Jérôme Sautret | 3 Aug 17:35 2010
Picon

[ANN] ejabberd 2.1.5 and exmpp 0.9.5 bugfix releases

Hello,

We are pleased to announce the bugfix releases ejabberd 2.1.5 and exmpp 0.9.5.

Regarding ejabberd 2.1.5:

The main changes are:
- Erlang/OTP R12 support fixed
- Erlang/OTP R14A support added
- OpenSSL 0.9.8 or higher is required
- BOSH: New optional connection attribute process-delay
- C2S: Don't ask for client certificate when using TLS
- C2S: Inform client that SSL session caching is disabled
- CTL: Fix problem when FIREWALL_WINDOW options for erl kernel were used
- CTL: Some systems delete the lock dir; in such case don't use Flock at all
- Caps: Support all the hash functions required by XEP-0115
- Config: Fix typo in --enable-transient_supervisors
- Config: New configure option: --enable-nif
- Extauth: Support parallel script running
- MUC: Allow admins to see private rooms in disco
- ODBC: Correct handling of SQL boolean types
- ODBC: Discard too old queued requests (the caller has already got a timeout)
- ODBC: Fixes wrong SQL escaping when --enable-full-xml is set
- ODBC: Use ets instead of asking supervisor in ejabberd_odbc_sup:get_pids/1
- Pubsub: Enforce disco features results
- S2S: When logging s2s out connection attempt or success, log if TLS is used
- Shared Rosters: When account is deleted, delete also member of stored rosters

Check the Release Notes for a more complete list of changes:
http://www.process-one.net/en/ejabberd/release_notes/release_note_ejabberd_2.1.5
(Continue reading)

Tomasz Sterna | 8 Aug 18:03 2010

jabberd-2.2.11 release

Next jabberd 2.2 series release is out.

Get 2.2.11 release as usual at:
http://codex.xiaoka.com/pub/jabberd2/releases/jabberd-2.2.11.tar.gz
http://codex.xiaoka.com/pub/jabberd2/releases/jabberd-2.2.11.tar.bz2

and read: http://codex.xiaoka.com/svn/jabberd2/trunk/UPGRADE

This release brings major bugfixes.

ChangeLog:
      * [cwave] ported router connection closing improvement from cwave
      * [cwave:r77] fix potential segfault in a call to xhash_putx()
      * [cwave:r72] enforce iq type
      * Fixed packet jabber:server → jabber:client namespace mangling
      * Fixed attribute namespace handling in NAD parser

For a full ChangeLog see:
http://codex.xiaoka.com/svn/jabberd2/tags/jabberd-2.2.11/ChangeLog

--

-- 
Tomasz Sterna
Instant Messaging & EDI Consultant
Open Source Developer
http://tomasz.sterna.tv/  http://www.xiaoka.com/

_______________________________________________
JAdmin mailing list
FAQ: http://www.jabber.org/discussion-lists/jadmin-faq
Forum: http://www.jabberforum.org/forumdisplay.php?f=19
(Continue reading)

Christof Meerwald | 12 Aug 20:37 2010

Re: jabberd-2.2.11 release

On Sun, 08 Aug 2010 18:03:43 +0200, Tomasz Sterna wrote:
[...]
> This release brings major bugfixes.

Unfortunately, it also includes a major breakage for IPv6 users:
https://bugs.launchpad.net/jabberd2/+bug/616472

Christof

--

-- 

http://cmeerw.org                              sip:cmeerw at cmeerw.org
mailto:cmeerw at cmeerw.org                   xmpp:cmeerw at cmeerw.org
_______________________________________________
JAdmin mailing list
FAQ: http://www.jabber.org/discussion-lists/jadmin-faq
Forum: http://www.jabberforum.org/forumdisplay.php?f=19
Info: http://mail.jabber.org/mailman/listinfo/jadmin
Unsubscribe: JAdmin-unsubscribe <at> jabber.org
_______________________________________________

Marc Olive | 20 Aug 10:47 2010

"no host available for requested domain" when conncet to starttls jabberd2


Hello,

I have a jabberd-2.2.9 server that works fine but without encryption.

I would like to encrypt the communications, but once starttls is configured I 
get the followin error:

C2S : Fri Aug 20 08:12:36 2010 c2s.c:185 no host available for requested 
domain 'jabber2.blau-xarxa.lc'
C2S : sx (error.c:79) prepared error: <stream:error 
xmlns:stream='http://etherx.jabber.org/streams'><host-unknown 
xmlns='urn:ietf:params:xml:ns:xmpp-streams'/><text 
xmlns='urn:ietf:params:xml:ns:xmpp-streams'>service requested for unknown 
domain</text></stream:error>

I've setup the SSL Certificate as explained in 
http://www.jabberdoc.org/app_sslkey.html and the CN is the FQDN:

]# openssl x509 -in /etc/jabberd/server.pem -text
Certificate:
    Data: 
        Version: 3 (0x2)
        Serial Number:
            9c:11:dc:09:dd:89:5d:fd
        Signature Algorithm: sha1WithRSAEncryption
        Issuer: C=CT, ST=Catalunya, L=Espluga, O=Blau Advisors, OU=Jabber, 
CN=jabber2.blau-xarxa.lc

jabber2.blau.xarxa.lc resolves to the correct server:
(Continue reading)

Rafał Zawadzki | 20 Aug 11:46 2010

Re: "no host available for requested domain" when conncet to starttls jabberd2

Hi Marc,

On Fri, 20 Aug 2010 10:47:53 +0200, Marc Olive <marc.olive <at> grupblau.com>
wrote:
> Hello,
> 
> I have a jabberd-2.2.9 server that works fine but without encryption.
> 
> I would like to encrypt the communications, but once starttls is
> configured I 
> get the followin error:

Can you run c2s in debug mode, write logs after connection, targz along
with config files (after puring password) and put somewhere accesible over
http? It will help to find a reason of the issue,

Fins propera,
bluszcz

--

-- 
Rafal bluszcz Zawadzki 
Django / Plone / Python architect / developer
http://dev.bluszcz.net/tech-blog
xmpp/email: bluszcz[at]bluszcz.net
_______________________________________________
JAdmin mailing list
FAQ: http://www.jabber.org/discussion-lists/jadmin-faq
Forum: http://www.jabberforum.org/forumdisplay.php?f=19
Info: http://mail.jabber.org/mailman/listinfo/jadmin
Unsubscribe: JAdmin-unsubscribe <at> jabber.org
(Continue reading)

Marc Olive | 20 Aug 13:10 2010

Re: "no host available for requested domain" when conncet to starttls jabberd2

A Divendres 20 Agost 2010 11:46:35, Rafał Zawadzki va escriure:
> Hi Marc,
> 
> Can you run c2s in debug mode, write logs after connection, targz along
> with config files (after puring password) and put somewhere accesible over
> http? It will help to find a reason of the issue,

Here you have:

http://blau.serveftp.net:8480/jabberd2.logs.tar.gz

"jabberd2.out" is the output of "jabberd -D -c /etc/jabberd2/jabberd.cfg" as 
it don't send debug information to syslog.
"jabberd2.log" are the logs catched by syslog.

This configuration uses LDAP as authentication and Postgresql  for storage.
It's intended for internal use only, hostnames are private to our network.

If I comment out the pem-file sections, the server works fine.

Thanks,

> Fins propera,
> bluszcz

--

-- 

Marc Olivé
Grup Blau

(Continue reading)

Rafał Zawadzki | 20 Aug 13:32 2010

Re: "no host available for requested domain" when conncet to starttls jabberd2

On Fri, 20 Aug 2010 13:10:09 +0200, Marc Olive <marc.olive <at> grupblau.com>
wrote:
> A Divendres 20 Agost 2010 11:46:35, Rafał Zawadzki va escriure:
>> Hi Marc,
>> 
>> Can you run c2s in debug mode, write logs after connection, targz along
>> with config files (after puring password) and put somewhere accesible
>> over
>> http? It will help to find a reason of the issue,
> 
> Here you have:
> 
> http://blau.serveftp.net:8480/jabberd2.logs.tar.gz
> 
> "jabberd2.out" is the output of "jabberd -D -c
/etc/jabberd2/jabberd.cfg"
> as 
> it don't send debug information to syslog.
> "jabberd2.log" are the logs catched by syslog.
> 
> This configuration uses LDAP as authentication and Postgresql  for
storage.
> It's intended for internal use only, hostnames are private to our
network.
> 
> If I comment out the pem-file sections, the server works fine.
> 
> Thanks,
>  
>> Fins propera,
(Continue reading)

Tomasz Sterna | 20 Aug 14:32 2010

Re: "no host available for requested domain" when conncet to starttls jabberd2

On pią, 2010-08-20 at 10:47 +0200, Marc Olive wrote: 
> To enable starttls I uncomment into c2s.xml, router.xml, sm.xml and s2s.xml 
> files the line:
> 
> <pemfile>/etc/jabberd/server.pem</pemfile>

This enables encrypted connection between server components.
Are you sure this is what you intended?

> On c2s.xml I also have:
> 
> <id
>   register-enable='false'
>   pemfile='/etc/jabberd/server.pem'
> >
>   jabber2.blau-xarxa.lc
> </id>

I would recommend: 
<id pemfile='/etc/jabberd/server.pem'>jabber2.blau-xarxa.lc</id>

I guess GSASL does not like all these unnecessary whitespace
in id CDATA.

P.S.
register-enable='false' does not work like you may think.
The value does not matter. The presence of the attribute counts.

_______________________________________________
JAdmin mailing list
(Continue reading)

Marc Olive | 20 Aug 14:43 2010

Re: "no host available for requested domain" when conncet to starttls jabberd2

A Divendres 20 Agost 2010 14:32:12, Tomasz Sterna va escriure:
> On pią, 2010-08-20 at 10:47 +0200, Marc Olive wrote:
> > To enable starttls I uncomment into c2s.xml, router.xml, sm.xml and
> > s2s.xml files the line:
> > 
> > <pemfile>/etc/jabberd/server.pem</pemfile>
> 
> This enables encrypted connection between server components.
> Are you sure this is what you intended?

It's not required, but as I can do it, I do it :-)

> > On c2s.xml I also have:
> > 
> > <id
> > 
> >   register-enable='false'
> >   pemfile='/etc/jabberd/server.pem'
> >   
> >   jabber2.blau-xarxa.lc
> > 
> > </id>
> 
> I would recommend:
> <id pemfile='/etc/jabberd/server.pem'>jabber2.blau-xarxa.lc</id>
> 
> I guess GSASL does not like all these unnecessary whitespace
> in id CDATA.

Cheers! It works!
(Continue reading)


Gmane