| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
| |
Improved readability and early returns definite yes/no answer.
|
|
|
|
|
| |
This is based on code in mod_csi_simple and aiming towards being more
flexible and maintainable than a couple of tests for when not to store.
|
|
|
|
|
| |
Logging of 'why not' is already done. Why not both? Will make more sense
when the rules evolve a bit.
|
|
|
|
|
| |
Meant to improve readability and ease further improvements to this
algorithm.
|
|
|
|
|
| |
Both mediated invites defined by XEP-0045: Multi-User Chat and direct
invites defined by XEP-0249: Direct MUC Invitations
|
|
|
|
| |
When run on Lua 5.3 produces an issue similar to #1536
|
|
|
|
|
| |
Once the Prosody is up, who cares when it comes down?
That's not my department, says scanison.
|
|
|
|
| |
The passage of time does not need test coverage, just look in a mirror.
|
|
|
|
| |
Why was this module enabled in the config for tests if it wasn't tested?
|
| |
|
| |
|
|
|
|
| |
I guess this contained the old per-store migrators
|
|
|
|
| |
Same way as with the prosody and prosodyctl executables
|
| |
|
|
|
|
|
|
|
| |
RFC 6331 lists several problems with this outdated authentication
mechanism. The code here was also completely ignored by lint checks and
has probably not been used for a long time, as it is incompatible with
SCRAM-hashed password storage.
|
|\ |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
(fixes #1513)
Backport of 94e341dee51c
The original intent of having kEDH before kEECDH was that if a `dhparam`
file was specified, this would be interpreted as a preference by the
admin for old and well-tested Diffie-Hellman key agreement over newer
elliptic curve ones. Otherwise the faster elliptic curve ciphersuites
would be preferred. This didn't really work as intended since this
affects the ClientHello on outgoing s2s connections, leading to some
servers using poorly configured kEDH.
With Debian shipping OpenSSL settings that enforce a higher security
level, this caused interoperability problems with servers that use DH
params smaller than 2048 bits. E.g. jabber.org at the time of this
writing has 1024 bit DH params.
MattJ says
> Curves have won, and OpenSSL is less weird about them now
|
| |
| |
| |
| | |
Backport of 88be11e9f9b9
|
| |
| |
| |
| | |
Oversight in 955e54e451dc when this was added.
|
| |
| |
| |
| | |
Improves readability, easier to see structure.
|
| |
| |
| |
| |
| | |
Adds indentation and line breaks to stanzas, to make stanzas easier to
read for humans.
|
| |
| |
| |
| |
| |
| |
| |
| | |
It is somewhat ambiguous where an error really comes from in the case of
an external component.
Setting by to the bare host at least distinguishes it from JIDs with a
node- or resourcepart.
|
| | |
|
| | |
|
| |
| |
| |
| | |
presence
|
| |
| |
| |
| | |
occupant presence
|
| | |
|
|\| |
|
| |
| |
| |
| |
| |
| |
| | |
This makes
`prosodyctl cert import example.com /path/to/example.com/fullchain.pem`
work. This was never intended to, yet users commonly tried this and got
problems.
|
|\| |
|
| |
| |
| |
| | |
On error, the second return value is the error condition, not the third.
|
| | |
|
| |
| |
| |
| |
| | |
Unclear exactly why, but replies to some queries to local modules would
be discarded by stanza_router. This appears to fix it.
|
|\| |
|
| |
| |
| |
| | |
Backport of f90abf142d53 from trunk
|
| |
| |
| |
| |
| |
| |
| | |
Supported in ICU, with a binding in util.encodings. mod_mimicking uses
this to prevent similarity looking JIDs from being registered.
Planned to be used in MUC as well.
|
|\| |
|
| | |
|
| |
| |
| |
| |
| |
| |
| |
| | |
The LuaSec :info() method gathers info using the OpenSSL function
SSL_get_current_cipher(). Documentation for this function states that it
may return NULL if no session has been established (yet). If so, the
LuaSec functions wrapping this return nil, triggering a nil-indexing
error in mod_admin_telnet.
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
This gives service admins a way to set an arbitrary affiliation in any
room. Enables various administrative use cases such as room ownership
reassignment or recovery.
Reduces the need for the admins-as-owners feature, as this can be used
by admins to make themselves owner in any room when needed, instead of
being owners all the time.
|
| |
| |
| |
| |
| | |
Testing ad-hoc commands was not easily doable before 49312378ba1d
relaxed the need for state and an extra roundtrip to execute commands
|
| |
| |
| |
| | |
See 76bb806cdd4b
|
| |
| |
| |
| | |
(fixes #1508)
|
| |
| |
| |
| |
| |
| |
| |
| | |
RFC 6121 ?3.4 says:
> If a server supports subscription pre-approvals, then it MUST
> advertise the following stream feature during stream negotiation.
The feature itself (#686) was added in f0e9e5bda415
|
| |
| |
| |
| |
| |
| |
| |
| | |
Based on the currently-deferred XEP-0317. The protocol differs
a little (because XEP-0317 is incomplete), therefore currently
we use a custom namespace.
The plan is to update and finish XEP-0317.
|
| |
| |
| |
| | |
At some point the web chat moved to /chat and then to this subdomain
|
|\| |
|
| | |
|
| | |
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Changing the default setting of `new_muc_storage_format` from false to true.
The code supports reading both formats since 0.11, but servers with MUCs stored
using the new format will not be able to downgrade to 0.10 or earlier.
The new format is clearer (less nesting for the most commonly-accessed data),
and combined with the new map-store methods, allows for some operations to become
more efficient (such as finding out which MUCs on a service a given user is affiliated
with).
|