XSF Discussion - 2018-05-10

  1. daniel

    pep.: xmpp:gpn18@conference.conversations.im?join

  2. daniel

    Maybe Link Mauve is interested as well? Are you going to gpn?

  3. Link Mauve

    daniel, I was planning to, but ended up not planning anything. :x

  4. pep.

    (surprinsingly enough)

  5. jonasw


  6. Ge0rG

    Man (in club): "Hey DJ, play Love to Hate You" DJ: "No" Man: "I demand it under my Right to Erasure"

  7. jonasw


  8. jonasw

    I suppose erasure is a band or something?

  9. jonasw

    I’m not sure if I should be happy that I can infer that or whether that’s a sign that my mind is twisted.

  10. Dave Cridland

    fippo, You about? I've some XEP-0220 questions. (Mostly about errors).

  11. Dave Cridland

    Anyone else might know, too. I've an amusing... Bug? in Metre. Sequence is roughly the following:

  12. Dave Cridland

    Metre -> Other : Outbound connection, bidi-enabled, sends dialback request.

  13. Dave Cridland

    Other -> Metre : Inbound connection, SASL-authenticated, bidi-enabled, sends dialback verify request.

  14. Dave Cridland

    However, Metre has already closed its outbound, seeing a usable and authenticated bidi-enabled inbound session. So it rejects the db:verify because it's referencing an id it knows to be closed.

  15. Dave Cridland

    So, questions:

  16. Dave Cridland

    1) Should a db:verify that's valid, but referencing a closed session, be returned "valid", "invalid", or "error"? And if "error", what error code?

  17. Dave Cridland

    In fact, that's kind of it. I may well tell Metre to leave any session that's even requested auth up when it sees a bidi possibility, even if it feels less optimal, but I'm curious about how to handle it nonetheless.

  18. fippo

    dwd: why does the fact that the connection associated with the id influence the validity of the dialback key?

  19. Dave Cridland

    fippo, Paranoia.

  20. Dave Cridland

    fippo, Metre won't respond "valid" unless the outgoing stream exists and is in the right auth state (REQUESTED).

  21. Link Mauve

    Dave Cridland, btw, is Metre multi-threaded, at least for TLS handshakes?

  22. Link Mauve

    Now that my personal server got two cores, I was thinking about using something in front of Prosody for that.

  23. fippo

    hrm. in that case you might need to keep the connection around for a bit longer. or hope that people like me stop using old certificates :-)

  24. Dave Cridland

    Link Mauve, Nope, not yet.

  25. Link Mauve


  26. Dave Cridland

    Link Mauve, Of course, it'd offload the TLS from Prosody, an you can run Prosody as a component which'd possibly work neater.

  27. Ge0rG

    Link Mauve: how much CPU time are you currently spending on TLS handshakes?

  28. Dave Cridland

    Mind you, you can also run Prosody as a component host for another Prosody acting as the user, so...

  29. Link Mauve

    Ge0rG, enough that s2s doesn't reliably establish before its timeout on server restart.

  30. Link Mauve

    It is a real toaster!

  31. Dave Cridland

    Link Mauve, I do have a bug there - although Metre uses libunbound in async mode, it seems to have a limit in the number of queries it allows in-flight (or maybe it's a sync interface hidden in the other thread).

  32. Link Mauve


  33. Ge0rG

    Link Mauve: send pictures!

  34. Dave Cridland

    Link Mauve, I'll get around to fixing that one though.

  35. Link Mauve

    Ge0rG, I'm not at home right now, maybe later!

  36. pep.

    Link Mauve: prosody might not like it bit handling TLS anymore? What's the thing again in sasl that needs stuff from the TLS session

  37. pep.

    Not* handling

  38. Link Mauve

    pep., SCRAM-SHA-*-PLUS, but if you can transmit that it's fine.

  39. Zash

    Metre doesn't do c2s tho

  40. Zash

    Or does it?

  41. Link Mauve

    In this case Prosody would be the one doing it.

  42. Link Mauve

    Metre would only establish the connection.

  43. Link Mauve


  44. Dave Cridland

    Metre won't even listen to C2S ports.

  45. Dave Cridland

    Metre just does S2S and '114. (Well, and '368 and '361)

  46. Link Mauve


  47. Link Mauve

    So yeah pep., your question doesn't make sense, Prosody would still listen there.

  48. pep.


  49. Dave Cridland

    vanitasvitae, "a function that teenagers find neat" - ah, the youth of today, eh?

  50. Steve Kille

    Any news on fixing Travis?

  51. remko

    vanitasvitae: I actually use signal only because it has this feature. Thanks for the compliment!

  52. vanitasvitae

    remko, you're welcome ;)

  53. remko

    vanitasvitae: I find it useful to e.g. send passwords to someone. I know they won't delete it themselves, so i do some extra security management for them :)

  54. vanitasvitae

    I'd not really call that security management but I get the point

  55. Kev

    It is if you trust them to be incompetent rather than malicious.

  56. Kev

    e.g. relatives

  57. remko


  58. remko

    although worded differently when in presence of

  59. Kev

    If you say so :)

  60. ralphm

    Sometimes, honesty is best

  61. remko

    as usual, whenever I step in to a thread on the list, it derails quickly.

  62. Kev

    Moth to a flame.

  63. remko

    yeah, i'm still going with the assumption that i'm the moth, so it's not really my fault.

  64. jonasw

    Steve Kille, hey, your XEP-0369 update makes non-editorial changes. I would like to keep the version numbers semantic, so would it be okay if I change the number of that release to 0.10.0 instead of 0.9.7?

  65. jonasw

    (The idea is that changes to z in x.y.z should only be of editorial nature, to make it easier to guage the impact of an update)

  66. Steve Kille

    jonasw: that is fine. I was not sure. I had the sense that small technical changes should not bump the middle number, but happy to follow best practice

  67. Steve Kille

    Although there was quite a bit of text change, there was nothing radical changed

  68. jonasw

    Steve Kille, cool, will do then

  69. Kev

    Smallest number is editorial changes only. Largest number is Advancement. Anything else is middle number.

  70. Steve Kille

    got it

  71. Kev

    Is XEP-0404 still available? I've got a non-April 1st use for it that I want.

  72. jonasw

    Kev, yes

  73. Kev

    jonasw: Could you 'reserve' that one for me please?

  74. jonasw

    Kev, yeah

  75. Kev

    I'll explain in a bit, just on a call at the moment and thought of it.

  76. jonasw

    no worries

  77. jonasw

    next one is going to be 403 anyways

  78. jonasw

    and since there’s no other protoxep in the queue...

  79. Neustradamus

    There is a problem of certificate for jabber.org, we must create a ticket?

  80. Neustradamus