Projects tigase _server server-core Issues #1508
SCRAM *-PLUS mechanisms unavailable after StartTLS (#1508)
Andrzej Wójcik (Tigase) opened 1 year ago

We have enabled SCRAM *-PLUS mechanisms that will allow us to support Channel Binding. They work fine are available when DirectTLS connection is used, but they are unavailable when StartTLS connection is being used.

Andrzej Wójcik (Tigase) commented 1 year ago

This issue was reported by @bmalkow while working on channel bindings for Halcyon.

Andrzej Wójcik (Tigase) added "Related" tigase-private/halcyon#84 1 year ago
Andrzej Wójcik (Tigase) added "Related" tigase-private/halcyon#82 1 year ago
Andrzej Wójcik (Tigase) commented 1 year ago

The issue was caused by during adding support for TLS 1.3, what caused refactoring and changing places when method notifying SessionManager about connection encryption was called. I've added call for this method in places that should handle this for StartTLS and verified that with this change Tigase XMPP Server offers *-PLUS mechanisms for StartTLS and DirectTLS connections.

Andrzej Wójcik (Tigase) commented 1 year ago

@bmalkow Please verify if this works as it should for you.

Bartosz Małkowski commented 1 year ago

I checked 8.4.0-SNAPSHOT-b12407. tls-server-end-point is provided by server and it works as expected.

Bartosz Małkowski changed state to 'Closed' 1 year ago
Previous Value Current Value
Open
Closed
Referenced from commit 1 year ago
Bartosz Małkowski added "Related" #1509 1 year ago
wojciech.kapcia@tigase.net batch edited 7 months ago
Name Previous Value Current Value
Iterations
empty
tigase-server-8.4.0
wojciech.kapcia@tigase.net batch edited 7 months ago
Name Previous Value Current Value
Version
8.4.0
tigase-server-8.4.0
Referenced from commit 1 month ago
Referenced from commit 1 month ago
Merge branch 'master' into jdk7
# By Eric Dziewa (8) and others
# Via Andrzej Wójcik (1) and Eric Dziewa (1)
* master:
  Fix #1518 Message carbon does not work with ACS
  change MySQL cluster table fields types to correctly handle data, fix #1501: JDBC exception in tigase cluster
  avoid generating ChangeLog under windows; include tigase-acs in distribution archives
  prepare for next development iteration
  prepare for next development iteration
  Update licence dependency to beta3.
  Fix a dependency.
  Update xmltools dependency.
  Update dependencies.
  Update dependencies to beta3 versions.
  Update dependencies to beta3 versions.
  include missing ACS depencency in distribution package; fix #1509: tigase-acs,jar is not installed to jars directory
  remove pack200 as it breaks package installation when conditions are used, fix #1511: HTTP API component breaks the installer
  include resources (scripts, config files, database schemas) from dependencies (HTTP API, MUC, socks5)
  add team members, fix Task #1510: Installer fixes
  fix checking for OSGi mode (#1508 - Cannot find TIGASE_HOME after installation)
Andrzej Wójcik committed 1 decade ago
issue 1 of 1
Type
Bug
Priority
Normal
Assignee
Version
tigase-server-8.4.0
Server Version
8.4.0
Target Release
1.0
Sprints
n/a
Customer
n/a
Iterations
Issue Votes (0)
Watchers (4)
Reference
tigase/_server/server-core#1508
Please wait...
Page is in error, reload to recover