Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | core.certmanager: Add curveslist to 'old' Mozilla TLS preset | Kim Alvefur | 2021-12-26 | 1 | -1/+2 |
| | | | | | | | Unsure if this was overlooked before or a recent addition. Reproduced the data from JSON file available. Would be nice to have a tool that does that. | ||||
* | util.prosodyctl.check: Remove obsolete settings from known globals | Kim Alvefur | 2021-12-25 | 1 | -2/+0 |
| | |||||
* | util.prosodyctl.check: Add some more obsolete settings | Kim Alvefur | 2021-12-25 | 1 | -0/+6 |
| | |||||
* | mod_tombstones: Add some future TODOs | Kim Alvefur | 2021-12-23 | 1 | -0/+4 |
| | |||||
* | mod_tombstones: Add a very basic test case | Kim Alvefur | 2021-12-23 | 2 | -0/+41 |
| | |||||
* | mod_tombstones: Remember deleted accounts #1307 | Kim Alvefur | 2021-12-23 | 2 | -0/+76 |
| | | | | | | | | | Presence subscriptions are normally revoked on account deletion, which informs the contact. Sometimes this notification gets lost e.g. due to s2s problems. The accounts JID may also be present e.g. in MUC affiliations, chat group member lists, pubsub subscriptions or other systems. These may grant privileges which would fall to someone who creates the same account again, which this module is meant to prevent. | ||||
* | mod_smacks: Compact code using new stanza API | Kim Alvefur | 2021-12-22 | 1 | -9/+2 |
| | |||||
* | mod_http: Clean up redirects handlers for wildcard on http module unload | Kim Alvefur | 2021-12-22 | 1 | -0/+7 |
| | | | | | These would previously be left behind. Probably mostly harmless except for clogging up the `debug:events()` listing in the console. | ||||
* | mod_smacks: Use more compact resumption tokens | Kim Alvefur | 2021-12-22 | 1 | -2/+2 |
| | | | | | | UUID seems like insane overkill for something user-scoped and not security-sensitive. All that is needed is to avoid conflicts among what should be relatively long-lived sessions. | ||||
* | util.id: Add a 'tiny' variant | Kim Alvefur | 2021-12-02 | 1 | -0/+3 |
| | | | | | Conversations uses this for its randomized resources. Presumably fine and collision resistant enough when you have a few devices at most. | ||||
* | util.id: Adjust entropy levels, with rationales | Kim Alvefur | 2021-12-02 | 4 | -6/+17 |
| | | | | | Modules using ids for logging should not need the now pretty large medium one. | ||||
* | MUC: Switch ID algorithm for IQ relay (fixes #1266, #1435) | Kim Alvefur | 2021-10-05 | 1 | -3/+5 |
| | |||||
* | MUC: Add method for getting the occupant id salt to allow reuse | Kim Alvefur | 2021-10-05 | 2 | -5/+12 |
| | |||||
* | util.prosodyctl.cert: Copy SAN/wildcard certs only once | Kim Alvefur | 2021-12-22 | 1 | -1/+5 |
| | |||||
* | util.x509: Fix to include wildcard identity | Kim Alvefur | 2021-12-22 | 1 | -0/+3 |
| | |||||
* | core.certmanager: Check index for wildcard certs | Kim Alvefur | 2021-12-22 | 1 | -1/+2 |
| | |||||
* | prosodyctl cert: use the indexing functions for better UX | Jonas Schäfer | 2021-12-21 | 2 | -19/+29 |
| | | | | | | These provide (a) a way to deal with random assortments of certs and (b) avoid unnecessary error messages and warnings, according to #1669 anyway, which this fixes. | ||||
* | prosodyctl: Hide process management commands when init system should be used ↵ | Kim Alvefur | 2021-12-21 | 1 | -3/+19 |
| | | | | instead | ||||
* | prosodyctl: Reorder help sections | Kim Alvefur | 2021-12-21 | 1 | -5/+5 |
| | | | | | | By how old the commands are? Or how disruptive the changes are? Or just by what feels best? | ||||
* | mod_roster: Improve readability of bare-JID check | Kim Alvefur | 2021-12-22 | 1 | -2/+2 |
| | | | | | | | Silences luacheck too All we care about is that it is a bare JID, not a full JID with a resource, since those are forbidden in rosters. | ||||
* | mod_roster: pass correct username to roster-item-removed | Jonas Schäfer | 2021-12-22 | 2 | -1/+76 |
| | | | | | | | | | | | The other invocations use it that way, and the only listener in trunk which uses it (in mod_presence) expects it that way. Passing the username of the JID from the removed entry causes incorrect unavailable presence stanzas to be sent, allegedly kicking people off MUCs. Fixes #1121. | ||||
* | core.certmanager: Rename preset option to 'tls_preset' | Kim Alvefur | 2021-12-22 | 2 | -1/+2 |
| | | | | TLS good, SSL bad. | ||||
* | core.certmanager: Add "legacy" preset for keeping previous default settings | Kim Alvefur | 2021-12-22 | 1 | -1/+3 |
| | | | | If anyone wants that. | ||||
* | core.certmanager: Add TLS 1.3 cipher suites to Mozilla TLS presets | Kim Alvefur | 2021-11-03 | 1 | -1/+7 |
| | |||||
* | core.certmanager: Presets based on Mozilla SSL Configuration Generator | Kim Alvefur | 2019-12-22 | 2 | -0/+61 |
| | | | | ssl_preset = "modern" | ||||
* | moduleapi: Support stripping of multi-word from module names | Matthew Wild | 2021-12-22 | 1 | -1/+1 |
| | | | | | | The goal is to allow module:provides("foo-bar") with a mod_foo_bar_ prefix being stripped. It will break any existing modules that use a prefix and have hyphens instead of underscores. No such modules are known. | ||||
* | adminstream: fire disconnected event on lower layer disconnect | Jonas Schäfer | 2021-12-21 | 1 | -0/+1 |
| | | | | | | | | | | | This may in theory cause multiple disconnect events for the adminstream client, if the only code using that wasn't calling os.exit right away. Hence, this should be a good enough partial fix for #1671. It is not a full fix, because the shell will only notice the disconnect after one has hit enter in the input; until then, it is stuck in a read() call to stdin and completely oblivious to the disconnect. | ||||
* | CHANGES: Add various things | Kim Alvefur | 2021-12-21 | 1 | -2/+14 |
| | |||||
* | CHANGES: Reorganize by added/changed/removed to improve readability | Kim Alvefur | 2021-12-21 | 1 | -25/+48 |
| | |||||
* | Merge 0.11->trunk | Kim Alvefur | 2021-12-20 | 1 | -10/+52 |
|\ | |||||
| * | Tag 0.11.11 | Kim Alvefur | 2021-12-20 | 0 | -0/+0 |
| | | |||||
| * | mod_pep: Wipe pubsub service on user deletion0.11.11 | Kim Alvefur | 2021-11-04 | 1 | -0/+15 |
| | | | | | | | | | | | | | | Data is already wiped from storage, but this ensures everything is properly unsubscribed, possibly with notifications etc. Clears recipient cache as well, since it is no longer relevant. | ||||
| * | mod_pep: Prevent creation of services for non-existent users | Kim Alvefur | 2021-11-04 | 1 | -0/+15 |
| | | | | | | | | | | Using a dedicated service should give identical behavior, except for a possible timing difference in the user existence lookup. | ||||
| * | mod_pep: Limit possible growth of node subscription info | Kim Alvefur | 2021-11-04 | 1 | -2/+5 |
| | | |||||
| * | mod_pep: Limit possible growth of number of pubsub services | Kim Alvefur | 2021-11-04 | 1 | -2/+16 |
| | | |||||
| * | mod_pep: Don't pass pubsub services across reloads | Kim Alvefur | 2021-11-04 | 1 | -6/+0 |
| | | | | | | | | Ensures configuration is refreshed, releases some memory. | ||||
| * | net.server_epoll: Process all queued events from epoll before timers | Kim Alvefur | 2021-10-21 | 1 | -2/+4 |
| | | | | | | | | | | | | | | | | | | Should call timers less frequently when many sockets are waiting for processing. May help under heavy load. Requested by Ge0rG Backport of 2bcd84123eba requested by Roi | ||||
* | | configmanager: Update error message to say 'VirtualHost' instead of 'Host' | Matthew Wild | 2021-12-20 | 1 | -1/+1 |
| | | |||||
* | | mod_storage_xep0227: Replace custom tag-removal helpers with :remove_children() | Matthew Wild | 2021-12-20 | 1 | -27/+9 |
| | | |||||
* | | mod_smacks: Add future todo | Kim Alvefur | 2021-12-20 | 1 | -0/+1 |
| | | | | | | | | | | The vision: All the queueing and counting and session replacement logic in core, with mod_smacks only hooking this up to the XEP-0198 protocol. | ||||
* | | mod_smacks: Only include max resumption time when resumption is activated | Kim Alvefur | 2021-12-20 | 1 | -1/+3 |
| | | |||||
* | | core.modulemanager: Load mod_smacks on Components | Kim Alvefur | 2021-12-20 | 1 | -0/+1 |
| | | | | | | | | Since it applies to s2s on Components as well as on VirtualHosts. | ||||
* | | mod_smacks: Fix typos | Kim Alvefur | 2021-12-20 | 1 | -2/+2 |
| | | |||||
* | | mod_smacks: Fix error on shutdown if loaded on Component | Kim Alvefur | 2021-12-20 | 1 | -0/+4 |
| | | |||||
* | | mod_smacks: Fix typo (thanks codespell) | Kim Alvefur | 2021-12-19 | 1 | -1/+1 |
| | | |||||
* | | mod_smacks: Avoid log noise when a non-smacks session is closed | Kim Alvefur | 2021-12-19 | 1 | -0/+1 |
| | | |||||
* | | mod_smacks: Check if session was really sleeping before logging message | Kim Alvefur | 2021-12-18 | 1 | -1/+1 |
| | | | | | | | | | | | | It could have been resumed without going into hibernation first, i.e. when the client notices the disconnect before the server, or if it switches networks etc. | ||||
* | | mod_smacks: Fix traceback when bouncing unacked stanzas | Kim Alvefur | 2021-12-18 | 1 | -0/+1 |
| | | | | | | | | | | Errors sent from handle_unacked_stanzas() should usually not be sent to the session itself, but if one is, it should not be queued. | ||||
* | | mod_smacks: Fix duplicate sleep behavior when replacing a session | Kim Alvefur | 2021-12-18 | 1 | -0/+1 |
| | | | | | | | | | | Fixes that an extra watchdog was set, leaking the previous one, which went on to do behave as if the session times out. | ||||
* | | mod_c2s: Fire pre-closing event regardless of connected state | Kim Alvefur | 2021-12-18 | 1 | -3/+3 |
| | | | | | | | | | | | | | | | | With mod_smacks, a session can outlive the connection, so whether the event is fired should not hinge on whether the session is connected or not. Helps mod_smacks remove some state. |