Yann Leboulanger
94644a2ee3
ability to connect to a host that require a PCKS certificate that is encrypted.
2011-07-26 22:44:11 +02:00
Yann Leboulanger
3424883913
ability to see certificate information when fingerprint changes. see #3998
2011-04-18 22:36:06 +02:00
Yann Leboulanger
04418850f9
hardcode the value of OpenSSL.SSL.OP_NO_TICKET for old version of openssl. Fixes #5689
2011-01-25 11:54:28 +01:00
Yann Leboulanger
fe48933d5f
fix BOSH connection over SSL. Fixes #5710
2010-04-24 12:31:19 +02:00
Yann Leboulanger
9081b465ed
better var name.
2010-04-24 09:06:07 +02:00
Alexander Cherniuk
5d56decdc4
A fix for the SASL EXTERNAL. Thanks to Calmar. Fixes #5704
2010-04-19 13:28:25 +03:00
Yann Leboulanger
d44c30373f
[Calamar and me]sasl-external c2s authentication. Fixes #5704
2010-04-18 20:43:40 +02:00
Yann Leboulanger
7b0c54a606
fix connection to openfire server using TLS. Fixes #5530
2010-02-24 21:32:35 +01:00
Éric Araujo
fedd7dc8e2
convert tabs to spaces in source code thanks to reindent.py
...
holy diff batman!
2010-02-08 15:08:40 +01:00
Alexander Cherniuk
4d904560a7
Last portion of doc-string and formatting refactoring
2009-11-26 18:12:52 +02:00
Yann Leboulanger
4a469d2ae6
add another way to get errno from exception
2009-07-13 22:14:24 +02:00
Yann Leboulanger
c4a720aa89
handle ZeroReturnError raised by PyOpenSSL
2009-07-13 17:47:20 +02:00
Jonathan Schleifer
086d031374
Remove spaces at EOL.
2009-06-15 21:00:14 +02:00
Yann Leboulanger
8b61a2050f
don't fail when there is an unreadable certificate file.
2009-01-24 12:45:57 +00:00
Yann Leboulanger
ea881946f4
don't fail when we fail to open a certificate file. Fixes #4722
2009-01-23 09:24:17 +00:00
Yann Leboulanger
674924889f
some server require SSLv2. Fixes #4672
2009-01-22 20:39:31 +00:00
Yann Leboulanger
48d4199237
[dwd] re-enable TLS. Fixes #4674
2009-01-17 12:43:13 +00:00
Yann Leboulanger
77b5c85f18
load certificates from /etc/ssl/certs too. Fixes #4633
2009-01-15 17:54:28 +00:00
Stephan Erb
bc3445881f
Rename client.py to plugin.py, as all client logic has already been moved to client_nb.py
...
Introduce a get_instance factory method for all plugins and other xmpp related classes. This will help us to decouple plugs in order to make them testable.
2009-01-09 00:49:58 +00:00
Stephan Erb
10449444dd
Switch to SSL version 3 as the channel encryption protocol. As of http://docs.python.org/dev/library/ssl.html this is the maximally compatible SSL variant.
2009-01-08 16:14:26 +00:00
Stephan Erb
233848aec0
Random bits in xmpp. Cosmetic only.
2008-12-27 11:45:58 +00:00
Stephan Erb
1e00674505
Coding standards and documentation improvements in tls_nb.py
2008-12-24 11:10:58 +00:00
Yann Leboulanger
b317ffcdae
merge BOSH branch to trunk
2008-12-15 21:06:08 +00:00
tomk
acdf4ff143
improved disconnect handling, added comments, fixed minor bugs
2008-08-17 22:57:48 +00:00
tomk
a76c173816
- improved SSL connections with BOSH - SSL over HTTP proxy is possible now,
...
Gajim will do HTTP CONNECT on proxy to reach the BOSH Conn manager and try
to estabilish TLS (same as what firefox do when approaching HTTPS server via
proxy)
- moved proxy-connecting code to xmpp/proxy_connectors.py
- debugged SOCKS5 proxy code
- tested with Tigase server
2008-08-14 21:48:43 +00:00
tomk
4504861084
fixed handling of SSL errors
2008-08-09 12:16:42 +00:00
tomk
cbfa9d97df
- TLS classes refactored - NonBlockingTLS is now plugged to NonBlockingTCP and
...
derived (was plugged to NonBlockingClient which made it unusable for BOSH)
- Fixed HTTP CONNECT proxy socket
- Implemented workaround for the bug with insecure-connection warning dialog
(unfortunately, this is not over - I just forbid the transport to send
BOSH empty bodies until auth module is plugged, which is wrong and will
break if user will wait more than "inactivity" (usualy thirty) seconds
before clicking the dialog.
This workaround works with ejb and opf, and also breaks connection with
both of them if delay is too long.
- Implemented basic TLS over BOSH. It works only with OPF and poorly.
2008-08-05 23:52:35 +00:00
tomk
a58618c843
persistent HTTP connections in BOSH roughly implemented, added hack for openfire incapability of after-SASL-stream-restart-response in BOSH, changed doubles quotes to single
2008-07-18 00:34:49 +00:00
tomk
952e4a1569
moved bosh code from client_nb.py to bosh.py, replaced debug logging with debug.py by logging in whole xmpppy (debug.py is now unused)
2008-07-02 23:29:10 +00:00
tomk
937bb01a69
moved TLS and SSL classes from transports_nb to new tls_nb module, fixed HTTP CONNECT proxy transport
2008-06-30 23:02:12 +00:00