aboutsummaryrefslogtreecommitdiffstats
path: root/plugins
Commit message (Collapse)AuthorAgeFilesLines
* mod_auth_internal_hashed: Up iteration count to 10000 per XEP-0438Kim Alvefur2021-12-261-1/+1
| | | | | | | | More security for less pain than switching to SCRAM-SHA-256 The XEP will likely be change to reference the RFC that will probably come from draft-ietf-kitten-password-storage once it is ready, and then we should update to follow that.
* mod_auth_internal_hashed: Make SCRAM iteration count configurableKim Alvefur2021-12-261-1/+1
|
* mod_admin_shell: Log creation of incoming s2s connections during pingKim Alvefur2021-12-271-0/+2
| | | | | The 's2s-created' fires just after accepting the TCP connection, before the addresses are known, so this can have some false positives.
* mod_smacks: sprinkle some metrics on itJonas Schäfer2021-12-271-2/+45
|
* mod_admin_shell: Print s2s related events while waiting for pingKim Alvefur2021-12-261-1/+28
| | | | Gives a better idea of what's taking time.
* mod_tombstones: Add some future TODOsKim Alvefur2021-12-231-0/+4
|
* mod_tombstones: Remember deleted accounts #1307Kim Alvefur2021-12-231-0/+75
| | | | | | | | | Presence subscriptions are normally revoked on account deletion, which informs the contact. Sometimes this notification gets lost e.g. due to s2s problems. The accounts JID may also be present e.g. in MUC affiliations, chat group member lists, pubsub subscriptions or other systems. These may grant privileges which would fall to someone who creates the same account again, which this module is meant to prevent.
* mod_smacks: Compact code using new stanza APIKim Alvefur2021-12-221-9/+2
|
* mod_http: Clean up redirects handlers for wildcard on http module unloadKim Alvefur2021-12-221-0/+7
| | | | | These would previously be left behind. Probably mostly harmless except for clogging up the `debug:events()` listing in the console.
* mod_smacks: Use more compact resumption tokensKim Alvefur2021-12-221-2/+2
| | | | | | UUID seems like insane overkill for something user-scoped and not security-sensitive. All that is needed is to avoid conflicts among what should be relatively long-lived sessions.
* util.id: Adjust entropy levels, with rationalesKim Alvefur2021-12-021-1/+1
| | | | | Modules using ids for logging should not need the now pretty large medium one.
* MUC: Switch ID algorithm for IQ relay (fixes #1266, #1435)Kim Alvefur2021-10-051-3/+5
|
* MUC: Add method for getting the occupant id salt to allow reuseKim Alvefur2021-10-052-5/+12
|
* mod_roster: Improve readability of bare-JID checkKim Alvefur2021-12-221-2/+2
| | | | | | | Silences luacheck too All we care about is that it is a bare JID, not a full JID with a resource, since those are forbidden in rosters.
* mod_roster: pass correct username to roster-item-removedJonas Schäfer2021-12-221-1/+1
| | | | | | | | | | | The other invocations use it that way, and the only listener in trunk which uses it (in mod_presence) expects it that way. Passing the username of the JID from the removed entry causes incorrect unavailable presence stanzas to be sent, allegedly kicking people off MUCs. Fixes #1121.
* Merge 0.11->trunkKim Alvefur2021-12-201-10/+52
|\
| * mod_pep: Wipe pubsub service on user deletion0.11.11Kim Alvefur2021-11-041-0/+15
| | | | | | | | | | | | | | Data is already wiped from storage, but this ensures everything is properly unsubscribed, possibly with notifications etc. Clears recipient cache as well, since it is no longer relevant.
| * mod_pep: Prevent creation of services for non-existent usersKim Alvefur2021-11-041-0/+15
| | | | | | | | | | Using a dedicated service should give identical behavior, except for a possible timing difference in the user existence lookup.
| * mod_pep: Limit possible growth of node subscription infoKim Alvefur2021-11-041-2/+5
| |
| * mod_pep: Limit possible growth of number of pubsub servicesKim Alvefur2021-11-041-2/+16
| |
| * mod_pep: Don't pass pubsub services across reloadsKim Alvefur2021-11-041-6/+0
| | | | | | | | Ensures configuration is refreshed, releases some memory.
| * mod_c2s: Indicate stream secure state in error text when no stream features ↵Matthew Wild2021-07-061-1/+4
| | | | | | | | to offer
* | mod_storage_xep0227: Replace custom tag-removal helpers with :remove_children()Matthew Wild2021-12-201-27/+9
| |
* | mod_smacks: Add future todoKim Alvefur2021-12-201-0/+1
| | | | | | | | | | The vision: All the queueing and counting and session replacement logic in core, with mod_smacks only hooking this up to the XEP-0198 protocol.
* | mod_smacks: Only include max resumption time when resumption is activatedKim Alvefur2021-12-201-1/+3
| |
* | mod_smacks: Fix typosKim Alvefur2021-12-201-2/+2
| |
* | mod_smacks: Fix error on shutdown if loaded on ComponentKim Alvefur2021-12-201-0/+4
| |
* | mod_smacks: Fix typo (thanks codespell)Kim Alvefur2021-12-191-1/+1
| |
* | mod_smacks: Avoid log noise when a non-smacks session is closedKim Alvefur2021-12-191-0/+1
| |
* | mod_smacks: Check if session was really sleeping before logging messageKim Alvefur2021-12-181-1/+1
| | | | | | | | | | | | It could have been resumed without going into hibernation first, i.e. when the client notices the disconnect before the server, or if it switches networks etc.
* | mod_smacks: Fix traceback when bouncing unacked stanzasKim Alvefur2021-12-181-0/+1
| | | | | | | | | | Errors sent from handle_unacked_stanzas() should usually not be sent to the session itself, but if one is, it should not be queued.
* | mod_smacks: Fix duplicate sleep behavior when replacing a sessionKim Alvefur2021-12-181-0/+1
| | | | | | | | | | Fixes that an extra watchdog was set, leaking the previous one, which went on to do behave as if the session times out.
* | mod_c2s: Fire pre-closing event regardless of connected stateKim Alvefur2021-12-181-3/+3
| | | | | | | | | | | | | | | | With mod_smacks, a session can outlive the connection, so whether the event is fired should not hinge on whether the session is connected or not. Helps mod_smacks remove some state.
* | mod_smacks: Remove references to connection on hibernationKim Alvefur2021-12-181-1/+4
| | | | | | | | | | | | Still having the connection on the session may cause unintentional behavior, such as the session being treated as if connected, even tho the connection has been closed.
* | mod_smacks: Add more loggingKim Alvefur2021-12-181-0/+9
| |
* | mod_smacks: Remove useless delay in requesting ack on resumptionKim Alvefur2021-12-171-23/+1
| | | | | | | | Was this the last place using the delay? Nice!
* | mod_smacks: Fix to not wait for acks from before a resumptionKim Alvefur2021-12-171-0/+1
| | | | | | | | | | Otherwise it can get stuck waiting indefinitely for an ack that made it notice the connection was stale.
* | mod_smacks: Split log messages for when an old session exists in storageKim Alvefur2021-12-171-1/+2
| | | | | | | | Non-existent did not seem entirely accurate for this case
* | mod_smacks: Bounce unacked stanzas on shutdownKim Alvefur2021-12-171-1/+11
| |
* | mod_smacks: Preserve counter values on shutdownKim Alvefur2021-12-171-0/+22
| |
* | mod_smacks: Simplify access to local user sessionsKim Alvefur2021-12-171-2/+2
| | | | | | | | | | Less to type if per chance the next commit also wants to access sessions.
* | mod_smacks: Cancel hibernation when session is closedKim Alvefur2021-12-161-0/+6
| | | | | | | | | | | | To ensure that if a session is replaced after it has gone into hibernation, it does not come back and cause trouble for the new session (see previous commit).
* | mod_smacks: Skip hibernation logic if session was closed or replacedKim Alvefur2021-12-161-0/+4
| | | | | | | | | | | | | | | | | | | | | | | | The resumption_token is removed when the session is closed via the pre-session-close event, signaling that it cannot be resumed, and therefore no hibernation timeout logic should be invoked. Fixes that if a session somehow is replaced by a new one using the same resource (which is the common behavior), the old session would still be around until it times out at which point it sends `<presence type="unavailable"/>` which would look as if it came from the new session, ie appearing offline to everyone including MUCs.
* | mod_smacks: Fix indentationKim Alvefur2021-12-161-4/+4
| | | | | | | | Meld keeps messing up indentation when I merge and rebase...
* | mod_smacks: Stop stanzas from being queued on hibernation timeoutKim Alvefur2021-12-161-0/+1
| | | | | | | | | | | | | | | | | | | | This overloads that flag a bit, but it has the intended effect of stopping outgoing_stanza_filter() from queueing stanzas. Fixes a traceback because of the queue having been removed somewhere around here, since it is no longer needed. Thanks Martin for reporting
* | mod_smacks: Limit queue memory consumption using new utilKim Alvefur2021-12-142-52/+73
| | | | | | | | | | | | | | | | | | This brings back the queue size limit that was once added, then removed because destroying the session when reaching the limit was not great. Instead, the queue wraps and overwrites the oldest unacked stanza on the assumption that it will probably be acked anyway and thus does not need to be delivered. If those discarded stanzas turn out to be needed on resumption then the resumption fails.
* | mod_smacks: Set a watchdog to watch sleeping sessionsKim Alvefur2021-12-021-59/+27
| | | | | | | | | | Extending the timeout by poking the watchdog, and letting it go on resumption, should be much better than the previous method.
* | mod_smacks: Switch storage for tracking resumption tokensKim Alvefur2021-12-021-40/+5
| | | | | | | | | | | | | | | | All that was a complicated way to limit the number of resumable sessions. Let's control resource usage some other way. This leaves the essence of mapping resumption tokens to live sessions. This keeps resumption state across reloads.
* | mod_smacks: Clear resumption token from persistent storage on resumptionKim Alvefur2021-12-011-0/+1
| |
* | mod_smacks: Persist old counter values to storageKim Alvefur2021-12-011-7/+5
| | | | | | | | | | | | | | | | | | This allows clients that try to resume a session after a server restart to at least know which of their pending outgoing stanzas were received and which need to be re-sent. This removes the limit on how many of those counters are kept, which should be fixed eventually.