9741ec3581
Update to 13.0.4: Fixes and improvements: * mod_s2s: Fix traceback when outgoing s2s queue is full * util.uuid: Fix padding of group 2 of UUIDv7 to use zeroes Minor changes: * core.modulemanager: Fix shell commands on components * mod_s2s: Explicitly prevent sending recursive error replies when queue is full * modulemanager: Allow component modules to specify additional inherited modules * prosodyctl check features: Use modulemanager to calculate modules that will actually be loaded * prosodyctl check features: change recommendation from mod_muc_mam to mod_mam * prosodyctl check config: Fix traceback when zero modules are enabled * mod_pubsub: Fail early if loaded outside of a component to prevent misconfiguration * doap: Add XEP-0486 * mod_pubsub/commands: Fix listing item numbers along with item names * mod_account_activity: Handle authentication provider returning no user info * mod_mam: Automatically load mod_muc_mam if loaded on a MUC component * mod_muc: Inherit mod_mam if globally loaded * See https://blog.prosody.im/prosody-13.0.4-released/
main
Michael Vetter2026-01-26 09:05:04 +01:00
3d59fd6654
Update to 13.0.3: Fixes and improvements: * mod_storage_sql: Set configurable wait time for locked SQLite3 database * net.server_event: Port TLS 1.3 channel binding method to libevent backend * mod_roster: Add command for cleaning out invalid contact JIDs * migrator: Allow migrating between different configs of the same driver * mod_admin_shell: Allow pinging any JID with xmpp:ping() * mod_invites: Accept –admin flag as shortcut for –role prosody:admin * mod_mam: Add send_legacy_offline_messages_to_mam_clients config option * mod_limits: Allow configuration of general ‘s2s’ limit, and have s2sout inherit from s2sin * mod_storage_internal: Return item-not-found for unknown before/after ids * MUC: Fixes for room avatar caching Minor changes: * core.configmanager: Fix referencing previous config options #1950 * MUC: Ensure allow MUC PM setting has valid value (fixes#1933: PM does not work on new MUCs) * mod_storage_sql: Assert that serialization of archive:set() payload succeeds * mod_smacks: Remove extra optional from sm element * mod_s2s_auth_dane_in: Fix caching SHA2-512 hash * MUC: Fix muc_room_default_presence_broadcast option not working * util.sslconfig: Fix error when applying ssl={[port]=…} * net.server_epoll: Restore idle checks after pause (e.g. rate limits) * util.jid: Validate domainparts using IDNA or as IP literals (fixes#1903: Invalid JID in Roster) * util.datamanager: Fix detection of index files created on different architectures * util.startup: Inform process manager about failure to reload config * mod_muc: Revert f4e16e6265e6 and invalidate avatar cache only on vcard change * mod_http_file_share: Improve debug logging around unexpected file sizes * mod_admin_shell: Ensure JIDs are normalized in xmpp:ping() * mod_invites: Return error when generating password reset for non-existent account * util.uuid: Update UUIDv7 to match RFC 9562 bsc#1254309: Fix starting prosody Update prodody.service with content from https://hg.prosody.im/debian/file/default/prosody.serviceMichael Vetter2026-01-23 14:41:58 +01:00
84037db923
Update to 13.0.0: Modules: * A number of popular modules have transitioned from community modules into Prosody with this release: + mod_cloud_notify + mod_http_altconnect * And the following modules are completely new: + mod_account_activity + mod_flags + mod_s2s_auth_dane_in + mod_server_info Administration: * New ‘prosodyctl check features’ recommends configuration improvements * mod_announce: Add shell commands to send messages to all users, online users, or limited by roles * New mod_account_activity plugin records last login/logout time of a user account * New ‘watch log’ command to follow live debug logs at runtime * Similarly, ‘watch stanzas’ can be used to capture XML logs in real-time Networking: * Honour ‘weight’ parameter during SRV record selection * Support for RFC 8305 “Happy Eyeballs” to improve IPv4/IPv6 connectivity * Support for TCP Fast Open in server_epoll (pending LuaSocket support) * Support for deferred accept in server_epoll (pending LuaSocket support) MUC: * Component admins are no longer room owners by default. This can be reverted to the old behaviour with component_admins_as_room_owners = true, but this has known incompatibilities with some clients. Instead, use the shell or ad-hoc commands to gain ownership of rooms when necessary. * Permissions updates: + Room creation restricted to local users (of the parent host) by default restrict_room_creation = true restricts to admins, false disables all restrictions + Persistent rooms can only be created by local users (parent host) by default muc_room_allow_persistent = false restricts to admins + Public rooms can only be created by local users (parent host) by default muc_room_allow_public = false restricts to admins * Commands to show occupants and affiliations in the Shell * Save ‘reason’ text supplied with affiliation change * Owners can set MUC avatars (functionality previously in community module mod_vcard_muc) Security and authentication: * New role and permissions framework and API * Ability to disable and enable user accounts * A “grace period” is now supported for deletion requests via in-band registration * Advertise supported SASL Channel-Binding types (XEP-0440) * Implement RFC 9266 ‘tls-exporter’ channel binding with TLS 1.3 * Implement ‘tls-server-end-point’ channel binding * Full DANE support for s2s * No longer check certificate Common Names per RFC 9525 Storage: * Performance improvements in internal archive stores * Ability to use SQLite3 storage with LuaSQLite3 instead of LuaDBI * SQLCipher support Module API for developers: * New ‘keyval+’ combined keyval/map store type * Config interface API can require that string values be picked from a provided set * Acceptable interval can be specified for number options * Method for parsing time periods / intervals from config * Method for retrieving integer settings from config * It is now easy for modules to expose a Prosody shell command, by adding a shell-command item * Modules can now implement a module.ready method which will be called after server initialization * module:depends() now accepts a second parameter ‘soft’ to enable soft dependencies Configuration file: * The configuration file now supports referring and appending to options previously set * Direct usage of the Lua API in the config file is deprecated, but can now be accessed via Lua.* instead * Convenience functions for reading values from files, with variant meant for credentials or secrets (e.g. from systemd-creds) Changed in this release: * Support sub-second precision timestamps * mod_blocklist: New option ‘migrate_legacy_blocking’ to disable migration from mod_privacy * Moved all modules into the Lua namespace prosody. * Forwarded header from RFC 7239 supported, disabled by default * mod_http_file_share now uses roles framework, affecting access from e.g. components * Intervals of mod_cron managed periodic jobs made configurable * When mod_smacks is enabled, s2s connections not responding to ack requests are closed. * Arguments to prosodyctl shell that start with ‘:’ are now turned into method calls * Support for Type=notify and notify-reload systemd service type added * Support for the roster group access_model in mod_pep * Support for systemd socket activation in server_epoll * mod_invites_adhoc gained a command for creating password resets * [mod_cloud_notify] imported from community modules for push notification support * [mod_http_altconnect] imported from community modules, simplifying web clients Removed in this release: * Lua 5.1 support * XEP-0090 support removed from mod_time * util.rfc6724 See also: * https://blog.prosody.im/prosody-13.0.0-released/ * https://prosody.im/doc/release/13.0.0Michael Vetter2025-06-02 19:28:48 +02:00
07a69e139f
Accepting request 1234586 from devel:languages:lua
Ana Guerrero2025-01-05 14:28:37 +00:00
ca423cf038
- Update to 0.12.5: Fixes and improvements: * mod_blocklist: Drop blocked messages without error, option to restore compliant behavior Minor changes: * core.certmanager: Validate that ‘tls_profile’ is one of the valid values * net.http: Throw error if missing TLS context for HTTPS request * net.http.parser: Reject overlarge header section earlier * net.http.files: Validate argument to setup function * MUC: optimizations for broadcast of visitor presence (thanks Jitsi team) * net.server_event: Add ‘wrapserver’ API * scansion: Enable blocklist compat during tests to fix CI * prosodyctl check: Warn about invalid domain names in the config file * util.prosodyctl.check: Correct modern replacement for ‘disallow_s2s’ * util.prosodyctl.cert: Ensure old cert is moved out of the way * util.prosodyctl.check: Improve error handling of UDP socket setup (for #1803) * mod_smacks: Destroy timed out session in async context (fixes#1884: ASYNC-01 in mod_smacks hibernation timeout) * mod_invites: Fix traceback when token_info isn’t set * mod_admin_shell: Allow matching on host or bare JID in c2s:show * mod_admin_adhoc: Fix log messages for reloading modules. * core.moduleapi: Default labels to empty list to fix error if omitted * mod_muc_mam: Improve wording of enable setting * mod_bookmarks: Suppress error publishing empty legacy bookmarks w/ no PEP node * mod_bookmarks: Clarify log messages on failure to sync to modern PEP bookmarks * mod_invites_adhoc: Fix result form type (thanks betarays) * mod_disco: Advertise disco#info and #items on bare JIDs to fix #1664: mod_disco on account doesn’t return disco#info feature * util.xtemplate: Fix error on applying each() to zero stanzas
Michael Vetter2025-01-02 16:07:15 +00:00
01a849586c
Accepting request 1144916 from devel:languages:lua
Ana Guerrero2024-02-07 17:50:41 +00:00
82dbe3646d
Accepting request 1144876 from home:AndreasStieger:branches:devel:languages:lua
Michael Vetter2024-02-07 12:45:42 +00:00
a307c32061
Accepting request 1144351 from home:benoit_monin:branches:devel:languages:lua
Michael Vetter2024-02-05 18:34:35 +00:00
aa7cf7c999
Accepting request 1115621 from devel:languages:lua
Ana Guerrero2023-10-05 18:03:58 +00:00
e59b950403
- Drop prosody-lua51coexist.patch - Add prosody-lua54coexist.patch
Michael Vetter2023-10-04 13:28:19 +00:00
e627c59db6
Accepting request 1114315 from home:rmax:branches:devel:languages:lua
Michael Vetter2023-09-29 11:36:01 +00:00
710df1facb
Accepting request 1109423 from devel:languages:lua
Ana Guerrero2023-09-07 19:13:19 +00:00
1829257ba4
- Update to 0.12.4: * core.certmanager: Update Mozilla TLS config to version 5.7 * util.error: Fix error on conversion of invalid error stanza #1805 * util.array: Fix new() library function * util.array: Expose new() on module table * prosodyctl: Fix output of error messages containing ‘%’ * util.prosodyctl.check: Correct suggested replacement for ‘disallow_s2s’ * util.prosodyctl.check: Allow same config syntax variants as in Prosody for some options #896 * util.prosodyctl.check: Fix error where hostname can’t be turned into A label * util.prosodyctl.check: Hint about the ‘external_addresses’ config option * util.prosodyctl.check: Suggest ‘http_cors_override’ instead of older CORS settings * util.prosodyctl.check: Validate format of module list options * mod_websocket: Add a ‘pre-session-close’ event #1800 * mod_smacks: Fix stray watchdog closing sessions * mod_csi_simple: Disable revert-to-inactive timer when going to active mode * mod_csi_simple: Clear delayed active mode timer on disable * mod_admin_shell: Fix display of remote cert status when expired etc * mod_smacks: Replace existing watchdog when starting hibernation * mod_http: Fix error if ‘access_control_allow_origins’ is set * mod_pubsub: Send correct ‘jid’ attribute in disco#items * mod_http: Unhook CORS handlers only if active to fix an error #1801 * mod_s2s: Add event where resolver for s2sout can be tweaked
Michael Vetter2023-09-07 06:34:28 +00:00
d993b24ae3
- Update to 0.12.3: Fixes and improvements: * mod_storage_sql: Don’t avoid initialization under prosodyctl (fix#1787: mod_storage_sql changes (d580e6a57cbb) breaks prosodyctl) * mod_storage_sql: Fix for breaking change in certain MySQL versions (#1639) * prosodyctl check dns: Check for Direct TLS SRV records even if not configured (#1793) Minor changes: * mod_websocket: Fire pre-session-close event (fixes#1800: mod_websocket: cleanly-closed sessions are hibernated by mod_smacks) * sessionmanager: Mark session as destroyed to prevent reentry (fixes#1781) * mod_admin_socket: Return error on unhandled input to prevent apparent freeze * configure: Fix quoting of $LUA_SUFFIX (thanks shellcheck/Zash) * net.http.parser: Improve handling of responses without content-length * net.http.parser: Fix off-by-one error in chunk parser * net.http.server: Add new API to get HTTP request from a connection * net.http.server: Fix double close of file handle in chunked mode with opportunistic writes (#1789) * util.prosodyctl.shell: Close state on exit to fix saving shell history * mod_invites: Prefer landing page over xmpp URI in shell command * mod_muc_mam: Add mam#extended form fields #1796 * mod_muc_mam: Copy “include total” behavior from mod_mam * util.startup: Close state on exit to ensure GC finalizers are called
Michael Vetter2023-02-22 07:20:04 +00:00
83391efd31
- Update to 0.12.2: Fixes and improvements: * util.stanza: Allow U+7F when constructing stazas * net.unbound: Preserve built-in defaults and Prosodys settings for luaunbound (fixes#1763: luaunbound not reading resolv.conf) * mod_smacks: Disable not implemented resumption behavior on s2s * mod_http: Allow disabling CORS in the http_cors_override option and by default Minor changes: * util.json: Accept empty arrays with whitespace (fixes#1782: util.json fails to parse empty array with whitespace) * util.stanza: Adjust number of return values to handle change in dependency of test suite (fix test with luassert >=1.9) * util.startup: Ensure import() is available in prosodyctl * mod_storage_sql: Fix initialization when called from prosodyctl * mod_storage_sql: Fix the summary API with Postgres (#1766) * mod_admin_shell: Fixes for showing data related to disconnected sessions (fixes#1777) * core.s2smanager: Don’t remove unrelated session on close of bidi session * mod_smacks: Don’t send redundant requests for acknowledgement (#1761) * mod_admin_shell: Rename commands user:roles() to user:setroles() and user:showroles() to user:roles() * mod_smacks: Bounce unhandled stanzas from local origin (fix#1759) * mod_bookmarks: Reduce log level of message about not having any bookmarks * mod_s2s: Fix firing buffer drain events * mod_http_files: Log warning about legacy modules using mod_http_files * util.startup: Wait for last shutdown steps * util.datamapper: Improve handling of schemas with non-obvious “type” * util.jsonschema: Fix validation to not assume presence of “type” field * util.jsonschema: Use same integer/float logic on Lua 5.2 and 5.3
Michael Vetter2022-12-14 08:17:39 +00:00
4eacce3548
- Update to 0.12.1: Fixes and improvements: * mod_http (and dependent modules): Make CORS opt-in by default (#1731) * mod_http: Reintroduce support for disabling or limiting CORS (#1730) * net.unbound: Disable use of hosts file by default (fixes#1737) * MUC: Allow kicking users with the same affiliation as the kicker (fixes#1724 and improves Jitsi Meet compatibility) * mod_tombstones: Add caching to improve performance on busy servers (fixes#1728: mod_tombstone: inefficient I/O with internal storage) Minor changes: * prosodyctl check config: Report paths of loaded configuration files (#1729) * prosodyctl about: Report version of lua-readline * prosodyctl: check config: Skip bare JID components in orphan check * prosodyctl: check turn: Fail with error if our own address is supplied for the ping test * prosodyctl: check turn: warn about external port mismatches behind NAT * mod_turn_external: Update status and friendlier handling of missing secret option (#1727) * prosodyctl: Pass server when listing (outdated) plugins (fix#1738: prosodyctl list --outdated does not handle multiple versions of a module) * util.prosodyctl: check turn: ensure a result is always returned from a check (thanks eTaurus) * util.prosodyctl: check turn: Report lack of TURN services as a problem #1749 * util.random: Ensure that native random number generator works before using it, falling back to /dev/urandom (#1734) * mod_storage_xep0227: Fix mapping of nodes without explicit configuration * mod_admin_shell: Fix error in ‘module:info()’ when statistics is not enabled (#1754) * mod_admin_socket: Compat for luasocket prior to unix datagram support * mod_admin_socket: Improve error reporting when socket can’t be created (#1719) * mod_cron: Record last time a task runs to ensure correct intervals (#1751) * core.moduleapi, core.modulemanager: Fix internal flag affecting logging in in some global modules, like mod_http (#1736, #1748) * core.certmanager: Expand debug messages about cert lookups in index * configmanager: Clearer errors when providing unexpected values after VirtualHost (#1735) * mod_storage_xep0227: Support basic listing of PEP nodes in absence of pubsub#admin data * mod_storage_xep0227: Handle missing {pubsub#owner}pubsub element (fixes#1740: mod_storage_xep0227 tracebacks reading non-existent PEP store) * mod_storage_xep0227: Fix conversion of SCRAM into internal format (#1741) * mod_external_services: Move error message to correct place (fix#1725: mod_external_services: Misplaced textual error message)
Michael Vetter2022-06-09 16:22:32 +00:00
ee9c2c02da
- Update to 0.12.0: Modules: * mod_mimicking: Prevent address spoofing * mod_s2s_bidi: Bi-directional server-to-server connections (XEP-0288) * mod_external_services: Generic XEP-0215 support * mod_turn_external: Easy setup of XEP-0215 for STUN/TURN for audio/video calls * mod_http_file_share: File sharing via HTTP (XEP-0363) * mod_http_openmetrics: Expose metrics to Prometheus and compatible monitoring systems * mod_smacks: Stream management and resumption (XEP-0198) * mod_auth_ldap: LDAP authentication * mod_cron: One module to rule all the periodic tasks * mod_admin_shell: New home of the Console admin interface * mod_admin_socket: Enable secure connections to the Console * mod_tombstones: Prevent re-registration of deleted accounts * mod_invites: Create and manage invites * mod_invites_register: Allow registering accounts using invites * mod_invites_adhoc: Create invites via ad-hoc command * mod_bookmarks: Synchronise open rooms between clients Security and authentication: * Unencrypted HTTP port (5280) restricted to loopback by default * require_encryption options default to ‘true’ if unspecified * Authentication module defaults to ‘internal_hashed’ if unspecified * SNI support (including automatic certificate selection) * ALPN support in mod_net_multiplex * DANE support in low-level network layer * Direct TLS support (c2s and s2s) * SCRAM-SHA-256 * Direct TLS (including https) certificates are now updated on reload * Pluggable authorization providers (mod_authz_*) * Easy use of Mozilla TLS recommendations presets
Michael Vetter2022-03-18 09:04:35 +00:00
48abe04c9d
- Update to 0.11.13: * util.xml: Break reference to help the GC (fixes#1711) * util.xml: Deduplicate handlers for restricted XML
Michael Vetter2022-01-28 16:09:53 +00:00
86cc07fb6c
- Update to 0.11.12: * util.xml: Do not allow doctypes, comments or processing instructions (CVE-2022-0217)
Michael Vetter2022-01-13 18:28:07 +00:00
b0dac0daf2
- Update to 0.11.11: Fixes and improvements: * net.server_epoll: Prioritize network events over timers to improve performance under heavy load * mod_pep: Add some memory usage limits * mod_pep: Prevent creation of services for non-existent users * mod_pep: Free resources on user deletion (needed a restart previously) Minor changes: * mod_pep: Free resources on reload * mod_c2s: Indicate stream secure state in error text when no stream features to offer * MUC: Fix logic for access to affiliation lists * net.server_epoll: Improvements to shutdown procedure #1670 * net.server_epoll: Fix potential issue with rescheduling of timers * prosodyctl: Fix to ensure LuaFileSystem is loaded when needed * util.startup: Fix handling of unknown command line flags (e.g. -h) * Fix version number reported as ‘unknown’ on *BSD
Michael Vetter2022-01-04 15:47:16 +00:00
f54994e194
Accepting request 926702 from home:jsegitz:branches:systemdhardening:devel:languages:lua
Michael Vetter2021-10-21 13:55:15 +00:00
97e2f1248a
Accepting request 912424 from devel:languages:lua
Richard Brown
2021-08-18 06:55:55 +00:00
9631f33cf0
- Update to 0.11.10: Security: * MUC: Fix logic for access to affiliation lists CVE-2021-37601 https://prosody.im/security/advisory_20210722/ Minor changes: * prosodyctl: Add ‘limits’ to known globals to warn about misplacing it * util.ip: Fix netmask for link-local address range * mod_pep: Remove obsolete node restoration code * util.pubsub: Fix traceback if node data not initialized - Update is related to: bsc#1188976 CVE-2021-37601
Michael Vetter2021-08-16 14:03:28 +00:00
d27f47b779
- Update to 0.11.8: Security: * mod_saslauth: Disable ‘tls-unique’ channel binding with TLS 1.3 (#1542) Fixes and improvements: * net.websocket.frames: Improve websocket masking performance by using the new util.strbitop * util.strbitop: Library for efficient bitwise operations on strings Minor changes: * MUC: Correctly advertise whether the subject can be changed (#1155) * MUC: Preserve disco ‘node’ attribute (or lack thereof) in responses (#1595) * MUC: Fix logic bug causing unnecessary presence to be sent (#1615) * mod_bosh: Fix error if client tries to connect to component (#425) * mod_bosh: Pick out the ‘wait’ before checking it instead of earlier * mod_pep: Advertise base PubSub feature (#1632) * mod_pubsub: Fix notification stanza type setting (#1605) * mod_s2s: Prevent keepalives before client has established a stream * net.adns: Fix bug that sent empty DNS packets (#1619) * net.http.server: Don’t send Content-Length on 1xx/204 responses (#1596) * net.websocket.frames: Fix length calculation bug (#1598) * util.dbuffer: Make length API in line with Lua strings * util.dbuffer: Optimize substring operations * util.debug: Fix locals being reported under wrong stack frame in some cases * util.dependencies: Fix check for Lua bitwise operations library (#1594) * util.interpolation: Fix combination of filters and fallback values #1623 * util.promise: Preserve tracebacks * util.stanza: Reject ASCII control characters (#1606) * timers: Ensure timers can’t block other processing (#1620)
Michael Vetter2021-02-16 11:14:38 +00:00
a9c5ab0ca8
- Update to 0.11.7: Security: * mod_websocket: Enforce size limits on received frames (fixes#1593) Fixes and improvements: * mod_c2s, mod_s2s: Make stanza size limits configurable * Add configuration options to control Lua garbage collection parameters * net.http: Backport SNI support for outgoing HTTP requests (#409) * mod_websocket: Process all data in the buffer on close frame and connection errors (fixes#1474, #1234) * util.indexedbheap: Fix heap data structure corruption, causing some timers to fail after a reschedule (fixes#1572)
Michael Vetter2020-10-02 08:02:10 +00:00
eafed21799
- Update to 0.11.6: Fixes and improvements: * mod_storage_internal: Fix error in time limited queries on items without ‘when’ field, fixes#1557 * mod_carbons: Fix handling of incoming MUC PMs #1540 * mod_csi_simple: Consider XEP-0353: Jingle Message Initiation important * mod_http_files: Avoid using inode in etag, fixes#1498: Fail to download file on FreeBSD * mod_admin_telnet: Create a DNS resolver per console session (fixes#1492: Telnet console DNS commands reduced usefulness) * core.certmanager: Move EECDH ciphers before EDH in default cipherstring (fixes#1513) * mod_s2s: Escape invalid XML in loggin (same way as mod_c2s) (fixes#1574: Invalid XML input on s2s connection is logged unescaped) * mod_muc: Allow control over the server-admins-are-room-owners feature (see #1174) * mod_muc_mam: Remove spoofed archive IDs before archiving (fixes#1552: MUC MAM may strip its own archive id) * mod_muc_mam: Fix stanza id filter event name, fixes#1546: mod_muc_mam does not strip spoofed stanza ids * mod_muc_mam: Fix missing advertising of XEP-0359, fixes#1547: mod_muc_mam does not advertise stanza-id Minor changes: * net.http API: Add request:cancel() method * net.http API: Fix traceback on invalid URL passed to request() * MUC: Persist affiliation_data in new MUC format * mod_websocket: Fire event on session creation (thanks Aaron van Meerten) * MUC: Always include ‘affiliation’/‘role’ attributes, defaulting to ‘none’ if nil * mod_tls: Log when certificates are (re)loaded * mod_vcard4: Report correct error condition (fixes#1521: mod_vcard4 reports wrong error) * net.http: Re-expose destroy_request() function (fixes unintentional API breakage) * net.http.server: Strip port from Host header in IPv6 friendly way (fix#1302) * util.prosodyctl: Tell prosody do daemonize via command line flag (fixes#1514) * SASL: Apply saslprep where necessary, fixes#1560: Login fails if password contains special chars * net.http.server: Fix reporting of missing Host header * util.datamanager API: Fix iterating over “users” (thanks marc0s) * net.resolvers.basic: Default conn_type to ‘tcp’ consistently if unspecified (thanks marc0s) * mod_storage_sql: Fix check for deletion limits (fixes#1494) * mod_admin_telnet: Handle unavailable cipher info (fixes#1510: mod_admin_telnet backtrace)
Michael Vetter2020-09-11 08:50:42 +00:00
9dd8cbb4ef
- Update to 0.11.5: Fixes and improvements: * prosody / mod_posix: Support for command-line flags to override ‘daemonize’ config option Minor changes: * mod_websocket: Clear mask bit when reflecting ping frames (fixes#1484: Websocket masks pong answer)
Michael Vetter2020-03-26 07:31:19 +00:00
c3e09f1246
- Update to 0.11.4: Fixes and improvements: * core.rostermanager: Improve performance by caching rosters of offline #1233 * mod_pep: Handling subscriptions more efficiently #1372 Minor changes: * util.interpolation: Support unescaped variables with more modifiers #1452 * MUC: Mark source of historic messages correctly #1416 * mod_auth_internal_hashed: Pass on errors #1477 * mod_mam, mod_muc_mam: Improve logging of failures #1478, #1480, #1481 * mod_muc, mod_muc_mam: Reschedule message expiry in case of failure * mod_mam: Add flag to session when it performs a MAM query * prosodyctl check: Warn about conflict between mod_pep and mod_pep_simple * prosodyctl check: Warn about conflict between mod_vcard and mod_vcard_legacy #1469 * core.modulemanager: Disable mod_vcard if mod_vcard_legacy is enabled to prevent conflict #1469 * MUC: Strip tags with MUC-related namespaces from private messages #1427 * MUC: Don’t advertise registration feature on host #1451 * mod_vcard_legacy: Fix handling of empty photo elements #1432 * mod_vcard_legacy: Advertise lack of avatar correctly #1431 * prosodyctl: Handle if the setting proxy65_address has the wrong type * prosodyctl: Print a blank line to improve spacing and readability * MUC: Fix role loss in Nickname change #1466 * util.pposix: Fix reporting of memory usage in 2-4GB range #1445 * util.startup: Fix a regression concerning directory paths #1430 * mod_websocket: Don’t mask WebSocket pong answers #1484 * net.resolvers: Apply IDNA conversion to ascii for DNS lookups (affects only HTTP queries) #1426 * net.resolvers.basic: Fix resolution of IPv6 literals (in brackets) #1459Michael Vetter2020-01-20 08:16:52 +00:00
a7ac403e13
- Update to 0.11.3: * MUC: Advertise XEP-0410 support * mod_muc_mam: Import cleanup mechanism from mod_mam (fixes#672: mod_muc_mam: Archive expiry) * mod_bosh: Handle missing wait attribute (fixes#1288: BOSH: Traceback on missing ‘wait’ attribute) * mod_storage_sql: Handle SQLite DELETE with LIMIT being optional (fixes#1359: Sqlite3 archive_store:delete error in prepared statement) * mod_c2s: Fixed#1313: attempt to call a field ‘data’ (a nil value)) * net.server_epoll: Restore wantread flag after pause (fixes#1354: server_epoll: Race in chunked reads) * util.encodings: Allow unassigned code points in ICU mode to match libidn behavior (fixes#1348: Different treatment of unassigned code points between libidn and ICU ) * util.ip: Add missing netmask for 192.168⁄16 range (fixes#1343) * util.hashes: Use HMAC function provided by OpenSSL (fixes#1345: util.hashes: HMAC-SHA-512 implementation broken) * net.dns: Close resolv.conf handle when done (fixes#1342) * mod_websocket: Clone stanza before mutating (fixes#1398: mod_websocket leaks explicit xmlns attr) * mod_announce: Check for admin on current virtualhost instead of global (fixes#1365: “host admins” should be able to use mod_announce as well as “global admins”) (thanks yc) * mod_blocklist: Trigger resend of presence when unblocking a contact (fixes#1380: Prosody does not send presence when unblocking (XEP-0191)) * mod_vcard_legacy: Multiple improvements (fixes#1289: mod_vcard_legacy upgrade experience): - mod_vcard_legacy: Don’t overwrite existing PEP data - mod_vcard_legacy: Handle partial migration - mod_vcard_legacy: Allow disabling vcard conversion - mod_vcard_legacy: Adapt node defaults to number of avatars * mod_muc_mam: Strip the stanza ‘to’ attribute (fixes#1259: [muc_mam] forwarded stanza has a “to” attribute while spec says it MUST NOT) * util.pubsub: Validate node configuration on node creation (fixes#1328: Pubsub: Node configuration not validated on node creation) * mod_pep/mod_pubsub: Simplify configuration for storage of node data (fixes#1320) * MUC: Fix delay@from to be room JID (fixes#1416: MUC: Wrong delay@from on historic messages) * mod_mam/mod_muc_mam: Cache last date that archive owner has messages to reduce writes (fixes#1368: Archive cleanup doubles number of storage access) * mod_mam: Perform message expiry based on building an index by date (backport of 39ee70fbb009 from trunk) - For details see: https://blog.prosody.im/prosody-0.11.3-released/ - Remove prosody-0.11-upstream-fixes.patch
Michael Vetter2019-10-07 05:23:05 +00:00
2a675113ab
- bsc#1141599: Add upstream fixes on 0.11 branch since 0.11.2 * Add prosody-0.11-upstream-fixes.patch: Up to 9712:7a36b7ac309b
Michael Vetter2019-07-16 08:49:20 +00:00
5f0328f88c
Accepting request 698169 from devel:languages:lua
Yuchen Lin2019-04-26 20:55:19 +00:00
b7053d1234
- bsc#1130588: Require shadow instead of old pwdutils
Michael Vetter2019-04-26 10:58:37 +00:00
c5287e4917
- Update to 0.11.0: * Rewritten more extensible MUC module + Store inactive rooms to disk + Store rooms to disk on shutdown + Voice requests + Tombstones in place of destroyed rooms * PubSub features + Persistence + Affiliations + Access models + "publish-options" * PEP now uses our pubsub code and now shares the above features * Asynchronous operations * Busted for tests * mod\_muc\_mam (XEP-0313 in groupchats) * mod\_vcard\_legacy (XEP-0398) * mod\_vcard4 (XEP-0292) * mod\_csi, mod\_csi\_simple (XEP-0352) * New experimental network backend "epoll" - For more details see: * https://blog.prosody.im/prosody-0-11-0-released/ * https://prosody.im/doc/release/0.11.0#upgrade_notes - Remove prosody-makefile.patch: configure supports --libdir now - Update prosody-configure.patch: no libdir manipulation required - Update prosody-cfg.patch: refresh and remove posix part. It's enabled by default.
Michael Vetter2018-11-22 11:57:59 +00:00
1bef83d077
- Update to 0.10.1: Security: * SQL: Ensure user archives are purged when a user account is deleted (fixes #1009[1]) Fixes and improvements: * Core: More robust signal handling (fixes #1047[2], #1029[3]) * MUC: Ensure that elements which match our from are stripped (fixes #1055[4]) * MUC: More robust handling of storage failures (fixes #1091[5], #1091[5]) * mod_mam: Ensure a user's archiving preferences apply even when they are offline (fixes #1024[6]) * Compatibility improvements with LuaSec 0.7, improving curve support * mod_stanza_debug: New module that logs full stanzas sent and received for debugging purposes * mod_mam: Implement option to enable MAM implicitly when client support is detected (#867[7]) * mod_mam: Add an option for whether to include 'total' counts by default in queries (for performance) * MUC: send muc#stanza_id feature as per XEP-0045 v1.31 (fixes #1097[8]) Minor changes: * SQL: Suppress error log if a transaction failed but was retried ok * core.stanza_router: Verify that xmlns exists for firing stanza/iq/xmlns/name events (fixes #1022[9]) (thanks SamWhited) * mod_carbons: Synthesize a 'to' attribute for carbons of stanzas to "self" (fixes #956[10]) * Core: Re-enable timestamps by default when logging to files (fixes #1004[11]) * HTTP: Report HTML Content-Type on error pages (fixes #1030[12]) * mod_c2s: Set a default value for c2s_timeout (fixes #1036[13]) * prosodyctl: Fix traceback with lfs < 1.6.2 and show warning * Fix incorrect '::' compression of a single 0-group which broke some IPv6 address matching * mod_dialback: Copy function from mod_s2s instead of depending on it, which made it harder to disable s2s (fixes #1050[14]) * mod_storage_sql: Add an index to SQL archive stores to improve performance of some queries * MUC: Don't attempt to reply to errors with more errors (fixes #1122[15]) * Module API: Fix parameter order to http client callbacks * mod_blocklist: Allow mod_presence to handle subscription stanzas before bouncing outgoing presence (fixes #575[16]) * mod_http_files: Fix directory listing cache entries not expiring (fixes #1130[17])
Michael Vetter2018-05-16 08:07:51 +00:00
668344bf9e
- Update to 0.10.0: See https://blog.prosody.im/prosody-0-10-0-released/ for details - Remove because contained in new upstream: * prosody-upstream-0.9-branch-fixes-since-0.12-tag.patch * prosody-backport-555.patch * prosody-local-socket.patch - Update: * prosody-configure.patch * prosody-makefile.patch * prosody-cfg.patch
Michael Vetter2017-10-03 09:33:36 +00:00
94dff9e759
- Update prosody-upstream-0.9-branch-fixes-since-0.12-tag.patch: * mod_c2s: Iterate over child tags instead of child nodes in stream error (fixes traceback from #987) * mod_component, mod_s2s: Iterate over child tags instead of child nodes (can include text) in stream error (same as 176b7f4e4ac9)
Michael Vetter2017-09-15 08:02:12 +00:00
d8bb06aff9
- Add prosody-upstream-0.9-branch-fixes-since-0.12-tag.patch to get the following bugfixes: * core.rostermanager: Add method for checking if the user is subscribed to a contact * mod_presence: Send probe once subscribed (fixes#794) * mod_net_multiplex: Enable SSL on the SSL port (fixes#803) * mod_register: Require encryption before registration if c2s_require_encryption is set (fixes#595) * mod_saslauth: Log SASL failure reason * mod_disco: Correctly set the 'node' attr (fixes#449) * mod_bosh: Update session.conn to point to the current connection (fixes#890) * net.dns: Simplify expiry calculation (fixes#919) * mod_watchregistrations: Return the pointer to the root of the stanza, fixes#922. * mod_disco: Add an account/registered identity on subscribed accounts, fixes#826. * mod_welcome: Return the pointer to the root of the stanza, fixes a bug similar to #922. * net.dns: Prevent answers from immediately expiring even if TTL=0 (see #919) * mod_saslauth: Use correct varible name (thanks Roi) * util.dependencies: Add compatibility code for LuaSocket no longer exporting as a global * util.dependencies: Add comment about LuaSec compat
Michael Vetter2017-08-03 21:11:31 +00:00
0e5a8920d2
Accepting request 512292 from home:jengelh:branches:devel:languages:lua
Tomáš Chvátal
2017-07-24 14:27:15 +00:00
fadd2bf246
- Add patch to fix crash "attempt to index global 'socket'": * prosody-local-socket.patch
Tomáš Chvátal
2017-07-20 16:00:42 +00:00
eb58c45e88
- Drop the systemd conditional as all systems have systemd now for our purposes. - Switch back to lua5.1 as 0.9 prosody works only with that
Tomáš Chvátal
2017-07-20 14:29:15 +00:00
7a5c3776ad
- Build against lua5.3 instead of lua5.1
Tomáš Chvátal
2017-07-14 15:09:34 +00:00
b81dc35027
- Fix build with namespaced lua
Tomáš Chvátal
2017-07-11 09:35:14 +00:00
4d4b30747d
Accepting request 449746 from home:lemmy04
Marguerite Su2017-01-12 08:56:46 +00:00
55a26ab348
- Update to 0.9.12: * Dependencies: Fix certificate verification failures when using LuaSec 0.6 (fixes#781) * mod_s2s: Lower log message to 'warn' level, standard for remotely-triggered protocol issues * certs/Makefile: Remove -c flag from chmod call (a GNU extension) * Networking: Prevent writes after a handler is closed (fixes#783)
Michael Vetter2017-01-11 09:07:46 +00:00
7824b8f354
- Update to 0.9.11: * HTTP parser: Improve buffering of incoming HTTP data and add size limits (#603) * Sessionmanager: Fix for an issue which caused people to be kicked from conferences if mod_smacks was enabled (#648) * Dependencies: Workaround for compatibility with LuaSec 0.6 (#749) * MUC: Accept missing form as "instant room" request (#377) * C2S: Fix issues with destroying disconnected connections (#590), (#641) * mod_privacy: Fix selection of the top resource(s) #694 * mod_presence: Make sure both users get each others presence after adding each other (#673) * mod_http_files: Fix traceback when serving a non-wildcard path (#611) * mod_http_files: Preserve a trailing slash in paths (#639) * util.datamanager: Fix error handling (#632) * net.server_event: Fix internal socket API to allow writing from socket.ondrain callback (#661) * net.server_event: Fix timeout (commit 1909bde0e79f) * net.server_event: Fix traceback due to write during TLS handshake (commit c774622ad9db) * net.server_event: Fix buffer length check (commit 206f9b0485ad) - Remove prosody-upstream-0.9-branch-fixes.patch: included in update
Michael Vetter2016-11-04 16:23:40 +00:00
9fea597131
- Add prosody-upstream-0.9-branch-fixes.patch: Upstream pushes all fixes for a certain release to its own branch. See: https://prosody.im/files/branches_explained.png After some time, mostly when a security bug is found, they do a new minor release. The fixes however are often needed to make prosody run smoothly with its community modules. Thus I monitor them and add the patch set. It's only fixes no new features.
Michael Vetter2016-09-15 10:01:11 +00:00
29947b77ce
- Remove prosody-rpmlintrc: Not needed since last cleanup
Michael Vetter2016-06-17 15:11:42 +00:00
94d11bfc62
Accepting request 397417 from home:jubalh:branches:devel:languages:lua
Marguerite Su2016-06-06 17:16:22 +00:00
b55e9ba4dd
Accepting request 397406 from home:jubalh:branches:devel:languages:lua
Marcus Rueckert2016-05-23 10:13:05 +00:00
ec671d9dd8
Accepting request 358822 from home:jubalh:branches:devel:languages:lua
Marguerite Su2016-02-15 04:38:45 +00:00
Michael Vetter
Ana Guerrero
Dominique Leuenberger
Matej Cepl
Richard Brown
Yuchen Lin
Tomáš Chvátal
Marguerite Su
Marcus Rueckert
