Bug 28503 - Properly validate JIDs with Nameprep, Nodeprep and Resourceprep profiles of Stringprep
Summary: Properly validate JIDs with Nameprep, Nodeprep and Resourceprep profiles of S...
Status: NEW
Alias: None
Product: Wocky
Classification: Unclassified
Component: General (show other bugs)
Version: unspecified
Hardware: Other All
: medium normal
Assignee: Telepathy bugs list
QA Contact: Telepathy bugs list
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2010-06-11 07:35 UTC by Will Thompson
Modified: 2010-06-11 07:35 UTC (History)
0 users

See Also:
i915 platform:
i915 features:

Attachments

Description Will Thompson 2010-06-11 07:35:53 UTC 
Currently Wocky does really minimal validation and normalization of JIDs:

• the name part is checked for any of: "&'/:<>@
• the domain part is checked for being non-empty
• the resource part is not checked for anything (which is right!)

and then all three are lowercased.

XMPP Core §3.2–4 <http://xmpp.org/rfcs/rfc3920.html#addressing-domain> says that clients SHOULD apply these profiles before comparing JIDs (so we're not actively violating it). But we probably should anyway.

Use of freedesktop.org services, including Bugzilla, is subject to our Code of Conduct. How we collect and use information is described in our Privacy Policy.