]>
Commit | Line | Data |
---|---|---|
1 | # News | |
2 | ||
3 | This is charybdis 3.6-dev, Copyright (c) 2005-2016 Charybdis team. | |
4 | See LICENSE for licensing details (GPL v2). | |
5 | ||
6 | ## charybdis-3.6-dev | |
7 | ||
8 | ### build | |
9 | - Build system has been converted to libtool + automake for sanity reasons. | |
10 | ||
11 | ### user | |
12 | - Import the ability to exceed MAXCHANNELS from ircd-seven. | |
13 | ||
14 | ### oper | |
15 | - Merge several features from ircd-seven: | |
16 | - Implement support for remote DIE/RESTART. | |
17 | - Implement support for remote MODLOAD et al commands. | |
18 | - Add the GRANT command which allows for temporarily opering a client. | |
19 | - Implement the hidden oper-only channel modes framework. | |
20 | - Implement a channel mode that disallows kicking IRC operators (+M). | |
21 | - Enhance the oper override system, allowing more flexibility and detail | |
22 | in network-wide notices. | |
23 | ||
24 | ### conf | |
25 | - Add the ability to strip color codes from topics unconditionally. | |
26 | ||
27 | ### code | |
28 | - Almost all 2.8-style hashtable structures have been moved to dictionaries or | |
29 | radix trees, resulting in significant memory savings. | |
30 | - The block allocator has been disabled and is no longer used. | |
31 | ||
32 | ## charybdis-3.5.0 | |
33 | ||
34 | ### server protocol | |
35 | - Fix propagation of ip_cloaking hostname changes (only when setting or | |
36 | unsetting the umode after connection). | |
37 | - Fix a remote-triggerable crash triggered by the CAPAB parsing code. | |
38 | - As per the TS6 spec, require QS and ENCAP capabilities. | |
39 | - Require EX and IE capabilities (+e and +I cmodes). | |
40 | - Check that UIDs start with the server's SID. | |
41 | ||
42 | ### user | |
43 | - Allow mode queries on mlocked modes. In particular, allow /mode #channel f | |
44 | to query the forward channel even if +f is mlocked. | |
45 | - Strip colours from channel topics in /list. | |
46 | - If umode +D or +g are oper-only, don't advertise them in 005. | |
47 | - If MONITOR is not enabled, don't advertise it in 005. | |
48 | - Add starttls as per ircv3. | |
49 | - Abort a whowas listing when it would exceed SendQ, which would previously | |
50 | disconnect the user. | |
51 | - Reject nicks with '~' in them, rather than truncating at the '~'. | |
52 | - Remove CHARSET=ascii from ISUPPORT | |
53 | - Use the normal rules for IP visibility in /whowas. | |
54 | - Cmode +c now strips '\x0F' (^O, formatting off), fixing weird rendering in | |
55 | some clients that internally use mIRC formatting such as highlighted | |
56 | messages in HexChat. | |
57 | - Indicate join failure because of the chm_sslonly extension (cmode +S) using | |
58 | the same 480 numeric as ircd-ratbox. | |
59 | - Do not allow SASL authentication when the configured SASL agent is unavailable. | |
60 | - Automatically add unidentified users to the ACCEPT list when a user is set +R, | |
61 | as we do when the user is set +g. | |
62 | - Implement IRCv3.2 capabilities: | |
63 | - cap-notify | |
64 | - chghost | |
65 | - userhost-in-names | |
66 | - Implement the $&, $| and $m extban types: | |
67 | - $& combines 1 or more child extbans as an AND expression | |
68 | - $| combines 1 or more child extbans as an OR expression | |
69 | - $m provides normal hostmask matching as an extban for the above | |
70 | - Do not allow STARTTLS if a connection is already using TLS. | |
71 | - Display an operator's privilege set in WHOIS. | |
72 | - The $o extban now matches against privilege set names as well as individual | |
73 | privileges. Privilege set names are preferred over individual privileges. | |
74 | ||
75 | ### oper | |
76 | - Fix a crash with /testline. | |
77 | - Complain to opers if a server that isn't a service tries to | |
78 | SU/RSFNC/NICKDELAY/SVSLOGIN. | |
79 | - Turn off umode +p (override) when deopering. | |
80 | - Make listener error messages (e.g. port already in use) visible by default | |
81 | instead of only on snomask +d and in ioerrorlog. | |
82 | - Remove snotes on +r about GET/PUT/POST commands ("HTTP Proxy disconnected"). | |
83 | - Add DNSBL snotes on snomask +r. | |
84 | ||
85 | ### config | |
86 | - Add hide_uncommon_channels extension to hide uncommon channel memberships in WHOIS, | |
87 | like in ircd-seven. | |
88 | - Add chm_nonotice extension, cmode +T to reject notices. | |
89 | - Add restrict-unauthenticated extension, prevents unauthenticated users from | |
90 | doing anything as channel operator. | |
91 | - Add no_kill_services extension, prevents local opers from killing services. | |
92 | - Allow matching specific replies of DNSBLs, using the new matches option. | |
93 | - Remove blowfish crypt since it has the BSD advertising clause. | |
94 | - Fix SHA256 ($5$) crypt. | |
95 | - Make the channel::channel_target_change option actually work (it used to be | |
96 | always on). | |
97 | - SSL/TLS listeners now have defer_accept unconditionally enabled on them. | |
98 | - The method used for certificate fingerprints (CertFP) is now configurable. | |
99 | SHA1, SHA256 and SHA512 are available options. | |
100 | - The minimum user threshold for channels in default /list output is now | |
101 | configurable. | |
102 | ||
103 | ### misc | |
104 | - Work around timerfd/signalfd brokenness on OpenVZ. | |
105 | - Fix a compilation issue in libratbox/src/sigio.c with recent glibc. | |
106 | - Extend documentation slightly. | |
107 | - Remove a BSD advertising clause that permission was granted to remove. | |
108 | - Add support for hooking PRIVMSG/NOTICE. | |
109 | - Reenable and fix the GnuTLS support. | |
110 | - Add mbedTLS backend for SSL/TLS. | |
111 | - Remove EGD support. | |
112 | - Try other DNS servers if errors or corrupt replies are encountered. | |
113 | - Rename genssl.sh script to genssl. | |
114 | - Choose more secure SSL/TLS algorithms. | |
115 | - Fix reconnecting with SSL/TLS with some clients such as ChatZilla (see | |
116 | https://bugzilla.mozilla.org/show_bug.cgi?id=858394#c34 for details.) | |
117 | - Improve error messages about the configuration file. | |
118 | - Fix a crash when compiled with recent clang on 32-bit systems. | |
119 | - Fix various memory leaks in rehash. | |
120 | - Fix various code quality issues. | |
121 | - Add --with-shared-sqlite to allow distribution packages to link to a shared | |
122 | sqlite library. Using this is not recommended for on-server compilation. | |
123 | - ISUPPORT tokens which are actually provided by modules have been moved to their | |
124 | respective modules. | |
125 | ||
126 | ## charybdis-3.4.0 | |
127 | ||
128 | ### server protocol | |
129 | - Allow overriding opers (with the new extension) to op themselves on channels. | |
130 | - Allow RSFNC to change a nickname's capitalization only. | |
131 | - Add channel ban forwarding <mask>$<channel> much like ircd-seven. Local use | |
132 | of this is controlled by the channel::use_forward config option. | |
133 | - Add ENCAP TGINFO to propagate IP addresses that exceeded target change | |
134 | limits (these get a lower limit when they reconnect). | |
135 | ||
136 | ### user | |
137 | - Consider bogus CTCP ACTION messages (without action text) CTCP (for | |
138 | cmode +C). | |
139 | - Send ERR_TOOMANYCHANNELS for each channel join that fails due to channel | |
140 | limits. | |
141 | - Add account-notify client capability to notify clients about logins and | |
142 | logouts of users in common channels. See doc/account-notify.txt. | |
143 | - Add extended-join client capability to add account name and ircname to JOIN. | |
144 | - Add topic TS and channel TS constraints for /LIST (T<, T>, C<, C> | |
145 | parameters as in some other servers). | |
146 | - Disallow wildcarded nicknames in "hunted" parameters like /stats and /motd. | |
147 | - Disallow mIRC italics in channel names when disable_fake_channels. | |
148 | - Add AUTHENTICATE EXTERNAL support, allows SASL authentication using a | |
149 | certificate fingerprint. | |
150 | - Allow channel::kick_on_split_riding to protect channels with mlocked keys. | |
151 | - The NICKLEN token in 005 now only specifies the maximum usable nick length. | |
152 | The MAXNICKLEN token specifies the maximum nick length any user can have. | |
153 | - Disallow $ in usernames as this may cause problems with ban forwarding. | |
154 | - Add an error message (numeric 743) if a ban mask is invalid. | |
155 | - Extract the underlying IPv4 address from 6to4 and Teredo IPv6 addresses. | |
156 | Show it in a remote /whois and check channel bans, quiets, D:lines and | |
157 | K:lines against it. Note that ban exceptions and auth{} blocks are not | |
158 | checked. | |
159 | - Allow normal users to perform /privs on themselves, showing some privileges | |
160 | from the auth{} block. | |
161 | - Add away-notify client capability, see doc/away-notify.txt. | |
162 | - Add rate limit for high-bandwidth commands, in particular /who <channel>. | |
163 | - Rate limit /away to help avoid flooding via away-notify. | |
164 | - Apply colour stripping (cmode +c) and CTCP checking (cmode +C) to messages | |
165 | to @/+ channel as well. | |
166 | - Channel mode +c (and other places that disallow colour codes) now also strip | |
167 | ASCII 4 (a different kind of colour code). | |
168 | ||
169 | ### oper | |
170 | - Add operspy for /list. | |
171 | - Add a server notice to snomask +b if a user exceeds target change limits. | |
172 | - Add missing server notice for kills from RSFNC and SVSLOGIN. | |
173 | - Add /stats C to show information about dynamically loaded server | |
174 | capabilities. | |
175 | ||
176 | ### config | |
177 | - Add support for linking using SSL certificate fingerprints as the link | |
178 | credential rather than the traditional password pair. | |
179 | - Add m_roleplay extension, provides various roleplay commands. | |
180 | - Add override extension, umode +p oper override for opers with oper:override | |
181 | permission, with accountability notices and timeout. Note that opers cannot | |
182 | op themselves if there are older servers on the network. | |
183 | - Add channel::disable_local_channels config option. | |
184 | - Add support for IPv6 DNSBLs. A new "type" option specifies the IP version(s) | |
185 | for which each DNSBL should be checked. | |
186 | - Make flood control settings configurable by those who know exactly what they | |
187 | are doing. | |
188 | - Add serverinfo::nicklen config option to limit the nick length for local | |
189 | users. Different values of this option do not break the server protocol. | |
190 | - Add extb_usermode extension, $m:+-<modes> extban matching against umodes. | |
191 | - Extend extb_oper extension to allow matching against oper privileges. | |
192 | - Add m_remove extension, /remove command as in ircd-seven. | |
193 | - Add general::away_interval to allow configuring /away rate limiting. | |
194 | - Add listener::defer_accept to delay accepting a connection until the client | |
195 | sends data. This depends on kernel support. It may break BOPM checking. | |
196 | ||
197 | ### misc | |
198 | - In mkpasswd, default to SHA512-based crypt instead of MD5-based crypt. | |
199 | - Add --with-custom-branding and --with-custom-version configure options to | |
200 | help forks/patchsets distinguish themselves. | |
201 | - Change version control from Mercurial to GIT. | |
202 | - Ensure SIGHUP and SIGINT keep working after a SIGINT restart. | |
203 | - Add --enable-fhs-paths configure option to allow installing into a more | |
204 | FHS-like hierarchy. | |
205 | - Remove broken GnuTLS support. SSL/TLS is now only provided using OpenSSL. | |
206 | ||
207 | ## charybdis-3.3.0 | |
208 | ||
209 | ### server protocol | |
210 | - Add new BAN command, for propagated network-wide bans (K/X:lines and RESVs). | |
211 | These will burst to new servers as they are introduced, and will stay in sync | |
212 | across the whole network (new BAN capab). | |
213 | - Add new MLOCK command, to implement ircd-side channel mode locks. This allows | |
214 | services to send out a list of mode letters for a given channel which may not | |
215 | be changed, preventing mode fights between services and client bots (new MLOCK | |
216 | capab). | |
217 | ||
218 | ### user | |
219 | - New RPL_QUIETLIST(728) and RPL_ENDOFQUIETLIST(729) numerics are used for the | |
220 | quiet (+q) list, instead of overloading the ban list numerics. | |
221 | - Users may no longer change the topic of a -t channel if they cannot send to | |
222 | it. | |
223 | - Add help for EXTBAN, describing the syntax of extended bans in general, as | |
224 | well as the most common types. | |
225 | - Changed AWAY messages are now propagated to other servers. Previously, AWAY | |
226 | was only propagated when the user was not already away. | |
227 | - Channel mode +c (and other places that disallow colour codes) now also strip | |
228 | ASCII 29 (mIRC 7 italics). | |
229 | - Add auto-accept for user mode +g (callerid): Messaging a user while set +g | |
230 | will automatically add them to your accept list. | |
231 | - Add target change for channels. It applies to unopped, unvoiced and unopered | |
232 | users. This has the effect of stopping spambots which join, message and part | |
233 | many channels at a time. | |
234 | - Show RPL_WHOISLOGGEDIN in /whowas as well as in /whois entries. This adds at | |
235 | most an additional 0.5MB of memory usage. | |
236 | ### config | |
237 | - Add general::use_propagated_bans to switch the new BAN system on or off. | |
238 | - Add general::default_ident_timeout, to control the timeout for identd (auth) | |
239 | connections. | |
240 | - Add channel::channel_target_change to switch the new channel target change limits | |
241 | on or off. | |
242 | - Fix class::number_per_ident so that it also applies to connections without | |
243 | identd. | |
244 | - Change the example sslport option to 6697, which is more standard than 9999. | |
245 | ### misc | |
246 | - The custom channel mode API has been rewritten, allowing these modules to work | |
247 | correctly when reloaded, or loaded from the config file. | |
248 | - The EFNet RBL is now recommended, instead of DroneBL. | |
249 | - Remove the unsupported modules directory. | |
250 | - Numerous bug fixes and code cleanups. | |
251 | - In mkpasswd, default to MD5 crypt instead of insecure DES. | |
252 | ||
253 | ## charybdis-3.2.0 | |
254 | ||
255 | ### server protocol | |
256 | - Apply +z to messages blocked by +b and +q as well. (new EOPMOD capab) | |
257 | - Add new topic command ETB, allowing services to set topic+setter+ts always. | |
258 | (new EOPMOD capab) | |
259 | - The slash ('/') character is now allowed in spoofs. | |
260 | ||
261 | ### user | |
262 | - Add can_kick hook, based on the ircd-seven one. | |
263 | - Add cmode +C (no CTCP) from ircd-seven. | |
264 | - Flood checking has been reworked. | |
265 | - Fix op-moderate (cmode +z) for channel names with '@'. | |
266 | - Add CERTFP support, allowing users to connect with an SSL client | |
267 | certificate and propagating the certificate fingerprint to other servers. | |
268 | Services packages can use this to identify users based on client | |
269 | certificates. | |
270 | - Maintain the list of recently used targets (for the target change | |
271 | anti-spam system) in most-recently-used order, overwriting the least | |
272 | recently used target with a new one. This should be friendlier to users | |
273 | without giving spambots anything. | |
274 | - Do not require target change slots for replying to the last five users to | |
275 | send a private message, notice or invite. | |
276 | - Apply target change restrictions to /invite. | |
277 | - Apply umode +g/+R restrictions to /invite, with the difference that | |
278 | instead of sending "<user> is messaging you" the invite is let through | |
279 | since that is just as noisy. | |
280 | ||
281 | ### oper | |
282 | - Add /rehash throttles to clear throttling. | |
283 | - Send all server notices resulting from a remote /rehash to the oper. | |
284 | - '\s' for space is now part of the matching, not a substitution at xline | |
285 | time, fixing various issues with it. | |
286 | - Display o:line "nickname" in oper-up server notices. | |
287 | - Fix sendq exceeded snotes for servers. | |
288 | - SCAN UMODES: default list-max to 500, like a global WHO. | |
289 | - Ignore directory names in MODRELOAD to avoid crashing if it is a core | |
290 | module and the path is incorrect. | |
291 | - Tweaks to spambot checks. | |
292 | ||
293 | ### config | |
294 | - Add channel::only_ascii_channels config option to restrict channel names | |
295 | to printable ascii only. | |
296 | - Add channel::resv_forcepart, forcibly parts local users on channel RESV, | |
297 | default enabled. | |
298 | ||
299 | ### misc | |
300 | - New mkpasswd from ircd-ratbox. | |
301 | - Check more system calls for errors and handle the errors. | |
302 | - Various ssld/libratbox bugfixes from ircd-ratbox. [some MERGED] | |
303 | - Fix fd passing on FreeBSD/amd64 and possibly Solaris/sparc. [MERGED] | |
304 | - Various documentation improvements. [some MERGED] | |
305 | - Fix some crash issues. [MERGED] | |
306 | - Add bandb from ircd-ratbox, which stores permanent dlines/klines/xlines/resvs | |
307 | in an sqlite database instead of a flatfile and does the storage in a | |
308 | helper process. Use bin/bantool -i to import your old bans into the | |
309 | database. | |
310 | ||
311 | ## charybdis-3.1.0 | |
312 | ||
313 | - Remove TS5 support. No TS5 servers are permitted in a network with | |
314 | charybdis 3.1.0 or newer, except jupes. | |
315 | - Replace oper flags by privilege sets (privsets). This adds an extra | |
316 | level of indirection between oper flags and operator blocks. /stats O | |
317 | (capital O) shows the configured privsets. | |
318 | - Update libratbox and ssld from upstream and use it better. | |
319 | - Add auth_user to auth{}. This allows specifying a username:password instead | |
320 | of just a password in PASS, so that a fixed user@host is not necessary | |
321 | for a specific auth{} block. | |
322 | - Add need_ssl to auth{} and operator{}. This makes these blocks reject | |
323 | the user if not connected via SSL. | |
324 | - Allow modules to provide simple channel modes without parameter. | |
325 | - Remove restrictions on CNAME in the resolver. | |
326 | - Make the resolver remember nonresponsive nameservers. | |
327 | - Move nick collision notices from +s to +k. | |
328 | - Add additional information to various server notices about server | |
329 | connections. | |
330 | - Show throttle information in /stats t. | |
331 | - Show rejectcache and throttle information in /testline. | |
332 | - Show oper reason in /testline. | |
333 | - Allow opers to see other users' umodes with /mode <nick>. | |
334 | - SCAN UMODES GLOBAL NO-LIST MASK <mask> is no longer an operspy command. | |
335 | - Also apply floodcount to messages to remote clients (except services). | |
336 | - Remove user@server messages to local users. Sending such messages to | |
337 | remote servers is still possible, for securely messaging pseudoservers | |
338 | whether service{}'ed or not. The special oper-only syntax opers@server | |
339 | remains as well. | |
340 | - Allow /list on a named +p channel. A full /list already included +p channels. | |
341 | - Add operspy /topic. | |
342 | - For remote rehashes, send error messages to the requesting oper as well. | |
343 | - Disable autoconnect for a server with excessive TS delta. | |
344 | - Disallow invites to juped channels. | |
345 | - Warn about certain duplicate and redundant auth blocks. | |
346 | - Make PRIVMSG/NOTICE behave as CPRIVMSG/CNOTICE automatically if possible. | |
347 | - Allow +z messages from outside if a channel is -n. | |
348 | - Allow coloured part reasons in -c channels. | |
349 | - Add ircu-like WHOX support. This allows requesting specific information | |
350 | in /who and allows obtaining services login name for all users in a | |
351 | channel. XChat/Conspire use WHOX to update away status more efficiently. | |
352 | - Allow opers and shide_exempt users to see hopcounts even if flatten_links | |
353 | is on. | |
354 | - Rework ip_cloaking. | |
355 | - Add the IP address to userlog, as in ircd-ratbox 3.0. | |
356 | - Split cidr_bitlen into cidr_ipv4_bitlen and cidr_ipv6_bitlen. | |
357 | - Allow using ziplinks with SSL connections. This is not as efficient as | |
358 | using OpenSSL's built in compression, but also works with older versions | |
359 | of OpenSSL. | |
360 | - Fix an off by one error with zipstats processing, which could overwrite | |
361 | a variable with NULL causing a crash on some systems. | |
362 | - Document some extensions in charybdis-oper-guide. | |
363 | - Add more server protocol documentation. | |
364 | - Add m_sendbans extension, SENDBANS command to propagate xlines and resvs | |
365 | manually. | |
366 | - Add chm_sslonly extension, cmode +S for SSL/TLS only channels. | |
367 | - Add chm_operonly extension, cmode +O for IRCop only channels. | |
368 | - Add chm_adminonly extension, cmode +A for server admin only channels. | |
369 | - Various code cleanups. | |
370 | ||
371 | ## charybdis-3.0.4 | |
372 | ||
373 | - Fix a crash on certain recent versions of Ubuntu. | |
374 | - Allow 127.x.y.z for DNSBL replies instead of just 127.0.0.x. | |
375 | - Various documentation improvements. | |
376 | ||
377 | ## charybdis-3.0.3 | |
378 | ||
379 | - Fix IPv6 D:lines | |
380 | - Fix rejectcache and unknown_count. | |
381 | - Fix genssl.sh. | |
382 | - Fix ident for SSL/TLS connections. | |
383 | - Fix SSL/TLS bugs for servers with more than about 100 connections. | |
384 | - Small bugfixes. | |
385 | ||
386 | ## charybdis-3.0.2 | |
387 | ||
388 | - Improve OLIST extension error messages. | |
389 | - Improve some kline error checking. | |
390 | - Avoid timing out clients if we are still waiting for a DNSBL lookup. | |
391 | - Fix resolver hangs with epoll. | |
392 | - Fix compilation without zlib. | |
393 | ||
394 | ## charybdis-3.0.1 | |
395 | ||
396 | - Fix occasional hung clients with kqueue. | |
397 | - Fix a rare ssld crash. | |
398 | - Fix a bug that could cause incorrect connect failure reasons to be | |
399 | reported. | |
400 | - Make the IRCd work on MacOS X again. | |
401 | ||
402 | ## charybdis-3.0.0 | |
403 | ||
404 | - Port the IRCd to libratbox, which has improved our portability and allows | |
405 | us to reuse low-level code instead of maintaining our own. | |
406 | - Change configuration of maximum number of clients to ircd-ratbox 3 way. | |
407 | - Add adminwall from ircd-ratbox, as an extension. | |
408 | - Add client and server-to-server SSL, read example.conf for setup. | |
409 | - Replace servlink with ssld (also for ziplinks). | |
410 | - A new extban, $z, has been added for ssl users (extensions/extb_ssl.so). | |
411 | - A new compatibility channel mode, +R, has been added, it sets | |
412 | +q/-q $~a (extensions/chm_operonly_compat.so). This is similar to | |
413 | the +R seen in ircd-seven. | |
414 | - A new compatibility channel mode, +S, has been added, it sets | |
415 | +b/-b $~z (extensions/chm_sslonly_compat.so). | |
416 | - A new compatibility channel mode, +O, has been added, it sets | |
417 | +iI/-iI $o (extensions/chm_operonly_compat.so). | |
418 | - Add remote D:lines. Note that these are not enabled by default. | |
419 | - Remove EFnet-style G:lines. Noone appears to use these. | |
420 | - Remove idle time checking (auto disconnecting users idle too long). | |
421 | - Display a notice to clients when the IRCd is shut down using SIGTERM. | |
422 | - Some error messages have been clarified to enhance usability. | |
423 | - Close the link to servers that send invalid nicks (e.g. nicklen mismatches). | |
424 | Formerly the users were killed from the network. | |
425 | - Enable topicburst by default in connect{}. | |
426 | - Fix a potential desync which can happen with oper override. | |
427 | - Remove "deopped" flag (TS5 legacy). | |
428 | - Use 127.0.0.1 as nameserver if none can be found in /etc/resolv.conf. | |
429 | - Only accept 127.0.0.x as a dnsbl listing. | |
430 | - Change cloaking module (same as 2.2.1, different from 2.2.0). | |
431 | - Make some more server notices about failed remote connect attempts | |
432 | network wide. | |
433 | - Make some server notices about flooders and TS delta network wide. | |
434 | - Remove redundant "<server> had been connected for <time>" server notice. | |
435 | - Add resv oper privilege to control /resv, /unresv and cmode +L and +P, | |
436 | enabled by default. | |
437 | - Add mass_notice oper privilege to control global notices and /wallops, | |
438 | enabled by default. | |
439 | - Rework unkline/undline/unxline/unresv so they show the exact item removed | |
440 | and do not rehash bans. | |
441 | - Show opers a list of recently (<24hrs) split servers in /map. | |
442 | - Add /privs command, shows effective privileges of a client. | |
443 | ||
444 | ## charybdis-2.2.0 | |
445 | ||
446 | - The I/O code has been reworked, file descriptor metadata is stored in a | |
447 | hashtable and the maximum number of clients can now be set in ircd.conf. | |
448 | - Improve error checking and error messages for kline/dline/xline/resv files. | |
449 | - Allow kline ipv6:address, unkline some.host and unkline ipv6:address | |
450 | without *@. | |
451 | - Add accountability (wallops, log) to OKICK extension. | |
452 | - Add opernick to OPME/OMODE/OJOIN log messages. | |
453 | - Add use_forward option, allows disabling cmode +fFQ and umode +Q. | |
454 | - Add keyword substitution to DNSBL reasons, making it possible to show | |
455 | things like the user's IP address in the reason. | |
456 | - Use sendto_one_notice() more. | |
457 | - Server notices about kills now include the victim's nick!user@host instead | |
458 | of just nick. | |
459 | - Include real hostname in Closing Link message for unknown connections | |
460 | that have sent USER, in particular banned users. | |
461 | - Add some documentation about the SASL client protocol. | |
462 | - Change spambot, flooder and jupe joiner notices from host to orighost. | |
463 | - Remove the last remains of server hostmasking (this made it possible to | |
464 | have multiple servers with similar names appear as a single server). | |
465 | - Keep bitmasks of modularized umodes reserved forever to the letter, | |
466 | avoiding problems when reloading umode modules in a different order. | |
467 | - Fix -logfile. | |
468 | - Update to the new revision (v8) of the TS6 spec, this fixes problems with | |
469 | joins reversing certain mode changes crossing them. This interoperates | |
470 | with older versions. | |
471 | - Put "End of Channel Quiet List" at the end of +q lists. | |
472 | - Fix invisible count getting desynched from reality if the act of opering | |
473 | up sets -i or +i. | |
474 | - Don't leak auth{} spoofed IP addresses in +f notices. | |
475 | - Shorten quit/part/kick reasons to avoid quit reasons overflowing the | |
476 | client exiting server notice (from TOPICLEN to 260). | |
477 | - Fix some cases where 10 char usernames lose their final character. | |
478 | - Move username check after xline and dnsbl checks, so it will not complain | |
479 | to opers about clients who are xlined or blacklisted anyway (both of | |
480 | which silently reject). | |
481 | - Remove invite_ops_only config option, forcing it to YES. | |
482 | - Allow /invite (but not invex) to override +r, +l, +j in addition to +i. | |
483 | - Add several new extensions, such as createoperonly. | |
484 | - Merge whois notice extensions into one and move it from snomask +y to +W. | |
485 | ||
486 | ## charybdis-2.1.2 | |
487 | ||
488 | - Fix bug that could cause all hostmangled users to be exempted when a | |
489 | single ban exception existed on a channel. | |
490 | - Tweak \s code a little. | |
491 | - Add a minor clarification to the SGML docs. | |
492 | - Avoid truncation in ip_cloaking (by removing components on the other side). | |
493 | Note that this may cause channel +bqeI modes set on such very long hosts | |
494 | to no longer match. | |
495 | ||
496 | ## charybdis-2.1.1 | |
497 | ||
498 | - Search the shortest list (user's/channel's) when looking up channel | |
499 | memberships. | |
500 | - Make the SID-collision notice look right under all conditions. | |
501 | - Move kills from services from +s to +k snomask. | |
502 | - When no_tilde is present on an auth{} block, check the non-tilde version | |
503 | of the user@host against k:lines as well. | |
504 | - Put full reason in the SQUIT reason when a server is rejected for | |
505 | insufficient parameters being passed to a command. | |
506 | - Don't redirect users to an existing domain, irc.fi. | |
507 | - Improve communication of servlink-related error messages. | |
508 | ||
509 | ## charybdis-2.1.0 | |
510 | ||
511 | - Our official website is now http://www.ircd-charybdis.org/. | |
512 | - Make RPL_ISUPPORT (005 numeric) modularizable. | |
513 | - Also do forwarding if the channel limit (+l) is exceeded. | |
514 | - Don't count opers on service{} servers in /lusers. | |
515 | - Allow servers to send to @#chan and +#chan. | |
516 | - Allow +S clients (services) to send to channels and @/+ channels always. | |
517 | - Allow normal match() on IP address also in /masktrace. | |
518 | - Add new testmask from ratbox 2.2. Allows matches on nick, ip and gecos | |
519 | in addition to user and host, and is fully analogous to masktrace. | |
520 | The numeric has changed from 724 to 727 and fields in it have changed. | |
521 | - Show IP addresses to opers in /whowas. | |
522 | - Add extb_extgecos extban option ($x:nick!user@host#gecos), from sorcery | |
523 | modules. | |
524 | - Add extb_canjoin extban option ($j:#channel), matches if the user is banned | |
525 | from the other channel. | |
526 | - Allow opers to /who based on realhost. | |
527 | - Allow opers to /masktrace, /testmask based on realhost. | |
528 | - Add general::operspy_dont_care_user_info, limits operspy accountability to | |
529 | channel-related information. | |
530 | - Make host mangling more reliable. | |
531 | - Prevent ban evasion by enabling/disabling host mangling. | |
532 | - Add EUID, sends real host and services account in the same command as other | |
533 | user information. | |
534 | - Make it possible to send CHGHOST without ENCAP (fixes problems with old | |
535 | services). | |
536 | - Allow service{} servers to manipulate the nick delay table (for "nickserv | |
537 | enforcement", aka SVSHOLD). | |
538 | - Send server notices about connections initiated by remote opers network wide. | |
539 | - Fix too early truncation of JOIN channel list. | |
540 | - Make the newconf system available to modules. | |
541 | - Add /stats s to the hurt module to list active hurts. | |
542 | - Add general::servicestring, shown in /whois for opered services (+oS). | |
543 | - Show real host/IP behind dynamic spoof in /whois to the user themselves | |
544 | and opers. | |
545 | - Document option to disable nick delay. | |
546 | - Improve logging of server connections. | |
547 | - Clean up handling of hostnames in connect blocks. | |
548 | - Remove support for resolving ip6.int, people should be using ip6.arpa. | |
549 | - Unbreak --disable-balloc (useful for debugging with tools like valgrind). | |
550 | - Make Solaris 10 I/O ports code compile. | |
551 | - Add WEBIRC module to allow showing the real host/IP of CGI:IRC users. | |
552 | - Comment out blacklist{} block in example confs, as AHBL requires | |
553 | notification before use. | |
554 | - Fix some bugs relating to the resolver. | |
555 | ||
556 | ## charybdis-2.0.0 | |
557 | ||
558 | - Replace ADNS with a new smaller resolver from ircu and hybrid. | |
559 | - Make services shortcuts (/chanserv etc) configurable in ircd.conf. | |
560 | - Add extban: extensible +bqeI matching via modules. Syntax is | |
561 | $<type>[:<data>]. By default no modules are loaded. | |
562 | - Add DNS blacklist checking. | |
563 | - Change operator{} block user@host from host to orighost. This means that | |
564 | services/+h spoofs do not work in operator{} blocks; auth{} spoofs still | |
565 | work. Check your operator{} blocks! | |
566 | - Split contrib/ into extensions/ and unsupported/. | |
567 | - Change CHGHOST do show the change to all other clients on common channels | |
568 | with quit/join/mode. | |
569 | - Add /rehash nickdelay to clear out the nickdelay tables. | |
570 | - Glines are now disabled in the example confs. | |
571 | - Show more error messages on stderr. | |
572 | - Add OMODE command to extensions/ for easier oper mode hacking. | |
573 | - Add HURT system to extensions/; this shuns clients matching certain host/ip | |
574 | unless and until they identify to services. Mainly intended for SorceryNet. | |
575 | - Show SASL success and failure counts in /stats t. | |
576 | - Allow more frequent autoconnects to servers. | |
577 | - Messaging services by nickname no longer uses target change slots. | |
578 | - Only accept SASL from servers in a service{} block. | |
579 | - New auth{} flag need_sasl to reject users who haven't done SASL | |
580 | authentication. | |
581 | - Expand blah.blah and blah:blah to *!*@... instead of ...!*@* for bans | |
582 | - Don't allow opers to fake locops/operwall to +w. | |
583 | - Documentation updates. | |
584 | - Many bugfixes. | |
585 | ||
586 | ## charybdis-1.1.0 | |
587 | ||
588 | - Implement SAFELIST. | |
589 | - Incorporate ircu's match() algorithm. | |
590 | - Improve usermode modularization. | |
591 | - Seperate server notices into a seperate snomask, freeing up many | |
592 | usermodes to be used. | |
593 | - Add support for SIGNON originating from Hyperion2. | |
594 | - Modularize many server notices into seperate modules. | |
595 | - Add hooks for can_join and can_create_channel. | |
596 | - Add support for SASL authentication. | |
597 | - Add introduce_user hook for adding new messages when a user is bursted. | |
598 | - Move a large part of the ircd into libcharybdis. | |
599 | - Don't complain "unknown user mode" if a user tries to unset | |
600 | a mode they do not have access to. | |
601 | - Update our challenge specification to the challenge implementation in | |
602 | ratbox 2.2 for interoperability. | |
603 | - Make +f notices network-wide (local host, global host, | |
604 | global user@host, local class), other notices tied to +f remain local. | |
605 | - Allow ENCAP REALHOST outside of netburst. | |
606 | - Add general::global_snotices option to make server notices be | |
607 | network-wide or not. | |
608 | - Add sno_farconnect.c to contrib, provides farconnect support. | |
609 | Could be useful for BOPM. | |
610 | - Add sno_routing.c which displays information about netsplits, netjoins | |
611 | and the clients affected by them. | |
612 | - Add CHANTRACE and TRACEMASK commands from ratbox 3.0 | |
613 | - Use IsOperAdmin() instead of IsAdmin() when sending admin-only messages, | |
614 | that way hidden admins get them too. | |
615 | - Add m_error to core_module_table, somehow it was missing. | |
616 | - Correct a format string bug that occurs when a read error is | |
617 | received. | |
618 | - Add some logging in places where we drop servers and only notify | |
619 | server operators. | |
620 | - Track hostmask limits based on a client's original host, if | |
621 | available. | |
622 | - Move HIDE_SPOOF_IPS into the general {} block in ircd.conf | |
623 | ||
624 | ## charybdis-1.0.3 | |
625 | ||
626 | - Fix /invite UID leak. (Found by logiclrd@EFnet.) | |
627 | - Incorporate ratbox bugfixes for the MONITOR system. | |
628 | - Made show_ip() less braindead. | |
629 | - Show real errno if we fail to connect to a server. | |
630 | - Don't disclose server IP's when a connection fails. | |
631 | - Do not show the channels a service is sitting in. | |
632 | - Reverted the aline code from hybrid-7.2 | |
633 | - Make sure TS6 services are recognized properly if connected remotely. | |
634 | - Tweak something in services support for cyrix boxes. | |
635 | ||
636 | ## charybdis-1.0.2 | |
637 | ||
638 | - Fix propagation of an empty SJOIN (permanant channels). | |
639 | - Fix an exploit involving a malformed /trace request. | |
640 | - Don't display a blank RPL_WHOISCHANNELS in a remote whois request. | |
641 | - Allow modules to provide new usermodes. | |
642 | - On a nickname collision, change the collided nick to their unique ID, | |
643 | if general::collision_fnc is enabled in the config. | |
644 | - Don't allow UID lookups in /monitor + and /monitor s | |
645 | - Fix a garbage issue with channel mode +j. | |
646 | - Apply proper capability flags to the proper server in me_gcap(). | |
647 | - Use find_named_person() instead of find_person() in a nick collision. | |
648 | - Prevent UID disclosure in cmode setting. | |
649 | - Prevent UID disclosure to remote clients in /kick. | |
650 | - Do not allow users to query via /whois <server> <UID>. | |
651 | - Don't allow local users to use UID's in local usermode changes. | |
652 | - Propagate +q lists on netjunction. | |
653 | - Clear +q lists on a lowerTS SJOIN. | |
654 | - Ported a generic k/d/x-line parser from hybrid-7.2 which resulted in | |
655 | duplicate code reduction. | |
656 | - Fix linebuf raw code to not truncate lines longer than 512 bytes; | |
657 | improves ziplink reliability on net junction. | |
658 | - Use find_named_person() vs find_person() in services alias code. | |
659 | - Fix issue where channel forwarding token can be lost on net junction. | |
660 | - Fix empty channel desync issues involving +P. | |
661 | - Remove unused non-ENCAP CHGHOST support. | |
662 | - Use TS6 form for SQUIT wallops. | |
663 | - Propagate nickname changes for remote clients in TS6 form if possible, | |
664 | even if sent in TS5 format. | |
665 | - Only clear oper_only_umodes for local clients on deoper. | |
666 | ||
667 | ## charybdis-1.0.1 | |
668 | ||
669 | - Display logged in status on non-local clients too. | |
670 | - Documentation updates | |
671 | - Fix a bug with forward target authorization. | |
672 | - Fix a bug with mode propagation (+Q/+F). | |
673 | - Change ERR_NOSUCHNICK to ERR_SERVICESOFFLINE in services aliases. | |
674 | - Add remote rehashing. | |
675 | - Document service { } blocks (u:lines on ircu). | |
676 | - Document identify_service and identify_command in reference.conf. | |
677 | ||
678 | ## charybdis-1.0 | |
679 | ||
680 | - Implement channel mode +L for channel list limit exemptions. | |
681 | - Implement channel mode +P primarily as a status mode, permanant | |
682 | channel -- this is usually enforced via services registrations. | |
683 | - Change behaviour of /stats p: now displays all staff members instead | |
684 | of local ones only. | |
685 | - Make oper_list global, add local_oper_list for local traffic. | |
686 | - Strip control codes from parts and quits. | |
687 | - Add channel mode +c which strips control codes from messages sent to | |
688 | the channel. | |
689 | - Add channel mode +g which enables free use of the /invite command. | |
690 | - Add channel mode +z which sends rejected messages to channel ops. | |
691 | Could be useful for Q&A sessions or other similar events. | |
692 | - Add channel quietmasks. These are recommended over the use of channel | |
693 | bans used to remove a user's ability to participate in the channel. | |
694 | - Add channel join throttling mode, +j. Used to throttle channel join | |
695 | traffic, i.e. join/part flood attacks. Syntax: +j <joins>:<timeslice> | |
696 | - Improvements to channel_modes(), from shadowircd -- allows for | |
697 | better construction of the mode string. | |
698 | - Use the undernet throttle notice instead of bancache message when | |
699 | dealing with rejected clients. (stolen from ircu2.10.12) | |
700 | - Add channel forwarding, via channel mode +f, behaves similarly to | |
701 | dancer-ircd version. | |
702 | - Update example.conf to reflect AthemeNET changes. Original ratbox | |
703 | config is now reference.conf. | |
704 | - Services account names are now tracked globally. | |
705 | - Add channel mode +Q which disables the effects of channel forwarding | |
706 | on a temporary basis. | |
707 | - Add channel mode +F which allows anybody to disable forwarding target | |
708 | authorisation, voluntarily on their channels. | |
709 | - Make wallops behave like normal wallops. | |
710 | - Add services aliases: /ns, /cs, /os, /nickserv, /chanserv, /operserv. | |
711 | - Add simple hack that enables use of server password for automatic | |
712 | identify. |