Tigase Forge
Dashboards
Projects
Pull Requests
Issues
Builds
Packages
Code Search
jaxmpp
Code
Pull Requests
Issues
List
Boards
Iterations
Builds
Statistics
Child Projects
OneDev 11.5.2
Documentation Support & Bug Report RESTful API Incompatibilities License Agreement Check Update
Projects tigase _libraries jaxmpp Issues #11
Fix SCRAM-*-PLUS mechanism implementation (#11)
Andrzej Wójcik (Tigase) opened 2 years ago

During working on #server-1335, I've found out that here is an issue with SCRAM-*-PLUS mechanism implementation in Jaxmpp-J2SE. The issue is caused by retrieving invalid algorithm name from server certificate which is then used for calculation of a hash used for tls-server-end-point channel binding data.
Andrzej Wójcik (Tigase) commented 2 years ago

I've added support for XEP-0440 to make sure that SCRAM-*-PLUS mechanisms are used properly (when server supports channel binding and client has data for it) and fixed generation of tls-server-end-point binding data.

@bmalkow Please review my changes and fixes.
Bartosz Małkowski commented 2 years ago

Looks good.
issue 1 of 1
Type
Task
Priority
Normal
Assignee
Bartosz Małkowski
Related
Issue Votes (0)
Login to vote
Watchers (0)
Reference
tigase/_libraries/jaxmpp#11
Please wait...
Page is in error, reload to recover