Comments (3)
Toubledix
commented on September 10, 2024
I think it's not a mod_http_upload issue because i also have this problem with Monal but not with other Clients for iOS. It's sad that there's this error otherwise Monal would be quite nice.
from monal.
casperklein
commented on September 10, 2024
I can confirm this. I just looked for an IOS jabber client and tried Monal. Pretty good first impression. The only negative thing I noticed was this ssl issue when trying to send an image with prosody (mod_http_upload):
May 05 21:05:46 socket debug server.lua: auto-starting ssl negotiation...
May 05 21:05:46 socket debug server.lua: attempting to start tls on tcp{client}: 0x14bdab8
May 05 21:05:46 socket debug server.lua: accepted new client connection from 79.220.xxx.xxx:49448 to 10000
May 05 21:05:46 socket debug server.lua: ssl handshake error: no shared cipher
May 05 21:05:46 socket debug server.lua: closed client handler and removed socket from list
from monal.
anurodhp
commented on September 10, 2024
Interesting, thanks for the report I think this is a good clue
"ssl handshake error: no shared cipher" . I think it might be an SSL configuration on the server.
The connections are standard iOS HTTPS connections. There isn't much I can configure short of reducing the security requirements.
his might be helpful: http://useyourloaf.com/blog/app-transport-security/
the list of requirements on this page as well:
https://infinum.co/the-capsized-eight/articles/using-app-transport-security-ios9-makes-your-apps-a-little-bit-more-secure
Specifically none of the listed ciphers are available on @Mrfuyu 's server. On a mac, try
nscurl --ats-diagnostics (your server)
to see if it works on iOS and OS X.
ATS list of requirements
Here is the list of requirements from Apple docs that ATS specifies:
The server must support at least Transport Layer Security (TLS) protocol version 1.2.
Connection ciphers are limited to those that provide forward secrecy (see the list of ciphers below.)
Certificates must be signed using a SHA256 or better signature hash algorithm, with either a 2048 bit or greater RSA key or a 256 bit or greater Elliptic-Curve (ECC) key. Invalid certificates result in a hard failure and no connection.
These are the accepted ciphers:
TLSECDHEECDSAWITHAES256GCM_SHA384
TLSECDHEECDSAWITHAES128GCM_SHA256
TLSECDHEECDSAWITHAES256CBC_SHA384
TLSECDHEECDSAWITHAES256CBC_SHA
TLSECDHEECDSAWITHAES128CBC_SHA256
TLSECDHEECDSAWITHAES128CBC_SHA
TLSECDHERSAWITHAES256GCM_SHA384
TLSECDHERSAWITHAES128GCM_SHA256
TLSECDHERSAWITHAES256CBC_SHA384
TLSECDHERSAWITHAES128CBC_SHA256
TLSECDHERSAWITHAES128CBC_SHA
from monal.
Related Issues (20)
- [Bug]: Video calls: Conversations doesn't show Monal's video feed HOT 4
- [UX]: Tell user when they make a mistake in the domain part of their XMPP address HOT 1
- [Bug]: Invalid server certificate makes Monal cease to connect HOT 11
- [Bug]: Since updating MacOS, Monal crashes immediately after starting HOT 1
- [Bug]: When the contact has no published OMEMO keys, Monal sends a known unusable message HOT 4
- [Bug]: Poor visibility of username who wrote the last message shown in chat preview on left side panel when highlighted
- [Bug]: Menu-States of "Edit > Spelling & Grammar" are weirdly checked/set upon reentering a/the TextEdit field HOT 2
- [Bug]:
- [Bug]: Unable to login on ejabberd 24.02 with ldap backend HOT 6
- [Bug]: custom chat backgrounds not showing even though its set HOT 3
- [Feature]: Create dedicated password reset UI if invite link with preauth token for existing account is received
- [Feature]: Implement PIN Protection HOT 2
- [Bug]Keyboard appears automatically HOT 3
- [Bug]: Spurious MUC OMEMO alerts HOT 2
- [Bug]: Weird error message when trying to upload a file. HOT 8
- [Feature]: allow different times for `Autodelete all messages` feature
- [Feature]: allow to set autodelete times per chat
- [Feature]: Get rid of sheetDismisser and use environment
- [Feature]: Rewrite every connectionProperties.* to use connectionProperties.accountFeatures
- [Bug]: Last seen date gets stuck if contact disables it
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from monal.