Skip to content

Openfire 5.0.0 Release

Latest
Latest
Compare
Choose a tag to compare
@akrherz akrherz released this 20 Jun 13:08
· 37 commits to main since this release
v5.0.0
68a5d6b
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Improvement

  • [OF-2132] - Use CRL as provided by CA
  • [OF-2134] - Restore and improve Certificate Revocation support
  • [OF-2280] - Guard against S2S connection inconsistency in cluster
  • [OF-2453] - Disable Connection Manager ports by default
  • [OF-2785] - Add IPv6 support when evaluating Client Session IP addresses
  • [OF-2786] - IPv6/IPv4 fallback
  • [OF-2787] - Add IPv6-specific documentation
  • [OF-2811] - Do not block Netty EventLoop threads
  • [OF-2821] - Allow session-summary to display resource string
  • [OF-2859] - Rename MUCRole
  • [OF-2862] - Refactor 'role' and 'affiliation' related privileges
  • [OF-2871] - Allow optional password for alternate venue when destroying room
  • [OF-2876] - Rise minimal required JRE to 17
  • [OF-2877] - Reproducible builds
  • [OF-2889] - i18n properties: don't convert from UTF-8 to Latin1
  • [OF-2892] - Available Plugins page: redesign to make Documentation easier to see
  • [OF-2902] - Update commons-fileupload for transitive CVE
  • [OF-2903] - Upgrade Sitemesh
  • [OF-2914] - Reduce verbosity of TLS issues
  • [OF-2919] - Don't let XMPP-decoder decode TLS's End-of-Transmission
  • [OF-2924] - Reduce duplicate code in Multi-providers
  • [OF-2926] - Add documented configuration options for LdapAuthProvider's cache
  • [OF-2927] - Allow LDAP alternateBaseDN to be configured in admin console
  • [OF-2928] - Improve parallel execution of multi-providers
  • [OF-2939] - Show plugin warning on index page
  • [OF-2940] - Run all plugin database update scripts
  • [OF-2942] - S2S outbound can give up faster when encryption and/or auth mechanisms are exhausted
  • [OF-2945] - Suppress warning during JSPC precompilation
  • [OF-2950] - RemoteSessionLocator should ignore local node
  • [OF-2951] - Faster log-in \(with federated contacts\)
  • [OF-2955] - Update PostgreSQL JDBC driver to 42.7.7
  • [OF-2958] - Bump up timeout for MUC non-responsiveness check
  • [OF-2967] - Remove newline before presence in ClientSession toString
  • [OF-3027] - Give parent eventloop threads a recognizable name
  • [OF-3028] - Netty threads from 'child' eventloop should use Netty-default settings
  • [OF-3030] - "Setting locale to X" isn't a warning
  • [OF-3033] - Modify Stream Management to account for short-lived background apps
  • [OF-3034] - Stream Management optional close shouldn't log error
  • [OF-3035] - Failure to get address from detached session over cluster shouldn't log an error
  • [OF-3036] - Improve log messages when unable to connect to a remote host that is unreachable
  • [OF-3038] - Reduce verbosity of Socket Connection reset log messages \(c2s only\)
  • [OF-3048] - Load time of session-summary admin page in a cluster
  • [OF-3052] - Consistently use pagination for ad-hoc commands
  • [OF-3055] - When removing XML elements, don't expect there to be only one.
  • [OF-3056] - Reduce reliance on RoutingTable when processing directed presence
  • [OF-3059] - Deprecate concept of 'anonymous route'
  • [OF-3061] - Improve DB query to get last pubsub items
  • [OF-3062] - Ignore unexpected 'subscription' values in Roster Set
  • [OF-3063] - CAPS calculation debug info
  • [OF-3065] - Allow Connection Manager DirectTLS endpoint configuration
  • [OF-3067] - Bump up xmpp.server.outgoing.max.threads
  • [OF-3068] - SocketUtil should give up sooner
  • [OF-3071] - Replace Pull Parser \(XPP3\) library for compat with Java 11
  • [OF-3078] - JDBCAuthProvider: Default bcrypt log rounds 10
  • [OF-3079] - Backwards compat plugins
  • [OF-3083] - SerializingCache should dereference classes when unused

Task

  • [OF-2717] - Migrate to Jetty 12
  • [OF-2722] - Phase out commons-fileupload
  • [OF-2729] - Setup IPv6 tests
  • [OF-2754] - Deprecate FastDateFormat
  • [OF-2793] - Include Oracle Database Driver in distribution
  • [OF-2905] - Update Maven Wrapper to 3.3.2
  • [OF-2943] - Update database used by unit tests
  • [OF-2956] - Drop unused database table ofSASLAuthorized
  • [OF-2961] - Update Netty to 4.1.118
  • [OF-3051] - Update to Tinder 2.1.0
  • [OF-3082] - Allow SerializingCache to use 'raw' types
  • [OF-3084] - Remove code that is deprecated and scheduled for removal in 5.0.0

New Feature

  • [OF-2607] - Implement XEP-0421: Anonymous unique occupant identifiers for MUCs
  • [OF-2760] - Add option to tombstone/retire a MUC upon deletion, preventing the name from use in the future
  • [OF-2885] - TaskEngine jobs to support Future
  • [OF-2916] - Add option to delete history on room deletion
  • [OF-2917] - Add option to preserve room history on room deletion
  • [OF-2918] - Add option to clear history for a given MUC
  • [OF-2923] - Use more than one AD/LDAP server
  • [OF-2925] - Have multi-providers for groups
  • [OF-2952] - Alert admins that certificate is about to expire
  • [OF-3053] - Add support for XEP-0433: Extended Channel Search
  • [OF-3090] - Add Italian translation
  • [OF-3091] - Add Turkish translation
  • [OF-3092] - Add Swedish Language

Sub-task

  • [OF-2861] - Rename MUCRole, breaking changes
  • [OF-2973] - Remove empty <script> element in main.jsp decorator
  • [OF-2974] - Remove inline <script> elements in connection management pages
  • [OF-2975] - Remove empty <script> element in setup-datasource-jndi.jsp
  • [OF-2982] - Replace inline <script> element in setup-host-settings.jsp
  • [OF-3011] - Replace inline <script> element in user-roster-add.jsp
  • [OF-3012] - Replace inline <script> element in user-search.jsp
  • [OF-3085] - Deprecate custom Base64 implementation
  • [OF-3086] - Remove deprecated date/time API usage
  • [OF-3087] - Remove deprecated PluginManager#getPlugin
  • [OF-3088] - Refactor Cache Locking implementation

Bug

  • [OF-2397] - Subscription change requests for shared contacts are partially processed
  • [OF-2437] - Primary Key constraint violations when flushing pubsub nodes
  • [OF-2526] - Support systemd for Debian
  • [OF-2631] - Access model of leaf nodes is ignored
  • [OF-2784] - IPv6 addresses should be usable in Registration&Login settings
  • [OF-2865] - A moderator SHOULD NOT be allowed to revoke moderation privileges from someone with a higher affiliation than themselves
  • [OF-2883] - Base64 decoding issue preventing startup (after upgrade to 4.9.0)
  • [OF-2904] - Invalid OtherName parsing of TLS certificates
  • [OF-2911] - NPE: Cannot invoke "java.lang.StringBuilder.length()" because "this.buffer" is null
  • [OF-2912] - Admin Console reports DNS Issue while dns-check.jsp reporting no issue
  • [OF-2915] - Database statistics don't observe end-time
  • [OF-2930] - Vulnerability discovered in netty-common- 4.1.108.Final.jar CVE-2024-47535
  • [OF-2935] - Unable to set the 'Retire room names on deletion..' check box in a clustered environment
  • [OF-2938] - Missing warnings for incompatible plugins
  • [OF-2941] - Incorrect detection of plugin update with SNAPSHOTs
  • [OF-2948] - Openfire 5.0.0 Alpha RPM workflow failed to generate a proper artifact
  • [OF-2949] - Mac happyeyeballs test failures
  • [OF-2959] - Plugin download in audit log
  • [OF-2960] - RPM build fails in new OJDBC driver
  • [OF-2966] - Race condition in BOSH logout leads to inconsistent state
  • [OF-3026] - Race condition in RoutingTable lead to inconsistent state
  • [OF-3029] - False postivie for "Client route not found for route {}, while user session still existed"
  • [OF-3031] - Detached clients generate errors in log when inspected (clustering)
  • [OF-3040] - Base64 decoding issue when resizing avatars
  • [OF-3041] - LocalOutgoingServer's canProcess error handling introduces deadlock
  • [OF-3043] - Get Idle Users command is implemented but not returned in Disco
  • [OF-3044] - Cache inconsistency: routeOwnersByClusterNode out of sync
  • [OF-3046] - MultiUserProvider should only use supported fields
  • [OF-3047] - LDAP Authentication Password 'authpassword' value
  • [OF-3049] - Session overview page error in cluster
  • [OF-3050] - Client session sorting on last activity issue
  • [OF-3054] - HybridUserProvider throws IndexOutOfBoundsException
  • [OF-3064] - Roster versioning doesn't generate usable identifiers
  • [OF-3069] - Not all elements in sessionInfosByClusterNode exist in Client Session Info Cache.
  • [OF-3072] - Incorrect presence probe processing
  • [OF-3076] - Launcher XML config parser XXE
  • [OF-3089] - Inconsistent property name usage for S2S max idle time

sha256sum values

389c5cfbe7adfb169f6a741cd2a7006550631daa6a471b1302b86e0bd83fd22f  openfire-5.0.0-1.noarch.rpm
de21c16a4dfdf08c0635c503796c685d7d99ceba07841f27fe0780982d0d9460  openfire_5.0.0_all.deb
6808bc58168e2b73fe94ef706b8d5052ab7f48acca26bcc36d08c5e5c1e90a4f  openfire_5_0_0.dmg
4f4b9f340d79a12dfbff9711b47c1fd1ddef7495adc61953bb79c4f5e1557070  openfire_5_0_0.exe
9ca32b33f960e642fd502616726c51749fbf76678cbb0d097a12634356f10218  openfire_5_0_0.tar.gz
e21268131425321716582ba32fff56cb34b9fc0b95623898f59cac29dbbff7cc  openfire_5_0_0_x64.exe
8031a12acb8fd3bdd631d336e93af0f227fb5a193b5ad254a49564b7f02dddee  openfire_5_0_0.zip
Assets 9
Loading