb/?p=dnsmasq.git;a=blob;f=dnsmasq.conf.example;hb=9560658c5ba27a370b97d30850db474ce67912b7#l38 # Note that (amongst other things) this blocks all SRV requests, # so don't use it if you use eg Kerberos, SIP, XMMP or Google-talk. Yeah.
-
selurvedu
Not that useless.
-
selurvedu
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=464357 so this was fixed in upstream in 2008, but 13 years later it's still labelled as "useless" in OpenWrt :-\
-
Zash
Things breaking SRV → admins deploying without → things continuing to break SRV
-
selurvedu
Speaking of SRV, what level of support and adoption do direct TLS s2s connections and _xmpps-server SRV records have?
-
Zash
ejabberd seems to do it, and Daves proxy thing but the name escapes me
-
Zash
Metre
-
Zash
Prosody trunk has some partial support, in that it can set up such a listening port and check if the SRV record is correctly set up
-
selurvedu
Zash, will Prosody connect to a server via direct TLS s2s if _xmpps-server record is correctly set up?
-
Zash
No
-
Zash
That's the hard part
-
Sam
Minor weird thing that I didn't expect to cause me so much trouble: turns out pubsub items aren't directly in the IQ payload, they have a second wrapper (eg. instad of "<iq><pubsub><item1/><item2/>" you have "<iq><pubsub><items><item1/><item2/>"). Very clearly documented in the XEP, but I just kind of skipped over the extra wrapper not expecting it and took forever to track down the problem.
-
Martin
But you have something locally. Are there any issues stopping you from pushing it?
-
Zash
Making it *✎ -
Zash
Making it *only* use `_xmpps-server` is easy. ✏
-
Zash
Making it use _both_ is *hard*
-
Martin
I see.
-
Martin
Anyway, my server was part of the first prosody - prosody direct tls s2s connection. 😃
- Martin updates his CV…
-
Sam
In pubsub land do you have to publish a complete XML document? If it's wrapped in <item/> could you publish <foo/><bar/> for example?
-
Zash
Sam: Yes. One child of `<item/>`, no more, no less.
-
Sam
Thanks
-
Zash
Once upon a time there was a bunch of batch processing support in XEP-0060, that's where all the seemingly extra wrapper elements comes from
-
Sam
That's what I figured; it seemed weird that there was a wrapper but then you couldn't eg. retract multiple items at once, why wrap in <items/> if it's only one item?
-
Zash
`<items/>` _can_ have multiple items
-
Sam
err, <item/> then, whatever it's called
-
Zash
But you have iq/publish/item/{foo}bar
-
Zash
https://xmpp.org/extensions/xep-0060.html#nt-idm45119980301424
-
Sam
Trying to follow the constraints in this document is very difficult; thanks for the help.
-
Zash
Ah, there it is: https://xmpp.org/extensions/xep-0060.html#publisher-publish-error-badpayload > If the <item/> element does not contain exactly one payload element [...] the service MUST bounce the request with a <bad-request/> error
-
Zash
Conveniently far away from "The syntax is as follows:" https://xmpp.org/extensions/xep-0060.html#publisher-publish-request
-
Sam
"Ah, there it is" after some amount of time is exactly the problem I've been having :)
-
Zash
What, aren't you used to reading kleinbottle-shaped hyperdimensional documents by now? 😉
-
Sam
Alas, it's a skill I've never mastered.
-
Zash
Tho this is one of those that constantly grow new text when you're not looking, so I agree it can be a bit confusing.
-
Sam
However, after multiple attempts to get something as simple as "be able to publish and retract an item" working, I think I've finally done it. Integration tests running now, so we'll see how ejabberd handles them though.
-
Zash
Is this a client implementation?
-
Sam
Yah
-
Zash
Cool
-
Sam
Eventually it will grow a server side implementation too, but for now I just want "enough to fetch bookmarks"
-
Zash
When do we finish the XEP-0060 split?
-
selurvedu
Zash, I see, thanks. That is what I expected. I thought DTLS s2s is not supported anywhere, so I didn't configure it on my server, but since XEP-0368 mentions it, I decided to ask.
-
Sam
Excellent, ejabberd works too (for some reason it locks up the whole test suite if I try it locally, but works fine on the CI runner, so I'm never sure)
-
selurvedu
Also I stumbled upon https://code.moparisthebest.com/moparisthebest/xmpp-proxy , it looks very interesting.
-
Zash
Sam, if you don't already have https://xmpp.org/extensions/xep-0223.html open in parallel, might be worth to do so
- Zash filed https://github.com/openwrt/luci/issues/5456
-
Sam
Another one? *sigh* thanks
-
Zash
Don't worry, it's only Informational, on use of pubsub for bookmarks and such
-
flow
lovetox, you did not open an openwrt issue for, at least, better describing the configuration option, or maybe dropping it alltogether?✎ -
flow
lovetox, you did not, by chance, open an openwrt issue for, at least, better describing the configuration option, or maybe dropping it alltogether? ✏
-
Zash
Yes, please do
-
Martin
> Zash filed https://github.com/openwrt/luci/issues/5456 Closed already…