Ejabberd: [SCRAM] SCRAM-SHA-1-PLUS + SCRAM-SHA-256(-PLUS) + SCRAM-SHA-512(-PLUS) supports

On and on this goes. They invent new SCRAM every year (without clear migration path) and we should implement this every time? Why?

@stpeter who works on it: https://tools.ietf.org/html/draft-ietf-mile-xmpp-grid.

IANA: https://www.iana.org/assignments/sasl-mechanisms/sasl-mechanisms.xhtml

State of Play: https://github.com/scram-xmpp/info/issues/1

EDIT: @stpeter has done a good job, RFC8600 is official: https://tools.ietf.org/html/rfc8600 since 2019-06-21: https://mailarchive.ietf.org/arch/msg/ietf-announce/suJMmeMhuAOmGn_PJYgX5Vm8lNA.

So, let's say I created a password with SCRAM-SHA-512, but my another client only supports SCRAM-SHA-1, then what to do?

XMPP client devs must to update the software... ^^
The user will do the best choice :)

Yeah, sure.

Can you reopen the ticket?
There are a lot of informations now ^^

What information?
You still don't answer my main question about migration path.

For information: https://crypto.stackexchange.com/questions/66195/what-is-the-use-of-scram-sha-256-over-scram-sha-1

More details for Tigase 8.0.0+:

• For a new install in 8.0.0, and by default, a password is saved to SCRAM-SHA-1 and SCRAM-SHA-256.
  There is an option if we want to use PLAIN -> PLAIN/SHA-1/SHA-256.
• For a migration to 8.0.0, there is an option to keep PLAIN, if enabled, there will be PLAIN/SHA-1/SHA-256.

In more for Tigase 8.0.1+:

• With 8.0.1 and 8.1.0, there will be in more PLAIN (if enabled), SCRAM-SHA-1 and SCRAM-SHA-256, an option to enable SCRAM-SHA-512.

Of course, -PLUS variant work without any problems for all.

If the password was in SCRAM-SHA-1 before a migration and if we want to have SCRAM-SHA-256 (and other), a reset all passwords is needed.
Of course, it is possible to disable SCRAM-SHA-1 and/or SCRAM-SHA-256 too.

@Neustradamus how is information about Tigase relevant in this bug tracker?

It is the solution for launch improvements of the missing part in ejabberd :)

Any news on it?

The new RFC has been published by @stpeter: https://tools.ietf.org/html/rfc8600 since 2019-06-21: https://mailarchive.ietf.org/arch/msg/ietf-announce/suJMmeMhuAOmGn_PJYgX5Vm8lNA.

Goog news, there is a best article to convert old unsecured MD5 passwords to SCRAM-SHA-256 with PostgreSQL:

• https://info.crunchydata.com/blog/how-to-upgrade-postgresql-passwords-to-scram

@Neustradamus I think the problem upstream has with this is that it requires a reset of all user passwords to make use of it, as the Tigase and PostgreSQL articles also mention (the instructions for neither of them would port over to ejabberd, given that it basically comes down to "reset all passwords").

Also, what happens if a user password is stored in SCRAM-SHA256 format, but their client only supports SCRAM-SHA1? The server is unable to verify the user.
The Tigase solution seems to be to store both a SHA1 and SHA256 based version of the password, and they say they can automatically port if you have the PLAIN auth enabled. (Which, if you use it, sorta defeats the entire purpose of SCRAM I'd say?)
I think that if ejabberd wants to support SCRAM-SHA256, they should/would probably also support multiple stored passwords, to retain compatibility with clients that don't have SCRAM-SHA256, but I'm not knowledgeable of the code to a sufficient enough degree to know what that'd entail.

Basically, it's a new password storage mechanism without migration path from SCRAM-SHA1 that makes implementing this hard.

@puiterwijk: Thanks for your comment on this VERY IMPORTANT not-closed ticket but currently closed.

First, it is important to support different SCRAM possibilities.

Second part, is the migration from actual SCRAM-SHA-1 but the first part is very important!

How it is possible to have this in other XMPP servers in more than XMPP clients and not in ejabberd?

@Neustradamus as always, patches are welcome (as well as respect).

Thanks to @prefiks for SCRAM-SHA-1-PLUS + SCRAM-SHA-256(-PLUS) + SCRAM-SHA-512(-PLUS):

• https://github.com/processone/ejabberd/commit/0371b0f66471c9d340e7a9d8ad96cbfc0def66ed

@badlop: Not completely finished but @prefiks works on it.
All people can say a very, very, big thanks about this improvement in ejabberd!

After commit in ejabberd repository:

• https://github.com/processone/ejabberd/commit/0371b0f66471c9d340e7a9d8ad96cbfc0def66ed

New commits about it:

• https://github.com/processone/ejabberd/commit/72867f8d1e76da1849fe5081c8fb8ade4bbcea59
• https://github.com/processone/ejabberd/commit/1dc0ecd1e98e88617d1f1e05563012330aab4a27
• https://github.com/processone/ejabberd/commit/e5cad9be655af56c38f3fa3d91e508191f77477e

After commits in ejabberd repository:

• https://github.com/processone/ejabberd/commit/0371b0f66471c9d340e7a9d8ad96cbfc0def66ed
• https://github.com/processone/ejabberd/commit/72867f8d1e76da1849fe5081c8fb8ade4bbcea59
• https://github.com/processone/ejabberd/commit/1dc0ecd1e98e88617d1f1e05563012330aab4a27
• https://github.com/processone/ejabberd/commit/e5cad9be655af56c38f3fa3d91e508191f77477e

New commits about it:

• https://github.com/processone/ejabberd/commit/8214a4fa794855ba6cb91b1b83fa66b6608f1074
• https://github.com/processone/ejabberd/commit/7da81249f8e33e019b2b18b464091f9efef8a30c
• https://github.com/processone/ejabberd/commit/6a659d74753fceb4076ae05682916dd5244ac339
• https://github.com/processone/ejabberd/commit/af9d642a710fdcd3886fb321f73def9d05cf706a
• https://github.com/processone/ejabberd/commit/d64e453364c14b77b0f5e963237b0e35bf351657

@Neustradamus could you like...stop beating this horse?