Releases: ergochat/ergo
Patch release to fix another bug!
This is a patch release of Oragono to fix discovered bugs and crashes. Yes, another one! I'll be implementing some more stringent checks to push releases after this, to ensure these same sort of bugs don't happen again.
Security
- Fixed a bug where any user joining an unregistered channel was given chanop status (thanks @vegax87).
Fixed
- Fixed a number of various crashes and races.
Patch release to fix a bug
This is a quick patch release of Oragono to work around a discovered bug.
Security
- Fixed a bug where non-logged in users could register channels. Bleh.
ChanServ, Logs, and Stability
This release brings channel registration with ChanServ, logging improvements, and a whole host of improvements across the board.
Thanks to a suggestion by dp-
on our channel (#oragono
on Freenode), the socket handling code has been overhauled to allow for a larger number of more stable connections. As well, improved testing has brought with it a bunch of strange hang and crash fixes, which means that Oragono should be more stable than ever.
Channel registration is really cool. Essentially, you register the channel with /CS REGISTER
as you would on any network, and then all topic changes, the +b/+e/+I
lists, and your founder status, are all remembered and re-applied when the server's restarted.
Config Changes
channels
section added to control channel registration.logging
key underserver
removed, replaced withlogging
section.max-sendq
key added underserver
.registration
andauthentication-enabled
keys moved underaccounts
section.samode
capability added to oper capabilities.sts
section added underserver
.
Added
- Added
ChanServ
service, to allow channel registration. - Added
USERHOST
command (thanks @vegax87). - Added
SAMODE
command. - Added draft IRCv3 capability draft/sts.
Changed
DLINE
andKLINE
now let you specify years, months and days (e.g.1y12m30d
) in durations.- Logging is now much more useful, displays colours and can log to disk.
- Socket handling has been rewritten, which means we should support more connections more effectively (thanks dp- for the suggestion!).
Fixed
- Fixed a bunch of small hangs and crashes.
- Fixed an account issue where clients could login to multiple accounts at once.
- Fixed an issue where server times were incorrect (thanks @martinlindhe!).
- Fixed halfops not being able to talk during moderated mode (
+m
). - Fixed issues that prevented rehashing after the first rehash had gone through successfully.
- Fixed the inability to view channel ban, ban exception, and invite exception lists.
KLINEs, Connection Throttling and Specifications!
We've added a ton of new features in this release! Automated connection throttling, the ability to KLINE
, updated casemapping and line-length specifications.
I've also started including a new section in the changelog called Config Changes, which should help you find what you need to update across releases.
Config Changes
enabled
key added under theconnection-limits
section.connection-throttling
section added underserver
.linelen
section added underlimits
.
Added
- Added ARM build (for Raspberry PIs and similar).
- Added automated connection throttling! See the new
connection-throttling
section in the config. - Added
KLINE
andUNKLINE
commands. ComplementingDLINE
's per-IP and per-network bans, this lets you ban masks from the server. - Added
LUSERS
command (thanks @vegax87). - Added draft IRCv3 capabilities
draft/message-tags-0.2
anddraft/message-ids
. - Added proposed IRCv3 capability
draft/maxline
.
Changed
- Changed casemapping from "rfc7700" to "rfc7613", to match new draft spec.
- Connection limits can now be freely enabled or disabled. If updating, check the new
enabled
flag under theconnection-limits
section of the config.
Fixed
- Fixed an issue where
UNDLINE
didn't save across server launches. - Removed several race conditions which could result in server panics.
- WHOIS: Multiple channels now appear in a single reply (thanks @vegax87).
Fixes, DLINEs and more fixes!
This release includes a ton of fixes, as well as the ability to ban IP addresses from your network with the DLINE
command!
As well, there are some major fixes with the libraries Oragono depends on, which fix various DoS attacks, crashes and timeouts. In short, this release is more stable and fixes a bunch of issues.
This release also updates the database, so be sure to run the oragono upgradedb
command.
Added
- Added ability to ban IP addresses and networks from the server with the
DLINE
andUNDLINE
commands. - Added alpha REST API (intended primarily for use with a future web interface to manage accounts, DLINEs, etc).
Changed
- Database upgraded to make handling accounts simpler.
- Only give chanop (
@
) on channel join, not channel founder (~
). We'll do channel founder and all on registered chans only.
Fixed
- Fix a bunch of bugs around setting nicknames on join.
- Fixed crash when using STATUSMSG-like messaging.
- Fixed crash with gIRC-Go ircmsg library we depend on.
- Fixed not sending
MODE
changes to all clients in a channel. - Fixed timeout issue with go-ident library we depend on (which caused hangs on connection).
- Prevented a DoS related to lots of clients connecting at once.
- Removed races around setting and changing
NICK
s, to be more safe. - Send channel
NOTICE
s properly.
Oper classes, ISUPPORT tokens and bugfixes
This release packs a more extensive oper privelege framework, bugfixes for capabilities/modes, support for new RP commands and more RPL_ISUPPORT
tokens. In general, a bunch of new features and bugfixes to make using Oragono more smooth.
Added
- Added automatic client connection limiting, similar to other IRCds.
- Added operator classes, allowing for more finely-grained permissions for operators.
- Length of channel mode lists (ban / ban-except / invite-except) is now restricted to the limit in config.
- Roleplaying commands, both inside channels and between clients.
- Support
MAXLIST
,MAXTARGETS
,MODES
,TARGMAX
inRPL_ISUPPORT
. - Added support for IRCv3 capability
chghost
.
Changed
- In the config file, "operator" changed to "opers", and new oper class is required.
Fixed
- Fixed being able to change modes when not an operator.
- Fixed bug where
HELP
wouldn't correctly display for operators, and added more help topics. - Fixed bug where you would always have certain capabilities enabled.
- Fixed display of large
MONITOR
lists.
REHASH, improved listeners and mode fixes
We now support dynamically reloading the config file, along with some new IRCv3 capabilities and some fixes.
The REHASH
changes are fairly extensive here, but should now be stable (this also fixes a denial of service possible with the old code).
Security
- Prevent a denial of service where the server would stop accepting connections.
Added
- Added
REHASH
command. - Added ability to message channel members with a specific privelege (i.e. support for
STATUSMSG
). - Added ability to enable and disable SASL.
- Added support for IRCv3 capabilities
cap-notify
andecho-message
.
Changed
- Server operators no longer have permissions to do everything in channels.
Fixed
- MODE: Fixed issue where channel privelege changes returned incorrectly.
Much specs. Such Unicode.
Improved compatibility, more features.
Now comes with a new proper Unicode-capable casemapping and integrated help!
Added
- Added integrated help (with the
/HELP
command). - Added support for IRCv3.2 capability negotiation including CAP values.
- Added support for IRCv3 capabilities
account-notify
,invite-notify
,monitor
,sasl
, and draft capabilitymessage-tags
asdraft/message-tags
.
Changed
- Casemapping changed from custom unicode mapping to preliminary rfc7700 mapping.
Removed
- Removed channel persistence with the
+P
mode (not too useful as currently implemented, to be replaced later). - Removed the
PROXY
command (breaks our TLS user mode, and our integrated support for TLS should be fine).
Initial Release
Somewhat of an initial release! This version still has lots of bugs and lots of functionality to rewrite, but there's a lot of useful changes from upstream.
Change notes:
Security
- PROXY command is now restricted appropriately.
- Nicknames, usernames and channel names that break the protocol are no longer allowed.
- Default channel modes set to restrict new channels more appropriately by default.
Added
- YAML config file format.
- buntdb key-value store for persistent data.
- Native SSL/TLS support (thanks to @Edmand).
- Ability to generate testing certificates from the command line.
- Support for looking up usernames with ident on client connection.
RPL_ISUPPORT
numeric as advertised by most other IRCds today.- Ability to parse complex mode change syntax commonly used these days (i.e.
+h-ov dan dan dan
). - User mode for clients connected via TLS (
+Z
). - Ability to register and login to accounts (with passphrase or certfp).
- Support for IRCv3 capabilities
account-tag
,away-notify
,extended-join
,sasl
,server-time
, anduserhost-in-names
.
Changed
- Channel creator (
O
) privilege changed to founder/admin/halfops (qah
) privileges. - Private (
+p
) channel mode changed to secret (+s
), to match what's used by servers today. - Default channel modes changed to (
+nt
), matching most other IRCds. - CLI commands and arguments made more consistent with typical software.
- Usernames set by the
USER
command now start with"~"
(to work with new ident support). - Renamed
ONICK
command toSANICK
to be more consistent with other IRCds. - Made maximum nickname and channel name lengths configurable.
- Made maximum
WHOWAS
entries configurable.
Removed
- Removed gitconfig configuration format [replaced with YAML].
- Removed sqlite database [replaced with buntdb key-value store].
- Removed
THEATER
command (it broke and I'm not that interested in putting the work in to get it working again with the aim of this project. PRs accepted).
Fixed
- Fixed clients no longer being able to send commands after a single command errored out.
- CAP: Registration is now properly suspended during CAP negotiation.
- CAP: Remove CAP CLEAR (recommended in IRCv3 3.2), and allow capability negotiation after registration.
- MODE: Fixed
<modestring>
evaluation (we were parsing all ungrabbed parameters as a modestring, when it is actually only the first param). - MODE: New-style mode change syntax (with both adding and removing modes in a single MODE command) is now parsed properly.
- MOTD: Now store MOTD in-memory rather than on-disk, and don't limit it to 80 characters per line (not required with today's servers or clients).
- NICK: Restrict nicknames that break the protocol.
- USER: Restrict usernames that break the protocol.
- PROXY: Restrict to specified hostnames only.
- WHOIS: Include the required
<nick>
param onRPL_ENDOFWHOIS
. - WHOIS: Hide hidden channels in WHOIS responses.