Skip to content

GitLab

J
jami-daemon
Switch branch/tag
  1. 19 Oct, 2020 3 commits
  3. 16 Oct, 2020 2 commits
  5. 15 Oct, 2020 1 commit
  7. 14 Oct, 2020 4 commits
  9. 13 Oct, 2020 3 commits
    • Adrien Béraud's avatar
      connectionmanager: do not call callback while locked · c932315a
      Adrien Béraud authored 
      Change-Id: I605b6ccccb83ee482a34640ba71cb9c0d548502f
      c932315a
    • Adrien Béraud's avatar
      extra/tools: update automake · 7ae5cbf5
      Adrien Béraud authored 
      Change-Id: I27edb0b8018108d10a903b7349e2eae5e8a6544e
      7ae5cbf5
    • Sébastien Le Stum's avatar
      src: hooks: remove urlhook feature · 569d44b5
      Sébastien Le Stum authored 
      This feature is mostly a relicate from SFLPhone and introduced a remote
attack vector abusing the system() function weaknesses.

Provided that "sipEnabled" parameter is on in the remote target's
configuration, a malicious peer calling that remote target could
send SIP messages with a crafted "X-ring-url" string in order to
execute arbitrary shell commands on the target.

Header entry "X-ring-url" content is actually consumed by UrlHook
as arguments for the "x-www-browser" command executed using system().

By adding a shell escape sequence to circumvent existing arguments
sanitizing attempts, the malicious peer could execute any shell command
under remote peer user's identity and access sensitive information
available using its privileges.

Remove that feature altogether and enforce users that are relying on
that feature to migrate to Jami "plugins", which are more suitable
for introducing custom Jami behaviors.

Change-Id: I1d6d07771e2b5a7c7f2cb8fc838821106c0a6708
      569d44b5
  11. 09 Oct, 2020 6 commits
  13. 08 Oct, 2020 4 commits
    • Sébastien Blin's avatar
      connectionManager: simplify states and mutex usage · cdd1f24e
      Sébastien Blin authored 
      All structures are now stored in a map<<InfoHash, Vid>, ConnectionInfo> instead
of 3 maps to manipulate states. This avoids a lot of complexity and potential
crashes

Change-Id: I003c4bd9a94b6c160911e2dcc8c4a15835a749c9
      cdd1f24e
    • Sébastien Blin's avatar
      connectionManager: make async · f175ed5f
      Sébastien Blin authored 
      Callbacks MUST be used. This patch remove the usage of waitForInitialization
and waitForNegotiation in connectionManager

Change-Id: I2be7e3b931e3d6ab7bcd71c51eca63f48668264c
      f175ed5f
    • Sébastien Blin's avatar
      jamiaccount: do not relaunch disconnected calls · 6dabec9a
      Sébastien Blin authored 
      The code to start a call from a socket should only be done for calls in
SEARCHING... Also, DISCONNECTED is state 0, so the condition didn't work
for non connected calls.

Change-Id: I65132c12f1be2ecae8e003bd4028f8b16c26001b
      6dabec9a
    • Kateryna Kostiuk's avatar
      conference: hardware acceleration for iOS · 6dadc023
      Kateryna Kostiuk authored 
      When using AV_PIX_FMT_VIDEOTOOLBOX as codec context pixel format
videotoolbox encoder will expect all frames to have format
AV_PIX_FMT_VIDEOTOOLBOX. And that is not the case for conference.
This patch change codec context pixel format to AV_PIX_FMT_NV12.

Change-Id: I1dce38786b0ad5999a8f6b701abf50c2570782b0
      6dadc023
  15. 06 Oct, 2020 1 commit
    • Sébastien Le Stum's avatar
      archiver: clarify usage of past-the-end iterator · 890ec1ed
      Sébastien Le Stum authored 
      Previous implementation was introducing ambiguity on a
potential off-by-one.

Rework the statement so it is clear that char_file_end
is to be considered as collection's end().

Change-Id: I7af6f9333c80c8a897ff21ca5ccfe2a2c268546d
      890ec1ed
  17. 05 Oct, 2020 2 commits
  19. 02 Oct, 2020 7 commits
  21. 01 Oct, 2020 4 commits
  23. 30 Sep, 2020 3 commits