Support for omemo

[yelloff]

That would be nice.

[ibauersachs]

What is that?

[ibauersachs]

What is that?

[fippo]

@ibauersachs: an e2e encryption thing:
http://xmpp.org/extensions/inbox/omemo.html -- see also some recent discussion on standards@xmpp.org

[fippo]

@ibauersachs: an e2e encryption thing:
http://xmpp.org/extensions/inbox/omemo.html -- see also some recent discussion on standards@xmpp.org

[jitsi-developers]

This is extraordinary weird. I just viewed this article 6 hours ago and
suddenly this e-mail came !

https://xmpp.org/2015/12/xmpp-at-the-end-of-the-google-summer-of-code-2015/
(2nd paragraph, Andreas Straub)

On 12/25/2015 09:57 PM, Ingo Bauersachs wrote:

What is that?

—
Reply to this email directly or view it on GitHub
#199 (comment).

---

dev mailing list
dev@jitsi.org
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/dev

/Regards/,
/Ahmad/

[jitsi-developers]

This is extraordinary weird. I just viewed this article 6 hours ago and
suddenly this e-mail came !

https://xmpp.org/2015/12/xmpp-at-the-end-of-the-google-summer-of-code-2015/
(2nd paragraph, Andreas Straub)

On 12/25/2015 09:57 PM, Ingo Bauersachs wrote:

What is that?

—
Reply to this email directly or view it on GitHub
#199 (comment).

---

dev mailing list
dev@jitsi.org
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/dev

/Regards/,
/Ahmad/

[yelloff]

I was looking for an xmpp based alternative to Text Secure/Signal. And found this blog:
http://www.titus-stahl.de/blog/2015/09/15/how-to-get-secure-decentralized-chat-working-with-xmpp-both-on-mobile-and-desktop/

[yelloff]

I was looking for an xmpp based alternative to Text Secure/Signal. And found this blog:
http://www.titus-stahl.de/blog/2015/09/15/how-to-get-secure-decentralized-chat-working-with-xmpp-both-on-mobile-and-desktop/

[lovetox]

this would be great, there is no desktop client that supports OMEMO
normal OTR from desktop -> phone is not the best UX.

also, all the desktop clients from whatsapp and singal need a phonenumber and a smartphone to activate an account -> horrible.

[lovetox]

this would be great, there is no desktop client that supports OMEMO
normal OTR from desktop -> phone is not the best UX.

also, all the desktop clients from whatsapp and singal need a phonenumber and a smartphone to activate an account -> horrible.

[Evi1M4chine]

I just came over from Freedesktop’s Bugzilla for Telepathy’s XMPP component (gabble) and while they also have a bug for it, the KDE developers downstream don’t expect much from them. So Jitsi is probably our only hope for now.

(If it would enable chatting with Signal/TextSecure/Axolotl users, that would be the single greatest thing for desktop messaging as of now.)

[Evi1M4chine]

I just came over from Freedesktop’s Bugzilla for Telepathy’s XMPP component (gabble) and while they also have a bug for it, the KDE developers downstream don’t expect much from them. So Jitsi is probably our only hope for now.

(If it would enable chatting with Signal/TextSecure/Axolotl users, that would be the single greatest thing for desktop messaging as of now.)

[ibauersachs]

This would need to come from the community, we simply don't have the resources to develop this.

[ibauersachs]

This would need to come from the community, we simply don't have the resources to develop this.

[lovetox]

there is work on a Gajim Plugin https://github.com/kalkin/gajim-omemo
it already works for me.

@Evi1M4chine how do you think this would enable chatting with Signal or TextSecure Apps?
even if it is the same tech behind it, the companys behind it would have to allow it, if this was possible i think many people already would have made desktop apps for it.

Further does Signal rely on the telephonenumber (which is for me the biggest failure of all the new messaging apps) as kind of JID. i dont see it happen that they would allow to add people to their network based on an normal JID.

[lovetox]

there is work on a Gajim Plugin https://github.com/kalkin/gajim-omemo
it already works for me.

@Evi1M4chine how do you think this would enable chatting with Signal or TextSecure Apps?
even if it is the same tech behind it, the companys behind it would have to allow it, if this was possible i think many people already would have made desktop apps for it.

Further does Signal rely on the telephonenumber (which is for me the biggest failure of all the new messaging apps) as kind of JID. i dont see it happen that they would allow to add people to their network based on an normal JID.

[improti]

The implementation contained in https://github.com/siacs/Conversations could also be portable. It's Java on Android, but I got no clue about the libraries used. Any chance to get the developers of these projects to make a common backend and provide their distinct UIs on top of that or something? There was a Jitsi on Android initiative anyways, right? The UI and design principles of Conversations make a really good impression, if you don't know it maybe take a look. It's chat-only though, i.e. without VoIP. Pictures in chats are a killer-feature, imho. Getting that and the OMEMO goodies working between the two (no matter if with common backend or not) would be really awesome.

[improti]

The implementation contained in https://github.com/siacs/Conversations could also be portable. It's Java on Android, but I got no clue about the libraries used. Any chance to get the developers of these projects to make a common backend and provide their distinct UIs on top of that or something? There was a Jitsi on Android initiative anyways, right? The UI and design principles of Conversations make a really good impression, if you don't know it maybe take a look. It's chat-only though, i.e. without VoIP. Pictures in chats are a killer-feature, imho. Getting that and the OMEMO goodies working between the two (no matter if with common backend or not) would be really awesome.

[Evi1M4chine]

@lovetox:

Why would you think they couldn’t? The protocol is the same, so it’s only a matter of picking the same server to connect to. But you don’t even have to do that, since Signal’s server, being just an XMPP one with Axolotl/Omemo added in, supports federation (which is already used, e.g. with CyanogenMod’s builtin SMS/messaging app).
I also made a Signal fork this morning. Other than warnings about chat partners having different keys there were no problems. So obviously the “companies* behind it” don’t prevent it.

---

• Which I assume are not criminals/psychopaths and hence don’t employ nasty anti-social behavior like exclusivism or trying to corporate-murder each other.

---

@improti:

Signal (formerly TextSecure) itself is already Android/Java. I don’t think it’s a problem to take any necessary code from there. It’s more a problem of: Who wants to do it?

[Evi1M4chine]

@lovetox:

Why would you think they couldn’t? The protocol is the same, so it’s only a matter of picking the same server to connect to. But you don’t even have to do that, since Signal’s server, being just an XMPP one with Axolotl/Omemo added in, supports federation (which is already used, e.g. with CyanogenMod’s builtin SMS/messaging app).
I also made a Signal fork this morning. Other than warnings about chat partners having different keys there were no problems. So obviously the “companies* behind it” don’t prevent it.

---

• Which I assume are not criminals/psychopaths and hence don’t employ nasty anti-social behavior like exclusivism or trying to corporate-murder each other.

---

@improti:

Signal (formerly TextSecure) itself is already Android/Java. I don’t think it’s a problem to take any necessary code from there. It’s more a problem of: Who wants to do it?

[oodbur]

OMEMO could be significant: The Axolotl ratchet is the much improved and widely used (see WhatsApp and several others) successor to OTR. Now OMEMO integrates this directly into XMPP, so no more of the criticism of operating on the wrong layer of the protocol stack, which hurdled adoption (see Empathy/Telepathy) and is connected to usability problems of OTR.

[oodbur]

OMEMO could be significant: The Axolotl ratchet is the much improved and widely used (see WhatsApp and several others) successor to OTR. Now OMEMO integrates this directly into XMPP, so no more of the criticism of operating on the wrong layer of the protocol stack, which hurdled adoption (see Empathy/Telepathy) and is connected to usability problems of OTR.

[jitsi-developers]

if OMEMO is useful/significant/superior to OTR etc etc - could you
please provide the plugin/support for Jitsi for it?

currently users (incl. myself) are happy that Jitsi client function is
maintained as it is because only very few developers are currently
volunteering to support Jitsi client

On 1/18/16 3:33 PM, oodbur wrote:

OMEMO could be significant: The Axolotl ratchet is the much improved
and widely used (see WhatsApp and several others) successor to OTR.
Now OMEMO integrates this directly into XMPP, so no more of the
criticism of operating on the wrong layer of the protocol stack, which
hurdled adoption (see Empathy/Telepathy) and is connected to usability
problems of OTR.

—
Reply to this email directly or view it on GitHub
#199 (comment).

---

dev mailing list
dev@jitsi.org
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/dev

[jitsi-developers]

if OMEMO is useful/significant/superior to OTR etc etc - could you
please provide the plugin/support for Jitsi for it?

currently users (incl. myself) are happy that Jitsi client function is
maintained as it is because only very few developers are currently
volunteering to support Jitsi client

On 1/18/16 3:33 PM, oodbur wrote:

OMEMO could be significant: The Axolotl ratchet is the much improved
and widely used (see WhatsApp and several others) successor to OTR.
Now OMEMO integrates this directly into XMPP, so no more of the
criticism of operating on the wrong layer of the protocol stack, which
hurdled adoption (see Empathy/Telepathy) and is connected to usability
problems of OTR.

—
Reply to this email directly or view it on GitHub
#199 (comment).

---

dev mailing list
dev@jitsi.org
Unsubscribe instructions and other list options:
http://lists.jitsi.org/mailman/listinfo/dev

[Evi1M4chine]

Frankly, without OMEMO, there is no point in even using an IM client. OTR is unacceptable from a usability and design standpoint, and IM clients without push abilities plainly can’t work on mobile devices without dragging down the battery or not receiving messages.
So this is really the only choice. And Axolotl/OMEMO is apparently a rather nice implementation.
Which is why it is rapidly becoming the standard.
So any IM client who can’t do OMEMO, soon won’t be compatible with anything… especially not federated mobile XMPP clients.
If I can do anything about it, I won’t even allow non-OMEMO connections on my server or any client I might write or use, to show a big middle finger to any state terrorists (aka “intelligence” agencies, etc).

So, even more frankly, this is simply a question of life and death for Jitsi.
No OMEMO, and you could as well close down now, instead of letting it rot to a slow unavoidable digital donkey undeath.

The only thing I am ashamed of, is that I have so little resources to give, to support your great software.

[Evi1M4chine]

Frankly, without OMEMO, there is no point in even using an IM client. OTR is unacceptable from a usability and design standpoint, and IM clients without push abilities plainly can’t work on mobile devices without dragging down the battery or not receiving messages.
So this is really the only choice. And Axolotl/OMEMO is apparently a rather nice implementation.
Which is why it is rapidly becoming the standard.
So any IM client who can’t do OMEMO, soon won’t be compatible with anything… especially not federated mobile XMPP clients.
If I can do anything about it, I won’t even allow non-OMEMO connections on my server or any client I might write or use, to show a big middle finger to any state terrorists (aka “intelligence” agencies, etc).

So, even more frankly, this is simply a question of life and death for Jitsi.
No OMEMO, and you could as well close down now, instead of letting it rot to a slow unavoidable digital donkey undeath.

The only thing I am ashamed of, is that I have so little resources to give, to support your great software.

[improti]

An implementation of OMEMO for XMPP is available (in Java) in the referenced project (https://github.com/siacs/Conversations). I'd very much like to see that becoming used in Jitsi (as well as the Jitsi ZRTP over XMPP becoming used in Conversations). I cannot do that atm due to large overhead involved (I know neither of the projects code-wise). But could you please try to get in touch with them and see if you guys can help each other here? Maybe drop a note in siacs/Conversations#1646 or something? It might actually be a rather small task if you could exchange code/knowledge here?

[improti]

An implementation of OMEMO for XMPP is available (in Java) in the referenced project (https://github.com/siacs/Conversations). I'd very much like to see that becoming used in Jitsi (as well as the Jitsi ZRTP over XMPP becoming used in Conversations). I cannot do that atm due to large overhead involved (I know neither of the projects code-wise). But could you please try to get in touch with them and see if you guys can help each other here? Maybe drop a note in siacs/Conversations#1646 or something? It might actually be a rather small task if you could exchange code/knowledge here?

[turint]

Just like it was already mentioned by the devs -- yes, OMEMO is nice thing, but the code has to come from the community. Jitsi is a big project, with lot of work there to maintain it and believe me, the devs won't reject a good code attribution.

So once again, it's "talk is cheap, show me the code".

[turint]

Just like it was already mentioned by the devs -- yes, OMEMO is nice thing, but the code has to come from the community. Jitsi is a big project, with lot of work there to maintain it and believe me, the devs won't reject a good code attribution.

So once again, it's "talk is cheap, show me the code".

[improti]

@turint : Here is the code: https://github.com/siacs/Conversations/tree/master/src/main/java/eu/siacs/conversations/crypto/axolotl - as said, I have no clue how Jitsi is build and how to go and integrate it (as I do not know how it is used there) :( If you tell me what info you need I would actually go and try to get it for you, although I think a direct exchange between you guys would be far more effective (and could yield synergies in the future as well?).

P.S.: What I do know (might be better to write about that?) is the following though: OMEMO needs a rather new version of ejabberd to work (> 14.x it seems), as it stores things on the server (that's how it works "offline"). PEP was mentioned several times, but I do not know the technical details. If Jitsi hasn't support for those XEPs yet, it will probably need some more work though. There is some technical information I found at https://conversations.im/omemo/ that look like draft specs: XEP-xxxx: OMEMO Encryption and XEP-xxxx: OMEMO Encrypted Jingle File Transfer. For any technically interested person those might be of interest.

[improti]

@turint : Here is the code: https://github.com/siacs/Conversations/tree/master/src/main/java/eu/siacs/conversations/crypto/axolotl - as said, I have no clue how Jitsi is build and how to go and integrate it (as I do not know how it is used there) :( If you tell me what info you need I would actually go and try to get it for you, although I think a direct exchange between you guys would be far more effective (and could yield synergies in the future as well?).

P.S.: What I do know (might be better to write about that?) is the following though: OMEMO needs a rather new version of ejabberd to work (> 14.x it seems), as it stores things on the server (that's how it works "offline"). PEP was mentioned several times, but I do not know the technical details. If Jitsi hasn't support for those XEPs yet, it will probably need some more work though. There is some technical information I found at https://conversations.im/omemo/ that look like draft specs: XEP-xxxx: OMEMO Encryption and XEP-xxxx: OMEMO Encrypted Jingle File Transfer. For any technically interested person those might be of interest.

[lovetox]

@improti i think you misunderstanding him.

its not a question of information to make this possible, like you are trying to provide.
its a question of having the time to implement it.

it seems that the developers dont have time, even if it is a great feature.
so he is asking for a code contribution, someone from outside of the current development team to make that contribution (program it)

so if you cant code it yourself or get someone else to code it, you simply cant help.

[lovetox]

@improti i think you misunderstanding him.

its not a question of information to make this possible, like you are trying to provide.
its a question of having the time to implement it.

it seems that the developers dont have time, even if it is a great feature.
so he is asking for a code contribution, someone from outside of the current development team to make that contribution (program it)

so if you cant code it yourself or get someone else to code it, you simply cant help.

[prinzpi]

Hi,
any new information regarding the case about the OMEMO support?

[prinzpi]

Hi,
any new information regarding the case about the OMEMO support?

[ibauersachs]

I'm not even capable of maintaining the existing features. So, no.

[ibauersachs]

I'm not even capable of maintaining the existing features. So, no.

[Evi1M4chine]

Maybe there needs to be a bug about creating a funding campaign? :)

[Evi1M4chine]

Maybe there needs to be a bug about creating a funding campaign? :)

[DreamFlasher]

I'd love to see OMEMO being supported by Jitsi.

[DreamFlasher]

I'd love to see OMEMO being supported by Jitsi.

[ghost]

Bounty at bountysource

[ghost]

Bounty at bountysource

[Ashaman-]

Added $25 to the bounty. Will add another $100 in if/when someone starts working on it.

[Ashaman-]

Added $25 to the bounty. Will add another $100 in if/when someone starts working on it.

[hoijui]

can omemo also be used for voice and video communication/streams, or is it just for text messages and file transfers?

[hoijui]

can omemo also be used for voice and video communication/streams, or is it just for text messages and file transfers?

[Ashaman-]

@hoijui Text and file transfer, with multi device and group message support. Zrtp is the standard for voice and video encryption - it's what Signal uses too.

On June 8, 2016 5:00:30 PM EDT, hoijui notifications@github.com wrote:

can omemo also be used for voice and video communication/streams, or is
it just for text messages and file transfers?

---

You are receiving this because you commented.
Reply to this email directly or view it on GitHub:
#199 (comment)

Sent from my Android device with K-9 Mail. Please excuse my brevity.

[Ashaman-]

@hoijui Text and file transfer, with multi device and group message support. Zrtp is the standard for voice and video encryption - it's what Signal uses too.

On June 8, 2016 5:00:30 PM EDT, hoijui notifications@github.com wrote:

can omemo also be used for voice and video communication/streams, or is
it just for text messages and file transfers?

---

You are receiving this because you commented.
Reply to this email directly or view it on GitHub:
#199 (comment)

Sent from my Android device with K-9 Mail. Please excuse my brevity.

[SamWhited]

On Wed, Jun 8, 2016 at 4:00 PM, hoijui notifications@github.com wrote:

can omemo also be used for voice and video communication/streams, or is it just for text messages and file transfers?

OMEMO is a wire format designed for encrypting messages in XMPP (so
it's not well suited for video or file transfers; the current file
transfer mechanism doesn't really count since it requires receiving
the entire file before you can begin decryption, and it's actually
encrypted/decrypted out of band with a separate AES key).

ZRTP is a much better fit for A/V streams.

[SamWhited]

On Wed, Jun 8, 2016 at 4:00 PM, hoijui notifications@github.com wrote:

can omemo also be used for voice and video communication/streams, or is it just for text messages and file transfers?

OMEMO is a wire format designed for encrypting messages in XMPP (so
it's not well suited for video or file transfers; the current file
transfer mechanism doesn't really count since it requires receiving
the entire file before you can begin decryption, and it's actually
encrypted/decrypted out of band with a separate AES key).

ZRTP is a much better fit for A/V streams.

[JohnnyCalavera]

Is anybody working on this? Seems like so many people are talking about OMEMO, but there is no stable desktop solution and on mobile devices there is only conversations.
At least Chatsecure is working on OMEMO integration... Still, we need something for our desktop systems.

[JohnnyCalavera]

Is anybody working on this? Seems like so many people are talking about OMEMO, but there is no stable desktop solution and on mobile devices there is only conversations.
At least Chatsecure is working on OMEMO integration... Still, we need something for our desktop systems.

[DreamFlasher]

There is a stable desktop solution which works on the relevent desktop OS: Gajim -- and it's the reason why I switched to it, away from Jitsi. So yeah Jitsi, would be great if you add that feature, because apart from that you have a great software :)

[DreamFlasher]

There is a stable desktop solution which works on the relevent desktop OS: Gajim -- and it's the reason why I switched to it, away from Jitsi. So yeah Jitsi, would be great if you add that feature, because apart from that you have a great software :)

[Evi1M4chine]

The thing is: OMEMO and the ratchet design only became necessary on unstable mobile connections. Jitsi already includes proper encryption. The only reason I would like to see it, is so it can communicate nicely with mobile messengers that need it. (Since all [my] messengers should use the same standardized protocol to avoid lock-in.)

[Evi1M4chine]

The thing is: OMEMO and the ratchet design only became necessary on unstable mobile connections. Jitsi already includes proper encryption. The only reason I would like to see it, is so it can communicate nicely with mobile messengers that need it. (Since all [my] messengers should use the same standardized protocol to avoid lock-in.)

[DreamFlasher]

The thing is: That's wrong.
See: https://conversations.im/omemo/

[DreamFlasher]

The thing is: That's wrong.
See: https://conversations.im/omemo/

[ccoenen]

@Evi1M4chine you make it sound as if OMEMO isn't all that neccessary because Jitsi is on the desktop. But you never know where the other end of your chat is received - in today's world there's a pretty high chance that at least one of the receivers is actually a mobile device with less-than-ideal connection. Also (as mentioned in the table above) receiving stuff on PC and Mobile or work PC and private PC (for example via XEP280 Carbon copy) is something that's fairly common. And OTR is not a good fit, there either.

I see only advantages with OMEMO, except that support is extremely limited right now. Exactly what the OP tries to get fixed.

[ccoenen]

@Evi1M4chine you make it sound as if OMEMO isn't all that neccessary because Jitsi is on the desktop. But you never know where the other end of your chat is received - in today's world there's a pretty high chance that at least one of the receivers is actually a mobile device with less-than-ideal connection. Also (as mentioned in the table above) receiving stuff on PC and Mobile or work PC and private PC (for example via XEP280 Carbon copy) is something that's fairly common. And OTR is not a good fit, there either.

I see only advantages with OMEMO, except that support is extremely limited right now. Exactly what the OP tries to get fixed.

[SamWhited]

The thing is: OMEMO and the ratchet design only became necessary on unstable mobile connections. Jitsi already includes proper encryption.

OMEMO and the Axolotl double ratchet design have nothing to do with mobile; the main benefit OMEMO has over other end-to-end encryption mechanisms like OTR is that it can be used to send messages to multiple online clients on both ends, so your contact can get your encrypted message on their desktop and their phone. To do this it sacrifices perfect forward secrecy (it's still forward secret, but not to the same degree that OTR is), which is probably an acceptable trade off for most people. The benefit it has over something like PGP is that it is forward secret, and the down side is that it can only sync with clients that had already published pre-keys (if you add new clients, or clients don't come online for too long and the pre-keys are all used up, they won't get old messages).

It's all about the security properties you need for your use case; bandwidth and the stability of the connection isn't really a concern in any of the three major chat encryption mechanisms.

(Since all [my] messengers should use the same standardized protocol to avoid lock-in.)

I agree, but currently there aren't any real standards for end-to-end encryption in messaging. OTR is at best a defacto standard, PGP is done differently in ever implementation (although there is work happening at the XSF to standardize this recently), and OMEMO is in the process of standardization with its change from the Axolotl ratchet to Olm (a very similar scheme that changes the IV to get around some potential legal issues).

[SamWhited]

The thing is: OMEMO and the ratchet design only became necessary on unstable mobile connections. Jitsi already includes proper encryption.

OMEMO and the Axolotl double ratchet design have nothing to do with mobile; the main benefit OMEMO has over other end-to-end encryption mechanisms like OTR is that it can be used to send messages to multiple online clients on both ends, so your contact can get your encrypted message on their desktop and their phone. To do this it sacrifices perfect forward secrecy (it's still forward secret, but not to the same degree that OTR is), which is probably an acceptable trade off for most people. The benefit it has over something like PGP is that it is forward secret, and the down side is that it can only sync with clients that had already published pre-keys (if you add new clients, or clients don't come online for too long and the pre-keys are all used up, they won't get old messages).

It's all about the security properties you need for your use case; bandwidth and the stability of the connection isn't really a concern in any of the three major chat encryption mechanisms.

(Since all [my] messengers should use the same standardized protocol to avoid lock-in.)

I agree, but currently there aren't any real standards for end-to-end encryption in messaging. OTR is at best a defacto standard, PGP is done differently in ever implementation (although there is work happening at the XSF to standardize this recently), and OMEMO is in the process of standardization with its change from the Axolotl ratchet to Olm (a very similar scheme that changes the IV to get around some potential legal issues).

[falsefifth]

This would need to come from the community, we simply don't have the resources to develop this.

In terms of monetary units what would we be talking?

[falsefifth]

This would need to come from the community, we simply don't have the resources to develop this.

In terms of monetary units what would we be talking?

[Evi1M4chine]

[Removed stuff that was just a repetition of what I had already said.]

But to bring this thing to its logical conclusion: A proper solution would be, to build full obligatory encryption of every connection right into the kernel, and add an OMEMO-equivalent as a facility to that!
(And this encryption should definitely be decentralized, without any defective-by-design fallacy like CAs, but with pluggable encryption modules.)

Maybe this ends the discussion. :)

@ccoenen: You misunderstood me. I was agreeing with you. :) I was just disappointed at the problem existing with mobile devices in the first place, because I think it is a bug of the underlying OSI layers.

[Evi1M4chine]

[Removed stuff that was just a repetition of what I had already said.]

But to bring this thing to its logical conclusion: A proper solution would be, to build full obligatory encryption of every connection right into the kernel, and add an OMEMO-equivalent as a facility to that!
(And this encryption should definitely be decentralized, without any defective-by-design fallacy like CAs, but with pluggable encryption modules.)

Maybe this ends the discussion. :)

@ccoenen: You misunderstood me. I was agreeing with you. :) I was just disappointed at the problem existing with mobile devices in the first place, because I think it is a bug of the underlying OSI layers.

[vanitasvitae]

I will most definitely implement Jitsi OMEMO support as part of my bachelor thesis.

[vanitasvitae]

I will most definitely implement Jitsi OMEMO support as part of my bachelor thesis.

[vanitasvitae]

Update: I'm making progress. My module is usable in 1:1 chats already. I'll tackle MUC support soon.

Btw: Take a look at this overview of OMEMO implementations.

[vanitasvitae]

Update: I'm making progress. My module is usable in 1:1 chats already. I'll tackle MUC support soon.

Btw: Take a look at this overview of OMEMO implementations.

[2Belette]

@vanitasvitae your link seems broken ?
Is there a way to test your module somewhere with Jitsi?
Many thanks ;)

[2Belette]

@vanitasvitae your link seems broken ?
Is there a way to test your module somewhere with Jitsi?
Many thanks ;)

[vanitasvitae]

@2Belette Yes, I separated the repository into two modules. You can find the source code here:
https://github.com/vanitasvitae/smack-omemo
https://github.com/vanitasvitae/smack-omemo-signal

In order to test the module, you'd first have to update Smack in Jitsi to version 4.2

[vanitasvitae]

@2Belette Yes, I separated the repository into two modules. You can find the source code here:
https://github.com/vanitasvitae/smack-omemo
https://github.com/vanitasvitae/smack-omemo-signal

In order to test the module, you'd first have to update Smack in Jitsi to version 4.2

[2Belette]

Thanks ! Is it usable with Jitsi or do you plan to make it a module or integrate with the app directly?

…

On February 23, 2017 11:47:29 PM GMT+01:00, vanitasvitae ***@***.***> wrote: @2Belette Yes, I separated the repository into two modules. You can find the source code here: https://github.com/vanitasvitae/smack-omemo https://github.com/vanitasvitae/smack-omemo-signal

-- Sent from my mobile device. Please excuse my brevity.

[2Belette]

Thanks ! Is it usable with Jitsi or do you plan to make it a module or integrate with the app directly?

…

On February 23, 2017 11:47:29 PM GMT+01:00, vanitasvitae ***@***.***> wrote: @2Belette Yes, I separated the repository into two modules. You can find the source code here: https://github.com/vanitasvitae/smack-omemo https://github.com/vanitasvitae/smack-omemo-signal

-- Sent from my mobile device. Please excuse my brevity.

[vanitasvitae]

@2Belette For now I'm focusing on making it a good usable Smack module. My goal is, that it's straight forward for a client like jitsi to implement OMEMO (sendOmemoMessage instead of sendMessage...). The hardest part on the client side should be designing the UI for activating OMEMO, trusting keys etc.

[vanitasvitae]

@2Belette For now I'm focusing on making it a good usable Smack module. My goal is, that it's straight forward for a client like jitsi to implement OMEMO (sendOmemoMessage instead of sendMessage...). The hardest part on the client side should be designing the UI for activating OMEMO, trusting keys etc.

[2Belette]

I am happy to see that you are making good improvement :) So I probably have to wait a little bit more before someone would work to integrate your work into Jitsi UI.. Anyway you have one more supporter !

…

On February 24, 2017 9:41:23 AM GMT+01:00, vanitasvitae ***@***.***> wrote: @2Belette For now I'm focusing on making it a good usable Smack module. My goal is, that it's straight forward for a client like jitsi to implement OMEMO (sendOmemoMessage instead of sendMessage...). The hardest part on the client side should be designing the UI for activating OMEMO, trusting keys etc.

-- Sent from my mobile device. Please excuse my brevity.

[2Belette]

I am happy to see that you are making good improvement :) So I probably have to wait a little bit more before someone would work to integrate your work into Jitsi UI.. Anyway you have one more supporter !

…

On February 24, 2017 9:41:23 AM GMT+01:00, vanitasvitae ***@***.***> wrote: @2Belette For now I'm focusing on making it a good usable Smack module. My goal is, that it's straight forward for a client like jitsi to implement OMEMO (sendOmemoMessage instead of sendMessage...). The hardest part on the client side should be designing the UI for activating OMEMO, trusting keys etc.

-- Sent from my mobile device. Please excuse my brevity.

[cmeng-git]

aTalk-android has implemented OMEMO. For anybody who are interested, may download from the site below. Note aTalk supports android device only:

http://atalk.sytes.net/releases/atalk-android/aTalk-release.apk

[cmeng-git]

aTalk-android has implemented OMEMO. For anybody who are interested, may download from the site below. Note aTalk supports android device only:

http://atalk.sytes.net/releases/atalk-android/aTalk-release.apk

[DreamFlasher]

@cmeng-git This sounds great, but could you add a little bit more information? I can't find aTalk in the PlayStore nor on F-Droid. Also I can't find any website, http://atalk.sytes.net/ is a newly configured apache, http://atalk.sytes.net/releases/atalk-android is forbidden. Do you have the sourcecode of the apk somewhere published?

[DreamFlasher]

@cmeng-git This sounds great, but could you add a little bit more information? I can't find aTalk in the PlayStore nor on F-Droid. Also I can't find any website, http://atalk.sytes.net/ is a newly configured apache, http://atalk.sytes.net/releases/atalk-android is forbidden. Do you have the sourcecode of the apk somewhere published?

[cmeng-git]

The apk is not availabled on playstore or any of the public domain. Http://atalk.sytes.net is my home server and the cert is self signed. I have yet to release the source to the public.

…

On 12 July 2017 16:48:25 GMT+08:00, Marcel Ackermann ***@***.***> wrote: @cmeng-git This sounds great, but could you add a little bit more information? I can't find aTalk in the PlayStore nor on F-Droid. Also I can't find any website, http://atalk.sytes.net/ is a newly configured apache, http://atalk.sytes.net/releases/atalk-android is forbidden. Do you have the sourcecode of the apk somewhere published? -- You are receiving this because you were mentioned. Reply to this email directly or view it on GitHub: #199 (comment)

-- Send from Android using XryptoMail

[cmeng-git]

The apk is not availabled on playstore or any of the public domain. Http://atalk.sytes.net is my home server and the cert is self signed. I have yet to release the source to the public.

…

On 12 July 2017 16:48:25 GMT+08:00, Marcel Ackermann ***@***.***> wrote: @cmeng-git This sounds great, but could you add a little bit more information? I can't find aTalk in the PlayStore nor on F-Droid. Also I can't find any website, http://atalk.sytes.net/ is a newly configured apache, http://atalk.sytes.net/releases/atalk-android is forbidden. Do you have the sourcecode of the apk somewhere published? -- You are receiving this because you were mentioned. Reply to this email directly or view it on GitHub: #199 (comment)

-- Send from Android using XryptoMail

[DreamFlasher]

Okay, can you ping us again when you have released the source code? Before that I'd rather not install a random apk, which in the best case just shows an encryption symbol and in the worst case contains a rootkit ;)

[DreamFlasher]

Okay, can you ping us again when you have released the source code? Before that I'd rather not install a random apk, which in the best case just shows an encryption symbol and in the worst case contains a rootkit ;)

[cmeng-git]

Understand your concern. https://community.igniterealtime.org/people/cmeng

…

On 12 July 2017 19:22:18 GMT+08:00, Marcel Ackermann ***@***.***> wrote: Okay, can you ping us again when you have released the source code? Before that I'd rather not install a random apk, which in the best case just shows an encryption symbol and in the worst case contains a rootkit ;) -- You are receiving this because you were mentioned. Reply to this email directly or view it on GitHub: #199 (comment)

-- Send from Android using XryptoMail

[cmeng-git]

Understand your concern. https://community.igniterealtime.org/people/cmeng

…

On 12 July 2017 19:22:18 GMT+08:00, Marcel Ackermann ***@***.***> wrote: Okay, can you ping us again when you have released the source code? Before that I'd rather not install a random apk, which in the best case just shows an encryption symbol and in the worst case contains a rootkit ;) -- You are receiving this because you were mentioned. Reply to this email directly or view it on GitHub: #199 (comment)

-- Send from Android using XryptoMail

[louy2]

@cmeng-git In which case, are you using Smack in aTalk? Since that recently added support to OMEMO.

https://community.igniterealtime.org/blogs/ignite/2017/06/06/smack-v42-introduces-omemo-support

[louy2]

@cmeng-git In which case, are you using Smack in aTalk? Since that recently added support to OMEMO.

https://community.igniterealtime.org/blogs/ignite/2017/06/06/smack-v42-introduces-omemo-support

[vanitasvitae]

@louy2 Yeah, aTalk is the second app that I know of that utilizes my OMEMO code :)

[vanitasvitae]

@louy2 Yeah, aTalk is the second app that I know of that utilizes my OMEMO code :)

[cmeng-git]

Hi Louy2.

Below is the history log for aTalk that starts using Smack release version 4.2.1
[...]

[cmeng-git]

Hi Louy2.

Below is the history log for aTalk that starts using Smack release version 4.2.1
[...]

[ibauersachs]

@cmeng-git I've removed the release notes. You can link to them on your own site, provided that you release the source code. I've previously politely asked you to do that. It isn't just the morally right thing to do. Since you're now using OMEMO, thanks to the GPL, you're legally obligated to release it.

[ibauersachs]

@cmeng-git I've removed the release notes. You can link to them on your own site, provided that you release the source code. I've previously politely asked you to do that. It isn't just the morally right thing to do. Since you're now using OMEMO, thanks to the GPL, you're legally obligated to release it.

[cmeng-git]

Sorry if this has offended you. I am just reply to louy2 question. As I have mentioned earlier, atalk source will be open source. It is just that I feel the source is just no clean up enough to be released.

[cmeng-git]

Sorry if this has offended you. I am just reply to louy2 question. As I have mentioned earlier, atalk source will be open source. It is just that I feel the source is just no clean up enough to be released.

[ccoenen]

@ibauersachs AFAIK, it is perfectly fine to hand out source code "on request" of a user. This is not the way the community prefers it, but it is legal use under the GPL.

... to make sure that you have the freedom to distribute copies of free software (and charge for them if you wish), that you receive source code or can get it if you want it ...
(From GPL-v3 Preamble)

[ccoenen]

@ibauersachs AFAIK, it is perfectly fine to hand out source code "on request" of a user. This is not the way the community prefers it, but it is legal use under the GPL.

... to make sure that you have the freedom to distribute copies of free software (and charge for them if you wish), that you receive source code or can get it if you want it ...
(From GPL-v3 Preamble)

[DreamFlasher]

@cmeng-git @ccoenen Well then, I hereby request the source code of aTalk :) You can reach me via the methods listed here: https://keybase.io/dreamflasher

[DreamFlasher]

@cmeng-git @ccoenen Well then, I hereby request the source code of aTalk :) You can reach me via the methods listed here: https://keybase.io/dreamflasher

[cmeng-git]

Thanks for showing interest on atalk source. When I mention the source is not clean enough for public release. It is more than just pure source coding. Atalk is a fork from jitsi-android. At the moment, the source has multiple copyright statement. Leagally I do not have good idea what it means to release source of this nature. Actually I am about to start discussion this with someone and seek their advice. Hopefully it is not too complicated and restriction to release the source. Meantime I do not feel comfortable to release code to the public. Thank for your understanding.

[cmeng-git]

Thanks for showing interest on atalk source. When I mention the source is not clean enough for public release. It is more than just pure source coding. Atalk is a fork from jitsi-android. At the moment, the source has multiple copyright statement. Leagally I do not have good idea what it means to release source of this nature. Actually I am about to start discussion this with someone and seek their advice. Hopefully it is not too complicated and restriction to release the source. Meantime I do not feel comfortable to release code to the public. Thank for your understanding.

[ccoenen]

@cmeng-git jitsi-android is released under apache license at the top of this license file is a short summary what that means.

[ccoenen]

@cmeng-git jitsi-android is released under apache license at the top of this license file is a short summary what that means.

[ccoenen]

We're going off-topic a lot. I will not comment further on this branch of the discussion. Let's get back to omemo in jitsi.

[ccoenen]

We're going off-topic a lot. I will not comment further on this branch of the discussion. Let's get back to omemo in jitsi.

[cmeng-git]

Actually the answer was already given in the attached history log, but was removed by Jitsi moderator. aTalk version 0.7.9 released on 12 June, 2017 has imported smack version 4.2.1 SNAPSHOT shortly after it was released, as it is my plan to implement OMEMO for aTalk. If you want to know more, perhaps we can discuss the topic in our private mail exchange. I really do not wish to offend anybody. From: Yufan Lou [mailto:notifications@github.com] Sent: Saturday, July 15, 2017 5:23 PM To: jitsi/jitsi Cc: cmeng-git; Mention Subject: Re: [jitsi/jitsi] Support for omemo (#199) @cmeng-git <https://github.com/cmeng-git> In which case, are you using Smack in aTalk? Since that recently added support to OMEMO. https://community.igniterealtime.org/blogs/ignite/2017/06/06/smack-v42-introduces-omemo-support — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub <#199 (comment)> , or mute the thread <https://github.com/notifications/unsubscribe-auth/AHl0NpPb1wtWsx3sO1pfTY8J9ZJQGVrXks5sOIUIgaJpZM4G7Wts> . <https://github.com/notifications/beacon/AHl0NuD59985GU7zm6O8DupUskNqGjjNks5sOIUIgaJpZM4G7Wts.gif>

[cmeng-git]

Actually the answer was already given in the attached history log, but was removed by Jitsi moderator. aTalk version 0.7.9 released on 12 June, 2017 has imported smack version 4.2.1 SNAPSHOT shortly after it was released, as it is my plan to implement OMEMO for aTalk. If you want to know more, perhaps we can discuss the topic in our private mail exchange. I really do not wish to offend anybody. From: Yufan Lou [mailto:notifications@github.com] Sent: Saturday, July 15, 2017 5:23 PM To: jitsi/jitsi Cc: cmeng-git; Mention Subject: Re: [jitsi/jitsi] Support for omemo (#199) @cmeng-git <https://github.com/cmeng-git> In which case, are you using Smack in aTalk? Since that recently added support to OMEMO. https://community.igniterealtime.org/blogs/ignite/2017/06/06/smack-v42-introduces-omemo-support — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub <#199 (comment)> , or mute the thread <https://github.com/notifications/unsubscribe-auth/AHl0NpPb1wtWsx3sO1pfTY8J9ZJQGVrXks5sOIUIgaJpZM4G7Wts> . <https://github.com/notifications/beacon/AHl0NuD59985GU7zm6O8DupUskNqGjjNks5sOIUIgaJpZM4G7Wts.gif>

[smith476]

sorry for re-opening this thread - but client "aTalk" (Jitsi-Android fork) is now available on Google Play "aTalk (Jabber / XMPP)" which includes both OMEMO (!) and OTR support, the source is published on GitHub.
How is the progress implementing OMEMO in Jitsi-Desktop?

[smith476]

sorry for re-opening this thread - but client "aTalk" (Jitsi-Android fork) is now available on Google Play "aTalk (Jabber / XMPP)" which includes both OMEMO (!) and OTR support, the source is published on GitHub.
How is the progress implementing OMEMO in Jitsi-Desktop?

[ibauersachs]

There is no progress for OMEMO itself. Smack 4.2 (which is a prerequiste) is almost ready to merge (the pending switch to OpenH264).

Note however that the Smack implementation of OMEMO cannot be used since it is GPL licensed. If there is no progress on licensing OMEMO differently, it can never end up in Jitsi.

Regarding aTalk, at least it is finally open source. Unfortunately the changes in the XMPP stack haven't been contributed back to Jitsi. I think @cmeng-git never signed the Atlassian CLA, so I also cannot just merge his changes back myself (which by this time would probably be pointless anyway since the codes diverged too much).

[ibauersachs]

There is no progress for OMEMO itself. Smack 4.2 (which is a prerequiste) is almost ready to merge (the pending switch to OpenH264).

Note however that the Smack implementation of OMEMO cannot be used since it is GPL licensed. If there is no progress on licensing OMEMO differently, it can never end up in Jitsi.

Regarding aTalk, at least it is finally open source. Unfortunately the changes in the XMPP stack haven't been contributed back to Jitsi. I think @cmeng-git never signed the Atlassian CLA, so I also cannot just merge his changes back myself (which by this time would probably be pointless anyway since the codes diverged too much).

[DreamFlasher]

Just as a reference I found this as a good explanation about the licensing situation: https://github.com/igniterealtime/Smack/wiki/OMEMO-libsignal-Licensing-Situation
Is there any way out of that? Could there be a plugin under GPL license which wraps smack and smack-omemo-signal and then Jitsi could just use the plugin?
-> Looks like a no: https://www.apache.org/licenses/GPL-compatibility.html unless the author relaxed his license.

[DreamFlasher]

Just as a reference I found this as a good explanation about the licensing situation: https://github.com/igniterealtime/Smack/wiki/OMEMO-libsignal-Licensing-Situation
Is there any way out of that? Could there be a plugin under GPL license which wraps smack and smack-omemo-signal and then Jitsi could just use the plugin?
-> Looks like a no: https://www.apache.org/licenses/GPL-compatibility.html unless the author relaxed his license.

[vanitasvitae]

@DreamFlasher I'm not an expert on the field of software licenses. Is it possible to circumvent licensing issues with plugins?

[vanitasvitae]

@DreamFlasher I'm not an expert on the field of software licenses. Is it possible to circumvent licensing issues with plugins?

[ibauersachs]

I think this should work. We (the Jitsi authors) don‘t mind having our code combined with GPL‘ed code, but:

• it cannot live in the Jitsi repository
• we cannot ship/distribute a combination

(because that would automatically apply the GPL to everything).

If somebody else does that though, fine. The Apache License 2.0 is compatible with the GPL3 (but not GPL2!).

[ibauersachs]

I think this should work. We (the Jitsi authors) don‘t mind having our code combined with GPL‘ed code, but:

• it cannot live in the Jitsi repository
• we cannot ship/distribute a combination

(because that would automatically apply the GPL to everything).

If somebody else does that though, fine. The Apache License 2.0 is compatible with the GPL3 (but not GPL2!).

[smith476]

short info: with the recent update (2.0.0) the "Conversations" client on Android is removing support for OTR.
OMEMO is now the default encryption method.
I guess all Jitsi Desktop users would be very grateful, if their preferred client would receive OMEMO support soon, the OMEMO development with other clients is progressing:
https://omemo.top/
(I am only politely motivating and cannot provide support myself due to lack of IT skills)

[smith476]

short info: with the recent update (2.0.0) the "Conversations" client on Android is removing support for OTR.
OMEMO is now the default encryption method.
I guess all Jitsi Desktop users would be very grateful, if their preferred client would receive OMEMO support soon, the OMEMO development with other clients is progressing:
https://omemo.top/
(I am only politely motivating and cannot provide support myself due to lack of IT skills)

[cmeng-git]

aTalk version 1.2.0 release Adding Contact In order to protect the privacy of XMPP users, presence information is disclosed only to other entities that a user has approved. When a user has agreed that another entity is allowed to view its presence, the entity is said to have a "subscription" to the user's presence. An entity that has a subscription to a user's presence or to which a user has a presence subscription is called a "contact". When you add a buddy to your contact list, aTalk actually makes a subscription request to your buddy for his/her approval. In this process, your hosted server routes your subscription request locally if the buddy is on same server; otherwise remotely with connection made to the buddy hosted server via IP derived from your buddy account service name i.e. example.org from "buddy@example.org". If the Fully Qualified Domain Name (DQDN) of your buddy hosted server cannot be derived from his JID account service name, the subscription request process will fail. With the current XMPP standard defined for Presence Subscription, it is therefore not possible to include buddy whom resides on a different server where his/her account JID does not contain the FQDN. You are also unable to send message to your buddy in this case since the message is delivered via server-to-server network connection. When your buddy client receives the Presence Subscription Request from hosted server, an *Authorization Reqeust* dialog is launched for hist/her approval. Your buddy may Ignore, Deny or Authorize the request. Recipocally, a Presence Subscription Request will be reverted for your approval when your buddy approved the reqeust. In the event your buddy chooses to ignore your request; any further re-authorization request from you will not trigger another Authorization Request. However the server will resend the reqeust on your behalf when the buddy has exited and login again. This process continues until user has made a decision either to Deny or Authroze the request. The "Add Contact" dialog provides the option to categorize your new contact to one of your existing defined groups or a newly created group. You may peform this grouping or moving to another group after the contact has been added. The same opton is also available to your buddy when he approves the Presence Subscription Request. aTalk has an user selectable option for presence subscribe approval mode i.e. manual or auto accept-all; The earlier description is when manual approval is selected. aTalk default is auto accpet-all. Under this mode, atalk will accept all incoming presence subscription request, and in return rquest the same for the sender approval. The newely added contact is grouped under Contacts.

…

On Tue, Mar 27, 2018 at 4:55 PM, smith476 ***@***.***> wrote: short info: with the recent update (2.0.0) the "Conversations" client on Android is removing support for OTR. OMEMO is now the default encryption method. I guess all Jitsi Desktop users would be very grateful, if their preferred client would receive OMEMO support soon, the OMEMO development with other clients is progressing: https://omemo.top/ (I am only politely motivating and cannot provide support myself due to lack of IT skills) — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub <#199 (comment)>, or mute the thread <https://github.com/notifications/unsubscribe-auth/AHl0NkID3EF0fMu-0utG4DuWNaTpVvVbks5tif6egaJpZM4G7Wts> .

[cmeng-git]

aTalk version 1.2.0 release Adding Contact In order to protect the privacy of XMPP users, presence information is disclosed only to other entities that a user has approved. When a user has agreed that another entity is allowed to view its presence, the entity is said to have a "subscription" to the user's presence. An entity that has a subscription to a user's presence or to which a user has a presence subscription is called a "contact". When you add a buddy to your contact list, aTalk actually makes a subscription request to your buddy for his/her approval. In this process, your hosted server routes your subscription request locally if the buddy is on same server; otherwise remotely with connection made to the buddy hosted server via IP derived from your buddy account service name i.e. example.org from "buddy@example.org". If the Fully Qualified Domain Name (DQDN) of your buddy hosted server cannot be derived from his JID account service name, the subscription request process will fail. With the current XMPP standard defined for Presence Subscription, it is therefore not possible to include buddy whom resides on a different server where his/her account JID does not contain the FQDN. You are also unable to send message to your buddy in this case since the message is delivered via server-to-server network connection. When your buddy client receives the Presence Subscription Request from hosted server, an *Authorization Reqeust* dialog is launched for hist/her approval. Your buddy may Ignore, Deny or Authorize the request. Recipocally, a Presence Subscription Request will be reverted for your approval when your buddy approved the reqeust. In the event your buddy chooses to ignore your request; any further re-authorization request from you will not trigger another Authorization Request. However the server will resend the reqeust on your behalf when the buddy has exited and login again. This process continues until user has made a decision either to Deny or Authroze the request. The "Add Contact" dialog provides the option to categorize your new contact to one of your existing defined groups or a newly created group. You may peform this grouping or moving to another group after the contact has been added. The same opton is also available to your buddy when he approves the Presence Subscription Request. aTalk has an user selectable option for presence subscribe approval mode i.e. manual or auto accept-all; The earlier description is when manual approval is selected. aTalk default is auto accpet-all. Under this mode, atalk will accept all incoming presence subscription request, and in return rquest the same for the sender approval. The newely added contact is grouped under Contacts.

…

On Tue, Mar 27, 2018 at 4:55 PM, smith476 ***@***.***> wrote: short info: with the recent update (2.0.0) the "Conversations" client on Android is removing support for OTR. OMEMO is now the default encryption method. I guess all Jitsi Desktop users would be very grateful, if their preferred client would receive OMEMO support soon, the OMEMO development with other clients is progressing: https://omemo.top/ (I am only politely motivating and cannot provide support myself due to lack of IT skills) — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub <#199 (comment)>, or mute the thread <https://github.com/notifications/unsubscribe-auth/AHl0NkID3EF0fMu-0utG4DuWNaTpVvVbks5tif6egaJpZM4G7Wts> .

[cmeng-git]

Can you try out and let me if found any problem? There are still problem exist in ejabberd server and smack library. If you see problem or no getting approval from the contact, just logout and login the contact. - problem is at time ejabberd does not relay the request to your contact until he logout and login again. processone/ejabberd#2352 (comment) https://discourse.igniterealtime.org/t/smack-4-2-3-unexplained-exceptions-thrown-by-smack-on-various-conditions/81235 https://discourse.igniterealtime.org/t/smack-4-2-3-throws-smackexception-noresponseexception-even-when-the-stanza-is-received-within-the-timeout-period/81112/2

…

On Thu, Apr 5, 2018 at 11:55 AM, ChongMeng Eng ***@***.***> wrote: aTalk version 1.2.0 release Adding Contact In order to protect the privacy of XMPP users, presence information is disclosed only to other entities that a user has approved. When a user has agreed that another entity is allowed to view its presence, the entity is said to have a "subscription" to the user's presence. An entity that has a subscription to a user's presence or to which a user has a presence subscription is called a "contact". When you add a buddy to your contact list, aTalk actually makes a subscription request to your buddy for his/her approval. In this process, your hosted server routes your subscription request locally if the buddy is on same server; otherwise remotely with connection made to the buddy hosted server via IP derived from your buddy account service name i.e. example.org from ***@***.***". If the Fully Qualified Domain Name (DQDN) of your buddy hosted server cannot be derived from his JID account service name, the subscription request process will fail. With the current XMPP standard defined for Presence Subscription, it is therefore not possible to include buddy whom resides on a different server where his/her account JID does not contain the FQDN. You are also unable to send message to your buddy in this case since the message is delivered via server-to-server network connection. When your buddy client receives the Presence Subscription Request from hosted server, an *Authorization Reqeust* dialog is launched for hist/her approval. Your buddy may Ignore, Deny or Authorize the request. Recipocally, a Presence Subscription Request will be reverted for your approval when your buddy approved the reqeust. In the event your buddy chooses to ignore your request; any further re-authorization request from you will not trigger another Authorization Request. However the server will resend the reqeust on your behalf when the buddy has exited and login again. This process continues until user has made a decision either to Deny or Authroze the request. The "Add Contact" dialog provides the option to categorize your new contact to one of your existing defined groups or a newly created group. You may peform this grouping or moving to another group after the contact has been added. The same opton is also available to your buddy when he approves the Presence Subscription Request. aTalk has an user selectable option for presence subscribe approval mode i.e. manual or auto accept-all; The earlier description is when manual approval is selected. aTalk default is auto accpet-all. Under this mode, atalk will accept all incoming presence subscription request, and in return rquest the same for the sender approval. The newely added contact is grouped under Contacts. On Tue, Mar 27, 2018 at 4:55 PM, smith476 ***@***.***> wrote: > short info: with the recent update (2.0.0) the "Conversations" client on > Android is removing support for OTR. > OMEMO is now the default encryption method. > I guess all Jitsi Desktop users would be very grateful, if their > preferred client would receive OMEMO support soon, the OMEMO development > with other clients is progressing: > https://omemo.top/ > (I am only politely motivating and cannot provide support myself due to > lack of IT skills) > > — > You are receiving this because you were mentioned. > Reply to this email directly, view it on GitHub > <#199 (comment)>, or mute > the thread > <https://github.com/notifications/unsubscribe-auth/AHl0NkID3EF0fMu-0utG4DuWNaTpVvVbks5tif6egaJpZM4G7Wts> > . >

[cmeng-git]

Can you try out and let me if found any problem? There are still problem exist in ejabberd server and smack library. If you see problem or no getting approval from the contact, just logout and login the contact. - problem is at time ejabberd does not relay the request to your contact until he logout and login again. processone/ejabberd#2352 (comment) https://discourse.igniterealtime.org/t/smack-4-2-3-unexplained-exceptions-thrown-by-smack-on-various-conditions/81235 https://discourse.igniterealtime.org/t/smack-4-2-3-throws-smackexception-noresponseexception-even-when-the-stanza-is-received-within-the-timeout-period/81112/2

…

On Thu, Apr 5, 2018 at 11:55 AM, ChongMeng Eng ***@***.***> wrote: aTalk version 1.2.0 release Adding Contact In order to protect the privacy of XMPP users, presence information is disclosed only to other entities that a user has approved. When a user has agreed that another entity is allowed to view its presence, the entity is said to have a "subscription" to the user's presence. An entity that has a subscription to a user's presence or to which a user has a presence subscription is called a "contact". When you add a buddy to your contact list, aTalk actually makes a subscription request to your buddy for his/her approval. In this process, your hosted server routes your subscription request locally if the buddy is on same server; otherwise remotely with connection made to the buddy hosted server via IP derived from your buddy account service name i.e. example.org from ***@***.***". If the Fully Qualified Domain Name (DQDN) of your buddy hosted server cannot be derived from his JID account service name, the subscription request process will fail. With the current XMPP standard defined for Presence Subscription, it is therefore not possible to include buddy whom resides on a different server where his/her account JID does not contain the FQDN. You are also unable to send message to your buddy in this case since the message is delivered via server-to-server network connection. When your buddy client receives the Presence Subscription Request from hosted server, an *Authorization Reqeust* dialog is launched for hist/her approval. Your buddy may Ignore, Deny or Authorize the request. Recipocally, a Presence Subscription Request will be reverted for your approval when your buddy approved the reqeust. In the event your buddy chooses to ignore your request; any further re-authorization request from you will not trigger another Authorization Request. However the server will resend the reqeust on your behalf when the buddy has exited and login again. This process continues until user has made a decision either to Deny or Authroze the request. The "Add Contact" dialog provides the option to categorize your new contact to one of your existing defined groups or a newly created group. You may peform this grouping or moving to another group after the contact has been added. The same opton is also available to your buddy when he approves the Presence Subscription Request. aTalk has an user selectable option for presence subscribe approval mode i.e. manual or auto accept-all; The earlier description is when manual approval is selected. aTalk default is auto accpet-all. Under this mode, atalk will accept all incoming presence subscription request, and in return rquest the same for the sender approval. The newely added contact is grouped under Contacts. On Tue, Mar 27, 2018 at 4:55 PM, smith476 ***@***.***> wrote: > short info: with the recent update (2.0.0) the "Conversations" client on > Android is removing support for OTR. > OMEMO is now the default encryption method. > I guess all Jitsi Desktop users would be very grateful, if their > preferred client would receive OMEMO support soon, the OMEMO development > with other clients is progressing: > https://omemo.top/ > (I am only politely motivating and cannot provide support myself due to > lack of IT skills) > > — > You are receiving this because you were mentioned. > Reply to this email directly, view it on GitHub > <#199 (comment)>, or mute > the thread > <https://github.com/notifications/unsubscribe-auth/AHl0NkID3EF0fMu-0utG4DuWNaTpVvVbks5tif6egaJpZM4G7Wts> > . >

[stevenroose]

@vanitasvitae How is the progress going??

[stevenroose]

@vanitasvitae How is the progress going??

[vanitasvitae]

Unfortunately I'm currently very busy with other things (this years Summer of Code project), so I don't have much time to look at the OMEMO stuff. There are multiple heavy weight PRs I openend, which still need to get merged (the OMEMO PR is among them). However, I encourage the use of the OMEMO code in order to find bugs or - even better - submit fixes ;)

[vanitasvitae]

Unfortunately I'm currently very busy with other things (this years Summer of Code project), so I don't have much time to look at the OMEMO stuff. There are multiple heavy weight PRs I openend, which still need to get merged (the OMEMO PR is among them). However, I encourage the use of the OMEMO code in order to find bugs or - even better - submit fixes ;)

[stevenroose]

@vanitasvitae Doing OpenPGP in favor of OMEMO? :(

[stevenroose]

@vanitasvitae Doing OpenPGP in favor of OMEMO? :(

[vanitasvitae]

In addition :)

[vanitasvitae]

In addition :)

[MathiasRenner]

I meanwhile changed to Matrix (https://matrix.org) with the Riot client. Quite happy so far.

[MathiasRenner]

I meanwhile changed to Matrix (https://matrix.org) with the Riot client. Quite happy so far.

[ccoenen]

(good for you, not that anyone cares? If a moderator could please remove that post and mine along with it, that'd be great.)

[ccoenen]

(good for you, not that anyone cares? If a moderator could please remove that post and mine along with it, that'd be great.)

[saghul]

I don't think that comment needs to be deleted. You may disagree, and that's fine.

[saghul]

I don't think that comment needs to be deleted. You may disagree, and that's fine.

[DreamFlasher]

It's off-topic.

[DreamFlasher]

It's off-topic.