File tuwunel.changes of Package tuwunel
------------------------------------------------------------------- Tue Sep 02 16:07:32 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.4.1+git0.a1677f05: * Bump 1.4.1 * Mark MSC4297 compliance as flake. * Fix /joined_members results. (regression a3666fe672) (fixes #147) ------------------------------------------------------------------- Mon Sep 01 18:09:23 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Update to version 1.4.0+git0.a127724e: * Bump 1.4.0 * ci: Skip unnecessary amd64 -v2 and -v3 builds in test-profile mode. * Deprioritize joins through configured servers * Dedup base join servers * Bump 1.4.0 Preview * Implement room purge after last local user leaves. (resolves #83) * Fix unnecessary backfill requests after reaching m.room.create. * Fix unused lifetims. * Bump and unpatch tracing-subscriber. * ci: Tweak docker cache sizes. * Update the troubleshooting for easier rocksdb recovery/repair. * Add state_cache iteration for local pending invitees to room. * Replace legacy federation proto-event formatter. * Adjust generic docs * Update example caddy config * Stabilize room version 12. (#126) * Optimize backfill_if_required conditions. * Add active request assert on tls listener shutdown * Make /sync respond early on server shutdown * Fix device verification crutch (regression 628597c318); cleanup. (fixes #134) * Fix latest key backup determination. * Adjust several log levels; cleanup unformatted log call. * Update capability for MSC4133 profile fields. * Fix /send_join response event format. Optimize. * Optimize expected auth types checking. * Eliminate redundant duplicate auth and matching room check. * Fix incorrect command descriptions. [ci skip] * Fix additional cases for room_id. * Simplify Pdu from_id_val constructions. * Log error for send_join auth_check failure. * Force promotion (closes #136) * Remove excessive doc on admin command * Remove dead link in readme * ci: Disable lychee for now due to excessive build time issue during install. * Add room_version argument and reorg convert_outgoing_federation_event. * Optimize OnceServices; simplify init. * Room deletion (fixes #43) * Remove associated pushers on device delete. (fixes #120) * Skip serialization for appservice id * Fix joining restricted rooms with invite * Remove api crate dependency from admin crate * Membership refactor * banned_room_check: pull out common part * clippy: add must_use attribute * Move server user presence handling to presence service * Make Service.interrupt async * Add config option for creating admin room non-federated (closes #118) * Remove explicit unstable thirdparty/protocols route * Split disable_room, ban_room functions * Remove unnecessary recursion_limit. * Services refactor * Fix updated serde type expected by database deserialize_any. * Improved solution to current_shortstatehash > next_batch. (59b62b1) * Bump Ruma post-hydra. * Bump Complement post-hydra. * Replace clippy::string_to_string with clippy::implicit_clone * Add note directing users to docker deployment docs. * Fix version 12 outgoing federation format. * Bump dependencies for yanked slab. * State-reset and security mitigations. * Reduce log level on router::args returned error. * Allow clippy::default_trait_access. * Simplify feature condition. * Use member profile rather than global profile for `joined_members` (fixes #121) * Bump dependencies. * Optimize spaces pageload; pipeline outer loop. ------------------------------------------------------------------- Tue Aug 12 15:49:57 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Downgrade to 1.3.0+git0.e106e50e as git7 fails to build https://github.com/matrix-construct/tuwunel/issues/124 ------------------------------------------------------------------- Tue Aug 12 15:19:01 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Fork as tuwunel from conduwuit ------------------------------------------------------------------- Tue Aug 12 15:17:11 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Update to version v1.3.0+git7.628597c3: * State-reset and security mitigations. * Reduce log level on router::args returned error. * Allow clippy::default_trait_access. * Simplify feature condition. * Use member profile rather than global profile for `joined_members` (fixes #121) * Bump dependencies. * Optimize spaces pageload; pipeline outer loop. * Update the since token to skip empty range from prior iteration. * Additional instrumentation around global counter events. * Move active and finished request counters out of span field. ------------------------------------------------------------------- Wed Apr 09 08:27:44 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Update to version 0.5.0~rc4+git0.d8311a5ff: * bump crossbeam-channel bc yanked crate with potential double free * bump tokio because of RUSTSEC-2025-0023 * update new complement flakes * change forbidden_server_names and etc to allow regex patterns for wildcards * drop unnecessary info log to debug * add trace logging for room summaries, use server_in_room instead of exists * parallelise IO of user searching, improve perf, raise max limit to 500 * bump rust toolchain to 1.86.0 * use patch of resolv-conf crate to allow no-aaaa resolv.conf option * simplify space join rules related * simplify acl brick-check conditions * downgrade `deranged` crate * try partially reverting 94b107b42b722aff9518f64ad603ce01665b25f3 * update default room version to v11 * extend extract_variant to multiple variants * abstract and encapsulate the awkward OptionFuture into Stream pattern * move core::pdu and core::state_res into core::matrix:: ------------------------------------------------------------------- Fri Apr 04 20:21:25 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Update to version 0.5.0~rc4+git0.4e5b87d0c: * add missing condition for signatures upload failures * remove the db pool queue full warning * refactor incoming prev events loop; mitigate large future * remove additional unnecessary Arc * further simplify get_missing_events; various log calls * add some debug logging and misc cleanup to keys/signatures/upload * move systemd stopping notification point * move runtime shutdown out of main; gather final stats * patch hyper-util due to conflicts with federation resolver hooks * bump additional dependencies * upgrade hickory and hyper-util dependencies * fix well-known using the hooked resolver * leave room locally if room is banned, rescind knocks on deactivation too * add appservice MSC4190 support * fixup+update msc3266, add fed support, parallelise IO * default shared history vis on unknown visibilities, drop needless error log * significantly improve get_missing_events fed code * remove pointless and buggy *_visibility in-memory caches * fix weird issue with acl c2s check * revert hyper-util upgrade due to continued DNS issues * bump dependencies * upgrade dependency ByteSize * use async_trait without axum re-export * remove several services.globals config wrappers * workaround some large type name length issues * remove recently-made-unnecessary unsafe block * reorg PduEvent strip tools and callsites * add spans for for jemalloc mallctl points * instrument tokio before/after poll hooks * bump tokio to 1.44.1 * disambiguate UInt/u64 type related in client/api/directory; use err macros. * add stub for database benches * add --read-only and --maintenance program option * fix client hierarchy loop condition ------------------------------------------------------------------- Sat Mar 29 13:19:44 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - Update to version 0.5.0~rc3+git112.3e57b7d35: * Update expected test results * Fix off-by-one error when fetching room hierarchy * remove sccache from ci for now * fix benches from state-res * use qualified crate names from within workspace * mark get_summary_and_children_federation Send * default config item to 'none' when zstd_compression not featured * abstract raw query command iterations * fix lints * use #[ignore] for todo'ed tests * split well_known resolver into unit * implement clear_cache() for resolver service * make service memory_usage()/clear_cache() async trait * add Map::clear() to db interface * add FIFO compaction for persistent-cache descriptor; comments/cleanup * assume canonical order in db serialization test * parallelize IO for PublicRoomsChunk vector * fix unused import without feature jemalloc_conf * re-sort pushkey_deviceid (33c5afe050) * delete pushers created with different access token on password change * replace unnecessary check when updating device keys * check if we already have a more preferable key backup before adding * guard against using someone else's access token in UIAA * skip a few flakey complement tests * respect include_leave syncv3 filter * bump ruwuma * stop doing complement cert gen and just use self-signed cert * fix some nightly clippy lints * respect membership filters on /members * ignore humantime dep as tracing console-subscriber uses it (somewhere) * remove most of cargo test from engage as crane does that but with more caching * bump ruwuma * bump tracing-subscriber, allowlist cargo-doc lint in admin room ------------------------------------------------------------------- Tue Mar 11 11:25:27 UTC 2025 - mrueckert@suse.de - Update to version 0.5.0~rc3+git79.c4b05e77f: * Fix up wording in the doc comments for admin media deletion (#694) * Check the `room_types` filter when searching for local public rooms (#698) * docs: refactor reverse proxy setup sections (#701) * misc docs updates * add download-artifact pattern for OCI images only * update complement test results * bump ruwuma to fix a threads issue, fix more error codes, delete legacy sytest cruft * adjust complement cert generation * implement disable TLS validation config option * fix a few error codes * update complement results * fix a few things to make some complement tests pass * bump ruwuma to maybe fix rare device key upload issues * comment gotestfmt for now * always disable fed, evict admins, and forget the room when banning a room * add cargo auditable for future use, ignore paste dependency being unmaintained for now * implement MSC4267 automatically forgetting room on leave * bump rust-rocksdb * adjust complement script to allow using your own hs OCI image without nix * add gotestfmt log output to complement script and CI output * bump complement * set file_shape for roomsynctoken_shortstatehash to 3, remove rust-rocksdb package spec * ci: allow ourselves to write to the public docs directory * bump rust-rocksdb * add some ACL paw-gun checks, better `PUT` state event validation * allow broken no-op deny+allow room server ACL keys * remove unnecessary map_err * bump our rocksdb fork * add new complement test results * bump rocksdb to v9.11.1 * remove rust-rocksdb dylib wrapper as we have a fork already * bump ring to 0.17.12 * dont build with zlib in the nix flake * fix TestFetchMessagesFromNonExistentRoom complement test * add missing target * dont send push notifications from ignored users PDUs * remove zlib as a default rocksdb compression option * reject device keys if they dont match user ID or device ID or are missing fields * bump rust-rocksdb and ruwuma * allow both lowercase and uppercase usernames to login * add val_size_hints on membership cfs (todo remove these anyways) * add more safety checks before allowing a room marked as forgotten * automatically forget rooms on leaving * switch to self-hosted ci runner, remove sudo usages * always run checks when building in nix (doCheck true) * delete snappy, bump rust-rocksdb, bump rocksdb to v9.10.0 again * remove nix run ci test as its covered by complement * refactor+fix various issues with regs/logins and admin user commands * bump nix lockfile, bump cargo.lock, bump ruwuma * run nightly cargo fmt again * ignore errors instead of expecting for state gathering * try bumping cache-nix-action to v6 * fix edition 2024 lints * try adding back some skipped complement tests * bump complement, actually run all tests * stop building mac binaries for now because of linker issues * run cargo fix for rust 2024 changes and rustfmt * bump nix lock, update to rust 2024 and 1.85.0 toolchain * increase compression levels for some column families again * Implement MSC3967, also fixes error when uploading keys in element * bump ruwuma * fix unsafe precondition violation * bump ruwuma * refactor spaces * better error logging on send_join response failure * bump ruma * optimize further into state-res with SmallString * larcen state-res from ruma * optimize with SmallString; consolidate related re-exports * add conf item to re-disable atomic flush * add state accessories for iterating state_keys of a type * add unconstrained feature to service worker * add tail-efficient logic extension * split spaces service * simplify client event endpoint * request auth media first * fix pdu add_relation() helper * join initial fetches in get_relations() * Fix in caddyfile guide * comment out borked ci thing for now ------------------------------------------------------------------- Sat Feb 08 22:11:53 UTC 2025 - mrueckert@suse.de - Update to version 0.5.0~rc3+git0.3b0d965a2: * add back --all-targets for clippy/all ci step * comment out gnu x86 from nix flake file ------------------------------------------------------------------- Sat Feb 08 01:09:34 UTC 2025 - mrueckert@suse.de - Update to version 0.5.0~rc3+git0.cfcd6eb1a: * bump ruwuma to stop erroring on empty push response body * add missing source OCI image label metadata * add --locked and --no-fail-fast to cargo test, add other feature test * bump rust-rocksdb * misc nix tweaks to maybe speedup ci * catch clippy lints for --no-default-features builds * fix warnings and errors when building with no features * bump db version to 17, cleanup, rerun old migrations for users who downgraded * add default systemd support for a TTY to use console mode from * add systemd unit logging mode ------------------------------------------------------------------- Sun Jan 19 15:10:43 UTC 2025 - Marcus Rueckert <mrueckert@suse.de> - initial package
