mirrors/prosody
1
0
Fork 0
mirror of https://github.com/bjc/prosody.git synced 2025-04-04 05:37:39 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions
12535 commits 12 branches 101 tags 40 MiB
Commit graph

12535 commits

This branch
This branch
All branches
Author SHA1 Message Date
Matthew Wild
046b4085cb prosodyctl: check turn: Add check for private IP returned from STUN. 2022-03-05 20:34:58 +00:00
Matthew Wild
f7adea5040 prosodyctl: check turn: improve warning text to suggest issues 2022-03-05 20:34:24 +00:00
Matthew Wild
750f3a78d5 prosodyctl: check turn: fix traceback when server does not provide realm/nonce 
As coturn when installed out of the box on Debian (because auth isn't enabled?)
 2022-03-05 20:32:47 +00:00
Matthew Wild
08777eb3d6 prosodyctl: check turn: fix formatting of multiple warnings 2022-03-05 20:31:17 +00:00
Matthew Wild
c2af455ac0 prosodyctl: check turn: always show debug info even if test fails 2022-03-05 16:07:47 +00:00
Matthew Wild
2320d07021 prosodyctl: check turn: Clearer error when unable to resolve external service host 2022-03-05 16:06:39 +00:00
Matthew Wild
0e1111f892 CHANGES: Mention STUN/TURN support in 'prosodyctl check' 2022-03-05 14:46:57 +00:00
Matthew Wild
0babcb6c06 prosodyctl: check: include TURN checks by default 2022-03-05 11:53:53 +00:00
Matthew Wild
5af6db124a prosodyctl: check: Slightly improved argument handling 2022-03-05 11:36:38 +00:00
Matthew Wild
1af4939c11 prosodyctl: check turn: show relayed address(es) in verbose mode 2022-03-05 11:31:22 +00:00
Matthew Wild
fa68985f24 net.stun: Support for xor-relayed-address attribute 2022-03-05 11:30:55 +00:00
Matthew Wild
9df580f997 prosodyctl: check turn: Allow specifying port for the ping service 2022-03-05 11:15:25 +00:00
Matthew Wild
357c7e0142 prosodyctl: check turn: Add support for testing data relay with an external STUN server via --ping 2022-03-05 11:10:18 +00:00
Matthew Wild
d405c11918 net.stun: Add xor-peer-address helper 2022-03-05 11:04:25 +00:00
Matthew Wild
ac06bd8c97 net.stun: Factor out address unpack, an operation common to multiple attributes 2022-03-05 11:03:44 +00:00
Matthew Wild
6e9d71259c net.stun: Name some more attributes from TURN 2022-03-05 11:00:08 +00:00
Matthew Wild
ab77f7fcdb net.stun: Add lookup table generation helper, reduces code duplication 2022-03-05 10:59:19 +00:00
Matthew Wild
572bff0087 net.stun: Hyphenate method names for consistency 2022-03-05 10:57:47 +00:00
Matthew Wild
7b23d9d136 util.bitcompat: Add some simple tests 2022-03-04 19:48:01 +00:00
Matthew Wild
a905ccb71a util.bit53: Support for more than 2 arguments, for compat with bit32 2022-03-04 19:37:59 +00:00
Kim Alvefur
ffb37f3ef3 make: Fix build of util.struct on *BSD 2022-03-04 17:46:33 +01:00
Matthew Wild
8eadf174b4 net.stun: tests: Remove stray print() from debugging 2022-03-04 16:46:47 +00:00
Matthew Wild
b47c7951d5 Merge config-updates+check-turn from timber 2022-03-04 16:33:41 +00:00
Matthew Wild
a6265e45a0 net.stun: Add tests for serialization/deserialization 2022-03-04 16:13:05 +00:00
Kim Alvefur
7579bee6bb net.stun: Use util.bitcompat to deal with bit module variances across Lua versions 2022-03-04 16:58:28 +01:00
Kim Alvefur
1f257ecbb4 net.stun: Use util.strbitop 
Improves performance since the whole procedure is done in C
 2022-03-04 16:55:32 +01:00
Matthew Wild
b6bf4788aa prosodyctl: check dns: Allow admin to specify undiscoverable external IPs in config 2022-03-02 16:12:28 +00:00
Matthew Wild
79d9ce56ac prosodyctl: check dns: List discovered addresses for diagnostic purposes 
It is very common to get the "unknown address" warning with this command, but
people do not always understand it, or know how to debug it. Now we clearly
show the addresses that prosodyctl discovered.
 2022-03-02 16:02:42 +00:00
Matthew Wild
7198c65a15 util.prosodyctl: check: warn about unreferenced components, suggest disco_items 2022-03-02 15:45:24 +00:00
Matthew Wild
0fe2f4a527 util.prosodyctl: Warn about enabled public registration in 'check config' 2022-03-02 15:22:12 +00:00
Kim Alvefur
af95bb77e6 util.poll: Add support for the poll() API 
Might be better than select(), more portable than epoll.
 2022-02-23 20:31:03 +01:00
Kim Alvefur
04aa101da3 util.poll: Expose API (epoll or select) used 
Could he handy to know for debugging or decisions
 2022-02-27 14:36:43 +01:00
Kim Alvefur
22d734e305 util.poll: Restructure to make adding additional system APIs easier 2022-02-23 20:30:22 +01:00
Kim Alvefur
7f254b0e72 make: Split up install targets to allow different subset 
The prosody-trunk nightly packages currently use the Debian dh-lua
framework to install core/, net/ and util/ into Lua-versioned directory
trees, while plugins and executables should still be installed like
before.
 2022-02-13 16:53:56 +01:00
Kim Alvefur
c460117e3c core.portmanager: Fix traceback on attempt to get non-existent service 
If there's no such interface:port then `data` is nil and `data.service`
errors.
 2022-02-22 13:41:05 +01:00
Kim Alvefur
36512eca29 mod_c2s,mod_s2s: Fix error on shutdown (Thanks Martin) 
Since there are two calls to done() that can happen, if the timing is
right (or wrong) both can happen, which previously triggered an error.
 2022-02-22 14:17:27 +01:00
Kim Alvefur
ac06985604 util.async: Optionally allow too many 'done' callbacks 
Sometimes, like in mod_c2s and mod_s2s during shutdown, all you want is
to wait for the first done() and not complicate things.
 2022-02-22 14:17:10 +01:00
Kim Alvefur
1d20ec63e6 mod_c2s,mod_s2s: Wrap callback to improve tracebacks 
Should make traces point here instead of timer dispatch, making
debugging easier
 2022-02-22 12:35:31 +01:00
Kim Alvefur
e725335ed3 mod_carbons: Allow plugging into decision of whether to carbon-copy 
Similar procedure as mod_csi_simple and mod_mam
 2022-02-21 11:24:58 +01:00
Matthew Wild
6bd9bed561 Added tag 0.11.13 for changeset ebeb4d959fb3 2022-01-24 13:58:04 +00:00
Kim Alvefur
785d327308 util.xml: Deduplicate handlers for restricted XML 
Makes the code more like util.xmppstream, allowing easier comparisons if
we ever need to apply fixes in the future.
 2022-01-20 10:51:46 +01:00
Kim Alvefur
d17619344d util.xml: Break reference to help the GC (fix #1711) 
LuaExpat uses a registry reference to track handlers, which makes
it so that an upvalue like this creates a reference loop that keeps the
parser and its handlers from being garbage collected. The same issue has
affected util.xmppstream in the past.

Code for checking:

	local xml_parse = require"util.xml".parse;
	for i = 1, 10000 do xml_parse("<root/>") end
	collectgarbage(); collectgarbage();
	print(collectgarbage("count"), "KiB");

A future release of LuaExpat may fix the underlying issue there.
 2022-01-20 09:57:20 +01:00
Matthew Wild
695fb9b8fb Added tag 0.11.12 for changeset 783056b4e448 2022-01-13 12:18:49 +00:00
Jonas Schäfer
23a43df6fb util.xml: Do not allow doctypes, comments or processing instructions 
Yes. This is as bad as it sounds. CVE pending.

In Prosody itself, this only affects mod_websocket, which uses util.xml
to parse the <open/> frame, thus allowing unauthenticated remote DoS
using Billion Laughs. However, third-party modules using util.xml may
also be affected by this.

This commit installs handlers which disallow the use of doctype
declarations and processing instructions without any escape hatch. It,
by default, also introduces such a handler for comments, however, there
is a way to enable comments nontheless.

This is because util.xml is used to parse human-facing data, where
comments are generally a desirable feature, and also because comments
are generally harmless.
 2022-01-10 18:23:54 +01:00
Kim Alvefur
e812ce9b4a Tag 0.11.11 2021-12-20 16:24:52 +01:00
Kim Alvefur
58b97fd7af mod_mam: Fix a comment 
This is the noop that gets replaced later
 2021-12-11 18:01:04 +01:00
Kim Alvefur
84ef8a73eb mod_mam: Allow plugging into archive decision 
Similar procedure as mod_csi_simple
 2021-12-10 22:37:32 +01:00
Kim Alvefur
dd1e42f499 core.certmanager: Ensure key exists for fullchain 
Since 5cd075ed4fd3 any file matching "fullchain" would be considered for
use.

Dehydrated stores fullchain certs in e.g, fullchain-1641171024.pem and a
symlink fullchain.pem pointing at the latest one. However the current
rule for finding a corresponding private key would try
privkey-1641171024.pem in the same directory, which may not exist.
 2022-02-21 08:54:39 +01:00
Kim Alvefur
0e6391e736 mod_admin_shell: Use a table to show help sections 
Because tables make everything better and more readable!
 2022-02-20 00:24:18 +01:00
Kim Alvefur
6207ed871c CHANGES: Mention graceful shutdown 2022-02-18 23:20:24 +01:00