Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | | core.modulemanager: Remove compat for mod_console rename in 0.8 | Kim Alvefur | 2022-01-05 | 1 | -7/+0 | |
| | | | | | | | | | | Should no longer be needed, especially since mod_admin_telnet morphed into mod_admin_shell and mod_admin_socket | |||||
* | | mod_invites_adhoc: Import from prosody-modules@5001104f0275 | Kim Alvefur | 2022-01-05 | 2 | -0/+127 | |
| | | ||||||
* | | mod_invites_register: Import from prosody-modules@797b51043767 | Kim Alvefur | 2021-12-29 | 3 | -0/+177 | |
| | | ||||||
* | | mod_invites: Silence luacheck warning | Kim Alvefur | 2022-01-05 | 1 | -1/+1 | |
| | | ||||||
* | | mod_invites: Import from prosdy-modules@5fc306239db3 | Kim Alvefur | 2021-12-27 | 2 | -0/+340 | |
| | | ||||||
* | | util.stanza: Cover :find method in tests | Kim Alvefur | 2021-12-31 | 1 | -0/+12 | |
| | | | | | | | | This method is a bit complex so good to have some test coverage | |||||
* | | util.stanza: Remove dead code | Kim Alvefur | 2021-12-31 | 1 | -5/+0 | |
| | | | | | | | | | | These cases are caught by `check_text(v, ..)` above. Those errors do not contain the attribute however, which would have been nice. | |||||
* | | util.stanza: Increase test coverage to cover validation errors | Kim Alvefur | 2021-12-31 | 1 | -0/+25 | |
| | | ||||||
* | | util.stanza: Make type error message consistent with others | Kim Alvefur | 2021-12-31 | 1 | -1/+1 | |
| | | ||||||
* | | mod_smacks: Log error to silence luacheck | Kim Alvefur | 2021-12-31 | 1 | -0/+2 | |
| | | ||||||
* | | mod_smacks: Limit "old" session resumption counters | Kim Alvefur | 2021-12-31 | 1 | -0/+19 | |
| | | | | | | | | | | | | Doing this when creating a whole new session seems reasonable because it is already expensive and this is when it may be adding to the old session store, while a successful resumption should be plus-minus zero. | |||||
* | | mod_smacks: Record timestamp with persisted counters | Kim Alvefur | 2021-12-31 | 1 | -2/+4 | |
| | | | | | | | | | | For future cleanup routine when people inevitably complain about this data being stored there forever | |||||
* | | util_datamapper: Fix typo in unit tests | Kim Alvefur | 2021-12-29 | 1 | -1/+1 | |
| | | ||||||
* | | util.datamapper: Add support for $ref pointers | Kim Alvefur | 2021-12-29 | 3 | -40/+81 | |
| | | | | | | | | Allows reuse of repetitive definitions in schemas. | |||||
* | | util.jsonschema: Add support for $ref pointers | Kim Alvefur | 2021-12-29 | 2 | -44/+70 | |
| | | ||||||
* | | util.jsonpointer: Resolve JSON Pointers per RFC 6901 | Kim Alvefur | 2021-12-29 | 3 | -1/+87 | |
| | | ||||||
* | | make: Add target for rebuilding from Teal sources | Kim Alvefur | 2021-12-29 | 1 | -0/+2 | |
| | | ||||||
* | | net.resolvers: Report DNSSEC validation errors instead of NoError | Kim Alvefur | 2021-12-28 | 2 | -3/+13 | |
| | | | | | | | | Thanks Martin bringing this case to attention | |||||
* | | mod_auth_internal_hashed: Up iteration count to 10000 per XEP-0438 | Kim Alvefur | 2021-12-26 | 3 | -2/+9 | |
| | | | | | | | | | | | | | | | | More security for less pain than switching to SCRAM-SHA-256 The XEP will likely be change to reference the RFC that will probably come from draft-ietf-kitten-password-storage once it is ready, and then we should update to follow that. | |||||
* | | mod_auth_internal_hashed: Make SCRAM iteration count configurable | Kim Alvefur | 2021-12-26 | 1 | -1/+1 | |
| | | ||||||
* | | mod_admin_shell: Log creation of incoming s2s connections during ping | Kim Alvefur | 2021-12-27 | 1 | -0/+2 | |
| | | | | | | | | | | The 's2s-created' fires just after accepting the TCP connection, before the addresses are known, so this can have some false positives. | |||||
* | | mod_smacks: sprinkle some metrics on it | Jonas Schäfer | 2021-12-27 | 1 | -2/+45 | |
| | | ||||||
* | | openmetrics/histograms: improve code clarity | Kim Alvefur | 2021-12-27 | 2 | -2/+2 | |
| | | | | | | | | | | If buckets thresholds are to be taken as "less than or equal to", then using the less than or equal to operator seems sensible. | |||||
* | | openmetrics/histograms: fix incorrect condition for bucketing | Jonas Schäfer | 2021-12-26 | 2 | -2/+2 | |
| | | | | | | | | | | | | The buckets thresholds are to be taken as "less than or equal to". The condition as written in the code did only "less than", not "less than or equal to". That's fixed now. | |||||
* | | mod_admin_shell: Print s2s related events while waiting for ping | Kim Alvefur | 2021-12-26 | 1 | -1/+28 | |
| | | | | | | | | Gives a better idea of what's taking time. | |||||
* | | util.xml: Use variable instead of constant for consistency (thanks Thijs) | Matthew Wild | 2021-12-26 | 1 | -1/+1 | |
| | | ||||||
* | | core.certmanager: Add curveslist to 'old' Mozilla TLS preset | Kim Alvefur | 2021-12-26 | 1 | -1/+2 | |
| | | | | | | | | | | | | | | Unsure if this was overlooked before or a recent addition. Reproduced the data from JSON file available. Would be nice to have a tool that does that. | |||||
* | | util.prosodyctl.check: Remove obsolete settings from known globals | Kim Alvefur | 2021-12-25 | 1 | -2/+0 | |
| | | ||||||
* | | util.prosodyctl.check: Add some more obsolete settings | Kim Alvefur | 2021-12-25 | 1 | -0/+6 | |
| | | ||||||
* | | mod_tombstones: Add some future TODOs | Kim Alvefur | 2021-12-23 | 1 | -0/+4 | |
| | | ||||||
* | | mod_tombstones: Add a very basic test case | Kim Alvefur | 2021-12-23 | 2 | -0/+41 | |
| | | ||||||
* | | mod_tombstones: Remember deleted accounts #1307 | Kim Alvefur | 2021-12-23 | 2 | -0/+76 | |
| | | | | | | | | | | | | | | | | | | Presence subscriptions are normally revoked on account deletion, which informs the contact. Sometimes this notification gets lost e.g. due to s2s problems. The accounts JID may also be present e.g. in MUC affiliations, chat group member lists, pubsub subscriptions or other systems. These may grant privileges which would fall to someone who creates the same account again, which this module is meant to prevent. | |||||
* | | mod_smacks: Compact code using new stanza API | Kim Alvefur | 2021-12-22 | 1 | -9/+2 | |
| | | ||||||
* | | mod_http: Clean up redirects handlers for wildcard on http module unload | Kim Alvefur | 2021-12-22 | 1 | -0/+7 | |
| | | | | | | | | | | These would previously be left behind. Probably mostly harmless except for clogging up the `debug:events()` listing in the console. | |||||
* | | mod_smacks: Use more compact resumption tokens | Kim Alvefur | 2021-12-22 | 1 | -2/+2 | |
| | | | | | | | | | | | | UUID seems like insane overkill for something user-scoped and not security-sensitive. All that is needed is to avoid conflicts among what should be relatively long-lived sessions. | |||||
* | | util.id: Add a 'tiny' variant | Kim Alvefur | 2021-12-02 | 1 | -0/+3 | |
| | | | | | | | | | | Conversations uses this for its randomized resources. Presumably fine and collision resistant enough when you have a few devices at most. | |||||
* | | util.id: Adjust entropy levels, with rationales | Kim Alvefur | 2021-12-02 | 4 | -6/+17 | |
| | | | | | | | | | | Modules using ids for logging should not need the now pretty large medium one. | |||||
* | | MUC: Switch ID algorithm for IQ relay (fixes #1266, #1435) | Kim Alvefur | 2021-10-05 | 1 | -3/+5 | |
| | | ||||||
* | | MUC: Add method for getting the occupant id salt to allow reuse | Kim Alvefur | 2021-10-05 | 2 | -5/+12 | |
| | | ||||||
* | | util.prosodyctl.cert: Copy SAN/wildcard certs only once | Kim Alvefur | 2021-12-22 | 1 | -1/+5 | |
| | | ||||||
* | | util.x509: Fix to include wildcard identity | Kim Alvefur | 2021-12-22 | 1 | -0/+3 | |
| | | ||||||
* | | core.certmanager: Check index for wildcard certs | Kim Alvefur | 2021-12-22 | 1 | -1/+2 | |
| | | ||||||
* | | prosodyctl cert: use the indexing functions for better UX | Jonas Schäfer | 2021-12-21 | 2 | -19/+29 | |
| | | | | | | | | | | | | These provide (a) a way to deal with random assortments of certs and (b) avoid unnecessary error messages and warnings, according to #1669 anyway, which this fixes. | |||||
* | | prosodyctl: Hide process management commands when init system should be used ↵ | Kim Alvefur | 2021-12-21 | 1 | -3/+19 | |
| | | | | | | | | instead | |||||
* | | prosodyctl: Reorder help sections | Kim Alvefur | 2021-12-21 | 1 | -5/+5 | |
| | | | | | | | | | | | | By how old the commands are? Or how disruptive the changes are? Or just by what feels best? | |||||
* | | mod_roster: Improve readability of bare-JID check | Kim Alvefur | 2021-12-22 | 1 | -2/+2 | |
| | | | | | | | | | | | | | | Silences luacheck too All we care about is that it is a bare JID, not a full JID with a resource, since those are forbidden in rosters. | |||||
* | | mod_roster: pass correct username to roster-item-removed | Jonas Schäfer | 2021-12-22 | 2 | -1/+76 | |
| | | | | | | | | | | | | | | | | | | | | | | The other invocations use it that way, and the only listener in trunk which uses it (in mod_presence) expects it that way. Passing the username of the JID from the removed entry causes incorrect unavailable presence stanzas to be sent, allegedly kicking people off MUCs. Fixes #1121. | |||||
* | | core.certmanager: Rename preset option to 'tls_preset' | Kim Alvefur | 2021-12-22 | 2 | -1/+2 | |
| | | | | | | | | TLS good, SSL bad. | |||||
* | | core.certmanager: Add "legacy" preset for keeping previous default settings | Kim Alvefur | 2021-12-22 | 1 | -1/+3 | |
| | | | | | | | | If anyone wants that. | |||||
* | | core.certmanager: Add TLS 1.3 cipher suites to Mozilla TLS presets | Kim Alvefur | 2021-11-03 | 1 | -1/+7 | |
| | |