mirror of
https://github.com/1f349/dendrite.git
synced 2024-11-08 18:16:59 +00:00
28 KiB
28 KiB
Changelog
Dendrite 0.6.2 (2022-02-04)
Fixes
- Resolves an issue where the key change consumer in the keyserver could consume extreme amounts of CPU
Dendrite 0.6.1 (2022-02-04)
Features
- Roomserver inputs now take place with full transactional isolation in PostgreSQL deployments
- Pull consumers are now used instead of push consumers when retrieving messages from NATS to better guarantee ordering and to reduce redelivery of duplicate messages
- Further logging tweaks, particularly when joining rooms
- Improved calculation of servers in the room, when checking for missing auth/prev events or state
- Dendrite will now skip dead servers more quickly when federating by reducing the TCP dial timeout
- The key change consumers have now been converted to use native NATS code rather than a wrapper
- Go 1.16 is now the minimum supported version for Dendrite
Fixes
- Local clients should now be notified correctly of invites
- The roomserver input API now has more time to process events, particularly when fetching missing events or state, which should fix a number of errors from expired contexts
- Fixed a panic that could happen due to a closed channel in the roomserver input API
- Logging in with uppercase usernames from old installations is now supported again (contributed by hoernschen)
- Federated room joins now have more time to complete and should not fail due to expired contexts
- Events that were sent to the roomserver along with a complete state snapshot are now persisted with the correct state, even if they were rejected or soft-failed
Dendrite 0.6.0 (2022-01-28)
Features
- NATS JetStream is now used instead of Kafka and Naffka
- For monolith deployments, a built-in NATS Server is embedded into Dendrite or a standalone NATS Server deployment can be optionally used instead
- For polylith deployments, a standalone NATS Server deployment is required
- Requires the version 2 configuration file — please see the new
dendrite-config.yaml
sample config file - Kafka and Naffka are no longer supported as of this release
- The roomserver is now responsible for fetching missing events and state instead of the federation API
- Removes a number of race conditions between the federation API and roomserver, which reduces duplicate work and overall lowers CPU usage
- The roomserver input API is now strictly ordered with support for asynchronous requests, smoothing out incoming federation significantly
- Consolidated the federation API, federation sender and signing key server into a single component
- If multiple databases are used, tables for the federation sender and signing key server should be merged into the federation API database (table names have not changed)
- Device list synchronisation is now database-backed rather than using the now-removed Kafka logs
Fixes
- The code for fetching missing events and state now correctly identifies when gaps in history have been closed, so federation traffic will consume less CPU and memory than before
- The stream position is now correctly advanced when typing notifications time out in the sync API
- Event NIDs are now correctly returned when persisting events in the roomserver in SQLite mode
- The built-in SQLite was updated to version 3.37.0 as a result
- The
/event_auth
endpoint now strictly returns the auth chain for the requested event without loading the room state, which should reduce spikes in memory usage - Filters are now correctly sent when using federated public room directories (contributed by S7evinK)
- Login usernames are now squashed to lower-case (contributed by BernardZhao)
- The logs should no longer be flooded with
Failed to get server ACLs for room
warnings at startup - Backfilling will now attempt federation as a last resort when trying to retrieve missing events from the database fails
Dendrite 0.5.1 (2021-11-16)
Features
- Experimental (although incomplete) support for joining version 8 and 9 rooms
- State resolution v2 optimisations (close to 20% speed improvement thanks to reduced allocations)
- Optimisations made to the federation
/send
endpoint which avoids duplicate work, reduces CPU usage and smooths out incoming federation - The sync API now consumes less CPU when generating sync responses (optimised
SelectStateInRange
) - Support for serving the
.well-known/matrix/server
endpoint from within Dendrite itself (contributed by twentybit) - Support for thumbnailing WebP media (contributed by hacktivista)
Fixes
- The
/publicRooms
handler now handlesPOST
requests in addition toGET
correctly - Only valid canonical aliases will be returned in the
/publicRooms
response - The media API now correctly handles
max_file_size_bytes
being configured to0
(contributed by database64128) - Unverifiable auth events in
/send_join
responses no longer result in a panic - Build issues on Windows are now resolved (contributed by S7evinK)
- The default power levels in a room now set the invite level to 50, as per the spec
- A panic has been fixed when malformed messages are received in the key change consumers
Dendrite 0.5.0 (2021-08-24)
Features
- Support for serverside key backups has been added, allowing your E2EE keys to be backed up and to be restored after logging out or when logging in from a new device
- Experimental support for cross-signing has been added, allowing verifying your own device keys and verifying other user's public keys
- Dendrite can now send logs to a TCP syslog server by using the
syslog
logger type (contributed by sambhavsaggi) - Go 1.15 is now the minimum supported version for Dendrite
Fixes
- Device keys are now cleaned up from the keyserver when the user API removes a device session
- The
M_ROOM_IN_USE
error code is now returned when a room alias is already taken (contributed by nivekuil) - A bug in the state storage migration has been fixed where room create events had incorrect state snapshots
- A bug when deactivating accounts caused by only reading the deprecated username field has been fixed
Dendrite 0.4.1 (2021-07-26)
Features
- Support for room version 7 has been added
- Key notary support is now more complete, allowing Dendrite to be used as a notary server for looking up signing keys
- State resolution v2 performance has been optimised further by caching the create event, power levels and join rules in memory instead of parsing them repeatedly
- The media API now handles cases where the maximum file size is configured to be less than 0 for unlimited size
- The
initial_state
in a/createRoom
request is now respected when creating a room - Code paths for checking if servers are joined to rooms have been optimised significantly
Fixes
- A bug resulting in
cannot xref null state block with snapshot
during the new state storage migration has been fixed - Invites are now retired correctly when rejecting an invite from a remote server which is no longer reachable
- The DNS cache
cache_lifetime
option is now handled correctly (contributed by S7evinK) - Invalid events in a room join response are now dropped correctly, rather than failing the entire join
- The
prev_state
of an event will no longer be populated incorrectly to the state of the current event - Receiving an invite to an unsupported room version will now correctly return the
M_UNSUPPORTED_ROOM_VERSION
error code instead ofM_BAD_JSON
(contributed by meenal06)
Dendrite 0.4.0 (2021-07-12)
Features
- All-new state storage in the roomserver, which dramatically reduces disk space utilisation
- State snapshots and blocks are now aggressively deduplicated and reused wherever possible, with state blocks being reduced by up to 15x and snapshot references being reduced up to 2x
- Dendrite will upgrade to the new state storage automatically on the first run after upgrade, although this may take some time depending on the size of the state storage
- Appservice support has been improved significantly, with many bridges now working correctly with Dendrite
- Events are now correctly sent to appservices based on room memberships
- Aliases and namespaces are now handled correctly, calling the appservice to query for aliases as needed
- Appservice user registrations are no longer being subject to incorrect validation checks
- Shared secret registration has now been implemented correctly
- The roomserver input API implements a new queuing system to reduce backpressure across rooms
- Checking if the local server is in a room has been optimised substantially, reducing CPU usage
- State resolution v2 has been optimised further by improving the power level checks, reducing CPU usage
- The federation API
/send
endpoint now deduplicates missing auth and prev events more aggressively to reduce memory usage - The federation API
/send
endpoint now uses workers to reduce backpressure across rooms - The bcrypt cost for password storage is now configurable with the
user_api.bcrypt_cost
option - The federation API will now use significantly less memory when calling
/get_missing_events
- MSC2946 Spaces endpoints have been updated to stable endpoint naming
- The media API can now be configured without a maximum file size
- A new
dendrite-upgrade-test
test has been added for verifying database schema upgrades across versions - Added Prometheus metrics for roomserver backpressure, excessive device list updates and federation API event processing summaries
- Sentry support has been added for error reporting
Fixes
- Removed the legacy
/v1
register endpoint. Dendrite only implements/r0
of the CS API, and the legacy/v1
endpoint had implementation errors which made it possible to bypass shared secret registration (thanks to Jakob Varmose Bentzen for reporting this) - Attempting to register an account that already exists now returns a sensible error code rather than a HTTP 500
- Dendrite will no longer attempt to
/make_join
with itself if listed in the requestserver_names
/sync
will no longer return immediately if there is nothing to sync, which happened particularly with new accounts, causing high CPU usage- Malicious media uploads can no longer exhaust all available memory (contributed by S7evinK)
- Selecting one-time keys from the database has been optimised (contributed by S7evinK)
- The return code when trying to fetch missing account data has been fixed (contributed by adamgreig)
- Dendrite will no longer attempt to use
/make_leave
over federation when rejecting a local invite - A panic has been fixed in
QueryMembershipsForRoom
- A panic on duplicate membership events has been fixed in the federation sender
- A panic has been fixed in in
IsInterestedInRoomID
(contributed by bodqhrohro) - A panic in the roomserver has been fixed when handling empty state sets
- A panic in the federation API has been fixed when handling cached events
Dendrite 0.3.11 (2021-03-02)
Fixes
- SECURITY: A bug in SQLite mode which could cause the registration flow to complete unexpectedly for existing accounts has been fixed (PostgreSQL deployments are not affected)
- A panic in the federation sender has been fixed when shutting down destination queues
- The
/keys/upload
endpoint now correctly returns the number of one-time keys in response to an empty upload request
Dendrite 0.3.10 (2021-02-17)
Features
- In-memory caches will now gradually evict old entries, reducing idle memory usage
- Federation sender queues will now be fully unloaded when idle, reducing idle memory usage
- The
power_level_content_override
option is now supported in/createRoom
- The
/send
endpoint will now attempt more servers in the room when trying to fetch missing events or state
Fixes
- A panic in the membership updater has been fixed
- Events in the sync API that weren't excluded from sync can no longer be incorrectly excluded from sync by backfill
- Retrieving remote media now correcly respects the locally configured maximum file size, even when the
Content-Length
header is unavailable - The
/send
endpoint will no longer hit the database more than once to find servers in the room
Dendrite 0.3.9 (2021-02-04)
Features
- Performance of initial/complete syncs has been improved dramatically
- State events that can't be authed are now dropped when joining a room rather than unexpectedly causing the room join to fail
- State events that already appear in the timeline will no longer be requested from the sync API database more than once, which may reduce memory usage in some cases
Fixes
- A crash at startup due to a conflict in the sync API account data has been fixed
- A crash at startup due to mismatched event IDs in the federation sender has been fixed
- A redundant check which may cause the roomserver memberships table to get out of sync has been removed
Dendrite 0.3.8 (2021-01-28)
Fixes
- A well-known lookup regression in version 0.3.7 has been fixed
Dendrite 0.3.7 (2021-01-26)
Features
- Sync filtering support (for event types, senders and limits)
- In-process DNS caching support for deployments where a local DNS caching resolver is not available (disabled by default)
- Experimental support for MSC2444 (Peeking over Federation) has been merged
- Experimental federation support for MSC2946 (Spaces Summary) has been merged
Fixes
- Dendrite will no longer load a given event more than once for state resolution, which may help to reduce memory usage and database I/O slightly in some cases
- Large well-known responses will no longer use significant amounts of memory
Dendrite 0.3.6 (2021-01-18)
Features
- Experimental support for MSC2946 (Spaces Summary) has been merged
- Send-to-device messages have been refactored and now take advantage of having their own stream position, making delivery more reliable
- Unstable features and MSCs are now listed in
/versions
(contributed by sumitks866) - Well-known and DNS SRV record results for federated servers are now cached properly, improving outbound federation performance and reducing traffic
Fixes
- Updating forward extremities will no longer result in so many unnecessary state snapshots, reducing on-going disk usage in the roomserver database
- Pagination tokens for
/messages
have been fixed, which should improve the reliability of scrollback/pagination - Dendrite now avoids returning
null
s in fields of the/sync
response, and omitting some fields altogether when not needed, which should fix sync issues with Element Android - Requests for user device lists now time out quicker, which prevents federated
/send
requests from also timing out in many cases - Empty push rules are no longer sent over and over again in
/sync
- An integer overflow in the device list updater which could result in panics on 32-bit platforms has been fixed (contributed by Lesterpig)
- Event IDs are now logged properly in federation sender and sync API consumer errors
Dendrite 0.3.5 (2021-01-11)
Features
- All
/sync
streams are now logically separate after a refactoring exercise
Fixes
- Event references are now deeply checked properly when calculating forward extremities, reducing the amount of forward extremities in most cases, which improves RAM utilisation and reduces the work done by state resolution
- Sync no longer sends incorrect
next_batch
tokens with old stream positions, reducing flashbacks of old messages in clients - The federation
/send
endpoint no longer uses the request context, which could result in some events failing to be persisted if the sending server gave up the HTTP connection - Appservices can now auth as users in their namespaces properly
Dendrite 0.3.4 (2020-12-18)
Features
- The stream tokens for
/sync
have been refactored, giving PDUs, typing notifications, read receipts, invites and send-to-device messages their own respective stream positions, greatly improving the correctness of sync - A new roominfo cache has been added, which results in less database hits in the roomserver
- Prometheus metrics have been added for sync requests, destination queues and client API event send perceived latency
Fixes
- Event IDs are no longer recalculated so often in
/sync
, which reduces CPU usage - Sync requests are now woken up correctly for our own device list updates
- The device list stream position is no longer lost, so unnecessary device updates no longer appear in every other sync
- A crash on concurrent map read/writes has been fixed in the stream token code
- The roomserver input API no longer starts more worker goroutines than needed
- The roomserver no longer uses the request context for queued tasks which could lead to send requests failing to be processed
- A new index has been added to the sync API current state table, which improves lookup performance significantly
- The client API
/joined_rooms
endpoint no longer incorrectly returnsnull
if there are 0 rooms joined - The roomserver will now query appservices when looking up a local room alias that isn't known
- The check on registration for appservice-exclusive namespaces has been fixed
Dendrite 0.3.3 (2020-12-09)
Features
- Federation sender should now use considerably less CPU cycles and RAM when sending events into large rooms
- The roomserver now uses considerably less CPU cycles by not calculating event IDs so often
- Experimental support for MSC2836 (threading) has been merged
- Dendrite will no longer hold federation HTTP connections open unnecessarily, which should help to reduce ambient CPU/RAM usage and hold fewer long-term file descriptors
Fixes
- A bug in the latest event updater has been fixed, which should prevent the roomserver from losing forward extremities in some rare cases
- A panic has been fixed when federation is disabled (contributed by kraem)
- The response format of the
/joined_members
endpoint has been fixed (contributed by alexkursell)
Dendrite 0.3.2 (2020-12-02)
Features
- Federation can now be disabled with the
global.disable_federation
configuration option
Fixes
- The
"since"
parameter is now checked more thoroughly in the sync API, which led to a bug that could cause forgotten rooms to reappear (contributed by kaniini) - The polylith now proxies signing key requests through the federation sender correctly
- The code for checking if remote servers are allowed to see events now no longer wastes CPU time retrieving irrelevant state events
Dendrite 0.3.1 (2020-11-20)
Features
- Memory optimisation by reference passing, significantly reducing the number of allocations and duplication in memory
- A hook API has been added for experimental MSCs, with an early implementation of MSC2836
- The last seen timestamp and IP address are now updated automatically when calling
/sync
- The last seen timestamp and IP address are now reported in
/_matrix/client/r0/devices
(contributed by alexkursell) - An optional configuration option
sync_api.real_ip_header
has been added for specifying which HTTP header contains the real client IP address (for if Dendrite is running behind a reverse HTTP proxy) - Partial implementation of
/_matrix/client/r0/admin/whois
(contributed by DavidSpenler)
Fixes
- A concurrency bug has been fixed in the federation API that could cause Dendrite to crash
- The error when registering a username with invalid characters has been corrected (contributed by bodqhrohro)
Dendrite 0.3.0 (2020-11-16)
Features
- Read receipts (both inbound and outbound) are now supported (contributed by S7evinK)
- Forgetting rooms is now supported (contributed by S7evinK)
- The
-version
command line flag has been added (contributed by S7evinK)
Fixes
- User accounts that contain the
=
character can now be registered - Backfilling should now work properly on rooms with world-readable history visibility (contributed by MayeulC)
- The
gjson
dependency has been updated for correct JSON integer ranges - Some more client event fields have been marked as omit-when-empty (contributed by S7evinK)
- The
build.sh
script has been updated to work properly on all POSIX platforms (contributed by felix)
Dendrite 0.2.1 (2020-10-22)
Fixes
- Forward extremities are now calculated using only references from other extremities, rather than including outliers, which should fix cases where state can become corrupted (#1556)
- Old state events will no longer be processed by the sync API as new, which should fix some cases where clients incorrectly believe they have joined or left rooms (#1548)
- More SQLite database locking issues have been resolved in the latest events updater (#1554)
- Internal HTTP API calls are now made using H2C (HTTP/2) in polylith mode, mitigating some potential head-of-line blocking issues (#1541)
- Roomserver output events no longer incorrectly flag state rewrites (#1557)
- Notification levels are now parsed correctly in power level events (gomatrixserverlib#228, contributed by Pestdoktor)
- Invalid UTF-8 is now correctly rejected when making federation requests (gomatrixserverlib#229, contributed by Pestdoktor)
Dendrite 0.2.0 (2020-10-20)
Important
- This release makes breaking changes for polylith deployments, since they now use the multi-personality binary rather than separate binary files
- Users of polylith deployments should revise their setups to use the new binary - see the Features section below
- This release also makes breaking changes for Docker deployments, as are now publishing images to Docker Hub in separate repositories for monolith and polylith
- New repositories are as follows: matrixdotorg/dendrite-monolith and matrixdotorg/dendrite-polylith
- The new
latest
tag will be updated with the latest release, and new versioned tags, e.g.v0.2.0
, will preserve specific release versions - Sample Compose configs have been updated - if you are running a Docker deployment, please review the changes
- Images for the client API proxy and federation API proxy are no longer provided as they are unsupported - please use nginx (or another reverse proxy) instead
Features
- Dendrite polylith deployments now use a special multi-personality binary, rather than separate binaries
- This is cleaner, builds faster and simplifies deployment
- The first command line argument states the component to run, e.g.
./dendrite-polylith-multi roomserver
- Database migrations are now run at startup
- Invalid UTF-8 in requests is now rejected (contributed by Pestdoktor)
- Fully read markers are now implemented in the client API (contributed by Lesterpig)
- Missing auth events are now retrieved from other servers in the room, rather than just the event origin
m.room.create
events are now validated properly when processing a/send_join
response- The roomserver now implements
KindOld
for handling historic events without them becoming forward extremity candidates, i.e. for backfilled or missing events
Fixes
- State resolution v2 performance has been improved dramatically when dealing with large state sets
- The roomserver no longer processes outlier events if they are already known
- A SQLite locking issue in the previous events updater has been fixed
- The client API
/state
endpoint now correctly returns state after the leave event, if the user has left the room - The client API
/createRoom
endpoint now sends cumulative state to the roomserver for the initial room events - The federation API
/send
endpoint now correctly requests the entire room state from the roomserver when needed - Some internal HTTP API paths have been fixed in the user API (contributed by S7evinK)
- A race condition in the rate limiting code resulting in concurrent map writes has been fixed
- Each component now correctly starts a consumer/producer connection in monolith mode (when using Kafka)
- State resolution is no longer run for single trusted state snapshots that have been verified before
- A crash when rolling back the transaction in the latest events updater has been fixed
- Typing events are now ignored when the sender domain does not match the origin server
- Duplicate redaction entries no longer result in database errors
- Recursion has been removed from the code path for retrieving missing events
QueryMissingAuthPrevEvents
now returns events that have no associated state as if they are missing- Signing key fetchers no longer ignore keys for the local domain, if retrieving a key that is not known in the local config
- Federation timeouts have been adjusted so we don't give up on remote requests so quickly
create-account
no longer relies on the device database (contributed by ThatNerdyPikachu)
Known issues
- Old events can incorrectly appear in
/sync
as if they are new when retrieving missing events from federated servers, causing them to appear at the bottom of the timeline in clients
Dendrite 0.1.0 (2020-10-08)
First versioned release of Dendrite.
Client-Server API Features
Account registration and management
- Registration: By password only.
- Login: By password only. No fallback.
- Logout: Yes.
- Change password: Yes.
- Link email/msisdn to account: No.
- Deactivate account: Yes.
- Check if username is available: Yes.
- Account data: Yes.
- OpenID: No.
Rooms
- Room creation: Yes, including presets.
- Joining rooms: Yes, including by alias or
?server_name=
. - Event sending: Yes, including transaction IDs.
- Aliases: Yes.
- Published room directory: Yes.
- Kicking users: Yes.
- Banning users: Yes.
- Inviting users: Yes, but not third-party invites.
- Forgetting rooms: No.
- Room versions: All (v1 * v6)
- Tagging: Yes.
User management
- User directory: Basic support.
- Ignoring users: No.
- Groups/Communities: No.
Device management
- Creating devices: Yes.
- Deleting devices: Yes.
- Send-to-device messaging: Yes.
Sync
- Filters: Timeline limit only. Rest unimplemented.
- Deprecated
/events
and/initialSync
: No.
Room events
- Typing: Yes.
- Receipts: No.
- Read Markers: No.
- Presence: No.
- Content repository (attachments): Yes.
- History visibility: No, defaults to
joined
. - Push notifications: No.
- Event context: No.
- Reporting content: No.
End-to-End Encryption
- Uploading device keys: Yes.
- Downloading device keys: Yes.
- Claiming one-time keys: Yes.
- Querying key changes: Yes.
- Cross-Signing: No.
Misc
- Server-side search: No.
- Guest access: Partial.
- Room previews: No, partial support for Peeking via MSC2753.
- Third-Party networks: No.
- Server notices: No.
- Policy lists: No.
Federation Features
- Querying keys (incl. notary): Yes.
- Server ACLs: Yes.
- Sending transactions: Yes.
- Joining rooms: Yes.
- Inviting to rooms: Yes, but not third-party invites.
- Leaving rooms: Yes.
- Content repository: Yes.
- Backfilling / get_missing_events: Yes.
- Retrieving state of the room (
/state
and/state_ids
): Yes. - Public rooms: Yes.
- Querying profile data: Yes.
- Device management: Yes.
- Send-to-Device messaging: Yes.
- Querying/Claiming E2E Keys: Yes.
- Typing: Yes.
- Presence: No.
- Receipts: No.
- OpenID: No.