prosody
83d6d6a70edf
CHANGES

Find changesets by keywords by author, files, the commit message, revision number or hash, or revset expression.

Software / code / prosody

File

CHANGES @ 11749:83d6d6a70edf

net.http: fail open if surrounding code does not configure TLS Previously, if surrounding code was not configuring the TLS context used default in net.http, it would not validate certificates at all. This is not a security issue with prosody, because prosody updates the context with `verify = "peer"` as well as paths to CA certificates in util.startup.init_http_client. Nevertheless... Let's not leave this pitfall out there in the open.
author Jonas Schäfer <jonas@wielicki.name>
date Sun, 29 Aug 2021 15:04:47 +0200
parent 11708:5ef729c355f3
child 11760:d66738eeb875
line wrap: on
line source

TRUNK
=====

-   Module statuses
-   SNI support (not completely finished)
-   CORS handling now provided by mod\_http
-   CSI improvements
-   mod\_limits: Exempted JIDs
-   Archive quotas
-   mod_mimicking: Prevent address spoofing
-   Rewritten migrator
-   SCRAM-SHA-256
-   Bi-directional server-to-server (XEP-0288)
-   Built-in HTTP server now handles HEAD requests
-   MUC presence broadcast controls
-   ALPN support in mod\_net\_multiplex
-   `daemonize` option deprecated
-   SASL DIGEST-MD5 removed
-   Switch to libunbound for DNS queries
-   DANE Support (low-level network layer)
-   mod_external_services (generic XEP-0215)
-   mod_turn_external for easy STUN+TURN XEP-0215 setup
-   util.error for encapsulating errors
-   MUC: support for XEP-0421 occupant identifiers
-   mod_http_file_share: File sharing via HTTP (XEP-0363)
-   statistics scheduling can be done by plugin
-   mod_server_contact_info now loaded on components if enabled
-   Statistics now based on OpenMetrics
-   Direct TLS support

0.11.0
======

**2018-11-18**

New features
------------

-   Rewritten more extensible MUC module
    -   Store inactive rooms to disk
    -   Store rooms to disk on shutdown
    -   Voice requests
    -   Tombstones in place of destroyed rooms
-   PubSub features
    -   Persistence
    -   Affiliations
    -   Access models
    -   "publish-options"
-   PEP now uses our pubsub code and now shares the above features
-   Asynchronous operations
-   Busted for tests
-   mod\_muc\_mam (XEP-0313 in groupchats)
-   mod\_vcard\_legacy (XEP-0398)
-   mod\_vcard4 (XEP-0292)
-   mod\_csi, mod\_csi\_simple (XEP-0352)
-   New experimental network backend "epoll"

0.10.0
======

**2017-10-02**

New features
------------

-   Rewritten SQL storage module with Archive support
-   SCRAM-SHA-1-PLUS
-   `prosodyctl check`
-   Statistics
-   Improved TLS configuration
-   Lua 5.2 support
-   mod\_blocklist (XEP-0191)
-   mod\_carbons (XEP-0280)
-   Pluggable connection timeout handling
-   mod\_websocket (RFC 7395)
-   mod\_mam (XEP-0313)

Removed
-------

-   mod\_privacy (XEP-0016)
-   mod\_compression (XEP-0138)