[15:35:31]
<Moogle Archon> **[maranda/metronome]** visualrobots starred the repo
[16:08:15]
<Moogle Archon> **[maranda/metronome]** mdosch opened [issue #547](https://github.com/maranda/metronome/issues/547): Wrong channel binding for TLSv1.3
> Dear Maranda, for TLSv1.3 you have to use "tls-exporter" instead of "tls-unique" but Metronome uses "tls-unique" in this case (tested with lightwitch.org). Furthermore it doesn't report which channel binding methods are supported.
>
> Compare:
>
> ```
> <?xml version='1.0'?><stream:stream from='lightwitch.org' xmlns:stream='http://etherx.jabber.org/streams' id='ca92c993-ed44-40b7-b773-94750a88eaa3' xmlns='jabber:client' xml:lang='en' version='1.0'><stream:features><register xmlns='http://jabber.org/features/iq-register'/><mechanisms xmlns='urn:ietf:params:xml:ns:xmpp-sasl'><mechanism>SCRAM-SHA-512</mechanism><mechanism>SCRAM-SHA-512-PLUS</mechanism><mechanism>SCRAM-SHA-384</mechanism><mechanism>SCRAM-SHA-384-PLUS</mechanism><mechanism>SCRAM-SHA-256</mechanism><mechanism>SCRAM-SHA-256-PLUS</mechanism><mechanism>SCRAM-SHA-1</mechanism><mechanism>SCRAM-SHA-1-PLUS</mechanism><mechanism>PLAIN</mechanism></mechanisms></stream:features>
> <auth xmlns='urn:ietf:params:xml:ns:xmpp-sasl' mechanism='SCRAM-SHA-512-PLUS'>cD10bHMtZXhwb3J0ZXIsLG49bWRvc2NoLHI9Yjg5NDAwYjI1M2Y5NDA5MA==</auth>
> <failure xmlns='urn:ietf:params:xml:ns:xmpp-sasl'><malformed-request/><text>Only tls-unique binding method is currently supported</text></failure>
>
> ```
> ```
> <?xml version='1.0'?><stream:stream xmlns='jabber:client' xml:lang='en' from='mdosch.de' version='1.0' id='def2e24c-8779-42f3-ac85-247220c14432' xmlns:stream='http://etherx.jabber.org/streams'><stream:features><authentication xmlns='urn:xmpp:sasl:2'><mechanism>SCRAM-SHA-1</mechanism><mechanism>PLAIN</mechanism><mechanism>SCRAM-SHA-1-PLUS</mechanism><mechanism>OAUTHBEARER</mechanism><inline><bind xmlns='urn:xmpp:bind:0'><inline><feature var='urn:xmpp:carbons:2'/><feature var='urn:xmpp:csi:0'/><feature var='urn:xmpp:sm:3'/><feature var='urn:xmpp:sm:3'/></inline></bind><sm xmlns='urn:xmpp:sm:3'/></inline></authentication><mechanisms xmlns='urn:ietf:params:xml:ns:xmpp-sasl'><mechanism>SCRAM-SHA-1</mechanism><mechanism>PLAIN</mechanism><mechanism>SCRAM-SHA-1-PLUS</mechanism><mechanism>OAUTHBEARER</mechanism></mechanisms><sasl-channel-binding xmlns='urn:xmpp:sasl-cb:0'><channel-binding type='tls-exporter'/></sasl-channel-binding><register xmlns='http://jabber.org/features/iq-register'/><register xmlns='urn:xmpp:invite'/><register xmlns='urn:xmpp:ibr-token:0'/><limits xmlns='urn:xmpp:stream-limits:0'><max-bytes>262144</max-bytes></limits></stream:features>
> <auth xmlns='urn:ietf:params:xml:ns:xmpp-sasl' mechanism='SCRAM-SHA-1-PLUS'>cD10bHMtZXhwb3J0ZXIsLG49c2NobGVwcHRvcCxyPThhMDMxMzEwMGZlNzU5NjA=</auth>
> <challenge xmlns='urn:ietf:params:xml:ns:xmpp-sasl'>cj04YTAzMTMxMDBmZTc1OTYwZGVkOTJhMDYtZmMyYi00ODFmLWEzOGItMmI2YWQ0YTRjMjZkLHM9TkdVeFlUWmhZVEV0WXpWbU5pMDBOR1EyTFRsbE5URXRZakEwTVdKallUTXlNall4LGk9MTAwMDA=</challenge>
>
> ```
[17:14:30]
<Moogle Archon> **[maranda/metronome]** maranda added feature request to [issue #547](https://github.com/maranda/metronome/issues/547): Wrong channel binding for TLSv1.3
[17:15:55]
<Moogle Archon> **[maranda/metronome]** maranda removed feature request from [issue #547](https://github.com/maranda/metronome/issues/547): Wrong channel binding for TLSv1.3
[17:16:21]
<Moogle Archon> **[maranda/metronome]** maranda added enhancement, invalid and feature request to [issue #547](https://github.com/maranda/metronome/issues/547): Wrong channel binding for TLSv1.3
[17:16:35]
<Moogle Archon> **[maranda/metronome]** maranda [commented](https://github.com/maranda/metronome/issues/547#issuecomment-1793499714) on [issue #547](https://github.com/maranda/metronome/issues/547): Wrong channel binding for TLSv1.3:
> Hi Martin, I confirm you that for now and the foreseable future Metronome will only supports "tls-unique" as channel binding, so it correctly errors out.
>
> Although PRs in that sense are very well welcome.