XSF Discussion - 2019-10-08


  1. UsL has left

  2. mukt2 has joined

  3. mimi89999 has left

  4. mimi89999 has joined

  5. pdurbin has joined

  6. Chobbes has joined

  7. mukt2 has left

  8. mimi89999 has left

  9. mimi89999 has joined

  10. patrick has left

  11. kokonoe has left

  12. mimi89999 has left

  13. mimi89999 has joined

  14. pdurbin has left

  15. Chobbes has left

  16. Chobbes has joined

  17. winfried has left

  18. winfried has joined

  19. kokonoe has joined

  20. kokonoe has left

  21. zach has left

  22. zach has joined

  23. Chobbes has left

  24. Chobbes has joined

  25. aj has joined

  26. zach has left

  27. zach has joined

  28. aj has left

  29. balu_der_baer has left

  30. pdurbin has joined

  31. zach has left

  32. zach has joined

  33. winfried has left

  34. winfried has joined

  35. winfried has left

  36. winfried has joined

  37. Chobbes has left

  38. zach has left

  39. zach has joined

  40. waqas has joined

  41. adiaholic has joined

  42. kokonoe has joined

  43. lskdjf has left

  44. adiaholic has left

  45. kokonoe has left

  46. mukt2 has joined

  47. adiaholic has joined

  48. zach has left

  49. zach has joined

  50. adiaholic has left

  51. adiaholic has joined

  52. zach has left

  53. neshtaxmpp has left

  54. zach has joined

  55. andy has joined

  56. Yagiza has joined

  57. david has left

  58. lorddavidiii has joined

  59. Nekit has joined

  60. mukt2 has left

  61. mimi89999 has left

  62. mimi89999 has joined

  63. mukt2 has joined

  64. Tobias has joined

  65. zach has left

  66. zach has joined

  67. Daniel has left

  68. Daniel has joined

  69. karoshi has joined

  70. mukt2 has left

  71. mukt2 has joined

  72. zach has left

  73. zach has joined

  74. zach has left

  75. zach has joined

  76. david has joined

  77. j.r has left

  78. j.r has joined

  79. xalek has left

  80. UsL has joined

  81. zach has left

  82. zach has joined

  83. Mikaela has joined

  84. zach has left

  85. zach has joined

  86. wurstsalat has joined

  87. UsL has left

  88. kokonoe has joined

  89. mukt2 has left

  90. UsL has joined

  91. zach has left

  92. zach has joined

  93. mukt2 has joined

  94. winfried has left

  95. winfried has joined

  96. mukt2 has left

  97. mukt2 has joined

  98. zach has left

  99. zach has joined

  100. mukt2 has left

  101. j.r has left

  102. chronosx88 has joined

  103. zach has left

  104. zach has joined

  105. waqas has left

  106. karoshi has left

  107. karoshi has joined

  108. Douglas Terabyte has left

  109. Douglas Terabyte has joined

  110. neshtaxmpp has joined

  111. UsL has left

  112. mukt2 has joined

  113. jubalh has joined

  114. mukt2 has left

  115. mukt2 has joined

  116. zach has left

  117. zach has joined

  118. alameyo has left

  119. alameyo has joined

  120. mukt2 has left

  121. zach has left

  122. zach has joined

  123. jubalh has left

  124. mukt2 has joined

  125. j.r has joined

  126. zach has left

  127. zach has joined

  128. kokonoe has left

  129. pdurbin has left

  130. Dele (Mobile) has joined

  131. vanitasvitae has left

  132. vanitasvitae has joined

  133. Steve Kille has left

  134. kokonoe has joined

  135. Steve Kille has joined

  136. zach has left

  137. zach has joined

  138. kokonoe has left

  139. lorddavidiii has left

  140. lorddavidiii has joined

  141. jonas’

    I nominate dwd to be our new department of troll marketing.

  142. j.r has left

  143. jonas’

    I nominate dwd to be our new department of sarcastic(?) marketing.

  144. Daniel

    at least he doesn’t repost the same joke 5 times in a span of a week. scnr :-)

  145. Mikaela has left

  146. Mikaela has joined

  147. Mikaela has left

  148. Mikaela has joined

  149. LNJ has joined

  150. adiaholic has left

  151. adiaholic has joined

  152. Ge0rG

    Daniel: that was mean(ingful)!

  153. adiaholic has left

  154. adiaholic has joined

  155. jubalh has joined

  156. adiaholic has left

  157. adiaholic has joined

  158. kokonoe has joined

  159. Mikaela has left

  160. Mikaela has joined

  161. kokonoe has left

  162. kokonoe has joined

  163. goffi has joined

  164. LNJ has left

  165. LNJ has joined

  166. lskdjf has joined

  167. balu_der_baer has joined

  168. zach has left

  169. zach has joined

  170. marc_ has left

  171. marc_ has joined

  172. marc_ has left

  173. marc_ has joined

  174. marc_ has left

  175. marc_ has joined

  176. marc_ has left

  177. marc_ has joined

  178. UsL has joined

  179. Douglas Terabyte has left

  180. Douglas Terabyte has joined

  181. j.r has joined

  182. pdurbin has joined

  183. DebXWoody has left

  184. DebXWoody has joined

  185. j.r has left

  186. pdurbin has left

  187. zach has left

  188. zach has joined

  189. lorddavidiii has left

  190. lorddavidiii has joined

  191. balu_der_baer has left

  192. lorddavidiii has left

  193. lorddavidiii has joined

  194. winfried has left

  195. debacle has joined

  196. winfried has joined

  197. winfried has left

  198. winfried has joined

  199. winfried has left

  200. winfried has joined

  201. Mikaela has left

  202. Mikaela has joined

  203. emus has left

  204. zach has left

  205. zach has joined

  206. emus has joined

  207. winfried has left

  208. winfried has joined

  209. winfried has left

  210. winfried has joined

  211. kokonoe has left

  212. kokonoe has joined

  213. mukt2 has left

  214. mukt2 has joined

  215. j.r has joined

  216. LNJ has left

  217. LNJ has joined

  218. zach has left

  219. zach has joined

  220. pdurbin has joined

  221. zach has left

  222. zach has joined

  223. pdurbin has left

  224. zach has left

  225. zach has joined

  226. Maranda has left

  227. Maranda has joined

  228. eevvoor has joined

  229. j.r has left

  230. zach has left

  231. zach has joined

  232. COM8 has joined

  233. adiaholic has left

  234. COM8 has left

  235. COM8 has joined

  236. kokonoe has left

  237. kokonoe has joined

  238. COM8 has left

  239. COM8 has joined

  240. COM8 has left

  241. adiaholic has joined

  242. COM8 has joined

  243. zach has left

  244. zach has joined

  245. emus has left

  246. emus has joined

  247. mukt2 has left

  248. COM8 has left

  249. mukt2 has joined

  250. Chobbes has joined

  251. winfried has left

  252. winfried has joined

  253. balu_der_baer has joined

  254. mukt2 has left

  255. zach has left

  256. zach has joined

  257. mukt2 has joined

  258. kokonoe has left

  259. Mikaela has left

  260. Mikaela has joined

  261. Mikaela has left

  262. Mikaela has joined

  263. kokonoe has joined

  264. Chobbes has left

  265. j.r has joined

  266. zach has left

  267. zach has joined

  268. lorddavidiii has left

  269. lorddavidiii has joined

  270. Mikaela has left

  271. Mikaela has joined

  272. rion has left

  273. kokonoe has left

  274. kokonoe has joined

  275. winfried has left

  276. winfried has joined

  277. rion has joined

  278. zach has left

  279. zach has joined

  280. mukt2 has left

  281. pdurbin has joined

  282. eevvoor has left

  283. kokonoe has left

  284. winfried has left

  285. winfried has joined

  286. mukt2 has joined

  287. winfried has left

  288. winfried has joined

  289. winfried has left

  290. winfried has joined

  291. pdurbin has left

  292. j.r has left

  293. j.r has joined

  294. mukt2 has left

  295. mukt2 has joined

  296. j.r has left

  297. j.r has joined

  298. Mikaela has left

  299. Mikaela has joined

  300. zach has left

  301. zach has joined

  302. mukt2 has left

  303. Chobbes has joined

  304. winfried has left

  305. winfried has joined

  306. mukt2 has joined

  307. zach has left

  308. zach has joined

  309. matkor has left

  310. matkor has joined

  311. zach has left

  312. zach has joined

  313. Wojtek has joined

  314. j.r has left

  315. j.r has joined

  316. adiaholic has left

  317. moparisthebest

    Does anyone have a link documenting the numerous vulns clients had relating to xhtml-im ?

  318. moparisthebest

    I was hoping for a mailing list post or wiki page...

  319. adiaholic has joined

  320. dwd

    There was Waqas's presentation about a decade back. (Maybe more recent than that, I forget).

  321. Zash

    Also, can someone explain to me how Matrix and Mastodon and pretty much everything else gets away with sending actual HTML in JSON but we can't send a sane subset of HTML in XML?

  322. zach has left

  323. zach has joined

  324. dwd

    Single implementation probably helps.

  325. pep.

    Because it's better to mix input and wire format, and users do it anyway

  326. Seve

    Implementation details should not block standards

  327. Zash

    Bring back XHTML-IM!

  328. pep.

    Bring back XHTML-IM!

  329. Zash

    Ropen skalla, XHTML-IM åt alla!

  330. aj has joined

  331. adiaholic has left

  332. adiaholic has joined

  333. jubalh has left

  334. jubalh has joined

  335. mukt2 has left

  336. mukt2 has joined

  337. aj has left

  338. Dele (Mobile) has left

  339. zach has left

  340. Dele (Mobile) has joined

  341. zach has joined

  342. flow

    Bring back XHTML-IM!

  343. Ge0rG

    Bring back GC1.0!

  344. Zash

    U wut m8?

  345. jonas’

    Bring back XHTML-IM!

  346. pep. kicks Ge0rG

  347. jonas’

    how about we put this on the next all-member meeting agenda?

  348. jonas’

    yes, all-member meetings are a thing ;)

  349. pep.

    jonas’, or just council

  350. jonas’

    pep., I can predict the answer

  351. pep.

    wait for next council?

  352. jonas’

    it has to do with XEP-0001 not having a transition from state_of(xep_number("XHTML-IM")) -> {Experimental,Draft,Final}

  353. pep.

    Yeah I was wondering about that

  354. jonas’

    so it’d defer to Board

  355. jonas’

    since Board owns XEP-0001

  356. pep.

    That's a more generic question then

  357. pep.

    Not just 0071

  358. Ge0rG

    then Board may or may not define such a state transition and defer back to Council

  359. jonas’

    pep., although somebody floated the idea of re-defining XHTML-IM from scratch anyways

  360. jonas’

    which I support, actually

  361. pep.

    I could get along with that I guess

  362. jonas’

    with more clearly-defined use-case profiles

  363. jonas’

    and without @style

  364. Ge0rG

    Yes.

  365. dwd

    If someone can show that HTML within messages has a solution, I'm all for it. But last time we were here, it seemed that every implementation had suffered serious security problems.

  366. pep.

    Should we call it xhtml-im2

  367. pep.

    This time it's for real

  368. dwd

    FWIW, if there were some solution that meant we should shift around PWAs in messages that'd be awesome.

  369. Ge0rG

    dwd: modern web applications can be made secure with a global switch instead of having to sanitize every individual string, AFAICT

  370. jonas’

    dwd, I’ve been back and forth on this, and I think some standards simply require a basic level of intelligence, and if you cannot read Security Considerations, you maybe should not implement standards. or anything.

  371. Zash

    dwd, my observation is that any alternative will be equally terrible.

  372. jonas’

    dwd, PWA?

  373. dwd

    jonas’, A single-page web app.

  374. dwd

    jonas’, I mean, if we could safely ship aorund CSS and Javascript, that'd be amazingly amaing.

  375. Zash

    Not Progressive Web App?

  376. zach has left

  377. zach has joined

  378. jonas’

    dwd, would it be?

  379. jonas’

    dwd, I think that sounds terrible ;)

  380. Ge0rG

    I thought those are SPAs

  381. jonas’

    but I hate the current web, so...

  382. dwd

    jonas’, Sure. Apps in messages, what's not to like?

  383. jonas’

    dwd, everything?

  384. Zash

    dwd, I hate everything about that

  385. MattJ

    waqas created a sanitizer for xhtml-im, it works... what else is there to debate?

  386. jonas’

    MattJ, does it sanitize @style?

  387. Zash

    `tag.attr.style = nil`

  388. jubalh has left

  389. Ge0rG

    MattJ: is it written in JavaScript that can be bundled within an XHTML-IM message?

  390. Zash

    A Message Web App that sanitizes itself?

  391. dwd

    Zash, It'd sanitize the messages it sent to other people. I detect a flaw here.

  392. MattJ

    jonas’, it does

  393. Ge0rG

    dwd: you encountered sarcasm.

  394. MattJ

    Can't we just define a flag that clients need to send if their xhtml-im payload is malicious?

  395. MattJ

    Lighter than including a full sanitizer with every message

  396. pep.

    that ^

  397. MattJ

    Oh wait, XEP-0076

  398. pep.

    woo, we already have all the tools

  399. Ge0rG

    MattJ: but it's using an insecure xmlns :(

  400. pdurbin has joined

  401. dwd

    MattJ, Needs to be updated in line with XEP-0419.

  402. Seve

    Nice, solutions right away

  403. pep.

    Ge0rG, btw, you should push for 419 to go draft, there's already an implementation!!

  404. Ge0rG

    pep.: which one?

  405. pep.

    poezio's rot13 and b64 plugins

  406. Ge0rG

    pep.: but 419 is for XEPs, not for .py's

  407. pep.

    :(

  408. dwd

    pep., Is it doing whole stanza encryption (example 1)?

  409. pep.

    dwd, no but it should indeed

  410. Ge0rG

    dwd: I still think full-stanza-encryption would've been much funnier with rot13.

  411. dwd

    pep., Sorry, not Example 1, Example 2. I ask because most implementations seem to be mistakenly doing Example 3.

  412. pep.

    right

  413. dwd

    Ge0rG, Really? I rather enjoyed the deadpan comparison between the examples.

  414. Ge0rG

    dwd: must be an instance of British Humour, then

  415. dwd

    I note that XEP-0419 is the latest e2e encryption method in XMPP, too.

  416. Ge0rG

    latest and greatest.

  417. Ge0rG

    I wonder if people will appreciate if I announce that yaxim has had it from day 0.

  418. Ge0rG

    now that I think of it, yaxim implements it for ten years already.

  419. Ge0rG

    I just didn't have the feature namespace.

  420. pdurbin has left

  421. moparisthebest

    Seve: so can we just have a xep that says "execute this binary code as x86 instructions, but just the safe parts" ? If implementation details shouldn't block standards that is >:)

  422. larma

    moparisthebest, I think the cool guys use webassembly for this nowadays

  423. adiaholic has left

  424. adiaholic has joined

  425. Mikaela has left

  426. Mikaela has joined

  427. Seve

    moparisthebest, I just thing we should go as fast as the smartest in class, not the dumbest.

  428. zach has left

  429. Seve

    moparisthebest, I just think we should go as fast as the smartest in class, not the dumbest.

  430. zach has joined

  431. moparisthebest

    Sure, we can all use one client and server and not even bother writing standards

  432. moparisthebest

    That is easiest and fastest

  433. jonas’

    moparisthebest, that’s not the same thing

  434. jonas’

    and you’re being needlessly hyperbolic

  435. mukt2 has left

  436. mukt2 has joined

  437. Ge0rG

    is it possible to add a line break inside a <td> in XEPs?

  438. Steve Kille has left

  439. Ge0rG

    jonas’: I've got https://github.com/xsf/xeps/pull/841 but I'm most probably not ready yet and I would like to have one history/revision block for all that's different from CS-2019

  440. jubalh has joined

  441. Zash

    Ge0rG: That description seems a bit redundant, don't you think?

  442. jubalh has left

  443. Ge0rG

    Zash: I didn't want to leave it empty

  444. nyco has left

  445. edhelas has left

  446. Steve Kille has joined

  447. moparisthebest

    Seve, jonas’ , yea sorry, mainly just pointing out that while I agree in principle that xeps shouldn't depend on implementations, if in practice 100% of implementations have security problems, that's probably a root issue that needs to be solved/defined/something by the xep

  448. moparisthebest

    other people have worded that way better in the past so just ignore me :)

  449. Ge0rG

    better specs help.

  450. wurstsalat has left

  451. Mikaela has left

  452. Mikaela has joined

  453. moparisthebest

    I think it's possible to have a "secure" spec that, in practice, is impossible to implement securely, which I'd then argue is a bad spec

  454. zach has left

  455. zach has joined

  456. Ge0rG

    moparisthebest: which XHTML-IM is a prime example of

  457. Zash

    Is it impossible?

  458. jonas’

    I think waqas proved the opposite.

  459. Zash

    Isn't it just that it's too convenient to do the wrong thing

  460. jonas’

    and once you drop @style, I’d say it’s very trivially possible to implement securely

  461. jonas’

    what Zash says

  462. Zash

    Which 393 for example doesn't help with

  463. Yagiza has left

  464. karoshi has left

  465. moparisthebest

    are you going to write your own HTML/CSS engine, or fork chrome/firefox's and try to disable javascript but still keep up on other security issues, or ?

  466. Zash

    "Oh this looks like Markdown, I'll just take this markdown library and forgot to disable HTML pass trough"

  467. karoshi has joined

  468. moparisthebest

    yes, in theory those things are possible, in practice, no one is going to do them

  469. Zash

    No one is going to do what?

  470. jonas’

    moparisthebest, bugs in the rendering engine are not in scope for XMPP software, unless XMPP software writes their own engine.

  471. jonas’

    why would you fork a rendering engine for this?

  472. jonas’

    why would you write your own?

  473. jonas’

    both don’t make sense

  474. emus has left

  475. Ge0rG

    Just bundle an old version of Electron with your chat app

  476. jonas’

    both Qt and Gtk support a subset of HTML in any widget (which surprisingly is a superset of what XHTML-IM), so they’re covered. If you’re using a web browser (natievly or via widget) to render/execute your app, you have a rendering engine right there.

  477. jonas’

    you just need to do the fing sanitisation, which is fing trivial if we omit @style for a second

  478. Zash

    jonas’, and @on*

  479. jonas’

    just have a whitelist of elements, and everything which isn’t that is replaced by its children.

  480. jonas’

    Zash, those are forbidden anyways

  481. kokonoe has joined

  482. jonas’

    in XHTML-IM

  483. Zash

    whitelist elements and attributes (@style excluded)

  484. jonas’

    s/elements/elements and attributes/

  485. jonas’

    yes

  486. jonas’

    it’s not hard in any way

  487. jonas’

    it’s written in the security considerations (more clearly than it was back then, admittedly)

  488. jonas’

    if you can’t read security considerations, maybe you shouldn’t be implement standards

  489. jonas’

    if you can’t comprehend the security considerations of a specific standard, get help and get the standard clarified

  490. mukt2 has left

  491. jonas’

    Ge0rG, any reason you make that a PR?

  492. jonas’

    Ge0rG, mark it WIP in the title at least

  493. kokonoe has left

  494. mukt2 has joined

  495. Zash

    jonas’, you don't happen to have a nice short rationale for why @style needs to gtfo?

  496. jonas’

    Zash, requires an extra parser

  497. jonas’

    aside from that, allows stuff which probably only works on your machine

  498. jonas’

    (colors and things)

  499. moparisthebest

    jonas’, that's the theory, in practice, a developer reads a much simpler spec like 393, writes a few regexes, gives up and just passes it to a markdown processor

  500. moparisthebest

    (this just happend earlier today, hence my question)

  501. jonas’

    moparisthebest, oh, so exactly the thing happened everyone said it would?

  502. Zash

    It also almost happened in Converse.js

  503. moparisthebest

    yes and also we brought up all this as soon as he suggested the markdown processor, so it hasn't *actually* happened yet, but it would have

  504. jonas’

    moparisthebest, can’t blame them, XEP-0393 doesn’t mention that as a problem

  505. moparisthebest

    I was trying to find links about why this was a terrible idea

  506. kokonoe has joined

  507. larma

    so how about we all just implement 394?

  508. Ge0rG

    jonas’: I made it a PR because I wanted to discuss the content changes in Council tomorrow

  509. jonas’

    Ge0rG, you can do that in your own fork instead

  510. jonas’

    larma, I’d like to burn XEP-0394

  511. Ge0rG

    jonas’: good point

  512. Mikaela has left

  513. Mikaela has joined

  514. larma

    jonas’, why? IMO it's superior to 393, it just has the flaw that it doesn't work well with legacy fallbacks (because you can't hide any chars that are only for fallback)

  515. jonas’

    larma, but it’s not superior to XEP-0071

  516. jonas’

    (or a slightly saner redefinition of XEP-0071)

  517. larma

    Well, it only has a subset of the features, but also is less likely to be accidentally use a HTML rendering engine

  518. jonas’

    I’m pretty sure it’s also harder to implement, and will be fun especially in memory-unsafe languages with all that string slicing involved.

  519. zach has left

  520. zach has joined

  521. debacle has left

  522. larma

    If I'd want to do it right, as a client developer I would probably convert all 3 versions into some data structure that is approximately 394

  523. larma

    Then I can convert that into any format required for my rendering engine

  524. jonas’

    except that you’d normally mix the text with that data structure

  525. jonas’

    not like '394 does

  526. sonny has left

  527. moparisthebest

    so if I'm understanding this correctly, there is a scale of difficulty-to-implement vs security-of-implementation, ranging from so hard to implement no one will bother, making it secure, all the way to so easy to implement wrongly everyone implements it but it's totally insecure

  528. moparisthebest

    something like that

  529. larma

    jonas’, do you? HTML does, but other might not. It's actually a bad idea because it creates the requirement of escaping the actual text to ensure it's not considered markup

  530. jonas’

    larma, only if your data structure is a string

  531. moparisthebest

    394 makes you write your own parser and rendering engine, no one does it, xhtml-im is easiest to implement by just slapping it into a DOM, everyone does it, is insecure

  532. jonas’

    which I’d consider a terrible idea to start with :)

  533. jonas’

    moparisthebest, nobody forces you to write a rendering engine for '394

  534. jonas’

    moparisthebest, you can convert '394 to Qt text styles, to Gtk whatevers, and to HTML

  535. jonas’

    that’s not the sisue

  536. jonas’

    that’s not the issue

  537. moparisthebest

    but you have to write your own parser, and perhaps harder, "reverse parser"

  538. jonas’

    it’s just a painful thing to do

  539. jonas’

    yeah

  540. moparisthebest

    how do you get from input format to 394

  541. jonas’

    moparisthebest, if you’re using Qt or Gtk, you can probably more or less directly convert the respective datastructures to '394

  542. jonas’

    (the QTextDocument stuff for example)

  543. Maranda has left

  544. jonas’

    from HTML, it’s a bit trickier, but also possible.

  545. Maranda has joined

  546. mukt2 has left

  547. emus has joined

  548. larma

    - 71 is not directly compatible with many non-complex renderers. Input needs to be sanitized before being used in complex renderers. - 393 is not directly compatible with any markdown parser known to me, even though some might choose to use a incompatible markdown parser to implement it. If a markdown parser is used to generate HTML, same issue as with 71 might come up. - 394 can be sanitized rather easily (check there is no overlap) and then can be used securely and without tons of efforts in most environment including HTML renderers

  549. zach has left

  550. zach has joined

  551. larma

    I think implementing 394 securely in a browser might actually be easier than implementing 71 securely in a browser, where browsers should be *the* example of allowing easy implementation of 71...

  552. jonas’

    larma, '71 is directly compatible with GTK and Qt, without the need for sanitisation (if you ignore @style).

  553. jonas’

    or do you consider those "complex"?

  554. edhelas has joined

  555. jonas’

    otherwise, which other non-complex renderers are there?

  556. mukt2 has joined

  557. larma

    jonas’, it's not. Pango makup used by GTK only supports very few tags and actually uses CSS-like style for most stuff

  558. larma

    https://developer.gnome.org/pygtk/stable/pango-markup-language.html

  559. larma

    Not sure about Qt

  560. jonas’

    ugh, it’s still at <i/>

  561. lovetox_ has joined

  562. larma

    It also doesn't do blockquote or body or img or any of the enumerations (it doesn't support such at all, as it's a text markup only thing). The "correct" way to use it is <span>s

  563. jonas’

    pity

  564. jonas’

    not great for accessibility either

  565. wurstsalat has joined

  566. larma

    how is it related to accessibility?

  567. jonas’

    larma, <em/> for example to mark up emphasis

  568. jonas’

    enumerations and stuff, blockquotes

  569. jonas’

    all that’s relevant to screenreaders

  570. larma

    I don't think GTK wants you to provide screenreader annotations through display/styling markup

  571. jonas’

    how else does it work with Gtk then?

  572. jonas’

    seems odd to me to have that redundant

  573. larma

    Well Pango is a text rendering engine, it does only that single job of using font data and input text to generate an image. You also use it when drawing text on images, so it makes little sense to have accessibility markup at that point

  574. zach has left

  575. zach has joined

  576. jonas’

    yeah, I was talking about Gtk for a reason and am looking at GtkTextBuffer instead

  577. jonas’

    (and GtkTextView)

  578. jonas’

    using plain pango to render text is bound to be a PITA

  579. jonas’

    BTGNT

  580. larma

    Dino uses GtkLabel which only supports pango markup for all message rendering 😉

  581. jonas’

    that won’t be enough for stuff like blockquote anyways

  582. jonas’

    I’m also not sure how you’d mark up a GtkLabel itself for screenreaders to understand what’s going on

  583. mukt2 has left

  584. mukt2 has joined

  585. larma

    I think you do all this stuff with ATK, but haven't tried yet

  586. larma

    Also doing screen readers right for IM is probably not easy and won't work out of the box no matter which toolkit...

  587. jonas’

    very true

  588. jubalh has joined

  589. mukt2 has left

  590. mukt2 has joined

  591. COM8 has joined

  592. COM8 has left

  593. COM8 has joined

  594. zach has left

  595. zach has joined

  596. mukt2 has left

  597. COM8 has left

  598. mukt2 has joined

  599. pdurbin has joined

  600. adiaholic has left

  601. adiaholic has joined

  602. COM8 has joined

  603. kokonoe has left

  604. debacle has joined

  605. pdurbin has left

  606. kokonoe has joined

  607. nyco has joined

  608. andy has left

  609. jubalh has left

  610. kokonoe has left

  611. zach has left

  612. zach has joined

  613. COM8 has left

  614. adiaholic has left

  615. adiaholic has joined

  616. kokonoe has joined

  617. Mikaela has left

  618. Mikaela has joined

  619. zach has left

  620. zach has joined

  621. lovetox_ has left

  622. Dele (Mobile) has left

  623. Wojtek has left

  624. zach has left

  625. zach has joined

  626. xalek has joined

  627. Wojtek has joined

  628. kokonoe has left

  629. kokonoe has joined

  630. mukt2 has left

  631. zach has left

  632. zach has joined

  633. sonny has joined

  634. j.r has left

  635. j.r has joined

  636. lorddavidiii has left

  637. lorddavidiii has joined

  638. jubalh has joined

  639. jubalh has left

  640. jubalh has joined

  641. mukt2 has joined

  642. Nekit has left

  643. zach has left

  644. zach has joined

  645. mukt2 has left

  646. pdurbin has joined

  647. zach has left

  648. zach has joined

  649. jubalh has left

  650. moparisthebest

    nice to see there are 0 open source XMPP mac apps but a ton of matrix/telegram/other ones :'( https://github.com/serhii-londar/open-source-mac-os-apps#chat

  651. mukt2 has joined

  652. pdurbin has left

  653. pep.

    Most of these are electron apps no?

  654. pep.

    Does padé not work there?

  655. moparisthebest

    no idea, was just pointing out that someone seeing this list doesn't even see xmpp listed at all

  656. moparisthebest

    I know Monal for instance should be there, probably gajim ? what about dino? surely there are a TON of open source XMPP apps that run on MacOS

  657. Tobias has left

  658. pep.

    Go PR! :)

  659. pep.

    Is there a list of list page on the wiki or sth?

  660. pep.

    That needs to be updated every so often

  661. mukt2 has left

  662. moparisthebest

    probably most of the command line clients work on mac too right?

  663. moparisthebest

    I'll friggin put in a PR adding 50 XMPP clients that run on mac if I can find them :D

  664. Zash

    https://github.com/xsf/xmpp.org/blob/master/data/clients.json

  665. Zash

    "Awesome" here means "List of stuff" these days?

  666. Ge0rG

    Monal is probably the only one that qualifies as a Mac app

  667. moparisthebest

    yea it's a thing now, no idea where it started

  668. Zash

    Adium?

  669. Zash

    It's been a thing for quite a while

  670. pep.

    It's not maintained anymore is it

  671. Ge0rG

    pep.: ten years ago, like everything in xmpp

  672. pep.

    right

  673. moparisthebest

    maybe it's just because we aren't on these awesome lists

  674. Zash

    Yet another hierarchical oooooooooosomething

  675. adiaholic has left

  676. chronosx88 has left

  677. Zash

    moparisthebest, basically ^C^V https://xmpp.org/software/clients.html ?

  678. Zash

    | grep macos

  679. mukt2 has joined

  680. !XSF_Martin has left

  681. !XSF_Martin has joined

  682. zach has left

  683. zach has joined

  684. kokonoe has left

  685. adiaholic has joined

  686. jubalh has joined

  687. sonny has left

  688. mukt2 has left

  689. lorddavidiii has left

  690. kokonoe has joined

  691. kokonoe has left

  692. adiaholic has left

  693. DebXWoody

    I think I was able to install psi or psi+

  694. sonny has joined

  695. mimi89999 has left

  696. jubalh has left

  697. moparisthebest

    curl https://raw.githubusercontent.com/xsf/xmpp.org/master/data/clients.json | jq '.[] | select(.platforms | index("macOS")) | "[" + .name + "]" + "(" + .url + ")"' | sort -u | tr -d '"'

  698. moparisthebest

    got to learn some jq today, I'll put in the PR later... gotta figure out what language they are each written in manually, guess that's important for mac users somehow?

  699. Zash

    Myeah, I'm not sure what's up with that.

  700. Zash

    Maybe it's aimed at developers?

  701. moparisthebest

    good news is we have 24 different macOS clients though

  702. wurstsalat has left

  703. mimi89999 has joined

  704. lskdjf

    moparisthebest, I hope you don't want to try and add all of those clients to that "awsome" repo, though. Abandoned clients probably don't shed a good light on XMPP. Maybe pick the most reasonable 2/3 instead.

  705. balu_der_baer has left

  706. !XSF_Martin has left

  707. Chobbes has left

  708. goffi has left

  709. emus has left

  710. emus has joined

  711. kokonoe has joined

  712. zach has left

  713. zach has joined

  714. matkor has left

  715. matkor has joined

  716. mukt2 has joined

  717. Ge0rG

    Maybe pick the only one that's a Mac app.

  718. Zash

    How's the Tigase one, Beagle?

  719. pdurbin has joined

  720. mukt2 has left

  721. sonny has left

  722. pdurbin has left

  723. andrey.g has left

  724. moparisthebest

    lskdjf: why not? It has telegram clients marked abandoned too

  725. zach has left

  726. zach has joined

  727. lskdjf

    moparisthebest, I already gave my reasoning: because bothering people with bad clients sheds a bad light on xmpp. Something is not good just because telegram people do it.

  728. moparisthebest

    I don't have a Mac and no way to pick the best couple

  729. !XSF_Martin has joined

  730. lskdjf

    then maybe you are either not the best person to do the PR or need more information first 🤷️

  731. moparisthebest

    Well no one else seems interested in doing it

  732. moparisthebest

    Besides that list is like "all open source Mac software" not just good ones

  733. Zash

    moparisthebest: Make an "Awesome XMPP clients" list and get it into the Awesome hierarchical directory that's totally not like early Yahoo! at all.

  734. Zash

    There was some XMPP stuff under "ChatOps" but I didn't look further

  735. moparisthebest

    I was thinking about making an awesome awesome list of all the awesome lists

  736. Zash

    That exists already

  737. lskdjf

    too late, that already exists https://github.com/sindresorhus/awesome

  738. moparisthebest

    Damnit, just like all my good ideas

  739. pep.

    We're not listed in Decentralized!!1 Mastodon is!

  740. Lance has joined

  741. lskdjf

    pep., no the awsome list about mastodon is :p we first need an "awsome xmpp" list 🙂

  742. zach has left

  743. zach has joined

  744. Zash

    pep.: There are only 2 XMPP services¹ ¹ according to https://the-federation.info/

  745. Zash

    pep.: There are only 3 XMPP services¹ ¹ according to https://the-federation.info/

  746. pep.

    Yeah.. I know that one..

  747. Zash

    Wanna help with my WIP mod_nodeinfo2.lua?

  748. waqas has joined

  749. andrey.g has joined

  750. pep.

    I want to help with lots of things. Now how do I prioritize all that

  751. Zash

    "Awesome TODO"

  752. pep.

    :D

  753. Lance has left

  754. emus has left

  755. Link Mauve

    “15:38:27 flow> Link Mauve, +1, is the list public somewhere? Maybe even in the wiki?”, only on a WIP branch from years ago, which will need a namespace bump: https://github.com/linkmauve/xeps/tree/xep-0234

  756. matkor has left

  757. matkor has joined

  758. LNJ has left

  759. kokonoe has left

  760. zach has left

  761. zach has joined

  762. UsL has left

  763. UsL has joined

  764. gav has left

  765. karoshi has left

  766. Wojtek has left

  767. Wojtek has joined

  768. Wojtek has left

  769. Zash has left

  770. Wojtek has joined

  771. mukt2 has joined

  772. pdurbin has joined

  773. mukt2 has left

  774. pdurbin has left