Improvement

• [OF-2498] - Improve performance of MUC, based on stress test profiling
• [OF-2499] - MUC Room history shouldn't be serialized as part of a MUC Room
• [OF-2502] - Reduce resource usage of MUC stats collection
• [OF-2504] - Re-instate MINA JMX monitoring
• [OF-2511] -Prevent retrieving more MUC messages from DB than needed
• [OF-2516] - Add TX/RX, Remove Priority from session summary page
• [OF-2518] - Try loading favicons over HTTPS and HTTP
• [OF-2524] - Improve MUC history load time for single rooms
• [OF-2525] - Deprecate XMLProperties constructors that can't write back
• [OF-2531] - Remove unneeded JID-based lock in MUC
• [OF-2537] - Advertise support for pubsub's "multi-item" feature.

Story

• [OF-2528] - Migrate usages of set-output in Github Actions
• [OF-2529] - Upgrade Apache Commons Text from 1.6 to 1.10

Bug

• [OF-2415] - Openfire Docker image fails to start if an empty plugins directory exists
• [OF-2495] - Websocket onError handler prevents earlier data to be processed
• [OF-2509] - openfirectl does not store PID
• [OF-2512] - User lock-out with custom value does not take effect
• [OF-2517] - "Packet sent" session stat remains 0 for BOSH sessions
• [OF-2519] - Group JIDs in MUC rooms without preloading causes issues

sha256sum values

a6a98540e3ab6da65916f630b7b22d04e7ec125be9d09ae98121f6075ef2ef77  openfire-4.7.4-1.noarch.rpm
5f4bd4e6390bdfe99a63e4e72b25200461854348a9f6039368cffe1c509782fa  openfire_4.7.4_all.deb
6bebb52b4828d9564b1e22f3d0aebaeec6eefb1e5c7899549747b48bc8d6e30d  openfire_4_7_4.dmg
142d923f0b17e4dff65b01f69d9d5885494798011157a64cfef8847063f503ee  openfire_4_7_4.exe
9ebcb9c15d38d4f8fb528a79f0f53440179d64c214176c2d9e578b11762258dd  openfire_4_7_4.tar.gz
ef233db999c8a18ac43edb7fd17657c7677c0ce2e29f09c9ccb53185c451ded3  openfire_4_7_4_x64.exe
ba0fb1d992c5169da466107e7752f5eee588d79987dcf052e5b68abc101f7173  openfire_4_7_4.zip

Bug

• [OF-2486] - MUC mediated invite MUST have a invite-from
• [OF-2484] - UpdateManager - Error: update service check did not save correctly. Stopping update service.
• [OF-2482] - Error when opening keystore admin console page
• [OF-2480] - Admin console is unavailable ~30 seconds after setup finishes
• [OF-2473] - Deadlock Websocket
• [OF-2470] - NPE in MultiUserChatServiceImpl
• [OF-2469] - NPE in Pubsub admin console page
• [OF-2423] - Too many sessions removed when one session logs out
• [OF-2181] - "click here" HTTP server restart link on certificate store admin console page is same color as info message
• [OF-1396] - PubSub Admin Console - 'Cancel' takes user to 'Node Summary'

Improvement

• [OF-2490] - Reduce log level when anonymous user tries to use PEP
• [OF-2489] - Reduce log level severity of SOCKS5 error
• [OF-2488] - Reduce log level severity of failure to do a DNS lookup
• [OF-2487] - Make replacement of XML file more atomic
• [OF-2483] - Delay restart of admin console when truststore content is changed
• [OF-2481] - Software version not visible in admin console in S2S Overview
• [OF-2472] - Pubsub node summary search/order functionality
• [OF-2471] - Audit log should show friendly name for groupJID and not base32hex encoded one
• [OF-2467] - Groups are deselected when changing role within Room Permissions
• [OF-2466] - Groups should be sorted within Room Permissions area

New Feature

• [OF-2479] - Allow Tsung to test with websockets

sha256sum values

f05df8e68b8d52ef2941d80884484e62dcface5069868d3f51d2bfe17a72ea5a  openfire-4.7.3-1.noarch.rpm
8ba71bbf0b1abb5c2cd0e18dc20ade77ca2714d58a8ad5313f64614bdc7dac44  openfire_4.7.3_all.deb
d2b1ffa24b3d86858e4d5451a094193c839bceae0a73773fa5ae0e114d0732ff  openfire_4_7_3.dmg
41056744e15e3a9b384b852f5e2c1d1ebb4bfd1d79bb10b54526a1fd9a7fee07  openfire_4_7_3.exe
3ced4613c3cef61068fb89eed723e49b5845e960c6eec194961f75bc65042832  openfire_4_7_3.tar.gz
9c8ebcb930f2373713c1eb53a4b70d9f76a8577b95cbefd41e1ae284c2ff28aa  openfire_4_7_3_x64.exe
670db7574e6b528145c002f22f58789f949d5d5c03fbe372204816db07bd01e7  openfire_4_7_3.zip

Bug

• [OF-2465] - Prevent using a collection function with itself as an argument
• [OF-2458] - ConcurrentModificationException in MUC cache size calculation
• [OF-2456] - MUC nickname changes are not properly propagated in cluster
• [OF-2450] - When pausing a BOSH connection, wrong connection could get answered to
• [OF-2448] - Do not close replacement BOSH connection
• [OF-2444] - Deadlock in BOSH
• [OF-2431] - Incorrect restriction on retrieving member-list of MUC room
• [OF-2421] - OccupantManager should be thread-safe
• [OF-2401] - Pubsub node should not change parent without changing parentIdentifier

Improvement

• [OF-2460] - Bumps mysql-connector-java from 8.0.27 to 8.0.28.
• [OF-2446] - Use more appropriate data type for org.jivesoftware.openfire.http.HttpSession#sentElements
• [OF-2445] - BOSH: prevent pendingElements to be added to if HttpSession is closed
• [OF-2432] - Expose member-only MUCs member list to all occupants
• [OF-2428] - Allow MUC occupants to ask each-other's VCards
• [OF-2424] - LocalSession.toString should not log an error
• [OF-2416] - Allow PEP to be enabled/disabled without restarting Openfire
• [OF-2405] - Enhance log info of loaded plugin by version
• [OF-2398] - Show 'locked' room status in admin console

sha256sum values

998e469fad00452004c9f9d6c309c6749fa48d53af48c1501407f0f77870edca  openfire-4.7.2-1.noarch.rpm
72ee5a31685f6010fc14a992d87d2d1f9c49b79b4e718c239520911ec7167340  openfire_4.7.2_all.deb
674bab49908ff4de14f54dab1fdf7a6a29904b32f00669289b793d8dc19189c8  openfire_4_7_2.dmg
66571c760776d02a28d00ed3c0ca085c327a1874f9d75f8b2037b347ec99decb  openfire_4_7_2.exe
707ede6cc6d8d8bcce257c7f30d8a79fc7ed52576fb217a8220b800f2d52be64  openfire_4_7_2.tar.gz
8eeaf4f07948d10b6b77b3e1e8b8d1f65a6ad3ffd85e5353a2d8055503d724fc  openfire_4_7_2_x64.exe
ad07c991a3812a45250b303e95129a37242de01a591cce438057437d4f5a30d9  openfire_4_7_2.zip

Bug

• [OF-2392] - Logging fails when Openfire started with Install4j 'openfire' launcher
• [OF-2381] - MUC idle user handling
• [OF-2379] - In-memory pubsub representation should guarantee order of items
• [OF-2375] - Fix references to openfire.log

Improvement

• [OF-2394] - Bump postgresql from 42.2.25 to 42.3.3
• [OF-2393] - Update SLF4J to 1.7.36
• [OF-2390] - Increase MUC idle kick default value to allow for SM
• [OF-2387] - Update Postgres driver

Sub Task

• [OF-113] - Openfires admin gui allows to enter long group names while the database supports only 50 characters.

Tasks

• [OF-2384] - Enable Openfire debugging for Docker
• [OF-2376] - Update mysql-connector from 8.0.27 to 8.0.28

sha256sum values

ec8e0a8a52cb28b50afea8060664d2c28a66b99f529e1c79a80e44d3dd14322d  openfire-4.7.1-1.noarch.rpm
be5fd37af0d45f5b22a56b617154615ac8ed0d8424744d8cfb0b94c34b182cbb  openfire_4.7.1_all.deb
2a5db207e92482147082157ea7c0b308865cbf5efc414be244fb29d14a87c0d3  openfire_4_7_1.dmg
5632e794bc13cb00556d1fa80a3262837049e21a6c9a40ea6dce06b4411d8608  openfire_4_7_1.exe
c8007ca87780b349db2c42e013fd129c7f24a189ce34c4595fe2a55fcb8ac404  openfire_4_7_1.tar.gz
ece0e0adaa907710779633427be96b0c72b00bf61d335a28f18a04e0d32fd683  openfire_4_7_1_x64.exe
112b0ef0604e6d3a3ee5eaac9fc604d468c679fa453825164fb51ea16149348b  openfire_4_7_1.zip

Release notes - Openfire - Version 4.7.0

Bug

OF-2368 Ghost detection shouldn't kick non-ghost occupants

OF-2367 (TCP) clients are suddenly unable to log into the server

OF-2365 Parent node subscribers shouldn't always get pubsub node notifications

OF-2358 When a room is destroyed, the room instance might be non-existent

OF-2350 DefaultExternalizableUtil ignores provided ClassLoader instances

OF-2348 Plugin JAR can't unload on Windows with newer versions of Java

OF-2346 XMPPServer#matchesComponent shouldn't require full-JID match

OF-2345 component-based address incorrectly identified as remote

OF-2343 Inconsistent leave presence sending to leaving occupant

OF-2341 Apparent thread lock (deadlock?) in MUC after clustering reimplementation

OF-2339 Incomplete room list following a cluster split

OF-2338 NullPointerException on MUC search if name is empty

OF-2337 PEP publishing fails after reboot

OF-2336 DefaultCache put returns wrong value when to big value is added

OF-2329 XML parsing bug when tag-name is not followed by space or '>'

OF-2328 Error when standalone Openfire checks for timed out users

OF-2325 100% CPU from never-ending Dialback

OF-2324 NullPointerException in client sessions page on admin console

OF-2322 Outbound S2S stanzas can be delivered out-of-order

OF-2321 Concurrency issue with sending/establishing outbound S2S connection.

OF-2315 NPE when setting up S2S

OF-2314 Cache data inconsistency: outgoing server sessions

OF-2313 Cache data inconsistency: incoming server sessions

OF-2312 Not all admins are warned when cache inconsistencies occur

OF-2311 Cache data inconsistency: Sessions

OF-2308 MUC should disallow nickname change to reserved nickname

OF-2305 MUC nickname change processed as new join

OF-2304 MUC nickname changes should not be possible for non-occupants

OF-2300 Clustered caches can loose 'local' data upon cluster breakage.

OF-2299 NullPointerException when cleaning up directed presences in 3-node cluster

OF-2297 Cluster leave can result in lost data MUC

OF-2296 Cluster join/leave events are processed twice in MUC

OF-2294 MUC consistency check failure

OF-2293 Duplicate occupant in MUC

OF-2292 ConcurrentModificationException in new MUC cluster code

OF-2291 ConcurrentModificationException in new MUC cluster code

OF-2290 Cache locking with Strings has problems equal to using a String as a mutex

OF-2289 String-based Interners still can cause deadlocks

OF-2282 Log4j config is ignored at boot time.

OF-2281 Admin console error when using In-Memory datastore for pubsub

OF-2278 Cache locking does not always work with primitive types

OF-2250 Multiplexer backup deliverer should be used

OF-2249 Backup delivery for BOSH should be 'offline'

OF-2245 Prevent needlessly scheduled tasks after Http Session closure

OF-2244 Offline presence subscription loses details

OF-2213 Update dependencies identified by Snyk

OF-2206 BOSH session disconnect through server should inform client

OF-2167 Federated users should be able to query a MUC room in a cluster

OF-2165 Prevent potential nickname clashes when occupants of clustered MUC room are merged.

OF-2164 Updating A MUC service should propagate in the cluster

OF-2156 BOSH Concurrency issue

Improvement

OF-2371 Outbound S2S stanza queue should be larger

OF-2370 RemoteServerManager's canAccess should evaluate both Direct and nonDirect TLS

OF-2369 Do not establish S2S when not accepting S2S of the same type

OF-2363 Improve LGTM score for xmppserver/webapp/javascript

OF-2362 JDBCAdminProvider LGTM synchronising on a string

OF-2361 GroupManager LGTM String Synchronisation Changes

OF-2360 Create API to check for availability of plugins/versions on each cluster node

OF-2357 Update SLF4J to 1.7.32

OF-2356 Update Bouncy Castle to 1.70

OF-2355 Update Log4j to 2.17.1

OF-2354 String-based SystemProperty lists should allow for whitespace comma separation

OF-2353 Update Log4j dependency to 2.16.0 to address Log4Shell/LogJam

OF-2352 Use plugin-provided servlet context

OF-2351 Update Log4j dependency to 2.15.0 to address Log4Shell/LogJam

OF-2349 Admin console should show (full) default value for system property

OF-2340 send stanzas that are 'responses' through PacketRouter, not RoutingTable

OF-2320 MUC room avatars fail

OF-2319 muc#roomconfig_allowpm should only affect Message stanzas

OF-2317 Prevent NPE when admin page obtained without session

OF-2316 Make S2S fast-discard timeout configurable

OF-2307 Changing MUC nickname to one that's already used by your other resource

OF-2303 Remove unused UserManager field from SessionManager

OF-2298 Use status code 333 when MUC occupants leave due to clustering error

OF-2287 Add MUCEventDelegate to interface

OF-2283 Show distinct servers when looking at remote S2S details

OF-2276 Broadcast status codes when privacy settings of a MUC room change

OF-2275 When joining a MUC room that has logging enabled, status 170 should be returned.

OF-2256 Add CORS headers to websockets

OF-2254 Distinguish between property values that are set to the default value, or are just defaults.

OF-2252 Reduce log level for BOSH request that time out

OF-2251 Threadpool for BOSH network-IO should be configurable

OF-2248 BOSH configuration should go into SystemProperty instances

OF-2247 BOSH session configuration should not be mutable

OF-2246 Allow backup delivery to be disabled

OF-2239 Make it easier to cache plugin class instances

OF-2212 Allow admin console's cert to be auto-updated

OF-2200 Apply alternating row background color scheme to group members list.

OF-2175 Reduce verbosity of anonymous users trying to authenticate errors

OF-2129 Remove Flash support

OF-2115 Remove unused webdav servlet

OF-1840 Improve admin console log viewer

OF-264 Add group selection field in Create New User page

New Feature

OF-2286 Allow log file to be downloaded from Admin Console

OF-2158 Update notifications should include cluster node reference

Sub-task

OF-2272 Remove notion of 'remote' and 'local' MUC entities

OF-2236 Test appropriate join/leave presences are sent to occupants when joining & leaving cluster

OF-2233 On joining a cluster, generate appropriate join presences to reconcile the MUC participant visibility

OF-2232 On reconciling the membership of a particular MUC, reconcile any nickname conflicts

OF-2230 On witnessing another node leaving a cluster, generate leave presence about all MUC participants from that node to all node-local MUC participants

OF-2228 On Cluster Join, repopulate the newly acquired clustered cache with the local copy of items

OF-2227 On Cluster Leave, repopulate the new blank local cache with the local copy of items contributed to the clustered cache

OF-2223 Test the local list of cache items to ensure it contains the expected state of items given various conditions and operations in/on the MUC

OF-2220 Ensure that caches are updated every time a item from the cache is modified locally

Task

OF-2366 Drop barely-used commons-io library

OF-2333 Update dependency-check from 6.0.4 to 6.2.2

OF-2332 Update commons-dbcp2 from 2.6.0 to 2.9.0

OF-2331 Update mysql-connector from 8.0.21 to 8.0.27

OF-2330 Update Jetty from 9.4.39 to 9.4.43

OF-2327 Drop runtime compilation of JSPs

OF-2199 Stop bundling JRE with Openfire Release Artifacts

OF-2066 Evaluate if additional event listeners are required

OF-1780 Add OWASP dependency check to build

sha256sum values

061200b8925f9d248c7303a5e893c3bd3df256bae07956ac4aa5fccb88e247c7  openfire-4.7.0-1.noarch.rpm
f1867b224082aa4baa3632bed465a51d21eb109cb57b01ac1a97f0662ab6f23c  openfire_4.7.0_all.deb
f7bc7d3dbeae4ce7f8620338c6f4cc27de873e8b7e736d2dc9b345a0942b89cc  openfire_4_7_0.dmg
49d474983105665831a15204d2504d56a829a908c5ffc4837504edcf71e52519  openfire_4_7_0.exe
781e024118e46675134b712e92efd249dd86b0e64c6ae221484c03fa5c66fe6f  openfire_4_7_0.tar.gz
7280870634edeba66b8ab274cab6c6e22c5fb4643942760de2c400d262917ac5  openfire_4_7_0_x64.exe
0ba7cac3dba81922fa254562f5e2fdb066bd195738910c4449e882195f936610  openfire_4_7_0.zip

Release notes - Openfire - Version 4.5.6

Bug

OF-2093 JDK11: java.lang.NoSuchMethodError: java.nio.CharBuffer.flip()

Improvement

OF-2355 Update Log4j to 2.17.1

sha256sum values

3cf7be64dec0ab0d410ec38b15fae00eecd681c72140a8ad3ccc48be52a88982  openfire-4.5.6-1.i686.rpm
16d1d487d852efd80312fa796ffbaa61dd16e7b0e6587234639e9716e82b0745  openfire-4.5.6-1.noarch.rpm
db0fa0f3b0c904f6b15bcac3b4dc60db2aed8f8275f5f6af886d0bc8dbcdaf9c  openfire-4.5.6-1.x86_64.rpm
d7f2bca0bc82ef6ad404d36dcf4c3ba65a6f9191a00873a83c6739658ce124c6  openfire_4.5.6_all.deb
c96f79db2a9e434cc08ef5989062eb352e57315a25765c2a4f1442072eadbe07  openfire_4_5_6_bundledJRE.exe
77061c8aae0a892d041b8695f38ba2fe91b2844259654bb2e55bf505b9debe27  openfire_4_5_6_bundledJRE_x64.exe
c65ccbf45a69c0babe2876a9c511910d2601ff301539e9a4c3d94dc1b82952c9  openfire_4_5_6.dmg
5990611b18b9ffff5ff46dc8bb398306fc6361893c230ee5d71ad852564dcd49  openfire_4_5_6.exe
1f155e858a924e54b172fd884ccd49521fc55d89260b2e074e2b39b4271667c4  openfire_4_5_6.tar.gz
6df1c063efd674c059323431f786e9e2a70a3c6573e1012e2b56f6db7877d28f  openfire_4_5_6_x64.exe
400269969398c6ed90322ea8d199225b0cdf87a90a840d9aa123c0b941b1cfae  openfire_4_5_6.zip

This release only updates log4j to 2.17.1

sha256sum values

1a8f1516a3d398b7701ec9a1c8b790a9ece8f3ea59265ccce4e769af5d485f26  openfire-4.6.7-1.i686.rpm
11972b17d60b828345b75fa049469085f22b9aa233082f8fb9bcac90ba0876a6  openfire-4.6.7-1.noarch.rpm
d802fbd9b1a4011fe23c6338d77642cfbc813760d1f5c805bc5934881635edfb  openfire-4.6.7-1.x86_64.rpm
4ab20cb022d5068c1dc0c7024350db4ac63b28a757e216e98ee6863d8ec7d253  openfire_4.6.7_all.deb
2157a17479acc12e6392ad10c2c61d38e478438a279c970a15313e1a49cce7ba  openfire_4_6_7_bundledJRE.exe
ac1e91d23742493a4d56f489e52f77ee5f1db138091600f84b406956e6b701ef  openfire_4_6_7_bundledJRE_x64.exe
baae9416e5979a7dc1c44dab156e540152baf3368e8afe838ee70a64dcaf2ca2  openfire_4_6_7.dmg
b76b304dcbca084830d52da900051f837f605ce22411033fae68a00d28dc0c34  openfire_4_6_7.exe
6b2ba7c4976dbd36249269a453eb176d71a1e7f80575951cdd173d0ec4247056  openfire_4_6_7.tar.gz
fec61e4a573faf634336e535c51112ab94c3f09388ea16948b8c6906ebbdf9ef  openfire_4_6_7_x64.exe
1a92b45968719b7de00181d8dcfc5ef10e335b02deafcf7d6a5053a968ed0646  openfire_4_6_7.zip

This release further addresses the log4j CVE

[OF-2353] - Update Log4j dependency to 2.16.0 to address Log4Shell/LogJam.

sha256sum values

507b4899fb1c84b0ffd95c29278eeefd56ac63849bb730192b26779997ada21b  openfire-4.6.6-1.i686.rpm
d2913d913449a9e255b10ea6ee22a5967083a295038c21d3b761bb236c22e0cd  openfire-4.6.6-1.noarch.rpm
02aa7af09286f25fbceef1ea27940e1696ced1e3a6c28b5e0ae094d409580734  openfire-4.6.6-1.x86_64.rpm
3add3c877745dcc6aacd335cfc8fe1674567bb3b28728cfa6c008556c59a9e98  openfire_4.6.6_all.deb
00c5ecbbf725de1093bfe3e5774b8c0e532742435439f70a4435fc5bed828b99  openfire_4_6_6_bundledJRE.exe
4ff92208e62f0455295a8cf68d57e2d9e3ede15c71aaab26cf1a410dce5aba5b  openfire_4_6_6_bundledJRE_x64.exe
2584a6b61f0d9447a868f9bfadb5892d56d854198604b3ace9b638b8c217cac4  openfire_4_6_6.dmg
6cc42bfb60a5f8453c37d980c24c2a5ba48e1e1363ebfcc5d7f2e1deb6da5f17  openfire_4_6_6.exe
6431a22d2dd9f077b9b2ee8949238c0f076ab34d43ee200a6873fa5453630bd6  openfire_4_6_6.tar.gz
ec8da5fdc93065df9bf41c0f4aebd6bb47f1dea11dcc96665ac0105f035378b2  openfire_4_6_6_x64.exe
af68252b98b8af6afb0753b4054adcf4cab1968579eaaf644d4da663e9461dce  openfire_4_6_6.zip

This is a release addressing the log4j CVE

OF-2353 -Update Log4j dependency to 2.16.0 to address Log4Shell/LogJam

sha256sum values

247f0769e0a449c698ac9c23b658a02131ac6f774f4394dc9bb4e7f114159cc8  openfire-4.5.5-1.i686.rpm
4603f92ce9822d1f43d27a9e15b859232cd09f391e9aeef0b99a782a03ecd12e  openfire-4.5.5-1.noarch.rpm
9df54cbef30664635ed2977a21beded56fa120c5ff9e89b4cfa7466171344517  openfire-4.5.5-1.x86_64.rpm
0815f07094fcfaf4e17aca3ea26f42835b5ff1b486475aff6b743e914709e788  openfire_4.5.5_all.deb
dff2e81da7457e3d8c1ee9e23ff43dd812f56db09df53588df7a5ea5622b1e6e  openfire_4_5_5_bundledJRE.exe
96c2a4f5ed94dda76942ec7e540430c505448a2625a10f52cdc91c2dae0f720a  openfire_4_5_5_bundledJRE_x64.exe
a1ddd675b24b661186645786d1489cb6d80c90c2cae178992af509b5241fb275  openfire_4_5_5.dmg
971b97bc9d405a03d2c3fba51a698cf92397b24104b28fec06b993b6d52568ce  openfire_4_5_5.exe
a5f199bf2347725b952a995c1cfbeb1b8e45c9a26c177100669eeed7679da742  openfire_4_5_5.tar.gz
b5b55c5938b430fa50c702da6b8336be7f79d2c97eb09623dc0c9bd59663aead  openfire_4_5_5_x64.exe
44f90a4f4f7ecebd7cffadc7f108e4bcb8b70dc77b36698d48efaf3eb7650c91  openfire_4_5_5.zip

Changelog

OF-2277 Numbering in room enumeration is off by one.

OF-2273 Disabling presence broadcast will cause MUC join failure

OF-2268 Concurrency issue when starting JMX manager

OF-2267 Cannot browse MUC rooms of services other than the first one.

OF-2351 Update Log4j dependency to address LogJam

OF-2271 Add field type returned data form fields

sha256sum

926e852abfe67970a4a64b7a58d16adbd3ae65269921288909d2a353457ac350  openfire-4.6.5-1.i686.rpm
5041fd66f5cf4642d25012642d827ad80c40057ba66f79aad04918edc94085ec  openfire-4.6.5-1.noarch.rpm
f1d7ed2d5d5bbd12c3af896329df48f97b73ae5435980b524248760a246552f6  openfire-4.6.5-1.x86_64.rpm
da113f737514457209194024f57a90f52f499fefbf0a9eb3e3d888b24f214ece  openfire_4.6.5_all.deb
c16e13348767b489aef905d912eafca9650428af16a729b63a208fdbe97c9783  openfire_4_6_5_bundledJRE.exe
e03cd4e5b2a76b203540580ca2714541ee86b1ef3b677d5c312d099567674f2d  openfire_4_6_5_bundledJRE_x64.exe
28d628db9cce3cfb7acfa19977235b569729bcebff65a511dd882a4c1b554d6c  openfire_4_6_5.dmg
cb1c4a5f888cbeeb6bbfd29460c8095941cecddd8c5f03b3d3f1ca412a995e81  openfire_4_6_5.exe
fcc3d45e9b80536b463fedbb959ff1e4f5fc5cef180502f6810c0f025a01f4ac  openfire_4_6_5.tar.gz
fe216d1eecb23050ebbf28f7afa8930ca167d99516051c3f5e03d545e183cf4c  openfire_4_6_5_x64.exe
fd0f853b249a8853da51b056f1e6b31d04c49763394321dbd60abb8cef9df940  openfire_4_6_5.zip

Improvement

• [OF-2349] - Admin console should show \(full\) default value for system property
• [OF-2340] - send stanzas that are 'responses' through PacketRouter, not RoutingTable
• [OF-2320] - MUC room avatars fail
• [OF-2317] - Prevent NPE when admin page obtained without session
• [OF-2316] - Make S2S fast-discard timeout configurable
• [OF-2307] - Changing MUC nickname to one that's already used by your other resource
• [OF-2303] - Remove unused UserManager field from SessionManager
• [OF-2298] - Use status code 333 when MUC occupants leave due to clustering error
• [OF-2287] - Add MUCEventDelegate to interface
• [OF-2283] - Show distinct servers when looking at remote S2S details
• [OF-2276] - Broadcast status codes when privacy settings of a MUC room change
• [OF-2275] - When joining a MUC room that has logging enabled, status 170 should be returned.
• [OF-2256] - Add CORS headers to websockets
• [OF-2252] - Reduce log level for BOSH request that time out
• [OF-2251] - Threadpool for BOSH network-IO should be configurable
• [OF-2248] - BOSH configuration should go into SystemProperty instances
• [OF-2247] - BOSH session configuration should not be mutable
• [OF-2246] - Allow backup delivery to be disabled
• [OF-2239] - Make it easier to cache plugin class instances
• [OF-2212] - Allow admin console's cert to be auto-updated
• [OF-2200] - Apply alternating row background color scheme to group members list.
• [OF-2175] - Reduce verbosity of anonymous users trying to authenticate errors
• [OF-2129] - Remove Flash support
• [OF-2115] - Remove unused webdav servlet
• [OF-1840] - Improve admin console log viewer
• [OF-264] - Add group selection field in Create New User page

New Feature

• [OF-2286] - Allow log file to be downloaded from Admin Console
• [OF-2158] - Update notifications should include cluster node reference

Sub-task

• [OF-2272] - Remove notion of 'remote' and 'local' MUC entities
• [OF-2230] - On witnessing another node leaving a cluster, generate leave presence about all MUC participants from that node to all node-local MUC participants
• [OF-2228] - On Cluster Join, repopulate the newly acquired clustered cache with the local copy of items
• [OF-2227] - On Cluster Leave, repopulate the new blank local cache with the local copy of items contributed to the clustered cache

sha256sum values for artifacts

6cf4cc7a0a834b23cdea0ade198c724ee4f0be5560f1d16321414497c4f5903b  openfire-4.7.0-0.2.beta.noarch.rpm
ceee17f76d2645f2fcc29f5a84efbcc7fc376f7e01ef05ba28b65e850fff96f8  openfire_4.7.0.beta_all.deb
71e1a373420e048ee4c5921bcb54b4efa2357aaf9e57501284f20f0edeaa0428  openfire_4_7_0_beta.dmg
7d1f248e03c60dbb071eeee6abf671932c47e154fae888bee9293f875323fdd7  openfire_4_7_0_beta.exe
44bebac3da5f5d5d00270dcc303b34b6efce4c7c2bd1bfd4520827f6e8a58549  openfire_4_7_0_beta.tar.gz
72f1cd7dc2015ec70902b3b18a5248651a6e3091ba12ebf8d2767834b057c17f  openfire_4_7_0_beta_x64.exe
76e4cf8da32b062ed719812792849bcfc475a22208e721a5f1b7dcddda45a4a4  openfire_4_7_0_beta.zip

sha1sums

42bff5adc51a2347952f436fed25b5013ee0a146  openfire_4_6_4.dmg
d1f85a2854e42ae48e4000480fbbb55e39f84e56  openfire-4.6.4-1.i686.rpm
1a5c43e904726192e2abc36858eb2df0b17244a2  openfire-4.6.4-1.noarch.rpm
689c046afdbd63e22615a599f076851a49af50cd  openfire-4.6.4-1.x86_64.rpm
18117c3fee17d1b6d704b85c42d7d3386e520983  openfire_4.6.4_all.deb
36b1953db86406a1eb2344d1b0ffada0f57b8b32  openfire_4_6_4_bundledJRE.exe
72de355806bb2ce414655cf0da2801ce47032f03  openfire_4_6_4_bundledJRE_x64.exe
3086b70e04077b56dbb59931a87937e619995f0b  openfire_4_6_4.exe
7dab9c9a61456508793ede0ab13c7fe1f18e12d1  openfire_4_6_4.tar.gz
4f05ea94729800bbc6272b8ff98f3c8aa81d9207  openfire_4_6_4_x64.exe
792f68efc3943658e71586dbe305420499aab6b2  openfire_4_6_4.zip
9b3e031e4b064b5e4c618476b5429e077d4c1abb  openfire_src_4_6_3.tar.gz
bd79eae0079cba4a84cc9d1e249a62c3f45d6539  openfire_src_4_6_3.zip

Bug

• [OF-2266] - Occasional test failure for LoginLimitManager
• [OF-2265] - Websocket fails to deliver certain errors
• [OF-2262] - Admin console does not show MUC rooms that are not in memory
• [OF-2241] - IQVersionHandler fails to handle bosh/websocket clients
• [OF-2240] - Self-presence status not added to kick presence
• [OF-2190] - Inconsistent normalization of MUC room name

Improvement

• [OF-2264] - Bump commons-io from 2.6 to 2.7
• [OF-2263] - Do not list every page of MUC rooms
• [OF-2261] - Re-word MUCs cleaned from memory option in admin console
• [OF-2260] - Show (full) name of group members on admin console
• [OF-2259] - Increase startup speed with large amounts of MUC rooms
• [OF-2258] - Make thread pools configurable
• [OF-2257] - Expose state of thread pools via JMX
• [OF-2253] - Return IQ auth error when sending data before being authenticated
• [OF-2243] - Version Check threads should not sleep in the TaskEngine
• [OF-2083] - Do not store offline messages that are already stored
• [OF-2082] - Consider using OfflineMessage instead of Message in OfflineMessageListener

Release notes - Openfire - Version 4.6.3

Bug

OF-2214 DbConnectionManager should not default to DB2 for unknown database types.

OF-2210 Session Destroyed event is not triggered

OF-2207 Creating new room on cluster generates exception on one node

OF-2205 Race-condition in EntityCapabilitiesManager when deleting user

Improvement

OF-2217 Enable Result Set scroll support for Oracle

OF-2216 Enable SQL transaction support for MySQL

OF-2215 Use MySQL database scripts for MariaDB

OF-2201 Better error when LDAP fails due to missing HTTP session

OF-2192 Add Client Version column to Sessions page

New Feature

OF-2209 MUC 'ghost' users should be detected/removed

sha1sums for release artifacts

df31aa19f035454cbddb91ac461e17ab5afe9d0e  openfire-4.6.3-1.i686.rpm
5c7d95f508426f9ffbe4140c7f217bb5308456fe  openfire-4.6.3-1.noarch.rpm
72a0f054cbb22ca89b3776889ec6f23ba16a2744  openfire-4.6.3-1.x86_64.rpm
28ceb205504e7f58cea30a21e8d8fb3ff197f18d  openfire_4.6.3_all.deb
130b1182384b4ebf08826b4efd84ab83d968a9bd  openfire_4_6_3_bundledJRE.exe
2e25f3924eadd0e1992ccefb2ca2b955801e1d2c  openfire_4_6_3_bundledJRE_x64.exe
c5c2035dec1a9aced5d4979b83da64686e2575a1  openfire_4_6_3.dmg
57e2a211dcb8d93c7362282f469bdc7ee7e4d06d  openfire_4_6_3.exe
ab4f6a0ab27dd642214099ea57a6ac4e2eb6d75f  openfire_4_6_3.tar.gz
21785833b7b1ec99f9174fdb625529dacd4f832c  openfire_4_6_3_x64.exe
de5bff5f8b6963d8c8e2d25120922a3395dd0df7  openfire_4_6_3.zip
30e97fa43ba34dd3369c7664c40dd087db0e6879  openfire_src_4_6_3.tar.gz
6acb86fee6f64b940089eba571a3136caa08df9d  openfire_src_4_6_3.zip

Changelog:

Bug

• [OF-2196] - Fix dependencies for PluginServlet on Java 11
• [OF-2197] - Slash-star block comment fails for SQLServer

Improvement

• [OF-2155] - X-Frame-Options header in Admin returns an invalid value
• [OF-2195] - Add Git SHA to Admin

sha1sums

678f7ca008ed8347f4b49efcac3ef68cde9814ed  openfire-4.6.2-1.i686.rpm
10db897faff66be5228fde858da7618becee1251  openfire-4.6.2-1.noarch.rpm
29c7aa59cac59eb15b0824e5a7d1dde0ce57976b  openfire-4.6.2-1.x86_64.rpm
245e326efbcf02749a243ef7bee79a55b6b5afb3  openfire_4.6.2_all.deb
1e9f0eb71650313f65848d376b600d6ce2d87db7  openfire_4_6_2_bundledJRE.exe
1f80ba8835c55f7290ac05f2b88cffdd3a993616  openfire_4_6_2_bundledJRE_x64.exe
d9c0956ad8fcc28e27b92175e6931841f76b0935  openfire_4_6_2.dmg
2c610a40648547aa37093fa0d73ce2e9eca4a0af  openfire_4_6_2.exe
c03ede9ee3693cccc5f95d2155637d0269567edf  openfire_4_6_2.tar.gz
9192fcf7ac6abca3578e1720155723da0792ba98  openfire_4_6_2_x64.exe
f73c32f9a3b4c44b453f9f5d939b99238136d00f  openfire_4_6_2.zip
a9a2dab04c03cccb5b1b371602dbea87dc860fd3  openfire_src_4_6_2.tar.gz
8bb3f1f83cf0671924adde9b3809e9e71ed0a3ed  openfire_src_4_6_2.zip

Artifact sha1sums

8fe60c2ac0be32f497648a6f129dec89ec858533  openfire-4.6.1-1.i686.rpm
c7e949d21aecb488617c8effe31f5831d25ed912  openfire-4.6.1-1.noarch.rpm
a28e01c896d40f756a03c2e7cf8ec48ef45af782  openfire-4.6.1-1.x86_64.rpm
6504c08821415e8e053ca361f78e899f6c9ddf7e  openfire_4.6.1_all.deb
2d76d5ead560b49dda95cf9305e9d47f67ef2349  openfire_4_6_1_bundledJRE.exe
1423d1aa5ca6d9e4169b5f775bc11b5f6b4fcf8c  openfire_4_6_1_bundledJRE_x64.exe
a4c7f7d4bd82d2eecf6791befcc8285d172740ad  openfire_4_6_1.dmg
627d062dec364bc2f4e6a8b54d171c599525edde  openfire_4_6_1.exe
84915336194c72622d96b9a0a20d9418397b93d6  openfire_4_6_1.tar.gz
89c6cf5ff54718eefee21292dc63f304ed8d6e2c  openfire_4_6_1_x64.exe
8be2dcb848cd501f20bff285ffa68a824d5f7d32  openfire_4_6_1.zip
602f9b6dc2f3b95cb25decf1026196d9b4a4c348  openfire_src_4_6_1.tar.gz
8354eb3fd548221bd76f5d5096766e04bbed36be  openfire_src_4_6_1.zip

4.6.1 -- January 6, 2021

Bug

• [OF-763] - Create property to control console session expiration
• [OF-2077] - NullPointerException with Pubsub(PEP?) and clustering
• [OF-2112] - IQRouter throws NPEs when routing stanzas without 'from' attribute
• [OF-2113] - Docker builds should not include locally built resources
• [OF-2131] - NPE in MUC in clustering
• [OF-2146] - MUC affiliation and role changes aren't always sent to the affected occupant
• [OF-2148] - Implicit narrowing conversion in compound assignment
• [OF-2152] - Stanzas dispatched from MUC room can have invalid 'from' address
• [OF-2157] - SequenceManager generated IDs are unreliable whilst clustering
• [OF-2159] - Openfire re-uses the origin-id for stanza-id
• [OF-2161] - Stable/Unique stanza ID for PMs should have a 'by' that reflects the room
• [OF-2163] - MUC Stanza post-processing might unintentionally expose real addresses
• [OF-2168] - Unable to broadcast (some) presence stanzas in MUC.
• [OF-2169] - LDAP VCard failure when user doesn't have attribute
• [OF-2173] - NullPointerException when joining a room that has no subject
• [OF-2179] - MUC, S2S and Clustering: IllegalStateException in MUC presence broadcast
• [OF-2180] - User has nickname in room, but not a role
• [OF-2191] - set server broadcast message to type headline

Improvement

• [OF-2114] - Upgrade Bouncy Castle libs to 1.66
• [OF-2130] - Improve usefulness of error messages when configuring LDAP/AD integration
• [OF-2151] - Improve exposure of cluster location in admin console
• [OF-2153] - Gracefully handle SM resumption requests on other cluster nodes.
• [OF-2162] - Add 'ofrom' to MUC private messages
• [OF-2170] - LDAP UserDN cache should contain negative results
• [OF-2172] - Include query details in DNS exceptions
• [OF-2174] - Cache DNS SRV lookups
• [OF-2177] - CacheableOptional should have a toString
• [OF-2182] - Update Jetty to 9.4.35
• [OF-2183] - Update ant to 1.10.9
• [OF-2184] - Update bouncycastle to 1.68
• [OF-2185] - Update guava to 30.1
• [OF-2186] - Update apache httpclient to 4.5.13

Task

• [OF-2111] - MUC Maximum batch size setting resets on reboot

sha1sum's

3747eb30a9c301cb4e169ea58682bffaec928d45  openfire-4.6.0-1.i686.rpm
446dd40b68e89311f4e7de62af4cb1dfe44cff2d  openfire-4.6.0-1.noarch.rpm
74023de1be0211bbc6879173bc9a5875605cd375  openfire-4.6.0-1.x86_64.rpm
0db33511ff833dc904ea7845d6eb3294cf418782  openfire_4.6.0_all.deb
fe7684d7ddf12896d138af64adb2d79f62874c29  openfire_4_6_0_bundledJRE.exe
cb490c5762c2f2f4ccd70a5a09b5faab59dc5e99  openfire_4_6_0_bundledJRE_x64.exe
fb915d112f522860fdd419c8bc0371f7a4a2105a  openfire_4_6_0.dmg
a5fada882ace449df9056205618e86312a08ec6e  openfire_4_6_0.exe
43a5b890e52b4baa7e8096410a7b398c89ad4d33  openfire_4_6_0.tar.gz
d11cfed06901fef69fcac1c3c4e28f60256baf62  openfire_4_6_0_x64.exe
86e150c2cb9b74c63b3907e3c036cc046c78c5ba  openfire_4_6_0.zip
436f9833fe8d7185c800daf3d35c2d5d11d1f6ea  openfire_src_4_6_0.tar.gz
a3a274b2f12d4cf9f15cb981e6c2b18c78ca07c6  openfire_src_4_6_0.zip

Changelog

Bug

• [OF-872] - Openfire violates RFC 6120 § 10.3.
• [OF-1696] - Personal Eventing menu shows exception on a first try
• [OF-1789] - HTTP-Bind failure
• [OF-1836] - Properly handle s2s timeouts
• [OF-1888] - Faulty assumption in RoutingTableImpl leads to NPE
• [OF-1975] - Do not trigger offlinemessagelisteners when no message is stored
• [OF-1992] - IQPEPHandler does not consistently identify "addressed to server" stanzas
• [OF-1993] - Prepared Statement should always close on method exit
• [OF-1995] - It should be possible to query anonymous users for service discovery
• [OF-1998] - HTTP Bind session listeners are never invoked
• [OF-2012] - Should not add client route when client becomes unavailable.
• [OF-2016] - Do not depend on existing PEP service when creating PEP service
• [OF-2038] - Shared groups should not be looked up in LDAP
• [OF-2042] - MUC does not adhere to XEP-0045 Order of Events
• [OF-2046] - Comments in sidebar-admin.xml
• [OF-2049] - Ensure room isn't deleted before leave presences are sent
• [OF-2050] - Stream management concurrency
• [OF-2054] - Dataforms of type result should include form field types
• [OF-2057] - All resources PEP service owner should receive notification
• [OF-2058] - LDAP group with non-existing user not loaded
• [OF-2060] - Cluster nodes leaving break component routing
• [OF-2080] - NPE when retrieving empty pubsub node
• [OF-2084] - PubSubModule incorrectly disregards empty strings as parent IDs
• [OF-2085] - Pubsub: Do not require items to persist cache content
• [OF-2086] - Persist cached pubsub data prior to shutdown
• [OF-2092] - PEP service memory leak
• [OF-2093] - JDK11: java.lang.NoSuchMethodError: java.nio.CharBuffer.flip()
• [OF-2100] - Admin Console error when editing group with non-local members
• [OF-2102] - Incorrect Pubsub Service shutdown logic
• [OF-2105] - PEPService removal should occur when not loaded in memory.
• [OF-2106] - Incorrect usage of UserManager.isRegisteredUser()
• [OF-2107] - Server message broadcast doesn't do as advertised

New Feature

• [OF-1968] - Avatar support for MUC rooms.
• [OF-1978] - MUC: add configuration that allows join presence to be suppressed
• [OF-1989] - Introduce in-memory only pubsub persistence provider
• [OF-2030] - Add support for XEP-0289: Federated MUC for Constrained Environments
• [OF-2033] - Add automatic cleaning of outdated offline messages
• [OF-2108] - Expose use privacy lists on admin console

Task

• [OF-1880] - Provide DOAP for Openfire
• [OF-2031] - CVE-2020-10683 Update dom4j to 2.1.3 or later
• [OF-2088] - Update MySQL Connector/J to version 8.0.21

Improvement

• [OF-1837] - JDBC providers should have an option to escape data
• [OF-1869] - Announce PEP feature support for 'auto-subscribe' and 'filtered notifications'
• [OF-1981] - Allow roster item 'ask' to be modified.
• [OF-1982] - Add -Djdk.tls.ephemeralDHKeySize=matched and/or Djsse.SSLEngine.acceptLargeFragments=true to startup parameters
• [OF-1983] - Provide start argument to run dev mode
• [OF-1984] - Replace DummyExternalizableUtil
• [OF-1985] - Decouple Pubsub implementation
• [OF-1986] - Don't unconditionally auto-create PEPService.
• [OF-1987] - Improve PubSub Caching
• [OF-1988] - Introduce pluggable provider mechanism for PubSub persistency
• [OF-1990] - pubsub: split cache from persistence
• [OF-1994] - Properly deny anonymous users access to Private Storage
• [OF-1996] - Improve shutdown sequence
• [OF-2000] - Don't use intern'ed strings to synchronize on
• [OF-2001] - IQ Bind results should not have a 'from' value.
• [OF-2002] - Do not offer private blocking to anonymous users.
• [OF-2003] - Bump slf4j to version 1.7.30
• [OF-2004] - Have an ad-hoc command accessible to everyone
• [OF-2008] - Autosetup should allow for users to be provisioned
• [OF-2024] - Fix favicons
• [OF-2025] - PEP publishing should evaluate all recipient JIDs
• [OF-2032] - Make connection type fallback for WEBADMIN c2s
• [OF-2039] - Support on_sub_and_presence
• [OF-2047] - When setting HTTP response headers, set instead of add them.
• [OF-2048] - Update log4j dependency
• [OF-2053] - XEP-0013 Return an <item-not-found/> error while retrieving specific offline message
• [OF-2056] - DefaultPubSubPersistenceProvider#savePublishedItems is leaking database connections
• [OF-2061] - Default value for pubsub#persist_items (in PEP) should be 'true'
• [OF-2062] - Pubsub item payload should allow for (much) larger size
• [OF-2064] - Invoke IQResultListeners on other cluster nodes for domain-addressed stanzas
• [OF-2071] - 'Lock' should be locked in front of a 'try' block (instead of in to block).
• [OF-2072] - Allow empty 'mechanisms' SASL tag to be excluded
• [OF-2087] - Update Jetty to 9.4.31.v20200723
• [OF-2089] - XEP-0045 7.2.13 - ofrom adresses in message stanza
• [OF-2091] - Decorate 'warning' text
• [OF-2094] - Mitigate XXE attacks
• [OF-2095] - Account for a PEP notification recipient to be the service owner
• [OF-2096] - Prevent bypassing PEP notification logic
• [OF-2097] - Allow CAPS to be reviewed in admin console
• [OF-2098] - Show pubsub node configuration on Admin Console
• [OF-2110] - Refactoring of fallback check inConnectionType

sha1sum values

50aaf8dff71162ef34f3485857b56cfe13b95894  openfire-4.5.4-1.i686.rpm
c41002922fe64eaacd19ad1f36e020e2a4f67651  openfire-4.5.4-1.noarch.rpm
a9680aac2589b86f26136a0db0b646636c260271  openfire-4.5.4-1.x86_64.rpm
b02cb4b94ca7c534a8cdc903363568f41308d6db  openfire_4.5.4_all.deb
6f146bd83cf2234561818c584148afcade104fe2  openfire_4_5_4_bundledJRE.exe
027c0d4f01446375de9f949b3a41a25727f84290  openfire_4_5_4_bundledJRE_x64.exe
e96a108ad70e0a9c6569594d822290ec505dff6d  openfire_4_5_4.dmg
7948ef87b242fc818240910dd6b37acacb7ab9ae  openfire_4_5_4.exe
dd5a50bea54f41226985e7116045f8811a62bf85  openfire_4_5_4.tar.gz
efa97aa9f66116adb210b3c9a0187d401a298f7b  openfire_4_5_4_x64.exe
4c7f81188bc447315cceb4625828990ae32163a7  openfire_4_5_4.zip
ba7ff821dbc2de81d0f094e128c1d1a5369d494c  openfire_src_4_5_4.tar.gz
75f40bf35f2af0e3a0279d556d097f30766e887f  openfire_src_4_5_4.zip

sha1sum for each binary:

aa1c503808d54904456d9f41ba715f85eb1925d3  openfire-4.6.0-0.2.beta.i686.rpm
1732df79b0fa8e5359df313e56314e728e8dd3e6  openfire-4.6.0-0.2.beta.noarch.rpm
8e2ef7835da4d094099357ac7137fb848f30f376  openfire-4.6.0-0.2.beta.x86_64.rpm
d7425999ae0d39362b1a11e60c7ec3215b0e6efc  openfire_4.6.0_all.deb
231601705ada84c465c1942c56fc8c49f7fb7239  openfire_4_6_0_beta_bundledJRE.exe
0e326b6d6df89a3ccb9e09a199ed97eef40cd358  openfire_4_6_0_beta_bundledJRE_x64.exe
b20c6fffff57b970c465e3d8ba010bac94e9df15  openfire_4_6_0_beta.dmg
c244234d55d9e37907b2901e5c1dc22cad833221  openfire_4_6_0_beta.exe
06ff956ba1f1faa7b889ab4be0fad80062475844  openfire_4_6_0_beta.tar.gz
c66fa82bafcf8039b22e148fc95ef8938ece200a  openfire-4.6.0beta.tar.gz
71f2bd20ad41c317b760e8b07b4870c534dc6b6a  openfire_4_6_0_beta_x64.exe
dbda855fd20a23b7e66839349571ca3fa2826758  openfire_4_6_0_beta.zip
cd72160b919510e6379b69900f8e7cfd2a9d76e8  openfire-4.6.0beta.zip

sha1sum's

5e4011517d2d445a3816cc772c02ade5ed42bdde  openfire-4.5.2-1.i686.rpm
726b9f7f49876684ab7d8afd9c268f6d1ed59606  openfire-4.5.2-1.noarch.rpm
fedfefe709dde35042e1c73fc2be959e87fb499a  openfire-4.5.2-1.x86_64.rpm
b03cb01d937e2c499d585e2b9438a1fee7d864d4  openfire_4.5.2_all.deb
90b75516257bac311f7fad4e3bd4061d57757135  openfire_4_5_2_bundledJRE.exe
d77b515a0c272844c1a4d41dbf3a3c37dd9fd3f9  openfire_4_5_2_bundledJRE_x64.exe
20b0ee0839c7563c2bf9729bbb975816d8189588  openfire_4_5_2.dmg
4c5b7be4cc80fad95db404e71b5e50d4f36ef6a2  openfire_4_5_2.exe
38bcf3b4ac19effa30187047535b7d9400140aaa  openfire_4_5_2.tar.gz
e793882c17ba9b3b4ba1469e17de09e0c5bef9ee  openfire_4_5_2_x64.exe
148a478327c569f6ee36b36096482a466a530137  openfire_4_5_2.zip
654884e8ebe2ffe111d28f8e3595dbcc3c84d7d7  openfire_src_4_5_2.tar.gz
085e6050105ff085dab5979d68c5cc74436d9e13  openfire_src_4_5_2.zip

Bug

• [OF-963] - WebSocket keep-alive is not working as expected
• [OF-1963] - Cross Site Scripting (XSS) issues - CSW Document No: C1055
• [OF-1964] - SystemProperty should load classes with Thread.getContextClassloader as fallback
• [OF-1970] - Undeliverable messages routed to unavailable full jid should be routed to other resources with prio 0 (not 1) or higher.
• [OF-1977] - Pubsub notifications should be sent to subscribers of parent nodes
• [OF-1999] - Prevent potential arithmetic overflow
• [OF-2013] - Fix detection of 'detached' state of a connection
• [OF-2014] - Reset ConnectionListener callback object on re-init
• [OF-2015] - Remove the session that was used for resumption immediately
• [OF-2017] - Update Jetty to 9.4.28.v20200408
• [OF-2026] - Stable and Unique Stanza Identifier need not be UUID

New Feature

• [OF-158] - Set through the admin console the MUC room configuration form's default values
• [OF-1966] - Add Japanese translation

Improvement

• [OF-1969] - Log username when auth fails
• [OF-1974] - Openfire should not disclose Jetty version within HTTP header for websocket connections
• [OF-1976] - Allow any number of maximum MUC occupants to be configured.
• [OF-1979] - Guard against invalid SASL responses
• [OF-1997] - Bump Bouncy Castle version to v1.65
• [OF-2019] - Allow Archiver to start polling only after work is produced.

sha1sums

1c97ec28f455efa55050abcad7c5111697fa1d6c  openfire-4.5.1-1.i686.rpm
cbb01778ee47859d268bc4cd1bcf88bc8bb8bab2  openfire-4.5.1-1.noarch.rpm
0f991db6a7ebce78e095598eb64dd840df09c54c  openfire-4.5.1-1.x86_64.rpm
1fd63fa57f828004f7d429947add1586e7d36948  openfire_4.5.1_all.deb
880fbda566ad75c720441be8b837c7310c93a0b9  openfire_4_5_1_bundledJRE.exe
b418401968b646349cbf943b3d255bd86b91a8c8  openfire_4_5_1_bundledJRE_x64.exe
f9bb8edaacbfd74256cf2e816f35bd3f142914b7  openfire_4_5_1.dmg
4503ad695abed3c83c50edcaa322ad9fa83bfb4a  openfire_4_5_1.exe
38feabb1ef0588c6d6cd240464a77f4f896083c7  openfire_4_5_1.tar.gz
e87c3543aebedcc69c8036889ddb90ff2b062f12  openfire_4_5_1_x64.exe
d1e6254e9302d6b49a296a1db2426a5199b2c8ae  openfire_4_5_1.zip
cc697b46cceb69ce56282eb398f72431c28e3fa1  openfire_src_4_5_1.tar.gz
433b0623daaab521398deb9252cddb4eef07ea52  openfire_src_4_5_1.zip

sha1sum values

b4d8d77701d6524a4d26c4e8a6cba82f6e5d9d68  openfire-4.5.0-1.i686.rpm
01b583d27ea8d644376588e7226be0ad93d8d728  openfire-4.5.0-1.noarch.rpm
6bc54cf3de57e7359143ab8f6ff015b191c4e898  openfire-4.5.0-1.x86_64.rpm
4e1bd74d0140178936dbb39f076b9817d2bfe945  openfire_4.5.0_all.deb
36a0ee7d4cc44d18524c5540bcba5af6e133fcc2  openfire_4_5_0_bundledJRE.exe
959441b2cd18b62861e14d4fea705ae57f8f6361  openfire_4_5_0_bundledJRE_x64.exe
fe9cebfb37eb126416aed3438b9aa28b796a987c  openfire_4_5_0.dmg
c4c900dbb4607a1f1eed8cce2e18fa4b2509bf52  openfire_4_5_0.exe
c4cf10939a9b573c3eee4637a7b8f38f3b4305b9  openfire_4_5_0.tar.gz
ceeb49bd51e6ae555e3dadf193b1ed2da811f959  openfire_4_5_0_x64.exe
da0050d284089331241ca023d40d2c382e37bfd9  openfire_4_5_0.zip
df4e0905ab52b0b1d4fea344ee4efe0ed119674d  openfire_src_4_5_0.tar.gz
85ee3714a05db13e1ad2967c6e6fde0c1d52269f  openfire_src_4_5_0.zip

sha1sums

7614de25698d4d65d2d2de2d97194b55c8c16e2f  openfire-4.4.4-1.i686.rpm
ea96c5d040909644015e463faa93624be6f08812  openfire-4.4.4-1.noarch.rpm
260dd74e174f087c244c19f167c70a5d3e9c2fff  openfire-4.4.4-1.x86_64.rpm
e792781936add645490eefd10f442a65a3ec980e  openfire_4.4.4_all.deb
a80ddaa11b4f64f6a0e73de2dea470c91d125452  openfire_4_4_4_bundledJRE.exe
c6dc907f7518af844fb9ed52cf7002688badb840  openfire_4_4_4_bundledJRE_x64.exe
87f30a8a0b375d45760435d81172a7794133f12f  openfire_4_4_4.dmg
fa17b1366e2b7b8afb8e7176b2f74a9345c3484e  openfire_4_4_4.exe
9b861abd07d91d72b0d3b487d7f48552a56b8177  openfire_4_4_4.tar.gz
9aad7853f8152a4e92ea23c02dd5981c0f2894f4  openfire_4_4_4_x64.exe
2ac84043b13574755bc7171129b704763c16602a  openfire_4_4_4.zip
0d87444af0e995496997673bb34ace290b1a351a  openfire_src_4_4_4.tar.gz
257eb6c36b2f7695bb7c7f898e3a03dbe865b2aa  openfire_src_4_4_4.zip

sha1sum's

9f1b5098738efa40a2845173d0c081a859fbbe17  openfire-4.4.3-1.i686.rpm
16689568ca06b9b2e09ebe61253ff3eea0cc6580  openfire-4.4.3-1.noarch.rpm
14653d028f8a839dcdd4f9e9b3abb32c678e1610  openfire-4.4.3-1.x86_64.rpm
73b914b5aec9869da4f66e8db2eb835000eb0f9f  openfire_4.4.3_all.deb
09abd58919716e9e882610decb677fe7c540707c  openfire_4_4_3_bundledJRE.exe
d5bc12d180f3e0a6345e528b1a7da790c94e2f84  openfire_4_4_3_bundledJRE_x64.exe
c1e77185310831578e77856f5c53c2aafae9634d  openfire_4_4_3.dmg
4f2fdb4506ed240c559553232c0a22511098592b  openfire_4_4_3.exe
69b742a36199d9af7de44400248a070611336d38  openfire_4_4_3.tar.gz
accf82451821487c977e3a4c681254a7e1f75e15  openfire_4_4_3_x64.exe
02d5164666cc7c8529681142a86052cc246dd2d8  openfire_4_4_3.zip
e3f43475d400d9e0aeeecc7d1f9d897325a905d1  openfire_src_4_4_3.tar.gz
5c755ded9b1749315d2f92ac4561b1896f7ffdbd  openfire_src_4_4_3.zip

sha1sum output

f0d116fa699cb0668cf5761e888b77031edbca75  openfire-4.4.2-1.i686.rpm
5ebb03c6d7531bf181fa70b86270f11b31650c5b  openfire-4.4.2-1.noarch.rpm
d332038208197fbdd6d2e96ade2262e82c3faa1a  openfire-4.4.2-1.x86_64.rpm
6b4796507f337536a0d2e138f482c5817a346911  openfire_4.4.2_all.deb
be3a7c14f9670dfcf3b34a125387420f277f7bd3  openfire_4_4_2_bundledJRE.exe
41661466dbff8611628edcdddf53025f3039fe80  openfire_4_4_2_bundledJRE_x64.exe
2eba17818b834fd7fce1a2e5610be1ca16c47df4  openfire_4_4_2.dmg
d9e7504d363df4534b02c87ffcacb3c70748809a  openfire_4_4_2.exe
47c80c7c365f6980e3719f07a3ac32a03cc6a20d  openfire_4_4_2.tar.gz
40281cbb650bdc45e899b533a4f44fb6d9d32dbd  openfire_4_4_2_x64.exe
a9ed8b67dc7a09807f1503722c1785f8c5f6da32  openfire_4_4_2.zip
eeffaa918c1de50c833cd33f22550024ab4fd40b  openfire_src_4_4_2.tar.gz
0e4e903557b6713d9f736f7cd1343044fc89135d  openfire_src_4_4_2.zip

sha1sum's

bb6a6aabfac41d1615efc21d4d6bbf8d5b7ae473  openfire-4.4.1-1.i686.rpm
9b53d9785de7860868ee1e7d08ab66f1e7555672  openfire-4.4.1-1.noarch.rpm
17d76ae3f3da0579ca86ea514ae2a9962d5cd233  openfire-4.4.1-1.x86_64.rpm
6f0997af32aec39cf7250e1ede05f6ee010eb7fc  openfire_4.4.1_all.deb
64fa7f2fd6566ed204cba44ba88aa53d416bfb05  openfire_4_4_1_bundledJRE.exe
d99fd9d1753e5dea56df9db1d2e137b3a6660201  openfire_4_4_1_bundledJRE_x64.exe
3a09fe7480760cacf0e164363d718b893fbff995  openfire_4_4_1.dmg
0778df4566dc1f002f13c19865130c8b746d5540  openfire_4_4_1.exe
b3ebd42455d538867a01a4708bc03196c65b29f4  openfire_4_4_1.tar.gz
409c3e7a5ca477daeb3c11e88e31ac529f543666  openfire_4_4_1_x64.exe
b3d7c26e992ca0ef82aab962a0f2570ba33e539c  openfire_4_4_1.zip
940a2ee60a129a9ccdaf2f07bddcbc595bda9865  openfire_src_4_4_1.tar.gz
59db7e008c0ee76976343f484c706d268382b6c4  openfire_src_4_4_1.zip

sha1sum for release artifacts

0fc0baaf9673f045a1218f24a4a08062b3fa6969  openfire-4.3.2-1.i686.rpm
7b7274c50fcf9392ed5fc2fc2d696ed944c155bf  openfire-4.3.2-1.noarch.rpm
0cdad55c44b0cff6226b67b9738c265cd5e20033  openfire-4.3.2-1.x86_64.rpm
5b16c340bd163996c19865940a0e5cac48df7b65  openfire_4.3.2_all.deb
ba67999151de96a8836a50925af14b756b0ed17d  openfire_4_3_2_bundledJRE.exe
8954b65b79d0398773330e567f2b994a2819564d  openfire_4_3_2_bundledJRE_x64.exe
cda5fa8223e3fdbd723f2f869b8ffbb03cc482e8  openfire_4_3_2.dmg
4e689ae4e8a96184234947a593344d4bf971b790  openfire_4_3_2.exe
a3cb5d5598b0e9915a18e8da05dbd96652657fe9  openfire_4_3_2.tar.gz
e5d37c1be2915e658924681d488160b62ffaa225  openfire_4_3_2_x64.exe
37a58dcce6aa1c6bf82d6179b263f4662a23f229  openfire_4_3_2.zip
3bb7b1f9030ca1e12ad97779e57dbac45a1e15b1  openfire_src_4_3_2.tar.gz
d3a6cd4ed5fa3062429dd0aad2e658d8f4f4004e  openfire_src_4_3_2.zip