vanitasvitae
/
Smack
mirror of https://github.com/vanitasvitae/Smack.git
1
0
Fork 0
Code Issues Releases Wiki Activity
Smack/extensions/src/main/java/org/jivesoftware/smackx
History
Lars Noschinski 6c7296a37b Add and use IQReplyFilter (SMACK-533) 
In the absence of checks on the from address, it is possible for other
clients to fake an answer to an IQ request.

This commit adds an IQReplyFilter, which drops all packets which are not
a valid reply to an IQ request. In particular, it checks for packet id,
from address and packet type.

Most(?) places waiting for a reply to an IQ request are converted to use
the IQReplyFilter.

For a discussion of the issues, see the thread "Spoofing of iq ids and
misbehaving servers" from 2014-01 on the jdev@jabber.org mailing list
and following discussion in February and March.
 		2014-03-07 16:13:07 +01:00
..
address Make JUL Loggers final (SMACK-536) 2014-02-26 22:00:27 +01:00
attention/packet Normalize newlines to '\n' 2014-02-17 23:58:40 +01:00
bookmarks Move EntityCaps and Bookmarks API in correct package 2014-02-18 10:24:59 +01:00
bytestreams Make JUL Loggers final (SMACK-536) 2014-02-26 22:00:27 +01:00
caps Make JUL Loggers final (SMACK-536) 2014-02-26 22:00:27 +01:00
chatstates Normalize newlines to '\n' 2014-02-17 23:58:40 +01:00
commands Improve packet send and result collecting API 2014-02-18 19:39:47 +01:00
delay Normalize newlines to '\n' 2014-02-17 23:58:40 +01:00
disco Remove some deprecated code 2014-02-20 16:04:20 +01:00
filetransfer Add and use IQReplyFilter (SMACK-533) 2014-03-07 16:13:07 +01:00
forward Normalize newlines to '\n' 2014-02-17 23:58:40 +01:00
iqlast Improve packet send and result collecting API 2014-02-18 19:39:47 +01:00
iqprivate Improve packet send and result collecting API 2014-02-18 19:39:47 +01:00
iqversion/packet Activate checkstyle and add missing license headers 2014-02-17 20:09:55 +01:00
muc Use correct namespace for MUC.getAdmins() 2014-03-01 15:38:07 +01:00
nick/packet Normalize newlines to '\n' 2014-02-17 23:58:40 +01:00
offline Send request after the PacketCollector was setup 2014-02-25 22:52:07 +01:00
pep Normalize newlines to '\n' 2014-02-17 23:58:40 +01:00
ping PingManager should notify PingFailedListeners only once 2014-03-01 15:29:35 +01:00
privacy Improve packet send and result collecting API 2014-02-18 19:39:47 +01:00
pubsub Properly escape PubSub item's text (SMACK-546) 2014-02-26 22:00:27 +01:00
receipts Normalize newlines to '\n' 2014-02-17 23:58:40 +01:00
search Improve packet send and result collecting API 2014-02-18 19:39:47 +01:00
sharedgroups Improve packet send and result collecting API 2014-02-18 19:39:47 +01:00
shim Normalize newlines to '\n' 2014-02-17 23:58:40 +01:00
si Make JUL Loggers final (SMACK-536) 2014-02-26 22:00:27 +01:00
time/packet Make JUL Loggers final (SMACK-536) 2014-02-26 22:00:27 +01:00
vcardtemp Make JUL Loggers final (SMACK-536) 2014-02-26 22:00:27 +01:00
xdata Activate checkstyle and add missing license headers 2014-02-17 20:09:55 +01:00
xevent Make JUL Loggers final (SMACK-536) 2014-02-26 22:00:27 +01:00
xhtmlim Make JUL Loggers final (SMACK-536) 2014-02-26 22:00:27 +01:00
xroster Normalize newlines to '\n' 2014-02-17 23:58:40 +01:00
ExtensionsProviderInitializer.java Normalize newlines to '\n' 2014-02-17 23:58:40 +01:00
ExtensionsStartupClasses.java Reworked Smack initialization 2014-02-23 17:48:07 +01:00