基本介紹
什麼是OpenFire
您可以使用它輕易的構建高效率的即時通信伺服器.
Openfire安裝和使用都非常簡單,並利用Web進行管理。單台伺服器可支持上萬並發用戶。
由於是採用開放的XMPP協定,您可以使用各種支持XMPP協定的IM客戶端軟體登入服務.
最新版本
4.0.3 -- Aug 17, 2016
Bug
[OF-1116] - Java 7 incompatibility
[OF-1118] - Check encryption protocol & cipher suite configuration against currently available ones.
[OF-1119] - TLS failure when certificate chain is a tree
[OF-1126] - AbstractGroupProvider hides exception from interface definition
[OF-1157] - max_items ignored for some admin commands
[OF-1165] - Stored Cross-Site Scripting
[OF-1168] - Invalid Oracle DDL statements for Oracle 11g
[OF-1169] - Debian dpkg java requirements should allow for java 7 or java 8
New Feature
[OF-1128] - Avatar Resizer plugin
Task
[OF-1062] - Update installation package with the latest Java JRE
Improvement
[OF-1099] - Update StartCom Class 1 DV Server CA
[OF-1120] - Change default behavior of Email on Away plugin
[OF-1142] - Improve documentation part about UAC on Windows
[OF-1161] - Sync Openfire's truststore with Mozilla's shipped CAs
4.0.2 -- Mar 21, 2016
Bug
[OF-829] - Ghost sessions left on a server when using Pidgin client
[OF-954] - Openfire clustering fails to correctly sync MUC room occupants
[OF-1082] - Fix unicode read on BOSH
[OF-1083] - Cannot join room in a cluster after an availability update
[OF-1087] - Monitoring plugin gives invalid responses
[OF-1090] - Outcasts should not be allowed to register with room
Improvement
[OF-1086] - Update bundled JRE to 1.8u74
[OF-1089] - XEP-0313: send IQ result only after messages
[OF-1107] - Add option to not show email in Email on Away plugin
4.0.1 -- Jan 26, 2016
Bug
[OF-1040] - Banning users from room does not result in proper exit
[OF-1041] - Using AD specific attribute breaks OpenLDAP support
[OF-1042] - NPE in stanza handler (after failed TLS?)
[OF-1045] - NPE with cluster management if cluster has not been started
[OF-1046] - Error 503 emitted sending update notifications to offline admins that are over offline storage quota
[OF-1051] - ConcurrentModificationException in PluginManager
[OF-1053] - i18n params fail when text has apostrophe
[OF-1054] - IllegalStateException when destroying MUC room prevents unavailable broadcast to be sent
Improvement
[OF-1048] - Should not store chat state messages
[OF-1049] - Improve Certificate Store Management
[OF-1055] - Remove exclamation mark from the Search button
[OF-1057] - Upgrade Jetty to latest patch release of its 9.2 branch.
4.0.0 -- Jan 11, 2016
Sub-task
[OF-454] - Openfire does not send user presence information to all resources of the user
[OF-547] - Create branch of code to test-drive new setup.
[OF-631] - Implement SCRAM support
[OF-834] - Admin console login.jsp allows redirects to non-local URIs
[OF-997] - Admin Console: Frameable Response (potential Clickjacking)
[OF-1022] - Reflected XSS vulnerability in muc-room-edit-form.jsp params in Admin Console
Bug
[OF-122] - Shouldn't allow subject change, when it is forbidden in room settings
[OF-317] - Subscribe with Response Unsubscribed Causes Roster Push to Responding Client
[OF-373] - Ant buildscript should not check for explicit Ant version numbers
[OF-484] - Windows installer getting stuck on Uninstalling the previous version
[OF-509] - Unable to disable weak ciphers
[OF-793] - javax.net.ssl.SSLException: Unsupported record version Unknown-47.115
[OF-798] - Embedded RSS/community links need to be updated for new (SSL) locations
[OF-821] - MUC service returns wrong number of occupants and duplicate occupants in service discovery
[OF-856] - Monitoring plugin uses secs attribute relative from beginning message instead of last message
[OF-868] - User name update does not propagate to the affected roster(s)
[OF-881] - NIOConnection Thread Deadlock when two clients in each others roster simultaneously disconnect
[OF-898] - Timestamp parsing fails when fractions of seconds are supplied.
[OF-905] - Admin console taglib URI does not correspond with usage.
[OF-906] - SSO does not work with Openfire + Java 8
[OF-913] - lib/log4j.xml should be denoted as a config file in the installers
[OF-915] - Private Storage should return an error if feature is disabled
[OF-918] - Character encoding issue in BOSH
[OF-919] - Update jDTS driver to 1.3.1 Release
[OF-921] - MUC Group ACLs are not updated when users join a group
[OF-922] - Major performance hit with MINA 2.0.9 vs 2.0.7
[OF-928] - Error with adding presence to MUC presence stanza
[OF-930] - Overlay enhancements
[OF-932] - XEP-0202 Entity Time should respect Daylight Saving Time
[OF-934] - Buildscript: preset javac configuration should have all shared properties
[OF-936] - Plugins build should fail fast by default
[OF-939] - NPE in ScramSha1SaslServer#getStoredKey
[OF-958] - Setup fails with StackOverflowException
[OF-959] - Database installation script does not set correct version
[OF-964] - message body tag getting empty xmlns set sometimes when BOSH client is in MUC room
[OF-974] - Copy cache content when updating cache factory strategy
[OF-976] - Language is not properly set in HttpSession
[OF-982] - jabber:iq:last queries without 'to' attribute should not return server uptime
[OF-983] - Deadlock (federation)
[OF-984] - Deadlock (MUC / federation?)
[OF-985] - Missing to attribute in stream open
[OF-986] - Dialback verify-only connections do not negotiate TLS
[OF-987] - MUC Freezes when someone joins from federated domain
[OF-988] - Sometimes, messages are duplicated in MUC
[OF-989] - BOSH packet delivery fails for larger packets with WritePendingException
[OF-992] - BOSH fails when disabling/re-enabling the port
[OF-995] - Parent Plugin case sensitivity
[OF-996] - NullPointerException on Admin Console /audit-policy.jsp
[OF-998] - Openfire build should not need internet connectivity
[OF-999] - BOSH worker threads should be configurable
[OF-1000] - Audit file log rotation causes NullPointerException
[OF-1002] - NPE during connection close with XEP-0198
[OF-1003] - Exception during <a/> propcessing in XEP-0198
[OF-1008] - Iteratively failure to deliver message
[OF-1009] - [s2s] Federation issue with talkonaut.com
[OF-1010] - LDAPS fails
[OF-1023] - Roster cache not being updated for shared group changes
[OF-1025] - web-custom.xml fails to load
[OF-1028] - NoSuchElement Exception in XEP-0198 support
Improvement
[OF-675] - Add a comment about restarting in Managing Plugins section of documentation
[OF-844] - CertificateManager logs useless warning messages
[OF-892] - Mutual authentication support
[OF-925] - AdHoc SessionData should be extensible
[OF-931] - Improve installation guide
[OF-935] - During build, parentPlugin should be on classpath
[OF-940] - Update bundled postgresql driver to 9.4-1202
[OF-951] - Drop support for the Solaris platform
[OF-953] - Replace antiquated JSP libraries
[OF-956] - Admins should be able to configure cryptographical protocols & cypher suites
[OF-957] - AuditManager Module does not load properly
[OF-969] - Delete URLUTF8Encoder.java in favor of java.net.URLEncoder.
[OF-970] - Modernize XMLProperties with Java NIO.2 File API
[OF-971] - Add PropertyListener support to AuditManagerImpl
[OF-972] - Remove unused classes
[OF-973] - Tests should retrieve resources from the classpath rather than files.
[OF-975] - JDBCAuthProvider: add support for bcrypt and more
[OF-981] - Remove 'ant-jive-edition' and 'qdox' libraries from build
[OF-991] - In Ant buildfile, use properties instead of hardcoded value.
[OF-993] - Remove thread factory code duplication
[OF-1004] - Improve connection configuration in admin console
[OF-1005] - Undo module loading driven by a file
[OF-1007] - Improve support for whitelisting/blacklisting client IP addresses
[OF-1011] - When importing PEM certificates, ignore leading/trailing whitespace
[OF-1029] - Overlay should be able to override web.xml
[OF-1033] - Orderly shutdown of MUC Service
New Feature
[OF-446] - Implement XEP-0198: Stream Management
[OF-682] - Add Portuguese translation
[OF-923] - FileTransferManager should generate 'complete' event.
[OF-946] - Allow for multiple sets of keystores
[OF-947] - Overlay should support i18n
[OF-948] - Overlay should allow modification of src/resources
[OF-950] - Buildscript should be able to clean one plugin
[OF-967] - Add option to use Name as a nickname when adding muc bookmark
Story
[OF-990] - Remove support for Legacy Date Time (XEP-0090 / 91)
Task
[OF-767] - Bundle Openfire with Java 8 SE JRE
[OF-1001] - Drop Clearspace support
[OF-1016] - Add explanation to setup about default admin password
3.10.3 -- Nov 17, 2015
Bug
[OF-332] - ldap.connect.timeout not working with SSL connection
[OF-477] - SASL server in OF creates digest-uri based on xmpp.fqdn but it sends xmpp.domain to the client
[OF-881] - NIOConnection Thread Deadlock when two clients in each others roster simultaneously disconnect
[OF-887] - ldap.readTimeout not used when LDAP getContext() is called for queries
[OF-903] - ISE attempting to write data to a closed/closing session
[OF-918] - Character encoding issue in BOSH
[OF-926] - Clients can't authenticate using LDAP SSL
[OF-938] - BOSH packet namespace issue
[OF-949] - Offline message delivery failures
[OF-954] - Openfire clustering fails to correctly sync MUC room occupants
[OF-966] - failure tag not closed for TLS Negotiation Failure
New Feature
[OF-933] - Update websocket support per RFC 7395
3.10.2 -- Jun 22, 2015
Bug
[OF-992] - Downgrade Apache MINA to version 2.0.7 to fix performance and 100% CPU issue
[OF-924] - Enable LDAP SSL Connection Pooling
3.10.1 -- Jun 16, 2015
Bug
[OF-881] - NIOConnection Thread Deadlock when two clients in each others roster simultaneously disconnect
[OF-883] - High CPU usage and hangup after a few days of running
[OF-889] - NPE on Admin Console (client sessions listing)
[OF-907] - SSLv2 Hello is rejected; prevents some clients connecting
[OF-909] - BOSH response should return ack attribute
[OF-910] - MUC de-synchronization issues
[OF-916] - Deadlock with MINA sslFilter
3.10.0 -- April 20, 2015
Bug
[OF-116] - Add a text explaining the path used for http-binding
[OF-397] - Do not deliver offline messages to clients with negative priority
[OF-405] - Openfire fails to verify chained certificates
[OF-444] - Jingle Nodes plugin should use lowercase in i18n file's name
[OF-460] - Debug log is not saving its state between restarts
[OF-474] - OpenFire still provides entry forms for already-registered room users
[OF-560] - Restore or drop support for Pack200 compression
[OF-565] - ConnectionHandler has parsing problems due to use of hashcode under heavy load.
[OF-629] - Remove XMPP Sessions
[OF-670] - MUC user count not kept in sync across cluster nodes
[OF-736] - Openfire should return <incorrect-encoding/> SASL failure, when not using base64 encoding
[OF-754] - Lock out user option works incorrectly in some cases
[OF-778] - Setup LDAP broken during initial openfire configuration
[OF-786] - Muc - grant membership: nickname is not stored
[OF-794] - Client sessions for failed cluster nodes are not being cleaned up properly
[OF-795] - Unable to disable Message Carbons after they have been enabled by the client
[OF-796] - Plugin version check should be numeric rather than textual
[OF-799] - Changing server 2 server idle settings has broken UI
[OF-800] - Encryption setting wrong when adding a property via System Properties page
[OF-802] - MUC Invites result in 404
[OF-803] - Message Carbons may throw org.dom4j.IllegalAddException, resulting in disconnection
[OF-804] - Joining a locked MUC room should return <item-not-found/> instead of <recipient-unavailable/>
[OF-805] - [MUC] OF does not return all affiliated users when requesting multiple affiliations
[OF-806] - Flash client connection closing with invalid_namespace error
[OF-807] - S2S whitelist form saving domains with "-" without it
[OF-811] - Remove deprecated "xml-not-well-formed" error in favor of "not-well-formed"
[OF-812] - Monitor plugin fails to handle start date properly
[OF-813] - Memory leak
[OF-818] - Message routing to bare JID can route to negative priority resources
[OF-819] - IQs (e.g. XMPP Pings) of type error get falsely routed to IQ.createResult() which results in an Exception and connection termination
[OF-822] - If a non-occupant sends a request to an occupant, a MUC service MUST return a <bad-request/> error.
[OF-823] - Numeric overflow in MUCPersistenceManager when loading history older than 24 days.
[OF-830] - LDAP shared groups disappear after some time
[OF-832] - Monitoring plugin fixes
[OF-837] - PubSub should return non-persistent items (last published item)
[OF-839] - Forwarded extension should not overwrite extension namespaces of the forwarded message.
[OF-840] - BOSH <stream:features> does not include <register/>
[OF-845] - XSS vulnerability in Monitoring Service pages in Admin Console
[OF-849] - Error decoding subjectAltName DERTaggedObject cannot be cast to ASN1Sequence
[OF-853] - XEP-0077 Registration must return <not-acceptable/> if username or password are unspecified.
[OF-855] - Openfire looses messages when multiple senders send messages to the same receiver that looses connection
[OF-857] - c2s stop responding, new connections hang
[OF-859] - Remove static service id reference in Node.class
[OF-860] - No MUC status code 110 (self-presence) after joining a room with more than one user
[OF-861] - Disable SSLv3 by default as per POODLE vulnerability
[OF-863] - Multiple NPEs encountered when running under high load/latency in cluster mode (via hazelcast plugin)
[OF-864] - Cleanup routes from defunct cluster member servers
[OF-866] - Unexpected "session not found" errors under load
[OF-870] - stanza with multiple "to" attributes generated after restart
[OF-874] - disco#items request SHOULD return connected or available resources
[OF-875] - Roster requests to bare JID of the user are not responded
[OF-876] - IQRosterHandler does not respect error cases in RFC 6121 § 2.3.3.
[OF-877] - BOSH connector does not properly restart after a configuration change
[OF-878] - NPE in MINAStatCollector
[OF-881] - NIOConnection Thread Deadlock when two clients in each others roster simultaneously disconnect
[OF-884] - Auditor uses wrong hour for file rotation
[OF-885] - Use non-blocking, async API for BOSH servlet
[OF-886] - Openfire fails to parse CDATA when it ends with sequence ]]]>
[OF-888] - s2s locks up with gmail
[OF-890] - BOSH client connections sometimes failing
[OF-894] - Openfire tries to close a closing session over and over.
[OF-895] - Update postgresql driver to support PostgreSQL 9.4
[OF-896] - Default client compression inconsistency
[OF-897] - GZipFilter fails on Async BOSH servlet
Improvement
[OF-189] - do not use com.sun.* classes
[OF-593] - LocaleUtils.java_dots_ to_underscores_i18n _bundles
[OF-797] - Move ant-tasks in subdirectory (and delete ant.jar)
[OF-801] - Extend ant build script to support multi-platform binaries that do not have a file extension
[OF-828] - Add the MUC service plugin to Openfire plugins
[OF-835] - Prevent fast clients flooding Openfire causing OutOfMemoryError
[OF-838] - Allow for custom lib and conf file placement
[OF-841] - Add a note about UAC to the Installation Guide
[OF-842] - Additional properties in User Properties view
[OF-847] - Upgrade bouncycastle from 1.50 to 1.51
[OF-850] - Improve initialization state for JiveGlobals
[OF-869] - Update Jetty to 9.2.x version
[OF-893] - Mutual Authentication Broken for BOSH
New Feature
[OF-69] - Add "Groups user belongs to" column to the User Summary page
[OF-179] - Allow MUC permissions to be set using groups
[OF-250] - Allow to configure the groups of a user from the user profile
[OF-324] - Offline Email Notification
[OF-843] - Upgrade clustering components for new Session API method
Task
[OF-421] - Update MINA library to latest version
[OF-466] - Drop Java 5 support
[OF-709] - Update Jetty from 7.4 to 9.1
[OF-831] - A typo on Database Settings page during setup
[OF-901] - Update bundled JRE to 1.7.0_76
3.9.3 -- 5.7, 2014
Openfire 3.9.3 發布了,與 3.9.2 版本比較改進內容包括:
•[ OF-782] - Wrong URL generated for editing groups with space in the names
•[OF-783] - Apply encryption to secure properties during setup (updating openfire backended by LDAP would fail)
•[OF-787] - TLS server to server connections are not working with 3.9.2
•[OF-791] - Joining new MUC room results in a 404 error
•The initial 3.9.2 release had a packaging problem with the windows installer.
3.9.2 -- 5.1 ,2014
Openfire 3.9.2 發布,此版本現已提供下載,包括了許多關鍵的 bug 修復(解決了 70 個 Jira 問題),大大提升了系統穩定性,安全性和 XMPP 標準的兼容性。
值得關注的改進如下:
[ OF-103] - [MUC] Allow nicknames to be used more than once in the same room by a single user
[ OF-114] - Clearing cache can lock up MUC
[ OF-455] - Some unicode pattern in status message can break the session connection
[ OF-669] - Visually failed first login to Admin Console
[ OF-714] - Add ability to encrypt properties so they are encrypted in the db and do not appear in the admin console.
[ OF-745] - Use TLS-dialback even if that mechanism is not advertised
[ OF-757] - Allow s2s message of subdomain of XMPP domain when no components are found
[ OF-569] - Add deluser adhoc command
[ OF-764] - Group chat history (MUC) should match configuration after server restart
[ OF-771] - MUC service should flush recent history before shutting down
[ OF-125] - Restrict discovery of rooms based on users membership
[ OF-297] - fix: mutual roster deletion problem
[ OF-770] - CVE-2014-2741 Uncontrolled Resource Consumption with XMPP-Layer Compression
[ OF-722] - Openfire should save XEP-0184 delivery receipts as offline message
[ OF-758] - Add support for XEP-0280 "Message Carbons"
更多更新內容請看發行說明或者更新日誌。
3.9.1 -- Feb 6, 2014
截至2010年1月21日,openfire更新到3.6.4版
2011-3-2 Openfire3.7.0 has been released!
Openfire 3.7.0 has been released!
2011年9月底,openfire更新到3.7.1版了
2013年2月6日,openfire已更新到3.8.0版
2013年3月3日,openfire發布3.8.1版,修復3.8.1版存在的部分bug
2013年5月28日,openfire發布最新版3.8.2
2014年2月6日,Openfire 3.9.1 has been released
2014年5月6日,Openfire 3.9.3 has been released