Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | catch IllegalArgumentException caused by invalid custom hostname | Christian Schneppe | 2017-08-01 | 1 | -7/+4 |
| | |||||
* | workaround for OpenFire: check CN first in self signed certs | Christian Schneppe | 2017-08-01 | 1 | -5/+32 |
| | | | | | | | | | | | | | | | The self signed certificates created by OpenFire (Not sure if other certs are affected as well) will crash the Java/Android TLS stack when accessing getSubjectAlternativeNames() on the the peer certificate. This usually goes unnoticed in other applications since the DefaultHostnameVerifier checkes the CN first. That however is a violation of RFC6125 section 6.4.4 which requires us to check for the existence of SAN first. This commit adds a work around where in self signed certificates we check for the CN first as well. (Avoiding the call to getSubjectAlternativeNames()) | ||||
* | more migration fixes for updating from 1.6.0 to 1.19.0 | Christian Schneppe | 2017-08-01 | 1 | -1/+1 |
| | |||||
* | add reminder to remove minidns workarounds once those are fixed | Christian Schneppe | 2017-08-01 | 1 | -0/+1 |
| | |||||
* | fixed bug in db migrations when going from <15 to something recent | Christian Schneppe | 2017-08-01 | 1 | -5/+7 |
| | |||||
* | verify with hostname in direct tls connections | Christian Schneppe | 2017-08-01 | 1 | -1/+1 |
| | |||||
* | prefer DNS servers from VPNs | Christian Schneppe | 2017-08-01 | 2 | -5/+10 |
| | |||||
* | update strings | Christian Schneppe | 2017-08-01 | 1 | -0/+3 |
| | |||||
* | throw state changing exception on failed tls only if no more connection ↵ | Christian Schneppe | 2017-08-01 | 1 | -1/+3 |
| | | | | options left | ||||
* | catch runtime exceptions from minidns | Christian Schneppe | 2017-08-01 | 1 | -4/+4 |
| | |||||
* | sync around Conversation.getLatestMessage() | Christian Schneppe | 2017-08-01 | 1 | -7/+9 |
| | |||||
* | catch all exceptions around minidns :( | Christian Schneppe | 2017-08-01 | 1 | -6/+6 |
| | |||||
* | made DNSEC hostname validation opt-in | Christian Schneppe | 2017-08-01 | 5 | -12/+33 |
| | |||||
* | work around idn short comings in minidns | Christian Schneppe | 2017-08-01 | 2 | -2/+3 |
| | |||||
* | resolve non-srv domains in resolver class as well | Christian Schneppe | 2017-08-01 | 1 | -7/+43 |
| | |||||
* | prefer ipv4 over ipv6 | Christian Schneppe | 2017-08-01 | 1 | -0/+7 |
| | |||||
* | fixed fallback to normal DNS query after DNSSEC failed | Christian Schneppe | 2017-08-01 | 1 | -3/+9 |
| | |||||
* | update datebubbles | Christian Schneppe | 2017-08-01 | 9 | -57/+104 |
| | |||||
* | allow users to send PMs in mucs w/o voice | Christian Schneppe | 2017-08-01 | 1 | -1/+3 |
| | |||||
* | set focusable=false instead of enabled=false for rooms w/o voice | Christian Schneppe | 2017-08-01 | 1 | -4/+10 |
| | |||||
* | catch state changing error when sending timeout to iq callbacks | Christian Schneppe | 2017-08-01 | 1 | -3/+7 |
| | |||||
* | do not keep files in waiting when file size exceeds http upload limit in groups | Christian Schneppe | 2017-08-01 | 1 | -0/+3 |
| | |||||
* | refactored retrieval of default preferences | Christian Schneppe | 2017-08-01 | 4 | -36/+42 |
| | |||||
* | changed strings | Christian Schneppe | 2017-08-01 | 1 | -1/+1 |
| | |||||
* | put settings defaults into resource file | Christian Schneppe | 2017-08-01 | 19 | -87/+158 |
| | |||||
* | deduplicate disco items before disco#info | Christian Schneppe | 2017-08-01 | 1 | -1/+7 |
| | |||||
* | make scan barcode icon survive rotations | Christian Schneppe | 2017-08-01 | 1 | -0/+11 |
| | |||||
* | show scan button in TrustKeys only if there is something to scan | Christian Schneppe | 2017-08-01 | 1 | -1/+24 |
| | |||||
* | add publish-options helper class | Christian Schneppe | 2017-08-01 | 2 | -0/+21 |
| | |||||
* | use DND instead of XA when phone is silent | Christian Schneppe | 2017-08-01 | 6 | -21/+24 |
| | |||||
* | revised resolver strategy | Christian Schneppe | 2017-06-27 | 1 | -3/+7 |
| | |||||
* | refactored resolver to fall back to DNS and use reliable method | Christian Schneppe | 2017-06-26 | 1 | -11/+35 |
| | |||||
* | use ResolverApi.reliable(..) | Christian Schneppe | 2017-06-26 | 1 | -31/+11 |
| | |||||
* | deduplicate notifications | Christian Schneppe | 2017-06-25 | 1 | -1/+0 |
| | |||||
* | new resolver fall back to normal dns if dnssec verfication fails | Christian Schneppe | 2017-06-25 | 1 | -9/+22 |
| | |||||
* | fixed fingerprint trust (was messed up after library upgrade) | Christian Schneppe | 2017-06-25 | 5 | -14/+19 |
| | |||||
* | fixed patterns source code url | Christian Schneppe | 2017-06-25 | 1 | -1/+2 |
| | |||||
* | changed some strings | Christian Schneppe | 2017-06-25 | 2 | -2/+2 |
| | |||||
* | Added preference to control Heads-up Notifications | Christian Schneppe | 2017-06-25 | 5 | -1/+13 |
| | |||||
* | decrease REFRESH_UI_INTERVAL | Christian Schneppe | 2017-06-24 | 1 | -1/+1 |
| | |||||
* | cleanup nameWithoutVersion() code | Christian Schneppe | 2017-06-24 | 1 | -13/+9 |
| | |||||
* | don't use version part of identity name in presence selection | Christian Schneppe | 2017-06-24 | 1 | -1/+21 |
| | |||||
* | fixed ip reporting for dns look ups | Christian Schneppe | 2017-06-24 | 2 | -3/+3 |
| | |||||
* | also check for hostname in in certs if hostname is from trusted source | Christian Schneppe | 2017-06-24 | 5 | -70/+72 |
| | |||||
* | upgrade minidns. refactored dns utils | Christian Schneppe | 2017-06-24 | 7 | -325/+274 |
| | |||||
* | offer to open website if ibb offers oob redirect | Christian Schneppe | 2017-06-24 | 5 | -10/+61 |
| | |||||
* | upgrade to signal-protocol-java in build.gradle too | Christian Schneppe | 2017-06-24 | 1 | -1/+1 |
| | |||||
* | mark message as failed after canceling ft w/o transferable | Christian Schneppe | 2017-06-24 | 1 | -0/+2 |
| | |||||
* | upgrade to signal-protocol-java | Christian Schneppe | 2017-06-24 | 8 | -135/+141 |
| | |||||
* | revised strategy for http upload read timeout | Christian Schneppe | 2017-06-24 | 1 | -1/+1 |
| |