This issue affects a version of Openfire that is as of yet unreleased. It should not affect anyone running a proper release of Openfire. It is introduced by .
When setting up an outbound server-to-server connection, the connection times out after SASL EXTERNAL is being started. This only seems to affect the DirectTLS (port 5270) connections. StartTLS (port 5269) works. I’m consistently reproducing this between netty02 and conversations.im, but it occurs with other servers too. It happens for TLSv1.2 and v1.3 alike.
Attached is a log dump that shows this issue while trying to connect to disroot.org
Tested disroot.org from Ignite on 5269 and from netty01 on 5270 (the latter with mutual auth disabled and wanted, although uncertain if that makes any difference in directTLS) - all successful.
Alex Gidman October 11, 2023 at 12:43 PM
A little bit more info on this; it appears that this may be due a malformed stream error
This issue affects a version of Openfire that is as of yet unreleased. It should not affect anyone running a proper release of Openfire. It is introduced by .
When setting up an outbound server-to-server connection, the connection times out after SASL EXTERNAL is being started. This only seems to affect the DirectTLS (port 5270) connections. StartTLS (port 5269) works. I’m consistently reproducing this between netty02 and conversations.im, but it occurs with other servers too. It happens for TLSv1.2 and v1.3 alike.
Attached is a log dump that shows this issue while trying to connect to disroot.org