Skip to content
Pre-release

@slingamn slingamn released this May 25, 2020 · 2 commits to master since this release

We're pleased to be publishing the release candidate for 2.1.0 (the official release should follow in a week or so).

Since the release of 2.0.0 in March, a number of new communities and organizations have adopted Oragono as a communications tool. This new release incorporates many improvements and fixes derived from the experiences of real-world operators and end users. Highlights include:

  • Native support for websockets contributed by @hhirtz, eliminating the need for a separate websockets-to-IRC proxy server
  • Tighter control over the relationship between account names and nicknames, eliminating the need for extbans
  • Support for sending account verification emails directly from Oragono, including DKIM signatures

Many thanks to @ajaspers and @hhirtz for contributing patches, to @ajaspers, @eklitzke, and @hhirtz for contributing code reviews, to @ajaspers, @bogdomania, @clukawski, Csibesz, @csmith, @eklitzke, @nxths, @hhirtz, @jesopo, @jlnt, @justjanne, @jwheare, @k4bek4be, @kula, @kylef, @Mitaka8, @petteri, @PizzaLover2007, @prawnsalad, @RyanSquared, savoyard, and @xPaw for reporting issues, and to @bogdomania, @boppy, Nuve, stickytoffeepuddingwithcaramel, and @vegax87 for contributing translations. for contributing translations.

This release includes changes to the config file format, including one breaking change: support for server.ip-cloaking.secret-environment-variable has been removed. (See below for instructions on how to upgrade if you were using this feature.) All other changes to the config file format are backwards compatible and do not require updating before restart.

This release includes a database change. If you have datastore.autoupgrade set to true in your configuration, it will be automatically applied when you restart Oragono. Otherwise, you can update the database manually by running oragono upgradedb (see the manual for complete instructions).

This release includes a change to the MySQL schema. This change will be applied automatically when you restart Oragono. It is fully backwards compatible (i.e., if it is necessary for you to downgrade Oragono back to 2.0.0, it will not be necessary to downgrade the schema).

Config Changes

  • Added websocket attribute of individual listeners, and a new server.websockets section, for configuring websocket listeners. (#967, thanks @hhirtz!)
  • The recommended default is now to enable IP cloaking. In order to facilitate this, the cloaking secret is now stored in the database, instead of the config file. If you currently have a secret stored in the config file (as server.ip-cloaking.secret), it will be automatically imported into the database. If you were using secret-environment-variable to distribute your cloaking secret, you can import it manually after restart using the new /HOSTSERV SETCLOAKSECRET command. (#952)
  • Added accounts.nick-reservation.force-nick-equals-account, which ensures that logged-in clients are using their account name as their nickname. This eliminates the need for extbans and is a new recommended default. (#864)
  • Added guest-nickname-format and force-guest-format, which optionally add a prefix like Guest- to the nicknames of unauthenticated users (#749)
  • The recommended default is now to enable history storage and playback, with messages expiring after 7 days. (As with all changes in recommended config values, applying this to an existing config file requires explicitly changing the values.) (#1030)
  • Added history.retention section for controlling new features related to history storage and deletion (#858)
  • The recommended default for accounts.multiclient.always-on is now opt-in (#919)
  • Added accounts.default-user-modes; the recommended default is now to set +i on all users automatically (#942, thanks @ajaspers!)
  • Added channels.list-delay, allowing restrictions on channel listings as a defence against spambots (#964)
  • Added accounts.multiclient.auto-away, allowing always-on clients to be automatically marked as away when all their sessions disconnect
  • Added accounts.throttling as a global throttle on the creation of new accounts (#913)
  • New format for accounts.callbacks.mailto, allowing direct email sending and DKIM signing (#921)
  • Added accounts.login-via-pass-command, providing a new mechanism for legacy clients to authenticate to accounts by sending PASS account:password pre-registration (#1020)
  • Added datastore.mysql.socket-path, allowing MySQL connections over UNIX domain sockets (#1016, thanks savoyard and @ajaspers!)
  • Added roleplay section for controlling the server's roleplay features (#865)
  • The recommended default for accounts.nick-reservation.allow-custom-enforcement is now false (#918)
  • The recommended default is now to allow PROXY and WEBIRC lines from localhost (#989, #1011)
  • Added channels.registration.operator-only, optionally restricting channel registrations to operators (#685)
  • Added server.output-path for controlling where the server writes output files (#1004)
  • Operator capability names prefixed with oper: have been normalized to remove the prefix (the old names are still respected in the config file) (#868)
  • The log category names localconnect and localconnect-ip have been changed to connect and connect-ip respectively (the old names are still respected in the config file) (#940)

Security

  • Fixed incorrect enforcement of ban/invite/exception masks under some circumstances (#983)
  • STATUSMSG were being stored in history without the relevant minimum-prefix information, so they could be replayed to unprivileged users. This was fixed by not storing them at all. (#959, thanks @prawnsalad!)
  • Fixed invisible users not being hidden from WHO * queries (#991, thanks @ajaspers!)

Fixed

  • Fixed incorrect rejection of draft/multiline messages containing blank lines (#1005, thanks @jwheare!)
  • Fixed roleplay commands, which were completely broken from v1.1.0 through v2.0.0 (#865, thanks @petteri and @Mitaka8!)
  • Fixed /SAMODE applying user mode changes to the operator instead of the target user (#866, thanks @csmith!)
  • Fixed some channels not being unregistered during account unregistration (#889)
  • Fixed /NICKSERV SET and related commands being unavailable when account registration is disabled (#922, thanks @PizzaLover2007!)
  • Fixed TAGMSG not being replayed correctly in history (#1044)
  • Fixed 301 RPL_AWAY not being sent in WHOIS responses when applicable (#850)
  • /OPER with no password no longer disconnects the client (#951)
  • Fixed failure to send extended-join responses after account unregistration (#933, thanks @jesopo!)
  • Improved validation of channel keys (#1021, thanks @kylef!)
  • Fixed labeling of 421 ERR_UNKNOWNCOMMAND responses (#994, thanks @k4bek4be!)
  • Fixed incorrect parsing of ident protocol responses (#1002, thanks @justjanne!)
  • Fixed redundant /INVITE commands not sending 443 ERR_USERONCHANNEL (#842, thanks @hhirtz!)
  • Fixed /NICKSERV REGISTER response displaying mailto: out of context (#985, thanks @eklitzke!)
  • Fixed HostServ approval and rejection notices being sent from the wrong source (#805)
  • Error messages for invalid TLS certificate/key pairs are now more informative (#982)
  • Fixed error message when attempting to attach a plaintext session to an always-on client (#955, thanks @bogdomania and @xPaw!)
  • Increased the TLS handshake timeout, increasing reliability under high CPU contention (#894)
  • Fixed CHANMODES ISUPPORT token (#408, #874, thanks @hhirtz!)
  • Fixed edge cases in handling of the +k channel mode parameter (#874, thanks @hhirtz!)
  • account-notify lines are now part of the labeled-response batch when applicable (#1018)
  • Fixed incorrect help description of channel mode +R (#930, thanks @PizzaLover2007!)
  • Fixed 255 RPL_LUSERME response to indicate that the number of federated peer servers is 0 (#846, thanks @RyanSquared!)

Changed

  • Account names are now permanent identifiers; they cannot be re-registered after unregistration, and applicable nickname protections remain in force. (#793)
  • User modes of always-on clients now persist across server restarts (#819)
  • Registered channels with no members remain present on the server, including their in-memory history messages when applicable (#704, thanks @bogdomania!)
  • Updated the setname IRCv3 capability to its ratified version (#1001)
  • /CHANSERV AMODE now takes immediate effect (#729)
  • The channel founder can now take any action that would require channel privileges without actually having the +q mode (#950, #998)
  • Account unregistration now always disconnects the client (#1028)
  • Fakelag is now temporarily disabled during the sending of a draft/multiline message batch (#817)
  • Failed attempts to join a +R channel now send 477 ERR_NEEDREGGEDNICK (#936, thanks @PizzaLover2007, @jesopo!)
  • Channels with persistent history can no longer be renamed with /RENAME (#827)
  • The self-signed certificate generation command oragono mkcerts now generates a 2048-bit RSA certificate, instead of a NIST P-521 ECDSA certificate (#898)
  • Cleaned up compatibility with an obsolete WEBIRC escaping convention (#869)
  • The cloak secret is now stored in the database, so it can no longer be rotated by changing server.ip-cloaking.secret. To rotate the secret, use the new /HOSTSERV SETCLOAKSECRET command. (#952)

Added

  • Added native support for websockets (#967, thanks @hhirtz!)
  • Added support for sending verification emails directly (i.e., without a MTA/smarthost), including DKIM signing (#920, #921)
  • Added /NICKSERV LIST and /CHANSERV LIST, allowing operators to list registered nicknames and channels (#974, thanks @ajaspers!)
  • Added auto-away feature for marking always-on clients away when all their sessions are disconnected; see accounts.multiclient.auto-away and /NICKSERV HELP SET for more information (#824)
  • Added /HISTSERV PLAY, which plays back history messages as NOTICEs from the HistServ service (#383, thanks @nxths!)
  • Added /HISTSERV DELETE for deleting history messages (see the config option history.retention.allow-individual-delete) (#858)
  • Added /HISTSERV FORGET for deleting all history messages associated with an account (see the config option history.retention.enable-account-indexing) (#858)
  • Added /HISTSERV EXPORT for exporting all history messages associated with an account as JSON. This can be used at the user's request for regulatory compliance reasons (see the config option history.retention.enable-account-indexing) (#858)
  • Added support for logging legacy clients into accounts via the PASS command, with the account:password syntax used by Freenode. To enable this feature, set accounts.login-via-pass-command to true. (#1020, thanks @jlnt!)
  • Added /NICKSERV ERASE as an escape hatch for operators, allowing an account to be erased and re-registered (#793)
  • Added support for playing back MODE and TOPIC messages in history (#532)
  • Added conventional.yaml, a version of the config file that provides a more traditional IRC experience. We recommend a config file based on oragono.yaml for production networks, and one based on conventional.yaml for IRCv3 conformance testing. (#918)
  • Added an optional global throttle on the creation of new accounts (#913)
  • Added support for restricting /LIST responses sent to anonymous clients (#964)
  • Added support for the Plan 9 operating system and its derivatives, including testing on 9front (#1025, thanks @clukawski!)

Removed

  • Removed support for colored log output (#940, #939)
  • Removed support for distributing the cloaking secret via environment variables (#952)

Internal

  • make build now includes an abbreviated git hash in the 002 RPL_YOURHOST and 004 RPL_MYINFO version strings, when applicable (#1031)
  • Official releases no longer contain the git hash, only the revision tag (#1031)
  • Official releases are now built with -trimpath (#901)
Assets 13

@slingamn slingamn released this Mar 8, 2020 · 484 commits to master since this release

We're pleased to announce Oragono 2.0.0, a major update with a wide range of enhancements and fixes. Highlights include:

  • Support for storing chat history in a MySQL backend
  • Full "bouncer" functionality, including "always-on" clients that remain present on the server even when disconnected
  • LDAP support contributed by @mattouille
  • Support for the ratified labeled-response IRCv3 capability
  • Enhanced support for Kubernetes
  • Many new service commands, improving management of client certificates, vhosts, and channel ownership

Many thanks to @csmith, @mattouille, and @xPaw for contributing patches, to @csmith and @wrmsr for contributing code reviews, to @bogdomania, @brenns10, @daurnimator, @ekianjo, horseface, @ivucica, @jesopo, @jwheare, KoDi, lover, @notbandali, @poVoq, @TETYYS, and @zaher for reporting issues, and to @bogdomania and Nuve for contributing translations.

This release includes changes to the config file format, including two breaking changes:

  1. Backwards compatibility with the old server.listen format for configuring listeners has been removed; you must now use the server.listeners format that was introduced in 1.2.0.
  2. The two sections server.connection-limits and server.connection-throttling have been consolidated into one new section, server.ip-limits.

Other changes to the config file format are backwards compatible and do not require updating before restart. To minimize potential downtime, we suggest the following workflow:

  1. Without upgrading your oragono binary, edit your config file to add new server.listeners and server.ip-limits sections, based on the example config file
  2. Rehash your server, confirming that the new config file is valid for for the previous version of the server
  3. Upgrade your oragono binary to the new 2.0.x version and restart your server
  4. Once your deployment is stable on 2.0.x, delete the old server.listen, server.connection-limits, and server.connection-throttling sections from your config, and rehash your server to confirm

This release includes a database change. If you have datastore.autoupgrade set to true in your configuration, it will be automatically applied when you restart Oragono. Otherwise, you can update the database manually by running oragono upgradedb (see the manual for complete instructions).

Config Changes

  • Desupported server.listen in favor of server.listeners, a breaking change (#794)
  • Desupported server.connection-limits and server.connection-throttling in favor of server.ip-limits, a breaking change (#646)
  • The recommended default is now to allow plaintext only on loopback interfaces (#801)
  • Added server.casemapping option to control which Unicode nicknames and channels are allowed (#693)
  • Added server.lookup-hostnames and server.forward-confirm-hostnames options to control hostname lookup (#688)
  • Added new limits.multiline section to control the new draft/multiline capability
  • Added sections for enabling the optional MySQL history storage backend: datastore.mysql for connecting to the server and history.persistent for controlling which messages are stored
  • Added history.restrictions for preventing people from retrieving arbitrarily old history messages
  • Added history.znc-maxmessages, allowing a higher history replay limit for bouncer emulation relative to CHATHISTORY
  • Added accounts.vhosts.offer-list, allowing users to take pre-approved vhosts without operator approval (#737)
  • Renamed accounts.bouncer to accounts.multiclient (the old name still works) (#787)
  • New recommended values of server.max-sendq, server.ip-cloaking.num-bits, accounts.registration.bcrypt-cost, accounts.nick-reservation.enabled (now true), accounts.multiclient.allowed-by-default (now true)
  • Added server.ip-cloaking.secret-environment-variable, allowing the cloaking secret to be deployed via an environment variable for use in Kubernetes (#741, thanks @daurnimator!)

Security

  • Added forward confirmation of reverse DNS lookups for hostnames: to enable this, set server.forward-confirm-hostnames to true (#688)
  • Added protection against confusable channel names (#581)
  • Fixed cases where Tor users could receive CTCP messages, contrary to expectations (#752, #753)
  • Fixed NS INFO displaying the local timezone (#710)
  • Fixed accounts.authentication-enabled failing to disable the NS IDENTIFY command (#721)

Added

  • Added support for persistent history storage in MySQL (#348)
  • Added support for "always-on" clients that remain present on the server even when disconnected (#348, #701)
  • Added support for LDAP (#690, thanks @mattouille, @ivucica, and @mabgnu!)
  • Added support for the new draft/multiline specification (#670, thanks @jwheare and @jesopo!)
  • Added new modes for Unicode characters in nicknames and channel names: ASCII-only and "permissive" (allowing emoji) (#693)
  • Added support for plaintext PROXY lines ahead of a TLS handshake, improving compatibility with some Kubernetes load balancers (#561, thanks @RyanSquared and @daurnimator!)
  • Added support for authenticating operators by TLS client certificates, and automatically applying operator privileges on login (#696, thanks @RyanSquared!)
  • Added /DEOPER command to remove operator privileges (#549, thanks @bogdomania!)
  • Added /CHANSERV TRANSFER, allowing transfers of channel ownership (#684)
  • Added /NICKSERV CERT, allowing users to manage their authorized client certificates (#530)
  • Added /HOSTSERV TAKE, allowing users to take pre-approved vhosts without operator approval (#737)
  • Added support for configuring connection limits and throttling for individual CIDRs (#646, thanks KoDi!)
  • Added /CHANSERV PURGE, allowing server administrators to shut down channels (#683)
  • Added /CHANSERV CLEAR, allowing channel founders to reset stored bans and privileges (#692)
  • Added /CHANSERV SET, allowing channel founders to disable channel history (#379)
  • Added account preference AUTOREPLAY-JOINS, allowing greater control over when joins and parts appear in history replay (#616, thanks @zaher!)
  • Added /DEBUG CRASHSERVER command (#791)
  • znc.in/playback now supports nicknames as targets (#830)
  • Added channel mode +C to suppress CTCP messages to a channel (#756)
  • Added some missing snomasks for events related to accounts and vhosts (+s v to enable vhost snomasks) (#347, #103)

Changed

  • Updated CHATHISTORY support to the latest draft (#621, thanks @prawnsalad!)
  • Updated to the ratified labeled-response specification from the earlier draft/labeled-response-0.2 (#757)
  • /HISTORY now defaults to returning 100 messages, and also takes time durations like 1h as arguments (#621, thanks lover!)
  • D-Lines are no longer enforced against loopback IPs (#671)
  • Password length limit was reduced from 600 bytes to 300 bytes (#775)

Fixed

  • Fixed a bug where znc.in/playback commands would play every channel, regardless of the target parameter (#760, thanks @brenns10!)
  • Fixed MODE -o not removing all operator permissions (#725, #549, thanks @bogdomania!)
  • Fixed client-only tags being relayed in direct messages to users without the message-tags capability (#754, thanks @jesopo!)
  • Fixed the channel user limit (the +l mode) not persisting after server restart (#705, thanks @bogdomania!)
  • Fixed response to JOIN lines with parameters ending in a comma (#679, thanks @bogdomania!)
  • Fixed confusable protection not being removed from unregistered accounts (#745, thanks @bogdomania!)
  • Fixed rehash not enabling nickname reservation, vhosts, or history under some circumstances (#702, thanks @bogdomania!)
  • Fixed responses to the USERHOST command (#682)
  • Fixed bad results when running oragono upgradedb against a missing database file (#715, thanks @bogdomania!)
  • Fixed confusing NS GHOST behavior when nickname reservation is disabled (#727, thanks horseface!)
  • Fixed validation of authzid during SASL (#716, thanks @xPaw!)
  • Non-ASCII characters are proactively disallowed in ip-cloaking.netname (#713, thanks @bogdomania!)
  • Limited the time during which znc.in/playback affects channel joins (#829)

Removed

  • Removed oragono.io/maxline-2 capability in favor of the new draft/multiline capability (#670, #752)
  • Removed oragono.io/bnc capability (multiclient functionality is now controllable only via server config and /NS SET MULTICLIENT) (#787)
  • Removed draft/acc capability and related ACC command (#723)

Internal Notes

  • Updated to Go 1.14 and modules, simplifying the build process (#699)
Assets 13
Pre-release

@slingamn slingamn released this Mar 2, 2020 · 504 commits to master since this release

We're pleased to be publishing the release candidate for Oragono 2.0.0 (the official release should follow in a week or two). Version 2.0.0 is a major update with a wide range of enhancements and fixes. Major highlights include:

  • Support for storing chat history in a MySQL backend
  • Full "bouncer" functionality, including "always-on" clients that remain present on the server even when disconnected
  • LDAP support contributed by @mattouille
  • Support for the ratified labeled-response IRCv3 capability
  • Enhanced support for Kubernetes

Many thanks to @csmith, @mattouille, and @xPaw for contributing patches, to @csmith and @wrmsr for contributing code reviews, to @bogdomania, @brenns10, @daurnimator, @ekianjo, horseface, @ivucica, @jesopo, @jwheare, KoDi, lover, @mabgnu, @poVoq, @TETYYS, and @zaher for reporting issues, and to @bogdomania and Nuve for contributing translations.

This release includes changes to the config file format, including two breaking changes:

  1. Backwards compatibility with the old server.listen format for configuring listeners has been removed; you must now use the server.listeners format that was introduced in 1.2.0.
  2. The two sections server.connection-limits and server.connection-throttling have been consolidated into one new section, server.ip-limits.

Other changes to the config file format are backwards compatible and do not require updating before restart. To minimize potential downtime, we suggest the following workflow:

  1. Without upgrading your oragono binary, edit your config file to add new server.listeners and server.ip-limits sections, based on the example config file
  2. Rehash your server, confirming that the new config file is valid for for the previous version of the server
  3. Upgrade your oragono binary to the new 2.0.x version and restart your server
  4. Once your deployment is stable on 2.0.x, delete the old server.listen, server.connection-limits, and server.connection-throttling sections from your config, and rehash your server to confirm

This release includes a database change. If you have datastore.autoupgrade set to true in your configuration, it will be automatically applied when you restart Oragono. Otherwise, you can update the database manually by running oragono upgradedb (see the manual for complete instructions).

Config Changes

  • Desupported server.listen in favor of server.listeners, a breaking change (#794)
  • Desupported server.connection-limits and server.connection-throttling in favor of server.ip-limits, a breaking change (#646)
  • The recommended default is now to allow plaintext only on loopback interfaces (#801)
  • Added server.casemapping option to control which Unicode nicknames and channels are allowed (#693)
  • Added server.lookup-hostnames and server.forward-confirm-hostnames options to control hostname lookup (#688)
  • Added new limits.multiline section to control the new draft/multiline capability
  • Added sections for enabling the optional MySQL history storage backend: datastore.mysql for connecting to the server and history.persistent for controlling which messages are stored
  • Added history.restrictions for preventing people from retrieving arbitrarily old history messages
  • Added history.znc-maxmessages, allowing a higher history replay limit for bouncer emulation relative to CHATHISTORY
  • Added accounts.vhosts.offer-list, allowing users to take pre-approved vhosts without operator approval (#737)
  • Renamed accounts.bouncer to accounts.multiclient (the old name still works) (#787)
  • New recommended values of server.max-sendq, server.ip-cloaking.num-bits, accounts.registration.bcrypt-cost, accounts.nick-reservation.enabled (now true), accounts.multiclient.allowed-by-default (now true)
  • Added server.ip-cloaking.secret-environment-variable, allowing the cloaking secret to be deployed via an environment variable for use in Kubernetes (#741, thanks @daurnimator!)

Security

  • Added forward confirmation of reverse DNS lookups for hostnames: to enable this, set server.forward-confirm-hostnames to true (#688)
  • Added protection against confusable channel names (#581)
  • Fixed cases where Tor users could receive CTCP messages, contrary to expectations (#752, #753)
  • Fixed NS INFO displaying the local timezone (#710)
  • Fixed accounts.authentication-enabled failing to disable the NS IDENTIFY command (#721)
  • Fixed confusable protection not being applied to newly registered accounts (#745, thanks @bogdomania!)

Added

  • Added support for persistent history storage in MySQL (#348)
  • Added support for "always-on" clients that remain present on the server even when disconnected (#348, #701)
  • Added support for LDAP (#690, thanks @mattouille, @ivucica, and @mabgnu!)
  • Added support for the new draft/multiline specification (#670, thanks @jwheare and @jesopo!)
  • Added new modes for Unicode characters in nicknames and channel names: ASCII-only and "permissive" (allowing emoji) (#693)
  • Added support for plaintext PROXY lines ahead of a TLS handshake, improving compatibility with some Kubernetes load balancers (#561, thanks @RyanSquared and @daurnimator!)
  • Added support for authenticating operators by TLS client certificates, and automatically applying operator privileges on login (#696, thanks @RyanSquared!)
  • Added /DEOPER command to remove operator privileges (#549, thanks @bogdomania!)
  • Added /CHANSERV TRANSFER, allowing transfers of channel ownership (#684)
  • Added /NICKSERV CERT, allowing users to manage their authorized client certificates (#530)
  • Added /HOSTSERV TAKE, allowing users to take pre-approved vhosts without operator approval (#737)
  • Added support for configuring connection limits and throttling for individual CIDRs (#646, thanks KoDi!)
  • Added /CHANSERV PURGE, allowing server administrators to shut down channels (#683)
  • Added /CHANSERV CLEAR, allowing channel founders to reset stored bans and privileges (#692)
  • Added /CHANSERV SET, allowing channel founders to disable channel history (#379)
  • Added account preference AUTOREPLAY-JOINS, allowing greater control over when joins and parts appear in history replay (#616, thanks @zaher!)
  • Added /DEBUG CRASHSERVER command (#791)
  • znc.in/playback now supports nicknames as targets (#830)
  • Added channel mode +C to suppress CTCP messages to a channel (#756)
  • Added some missing snomasks for events related to accounts and vhosts (+s v to enable vhost snomasks) (#347, #103)

Changed

  • Updated CHATHISTORY support to the latest draft (#621, thanks @prawnsalad!)
  • Updated to the ratified labeled-response specification from the earlier draft/labeled-response-0.2 (#757)
  • /HISTORY now defaults to returning 100 messages, and also takes time durations like 1h as arguments (#621, thanks lover!)
  • D-Lines are no longer enforced against loopback IPs (#671)
  • Password length limit was reduced from 600 bytes to 300 bytes (#775)

Fixed

  • Fixed a bug where znc.in/playback commands would play every channel, regardless of the target parameter (#760, thanks @brenns10!)
  • Fixed MODE -o not removing all operator permissions (#725, #549, thanks @bogdomania!)
  • Fixed client-only tags being relayed in direct messages to users without the message-tags capability (#754, thanks @jesopo!)
  • Fixed the channel user limit (the +l mode) not persisting after server restart (#705, thanks @bogdomania!)
  • Fixed response to JOIN lines with parameters ending in a comma (#679, thanks @bogdomania!)
  • Fixed confusable protection not being removed from unregistered accounts (#745, thanks @bogdomania!)
  • Fixed rehash not enabling nickname reservation, vhosts, or history under some circumstances (#702, thanks @bogdomania!)
  • Fixed responses to the USERHOST command (#682)
  • Fixed bad results when running oragono upgradedb against a missing database file (#715, thanks @bogdomania!)
  • Fixed confusing NS GHOST behavior when nickname reservation is disabled (#727, thanks horseface!)
  • Fixed validation of authzid during SASL (#716, thanks @xPaw!)
  • Non-ASCII characters are proactively disallowed in ip-cloaking.netname (#713, thanks @bogdomania!)
  • Limited the time during which znc.in/playback affects channel joins (#829)

Removed

  • Removed oragono.io/maxline-2 capability in favor of the new draft/multiline capability (#670, #752)
  • Removed oragono.io/bnc capability (multiclient functionality is now controllable only via server config and /NS SET MULTICLIENT) (#787)
  • Removed draft/acc capability and related ACC command (#723)

Internal Notes

  • Updated to Go 1.14 and modules, simplifying the build process (#699)
Assets 13
Nov 23, 2019
Merge pull request #675 from csmith/merge-docker-stable
Merge docker changes into stable branch
  • v1.2.0
  • 0d77315
  • Compare
    Choose a tag to compare
    Search for a tag
  • v1.2.0
  • 0d77315
  • Compare
    Choose a tag to compare
    Search for a tag

@slingamn slingamn released this Nov 16, 2019 · 891 commits to master since this release

We're pleased to announce Oragono 1.2.0. This version contains bug fixes and minor improvements.

Many thanks to @bogdomania, @csmith, @edmund-huber, @jesopo, @jwheare, @poVoq, @prawnsalad, and stealthgin for reporting issues and contributing code reviews, and also to @bogdomania, Forbidden (cptbl00dra1n), Nuve, @streaps, and UnLokitoFeliz for contributing translations.

This release includes a change to the config file format: the old server.listen format for configuring listeners has been replaced by a new server.listeners format. See the bundled oragono.yaml configuration file for a commented example. For now, Oragono maintains backwards compatibility with the old format. To minimize potential downtime, we recommend the following workflow:

  1. Without rewriting your config file, upgrade your oragono binary to the new 1.2.x version and restart your server
  2. Rewrite your configuration file to use the new server.listeners format
  3. Rehash your server, confirming that the rewritten config file is valid and correct

This release includes a database change. If you have datastore.autoupgrade set to true in your configuration, it will be automatically applied when you restart Oragono. Otherwise, you can update the database manually by running oragono upgradedb (see the manual for complete instructions).

Config Changes

  • Replaced server.listen section with server.listeners; see oragono.yaml for a commented example (#565)
  • Added history.autoresize_window for automatically resizing history buffers (#349)

Added

  • Added STS-only listeners; you can configure port 6667 so that it "redirects" clients to TLS on port 6697. See the manual for details. (#448)
  • Added the CHANLIMIT ISUPPORT token (#625, thanks @poVoq!)
  • Added ban creator and creation time to banlist output (#644, thanks stealthgin!)

Changed

  • Upgraded to the new draft/labeled-response-0.2 capability (#555)
  • oragono mkcerts no longer overwrites existing certificate files (#622, thanks @poVoq!)
  • Allowed Tor and non-Tor connections to attach to the same nickname via bouncer functionality (#632)

Fixed

  • Fixed CAP LS 302 response being potentially truncated (#594, #661)
  • Fixed redundant output to some MODE commands (#649)
  • Improved display of replies to /msg NickServ verify in some clients (#567, thanks @edmund-huber!)
  • Improved display of NickServ timeout warnings in some clients (#572, thanks @bogdomania!)
  • LUSERS output is now sent at the end of connection registration (#526)
  • Fixed operators not being able to WHOIS some Unicode nicknames (#331, thanks @bogdomania!)
  • Fixed RESUME not clearing the BRB reason (#592, thanks @jesopo!)
  • Fixed an edge case where the BRB timestamp wasn't reset correctly (#642)
  • Fixed behavior of SAMODE issued against a different user (#585)
  • Fixed a false-positive error logline (#601)
  • oragono.io/bnc is no longer advertised when disabled in the config (#595)
  • Made the connection limiter and throttler more resilient against the failure to whitelist a reverse proxy IP (#197, thanks @prawnsalad!)

Internal Notes

  • Official builds now use Go 1.13, which includes native TLS 1.3 support (#626)
  • Minor performance improvements (#640, #615)
Assets 13
Pre-release

@slingamn slingamn released this Nov 4, 2019 · 913 commits to master since this release

We're pleased to be publishing the release candidate for 1.2.0 (the official release should follow in a week or two). This version contains bug fixes and minor improvements.

Many thanks to @bogdomania, @csmith, @edmund-huber, @jesopo, @jwheare, @poVoq, @prawnsalad, and stealthgin for reporting issues and contributing code reviews, and also to @bogdomania, Forbidden (cptbl00dra1n), Nuve, @streaps, and UnLokitoFeliz for contributing translations.

This release includes a change to the config file format: the old server.listen format for configuring listeners has been replaced by a new server.listeners format. See the bundled oragono.yaml configuration file for a commented example. For now, Oragono maintains backwards compatibility with the old format. To minimize potential downtime, we recommend the following workflow:

  1. Without rewriting your config file, upgrade your oragono binary to the new 1.2.x version and restart your server
  2. Rewrite your configuration file to use the new server.listeners format
  3. Rehash your server, confirming that the rewritten config file is valid and correct

This release includes a database change. If you have datastore.autoupgrade set to true in your configuration, it will be automatically applied when you restart Oragono. Otherwise, you can update the database manually by running oragono upgradedb (see the manual for complete instructions).

Config Changes

  • Replaced server.listen section with server.listeners; see oragono.yaml for a commented example (#565)
  • Added history.autoresize_window for automatically resizing history buffers (#349)

Added

  • Added STS-only listeners; you can configure port 6667 so that it "redirects" clients to TLS on port 6697. See the manual for details. (#448)
  • Added the CHANLIMIT ISUPPORT token (#625, thanks @poVoq!)
  • Added ban creator and creation time to banlist output (#644, thanks stealthgin!)

Changed

  • Upgraded to the new draft/labeled-response-0.2 capability (#555)
  • oragono mkcerts no longer overwrites existing certificate files (#622, thanks @poVoq!)
  • Allowed Tor and non-Tor connections to attach to the same nickname via bouncer functionality (#632)

Fixed

  • Fixed CAP LS 302 response being potentially truncated (#594)
  • Fixed redundant output to some MODE commands (#649)
  • Improved display of replies to /msg NickServ verify in some clients (#567, thanks @edmund-huber!)
  • Improved display of NickServ timeout warnings in some clients (#572, thanks @bogdomania!)
  • LUSERS output is now sent at the end of connection registration (#526)
  • Fixed operators not being able to WHOIS some Unicode nicknames (#331, thanks @bogdomania!)
  • Fixed RESUME not clearing the BRB reason (#592, thanks @jesopo!)
  • Fixed an edge case where the BRB timestamp wasn't reset correctly (#642)
  • Fixed behavior of SAMODE issued against a different user (#585)
  • Fixed a false-positive error logline (#601)
  • oragono.io/bnc is no longer advertised when disabled in the config (#595)
  • Made the connection limiter and throttler more resilient against the failure to whitelist a reverse proxy IP (#197, thanks @prawnsalad!)

Internal Notes

  • Official builds now use Go 1.13, which includes native TLS 1.3 support (#626)
  • Minor performance improvements (#640, #615)
Assets 13

@slingamn slingamn released this Jul 21, 2019 · 1025 commits to master since this release

Oragono 1.1.1 is a bugfix release for flaws in message handling, including one with security implications.

Many thanks to @streaps for reporting issues.

Upgrade notes

This release does not change the database or configuration file format.

Security

  • Previous releases of Oragono would incorrectly relay chat messages containing the \r byte. An attacker could use this to spoof protocol messages from the server (depending on the implementation of the victim's client). This has been fixed. (#610)

Fixed

  • Fixed incorrect rejection of messages with multiple spaces (#602, thanks @streaps!)
Assets 13
  • v1.1.0
  • 2deaad6
  • Compare
    Choose a tag to compare
    Search for a tag
  • v1.1.0
  • 2deaad6
  • Compare
    Choose a tag to compare
    Search for a tag

@slingamn slingamn released this Jun 28, 2019 · 1025 commits to master since this release

We're pleased to announce Oragono version 1.1.0. This version has a number of exciting improvements, including:

  • Simplified commands for registering new accounts with NickServ.
  • Support for IP cloaking.
  • Support for attaching multiple clients to the same nickname.
  • Support for the newly ratified message tags and message ID IRCv3 specifications; client developers are invited to use Oragono as a reference when implementing these specifications.
  • Support for running Oragono as a Tor hidden service.

Many thanks to @Ascrod, @amyspark, @bogdomania, @csmith, @jesopo, @jwheare, lover, and @transitracer for reporting issues and contributing patches, and also to @bogdomania, Elvedin Hušić, Nuve, and @streaps for contributing translations.

Upgrade notes

This release includes a database change. If you have datastore.autoupgrade set to true in your configuration, it will be automatically applied when you restart Oragono. Otherwise, you can update the database manually by running oragono upgradedb (see the manual for complete instructions).

No changes to your configuration file should be required for this upgrade. However, updating the file is necessary to enable some new functionality, as described below.

Config changes

  • tor-listeners section added for configuring listeners for use with Tor.
  • compatibility section added for toggling compatibility behaviors for legacy clients.
  • ip-cloaking section added for configuring cloaking.
  • bouncer section added for configuring bouncer-like features (in particular, whether multiple clients can use the same nickname).
  • check-ident now has recommended value false.
  • nick-reservation.method now has recommended value "strict"`.
  • fakelag.enabled now has recommended value true.
  • limits.linelen.tags removed due to ratification of the message-tags spec, which fixes the maximum tags length at 8191 bytes.
  • limits.registration-messages added to restrict how many messages a user can send to the server during connection registration (while connecting to the server).
  • channels.operator-only-creation added to optionally restrict creation of new channels to ircops (#537).

Security

  • Users can no longer impersonate network services like ChanServ by using confusing nicks like "ChɑnServ" (#519, thanks @csmith!).
  • Closed several loopholes in confusable nick detection (#562, #564, #570, thanks lover!)
  • Secret channels (mode +s) now act more secret (#380, thanks @csmith!).
  • The +R (registered-only) mode now prevents unregistered users from joining the channel, not just from speaking (#463, thanks @bogdomania!).
  • Limited how many messages clients can send during connection registration to mitigate potential DoS attacks (#505).
  • Attempting to reauthenticate with SASL now fails with 907 ERR_SASLALREADY (#476).

Fixed

  • Fixed /ISON command reporting users as always being online (#479).
  • Fixed clients who negotiated CAP version 302 or higher not receiving cap-notify messages (#464).
  • We now treat channel privileges such as halfop more consistently (#400).
  • Fixed a bug where clients could receive message tags they hadn't enabled (#434).
  • When replaying history, messages now have more consistent IDs and timestamps
  • IDs and timestamps are now applied more consistently to messages (#388, #477, #483).
  • Client-to-client tags are now stored and replayed in message history (#437).
  • Fixed various error numerics that were being sent with incorrect parameters (#425, thanks @Ascrod!).
  • Fixed STATUSMSG not adding the correct prefix to the channel when relaying the message (#467).
  • Fixed /RENAME command not correctly renaming the channel for some users (#300, thanks @jesopo!).
  • History playback is now batched when applicable (#456, thanks @transitracer!).
  • Notices from NickServ/ChanServ/etc should display better in some clients (#496, thanks @jwheare!).
  • Fixed nickname timer warnings not displaying correctly sometimes (#449, thanks @bogdomania!).
  • When history playback is disabled, the /HISTORY command now says so instead of silently failing (#429, thanks @bogdomania!).
  • The /HOSTSERV ON/OFF commands now tell you when you don't have a vhost (#404, thanks @bogdomania!).
  • When operators use the /SANICK command, the snomask now says which operator did it instead of saying the target changed their nickname themselves (#360, thanks @bogdomania!).
  • History playback now includes messages that the user sent themselves (especially useful with the new bouncer-like capabilities) (#487).

Added

  • IP cloaking is now supported (see the manual for details) (#108).
  • Users can now attach multiple clients to the same nickname (see the manual for details) (#403).
  • Oragono can now be used as a Tor hidden service (see the manual for details) (#369).
  • The znc.in/playback capability is now supported, which can automate history playback for clients that support it (#486).
  • User preference system controlling various behaviors (/msg NickServ help set for details) (#466).
  • Support for the draft/event-playback spec (#457).
  • The TAGMSG and NICK messages are now replayable in history (#457).
  • Added the draft IRCv3 SETNAME command for changing your realname (#372).
  • Added new Bosnian (bs-BA) translation (thanks to Elvedin Hušić!).
  • Added new German (de-DE) translation (thanks to streaps!).

Changed

  • Registering an account with NickServ is now /msg NickServ register <password>, which registers the current nickname as an account, matching other services (#410).
  • Added a compatibility hack to make SASL work with ZNC 1.6.x (#261).
  • We now support the ratified message-tags spec, replacing draft/message-tags-0.2.
  • We now support the ratified message IDs spec, replacing draft/msgid.
  • The oragono.io/maxline-2 capability has replaced oragono.io/maxline, the new version now working alongside the ratified message-tags spec (#433).
  • We now support draft/resume-0.5 and the associated BRB command, replacing draft/resume-0.3.
  • Upgraded support for the /RENAME command to the latest draft of the specification.
  • Upgraded support for the /ACC command to the latest draft of the specification (#453, #455).
  • Removed the +a away mode as no other servers use it (#468, thanks @jesopo and @jwheare!).
  • Forcing trailing parameters for legacy compatibility can now be disabled in config (#479).
  • autoreplay-on-join no longer replays JOIN and PART lines by default (#474, thanks @amyspark!).
  • snomasks are no longer sent for unregistered clients (#362, thanks @bogdomania!).
  • WHOIS responses no longer include the 690 RPL_WHOISLANGUAGE numeric, as it doesn't show anything useful to other users (#516).
  • ISON now reports services (ChanServ/NickServ/etc) as online (#488).
  • All times are now reported in UTC (#480).
  • NICKSERV ENFORCE is deprecated in favor of the new NICKSERV SET ENFORCE (the old syntax is still available as an alias).
  • The WHO command is now treated like PONG in that it doesn't count as user activity, since client software often uses it automatically (#485).
  • The NAMES command now only returns results for the first given channel (#534).
  • Updated French (fr-FR) translation (thanks to Nuve!).
  • Updated Română (ro-RO) translation (thanks to @bogdomania!).

Internal Notes

  • Building Oragono is now easier (#409).
  • Official builds now use Go 1.12 (#406).
  • Our message building and parsing code is slightly faster now (#387).
  • Added the oragono.io/nope capability to encourage clients to request capabilities safely (#511).
  • Made some previously untranslatable strings translatable (#407).
  • Fixed portability issues with 32-bit architectures (#527).
Assets 13
Pre-release

@slingamn slingamn released this Jun 12, 2019 · 1064 commits to master since this release

We're pleased to be publishing the release candidate for 1.1.0 (the official release should follow in a week or two, with more complete credits). This version has a number of exciting improvements, including:

  • Simplified commands for registering new accounts with NickServ.
  • Support for IP cloaking.
  • Support for attaching multiple clients to the same nickname.
  • Support for the newly ratified message tags and message ID IRCv3 specifications; client developers are invited to use Oragono as a reference when implementing these specifications.
  • Support for running Oragono as a Tor hidden service.

This release includes a database change. If you have datastore.autoupgrade set to true in your configuration, it will be automatically applied when you restart Oragono; otherwise, you can update the database manually by running oragono upgradedb.

Config changes

  • tor-listeners section added for configuring listeners for use with Tor.
  • compatibility section added for toggling compatibility behaviors for legacy clients.
  • ip-cloaking section added for configuring cloaking.
  • bouncer section added for configuring bouncer-like features (in particular, whether multiple clients can use the same nickname).
  • check-ident now defaults to false.
  • nick-reservation.method now defaults to "strict".
  • fakelag.enabled now defaults to true
  • limits.linelen.tags removed due to ratification of the message-tags spec, which fixes the maximum tags length at 8191 bytes.
  • limits.registration-messages added to restrict how many messages a user can send to the server during connection registration (while connecting to the server).
  • channels.operator-only-creation added to optionally restrict creation of new channels to ircops (#537).

Security

  • Users can no longer impersonate network services like ChanServ by using confusing nicks like "ChɑnServ" (#519, thanks @csmith!).
  • Secret channels (mode +s) now act more secret (#380, thanks @csmith!).
  • The +R (registered-only) mode now prevents unregistered users from joining the channel, not just from speaking (#463, thanks @bogdomania!).
  • Limited how many messages clients can send during connection registration to mitigate potential DoS attacks (#505).
  • Attempting to reauthenticate with SASL now fails with 907 ERR_SASLALREADY (#476).

Fixed

  • Fixed /ISON command reporting users as always being online (#479).
  • Fixed clients who negotiated CAP version 302 or higher not receiving cap-notify messages (#464).
  • We now treat channel privileges such as halfop more consistently (#400).
  • Fixed a bug where clients could receive message tags they hadn't enabled (#434).
  • When replaying history, messages now have more consistent IDs and timestamps
  • IDs and timestamps are now applied more consistently to messages (#388, #477, #483).
  • Client-to-client tags are now stored and replayed in message history (#437).
  • Fixed various error numerics that were being sent with incorrect parameters (#425, thanks @Ascrod!).
  • Fixed STATUSMSG not adding the correct prefix to the channel when relaying the message (#467).
  • Fixed /RENAME command not correctly renaming the channel for some users (#300, thanks @jesopo!).
  • History playback is now batched when applicable (#456, thanks @transitracer!).
  • Notices from NickServ/ChanServ/etc should display better in some clients (#496, thanks @jwheare!).
  • Fixed nickname timer warnings not displaying correctly sometimes (#449, thanks @bogdomania!).
  • When history playback is disabled, the /HISTORY command now says so instead of silently failing (#429, thanks @bogdomania!).
  • The /HOSTSERV ON/OFF commands now tell you when you don't have a vhost (#404, thanks @bogdomania!).
  • When operators use the /SANICK command, the snomask now says which operator did it instead of saying the target changed their nickname themselves (#360, thanks @bogdomania!).
  • History playback now includes messages that the user sent themselves (especially useful with the new bouncer-like capabilities) (#487).

Added

  • IP cloaking is now supported (see the manual for details) (#108).
  • Users can now attach multiple clients to the same nickname (see the manual for details) (#403).
  • Oragono can now be used as a Tor hidden service (see the manual for details) (#369).
  • The znc.in/playback capability is now supported, which can automate history playback for clients that support it (#486).
  • User preference system controlling various behaviors (/msg NickServ help set for details) (#466).
  • Support for the draft/event-playback spec (#457).
  • The TAGMSG and NICK messages are now replayable in history (#457).
  • Added the draft IRCv3 SETNAME command for changing your realname (#372).

Changed

  • Registering an account with NickServ is now /msg NickServ register <password>, which registers the current nickname as an account, matching other services (#410).
  • Added a compatibility hack to make SASL work with ZNC 1.6.x (#261).
  • We now support the ratified message-tags spec, replacing draft/message-tags-0.2.
  • We now support the ratified message IDs spec, replacing draft/msgid.
  • The oragono.io/maxline-2 capability has replaced oragono.io/maxline, the new version now working alongside the ratified message-tags spec (#433).
  • We now support draft/resume-0.5 and the associated BRB command, replacing draft/resume-0.3.
  • Upgraded support for the /RENAME command to the latest draft of the specification.
  • Upgraded support for the /ACC command to the latest draft of the specification (#453, #455).
  • Removed the +a away mode as no other servers use it (#468, thanks @jesopo and @jwheare!).
  • Forcing trailing parameters for legacy compatibility can now be disabled in config (#479).
  • autoreplay-on-join no longer replays JOIN and PART lines by default (#474, thanks @amyspark!).
  • snomasks are no longer sent for unregistered clients (#362, thanks @bogdomania!).
  • WHOIS responses no longer include the 690 RPL_WHOISLANGUAGE numeric, as it doesn't show anything useful to other users (#516).
  • ISON now reports services (ChanServ/NickServ/etc) as online (#488).
  • All times are now reported in UTC (#480).
  • NICKSERV ENFORCE is deprecated in favor of the new NICKSERV SET ENFORCE (the old syntax is still available as an alias).
  • The WHO command is now treated like PONG in that it doesn't count as user activity, since client software often uses it automatically (#485).
  • The NAMES command now only returns results for the first given channel (#534).

Internal Notes

  • Building Oragono is now easier (#409).
  • Official builds now use Go 1.12 (#406).
  • Our message building and parsing code is slightly faster now (#387).
  • Added the oragono.io/nope capability to encourage clients to request capabilities safely (#511).
  • Made some previously untranslatable strings translatable (#407).
  • Fixed portability issues with 32-bit architectures (#527).
Assets 13

@slingamn slingamn released this Feb 24, 2019 · 1645 commits to master since this release

We've finally made it to v1.0.0! With this release, our list of need-to-haves is rounded out, and we reckon the software's ready for production use in smaller networks. slingamn and I have been working with our contributors and translators to prepare a cracker of a release. Thanks to @csmith our Docker builds have been updated, with automatic rebuilds as we develop the software. Thanks to @bogdomania our translation workflow has been improved a lot.

Highlights include:

  • Optional support for storing and replaying message history with the draft/resume-0.3 capability, the draft IRCv3 CHATHISTORY command, and a custom HISTORY command.
  • Better detection of confusing nick/account/channel names.
  • User-customizable nickname protection methods.
  • An account-only mode in which all clients must have an account and login to it (using SASL) before they can join the server.

Thanks to Mauropek, @modinfo, @bogdomania, @Shillos, Tony Chen, and Remini for adding new translations. Thanks to @Ascrod, @bogdomania, @csmith, @jesopo, @jwheare, @remini1998, @enckse, and @iNecas for finding bugs and/or writing new features.

Config Changes

  • allow-custom-enforcement key added under accounts.
  • allow-plaintext-resume key added under server.
  • history section added.
  • identlen key added under limits.
  • login-throttling section added under accounts.
  • max-channels-per-account key added under channels.registration (limiting the number of channels that can be registered).
  • max-channels-per-client key added under channels (limiting the number of channels that can be joined).
  • method key now under accounts now allows the value "optional".
  • Exemption lists now accept localhost as a value, meaning any loopback IPV4, loopback IPV6, or unix domain address.
  • Logging type server has been added, replacing the startup, rehash, and shutdown types.
  • The default logging configuration now logs to stderr only, rather than to both stderr and a file.
  • We no longer listen on port 6668 by default (this fixes Docker installs).

Security

  • Added a SASL-only mode in which all clients must authenticate with SASL.
  • Added login throttling as a hardening measure against password guessing.
  • Configurable limits are imposed on how many channels clients can join or register.

Added

  • Added automagic datastore creation on oragono run.
  • Added detection and prevention of confusing nicknames, account names, and channel names.
  • Added limited message history for connection resuming (to be extended in future).
  • Added new Español (es) translation (thanks to Mauropek!).
  • Added new Polski (pl) translation (thanks to @modinfo!).
  • Added new Română (ro) translation (thanks to @bogdomania!).
  • Added new Ελληνικά (el) translation (thanks to @Shillos!).
  • Added new 简体中文 (zh-CN) translation (thanks to Tony Chen and Remini!)).
  • Added proposed IRCv3 capability draft/setname.
  • Added subcommands to NICKSERV, including:
    • PASSWD to change account passwords.
    • ENFORCE to set a specific enforcement mechanism on your nick.
    • SAREGISTER to allow operators to manually create new user accounts.

Changed

  • SASL PLAIN logins now log more correctly.
  • Database upgrade failures now provide information about the error that occurred.
  • Halfops can now kick unprivileged users.
  • Idents (sometimes called "usernames") are now restricted to ASCII, similar to other servers.
  • Improved compatibility with ZNC's nickserv module.
  • In addition to the founder, now auto-ops (halfop and higher) automatically bypass channel join restrictions.
  • Log lines now display time down to milliseconds, instead of just seconds.
  • Updated all translation files (thanks to our amazing translators!).
  • Updated proposed IRCv3 capability draft/resume to draft/resume-0.3.
  • When nick ownership is enabled, users can now select which enforcement mechanism to use with their nickname.

Fixed

  • INVITE: Fixed bug where invited users could not join the channel they were invited to (thanks to @unendingpattern!).
  • oragono.io/maxline capability was accidentally disabled, and is now re-enabled.
  • oragono genpasswd now works when piping input in (fixes Docker installs).
  • PRIVMSG: Messages sent to multiple clients (such as channel messages) now share the same timestamp (previously each client got a very slightly different time).
  • WHOIS: Now responds properly for NickServ, ChanServ, etc.
  • Channel names with right-to-left characters are now casefolded correctly (thanks to @remini1998!).
  • Fixed handling of CIDR width in connection limiting/throttling.
  • Fixed incorrect behavior of CHANSERV OP command.
  • Fixed incorrect rejection of nickmasks with Unicode RTL nicknames.
  • Fixed many responses that violated the specifications (thanks to @Ascrod, @bogdomania, @csmith, @jesopo, and @jwheare!).
  • Fixed nickname sync issue which could cause clients to fail to see each other.
  • Invalid ISUPPORT tokens are now explicitly rejected.
  • Made server-time timestamp format more consistent and safer.
  • Oragono now exits with status (1) if it fails to start.
  • Prevent logging in multiple times when using /NS IDENTIFY.
  • Prevented the db handler from automagically creating the database without initializing it (thanks @enckse!). We also now automatically create the datastore on run.

Internal Notes

  • DLINE and KLINE refactored, and expired bans are now removed from the database.
  • Command-line parsing was upgraded to match modern best practices (thanks to @iNecas!).
  • Direct responses to client commands are now sent "synchronously", bypassing the sendq.
  • Logging system optimised.
  • Services handlers refactored.
  • Translations are now sent to/PR'd from CrowdIn automagically as we develop the software.
Assets 13
You can’t perform that action at this time.