SCRAM *-PLUS mechanisms unavailable after StartTLS (#1508)

Activities

Andrzej Wójcik (Tigase) opened 1 year ago

We have enabled SCRAM *-PLUS mechanisms that will allow us to support Channel Binding. They work fine are available when DirectTLS connection is used, but they are unavailable when StartTLS connection is being used.

Andrzej Wójcik (Tigase) commented 1 year ago

This issue was reported by @bmalkow while working on channel bindings for Halcyon.

Andrzej Wójcik (Tigase) added "Related" tigase-private/halcyon#84 1 year ago

Andrzej Wójcik (Tigase) added "Related" tigase-private/halcyon#82 1 year ago

Andrzej Wójcik (Tigase) commented 1 year ago

The issue was caused by during adding support for TLS 1.3, what caused refactoring and changing places when method notifying SessionManager about connection encryption was called. I've added call for this method in places that should handle this for StartTLS and verified that with this change Tigase XMPP Server offers *-PLUS mechanisms for StartTLS and DirectTLS connections.

Andrzej Wójcik (Tigase) commented 1 year ago

@bmalkow Please verify if this works as it should for you.

Bartosz Małkowski commented 1 year ago

I checked 8.4.0-SNAPSHOT-b12407. tls-server-end-point is provided by server and it works as expected.

Bartosz Małkowski changed state to 'Closed' 1 year ago

Previous Value	Current Value
Open	Closed

Referenced from commit 1 year ago

Fixed issue with unavailable SCRAM *-PLUS mechanisms when using StartTLS for establishing connection encryption #1508

Andrzej Wójcik (Tigase) committed 1 year ago

63f519f0

Bartosz Małkowski added "Related" #1509 1 year ago

wojciech.kapcia@tigase.net batch edited 6 months ago

Name	Previous Value	Current Value
Iterations	empty	tigase-server-8.4.0

wojciech.kapcia@tigase.net batch edited 6 months ago

Name	Previous Value	Current Value
Version	8.4.0	tigase-server-8.4.0

Referenced from commit 5 days ago

fix checking for OSGi mode (#1508 - Cannot find TIGASE_HOME after installation)

Wojciech Kapcia committed 1 decade ago

4d34d8d2

Referenced from commit 5 days ago

Merge branch 'master' into jdk7

# By Eric Dziewa (8) and others
# Via Andrzej Wójcik (1) and Eric Dziewa (1)
* master:
  Fix #1518 Message carbon does not work with ACS
  change MySQL cluster table fields types to correctly handle data, fix #1501: JDBC exception in tigase cluster
  avoid generating ChangeLog under windows; include tigase-acs in distribution archives
  prepare for next development iteration
  prepare for next development iteration
  Update licence dependency to beta3.
  Fix a dependency.
  Update xmltools dependency.
  Update dependencies.
  Update dependencies to beta3 versions.
  Update dependencies to beta3 versions.
  include missing ACS depencency in distribution package; fix #1509: tigase-acs,jar is not installed to jars directory
  remove pack200 as it breaks package installation when conditions are used, fix #1511: HTTP API component breaks the installer
  include resources (scripts, config files, database schemas) from dependencies (HTTP API, MUC, socks5)
  add team members, fix Task #1510: Installer fixes
  fix checking for OSGi mode (#1508 - Cannot find TIGASE_HOME after installation)

Andrzej Wójcik committed 1 decade ago

bbbd8d6a

Type	Bug
Priority	Normal
Assignee	Andrzej Wójcik (Tigase)
Version	tigase-server-8.4.0
Server Version	8.4.0
Target Release	1.0
Sprints	n/a
Customer	n/a

Iterations

tigase-server-8.4.0 Closed

Issue Votes (0)

Watchers (4)

Reference

tigase/_server/server-core#1508