Hi all,

I'm an Admin for a larger than SMB company.  They've been asking for an internal IM system, and based on my testing, this looks like a really powerful option!  Something I could probably influence a contribution to.

One no-so-minor item that I noticed right away during my multi-endpoint testing is, when I update one client's status, it doesn't seem to update other clients with the new status ("Free to Chat," "Away" "Do not disturb," etc.)  I have to assume that Spark is either slow-polling or OpenFire is using some stateful connection...not sure which, but either way, it would be very valuable if said status would be updated pretty regularly, and I don't think it should be difficult to implement.

Just a suggestion,

Kendell

After download the new version, do I  just go ahead to install the new exe file? What files need to be backed up before install the new exe file? Thank you!

hi,

I have trouble with using Openfire server with ZOM messenger.

Server 1 - Openfire 4.1.2 on ubuntu

Server 2 - ejabberd 17.03 on ubuntu

Client 1 - ZOM android

Client 2 - freelab messenger (it's conversations messenger 1.13.8 version)

Client 3 - ZOM iOS

TEST 1) Connecting to Server 1 with,

     Client 1 is fail, Client 2 is fail, Client 3 is success.

TEST 2) Connecting to Server 2 with,

     Client 1 is success, Client 2 is success, Client 3 is success.

So, I thought some problem is in Openfire server and packet captured with wireshark sniffer to case T1 as (Server 1, Client 1) and T2 as (Server 1, Client 2).

Both T1 and T2 showed that ZOM and freelab messenger hang on when connecting is established and start using TLSv1.2 protocol. 

Capture image attached. At end of list, it's going hang. no more packets between Openfire and ZOM, freelab.

I have tested Server 2 with Client 1, they also used TLSv1.2 protocol and worked well.

I don't know what the root cause is, Openfire or Client messenger ?

Need help. Thank you.

Hello everyone,

I am new in this forum but today i have a problem with my openfire Chat Server on Windows Server 2008 R2.

I am using Mysql Database on Xampp Software

In the new Fresh Installation on Windows, i don't know what's Current Password i will put to going in the final step

Can anyone to help me what can i do to fix the problem.

P.S: The same problem they are on the Ubuntu Server. On the linux i am using Apache2 Software to configuration the Openfire Server but again not working.

This started today no user can login

Invalid Username or password

This is the warn.log of spark

mar 04, 2017 10:04:45 PM org.jivesoftware.spark.util.log.Log warning

WARNING: Exception in Login:

SASL authentication PLAIN failed: not-authorized:

  at org.jivesoftware.smack.SASLAuthentication.authenticate(SASLAuthentication.java: 342)

  at org.jivesoftware.smack.XMPPConnection.login(XMPPConnection.java:243)

  at org.jivesoftware.LoginDialog$LoginPanel.login(LoginDialog.java:1056)

  at org.jivesoftware.LoginDialog$LoginPanel.access$1400(LoginDialog.java:303)

  at org.jivesoftware.LoginDialog$LoginPanel$4.construct(LoginDialog.java:835)

  at org.jivesoftware.spark.util.SwingWorker$2.run(SwingWorker.java:141)

  at java.lang.Thread.run(Unknown Source)

This is the warn.log of openfire

2017.03.04 21:17:16 org.jivesoftware.openfire.http.HttpSessionManager - HttpSessionManager.init() recreate sendPacketPool

2017.03.04 21:17:35 org.jivesoftware.admin.LoginLimitManager - Failed admin console login attempt by spark from 10.10.6.65

2017.03.04 21:19:32 org.jivesoftware.openfire.http.HttpSessionManager - HttpSessionManager.init() recreate sendPacketPool

2017.03.04 21:19:43 org.jivesoftware.admin.LoginLimitManager - Failed admin console login attempt by spark from 10.10.6.65

2017.03.04 21:19:49 org.jivesoftware.admin.LoginLimitManager - Failed admin console login attempt by spark from 10.10.6.65

2017.03.04 21:32:26 org.jivesoftware.openfire.http.HttpSessionManager - HttpSessionManager.init() recreate sendPacketPool

2017.03.04 21:38:23 org.jivesoftware.admin.LoginLimitManager - Failed admin console login attempt by spark from 10.10.6.65

2017.03.04 21:43:40 org.jivesoftware.admin.LoginLimitManager - Failed admin console login attempt by ragundez from 10.10.4.15

2017.03.04 21:43:47 org.jivesoftware.admin.LoginLimitManager - Failed admin console login attempt by spark from 10.10.4.15

2017.03.04 21:50:27 org.jivesoftware.openfire.http.HttpSessionManager - HttpSessionManager.init() recreate sendPacketPool

2017.03.04 22:00:26 org.jivesoftware.openfire.http.HttpSessionManager - HttpSessionManager.init() recreate sendPacketPool

This is the error.log of openfire

2017.03.04 21:56:47 org.jivesoftware.openfire.pubsub.PubSubPersistenceManager - ConnectionManager.getConnection() failed to obtain a connection after 11 retries. The exception from the last attempt is as follows: com.mysql.jdbc.exceptions.jdbc4.CommunicationsException: Communications link failure

The last packet sent successfully to the server was 0 milliseconds ago. The driver has not received any packets from the server.

java.sql.SQLException: ConnectionManager.getConnection() failed to obtain a connection after 11 retries. The exception from the last attempt is as follows: com.mysql.jdbc.exceptions.jdbc4.CommunicationsException: Communications link failure

The last packet sent successfully to the server was 0 milliseconds ago. The driver has not received any packets from the server.

  at org.jivesoftware.database.DbConnectionManager.getConnection(DbConnectionManager .java:152)

  at org.jivesoftware.database.DbConnectionManager.getTransactionConnection(DbConnec tionManager.java:165)

  at org.jivesoftware.openfire.pubsub.PubSubPersistenceManager.purgeItems(PubSubPers istenceManager.java:1867)

  at org.jivesoftware.openfire.pubsub.PubSubPersistenceManager.shutdown(PubSubPersis tenceManager.java:1942)

  at org.jivesoftware.openfire.pubsub.PubSubEngine.shutdown(PubSubEngine.java:1797)

  at org.jivesoftware.openfire.pubsub.PubSubModule.stop(PubSubModule.java:467)

  at org.jivesoftware.openfire.XMPPServer.shutdownServer(XMPPServer.java:995)

  at org.jivesoftware.openfire.XMPPServer.access$800(XMPPServer.java:148)

  at org.jivesoftware.openfire.XMPPServer$ShutdownHookThread.run(XMPPServer.java:941 )

Добрый день.

Коллеги, есть ли альтернатива Import Export Plugin`а?

Переезжаю с 3 на 4 версию, на 4й версии плагин не работает(bug report открыт ранее).

Hello, my Openfire was out of date, and i recently did update to last version, 4.1.3, and on start up of the Openfire services, it show this "Exception errors" in this two plugins. The question is, may they don't have updates anymore, so don't work properly? so if is this, how to uninstall those guys?

Clients are Spark and in the last versions.

Hello,
My colleauges at Cisco inc. have discovered an XML External Entity Injection against a plugin of Openfire.How do wish to proceed? Is it prefereable that I simply post the details of the advisory here or should we establish an alernate communication route.

Thank you

Bom Dia

Tenho um ambiente com o OpenFire instalado e configurado atraves de Active Directory com nome a.local. A empresa adquiriu recentemente uma empresa, com seu Active Diretory próprio, b.local, e foi fechado uma VPN site-to-site e relacao de confianca entre ADs entre as duas empresas.

Dentro desse cenário é possivel fazer com que os usuarios da empresa B autentiquem no openfire da empresa A? Como configurar isso?

Ou teria que instalar um OpenFire na Empresa B e configurar uma comunicacao entre os dois openfire? Isso é possivel?

Alguem teria uma solucao para esse ambiente?

Att. Luiz

Obs: Uma solucao paliativa seria criar os mesmos usuarios da empresa B no AD da empresa A e apontar o servidor de autenticacao do Spark para a empresa, mas daí bate em um problema que ao trocar as senhas na empresa B o usuario pode esquecer a senha que autentica no Spark....

Eu tentei criar um grupo de DominioLocal no dominio da empresa A e colocar os usuarios da Empresa B dentro dele, mas o OpenFire nao enxerga os usuarios da empresa B, somente da empresa A.

Hello everyone !

Tell me please, how to configure openfire for  using one account on two different devices at the same time for example windows client spark and mobile device with IM client. Is it possible??

Good Morning

I have an OpenFire environment installed and configured through Active Directory named a.local. The company recently acquired a company, with its own Active Directory, b.local, and closed a site-to-site VPN and trusted relationship between ADs between the two companies.

Within this scenario is it possible to have the users of company B authenticate the openfire of company A? How to configure this?

Or would you have to install an OpenFire in Enterprise B and set up a communication between the two openfire? It is possible?

Would anyone have a solution for this environment?

Att Luiz

Note: A palliative solution would be to create the same users of company B in company A's AD and point the Spark authentication server to the company, but then it hits a problem that when changing the passwords in company B the user can forget the password Which authenticates in Spark ....

  I tried to create a Local Domain group in domain of company A and put the users of Company B inside it, but OpenFire does not see the users of company B, only of company A.

Hello.

This morning when we came in nobody can log into spark, even those that have had their passwords saved and should be able to automatically log in. Says their passwords are incorrect.

So I tried going into the openfire admin console. After clicking "Login" it doesn't do anything for a while, and then on the openfire console window I get this:

Database setup or configuration error: Please verify your database settings and check the logs/error.log file for detailed error messages.

java.lang.IllegalArgumentException: java.sql.SQLException: ConnectionManager.getConnection() failed to obtain a connection after 11 retries. The exception from the last attempt is as follows: java.sql.SQLException: Network error IOExceptioEn: Connection timed out: conrnect

  at org.jivesoftware.openfire.XMPPServer.verifyDataSource(XMPPServer.java:770)

  at org.jiveorfostware.openfire.XMPPServer.start(XMPPeSr starting the server. Please check the log files for more inforartvmoire.n.java:486)

  at org.jivesoftware.openfire.XMPPServer.<init>(XMPPServer.java:216)

a

t sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)

  at sun.reflect.NativeConstructorAccessorImpl.newInstance(Unknown Source)

  at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(Unknown Source)

  at java.lang.reflect.Constructor.newInstance(Unknown Source)

  at java.lang.Class.newInstance(Unknown Source)

  at org.jivesoftware.openfire.starter.ServerStarter.start(ServerStarter.java:113)

  at org.jivesoftware.openfire.starter.ServerStarter.main(ServerStarter.java:58)

  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)

  at sun.reflect.NativeMethodAccessorImpl.invoke(Unknown Source)

  at sun.reflect.DelegatingMethodAccessorImpl.invoke(Unknown Source)

  at java.lang.reflect.Method.invoke(Unknown Source)

  at com.exe4j.runtime.LauncherEngine.launch(Unknown Source)

  at com.exe4j.runtime.WinLauncher.main(Unknown Source)

  at com.install4j.runtime.launcher.WinLauncher.main(Unknown Source)

Caused by: java.sql.SQLException: ConnectionManager.getConnection() failed to obtain a connection after 11 retries. The exception from the last attempt is as follows: java.sql.SQLException: Network error IOException: Connection timed out: connect

  at org.jivesoftware.database.DbConnectionManager.getConnection(DbConnectionManager .java:151)

  at org.jivesoftware.openfire.XMPPServer.verifyDataSource(XMPPServer.java:760)

  ... 16 more

Server halted

Please help? My OpenFire version is 3.9.1. Thank you!

Onde consigo baixar a versão do Spark 2.7.7 para Windows?

I'm sorry if this has been answered already, I've looked through about a dozen or more threads and still haven't found anything yet. I upgraded from 3.9.3 to 4.1.3 on Windows with the built in JRE. Per the other threads, I've tried uninstalling and reinstalling every which way while making sure services are stopped beforehand and nothing is working.

HTTP ERROR 500 Problem accessing /index.jsp.

Reason:    Server Error Caused by:

javax.servlet.ServletException: java.lang.NoSuchMethodError: org.jivesoftware.openfire.spi.ConnectionManagerImpl.getSocketAcceptor()Lorg/apa che/mina/transport/socket/nio/SocketAcceptor; at org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl .java:905) at org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.j ava:834) at org.jivesoftware.openfire.admin.index_jsp._jspService(index_jsp.java:803) at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70) at javax.servlet.http.HttpServlet.service(HttpServlet.java:790) at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:812) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1669) at com.opensymphony.module.sitemesh.filter.PageFilter.parsePage(PageFilter.java:11 8) at com.opensymphony.module.sitemesh.filter.PageFilter.doFilter(PageFilter.java:52) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1652) at org.jivesoftware.util.LocaleFilter.doFilter(LocaleFilter.java:76) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1652) at org.jivesoftware.util.SetCharacterEncodingFilter.doFilter(SetCharacterEncodingF ilter.java:53) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1652) at org.jivesoftware.admin.PluginFilter.doFilter(PluginFilter.java:226) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1652) at org.jivesoftware.admin.AuthCheckFilter.doFilter(AuthCheckFilter.java:165) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1652) at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:585) at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:577) at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:22 3) at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:11 27) at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:515) at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:185 ) at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:106 1) at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) at org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandler Collection.java:215) at org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.jav a:110) at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:97) at org.eclipse.jetty.server.Server.handle(Server.java:499) at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:311) at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:257) at org.eclipse.jetty.io.AbstractConnection$2.run(AbstractConnection.java:544) at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:635 ) at org.eclipse.jetty.util.thread.QueuedThreadPool$3.run(QueuedThreadPool.java:555) at java.lang.Thread.run(Unknown Source) Caused by: java.lang.NoSuchMethodError: org.jivesoftware.openfire.spi.ConnectionManagerImpl.getSocketAcceptor()Lorg/apa che/mina/transport/socket/nio/SocketAcceptor; at org.jivesoftware.openfire.admin.index_jsp._jspService(index_jsp.java:130) ... 34 more

Caused by:

java.lang.NoSuchMethodError: org.jivesoftware.openfire.spi.ConnectionManagerImpl.getSocketAcceptor()Lorg/apa che/mina/transport/socket/nio/SocketAcceptor; at org.jivesoftware.openfire.admin.index_jsp._jspService(index_jsp.java:130) at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70) at javax.servlet.http.HttpServlet.service(HttpServlet.java:790) at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:812) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1669) at com.opensymphony.module.sitemesh.filter.PageFilter.parsePage(PageFilter.java:11 8) at com.opensymphony.module.sitemesh.filter.PageFilter.doFilter(PageFilter.java:52) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1652) at org.jivesoftware.util.LocaleFilter.doFilter(LocaleFilter.java:76) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1652) at org.jivesoftware.util.SetCharacterEncodingFilter.doFilter(SetCharacterEncodingF ilter.java:53) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1652) at org.jivesoftware.admin.PluginFilter.doFilter(PluginFilter.java:226) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1652) at org.jivesoftware.admin.AuthCheckFilter.doFilter(AuthCheckFilter.java:165) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.ja va:1652) at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:585) at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:577) at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:22 3) at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:11 27) at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:515) at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:185 ) at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:106 1) at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) at org.eclipse.jetty.server.handler.ContextHandlerCollection.handle(ContextHandler Collection.java:215) at org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.jav a:110) at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:97) at org.eclipse.jetty.server.Server.handle(Server.java:499) at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:311) at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:257) at org.eclipse.jetty.io.AbstractConnection$2.run(AbstractConnection.java:544) at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:635 ) at org.eclipse.jetty.util.thread.QueuedThreadPool$3.run(QueuedThreadPool.java:555) at java.lang.Thread.run(Unknown Source) Powered by Jetty://

Hi,

I'm currently having a problem with Openfire 4.1.1.

My Nessus scan is showing the following vulnerabilty:

The remote Extensible Messaging and Presence Protocol (XMPP) service supports one or more authentication mechanisms that allow credentials to be sent in the clear.

My problem is that Plain text authentication is enabledeven if i set StartTLS policy to Required for Client Connections Settings.

How to disable cleatext authentication mechanisms?

Thanks!

No more secure https

I have a very serious SSL issue after renewing my SSL certificates(Since Feb 2017, before it was fine). I cannot have a https connection as soon as i import my Go Daddy or Letsencrypt cert.

I have called Go Daddy but on their side, it is fine, it is app related

I dig pretty much to understand the issue comparing what is working and what is not

So far as soon as i import my Cert within the console : Usually this works fine Except with new certificates

I did some trace with openssl :

relevant message i capture with command : openssl s_client -connect webrtc.free-solutions.org:443 -state -debug

SSL_connect:SSLv3 read server certificate A

SSL3 alert write:fatal:decrypt error

SSL_connect:error in SSLv3 read server key exchange B

SSL_connect:error in SSLv3 read server key exchange B

140353089410976:error:0407006A:rsa routines:RSA_padding_check_PKCS1_type_1:block type is not 01:rsa_pk1.c:100:

140353089410976:error:04067072:rsa routines:RSA_EAY_PUBLIC_DECRYPT:padding check failed:rsa_eay.c:797:

140353089410976:error:1408D07B:SSL routines:SSL3_GET_KEY_EXCHANGE:bad signature:s3_clnt.c:1833:

I have updated all packages including OS, java, compil of openssl, all to latest version but no sucess, still no https so my site is down, worse scenario

Technical configuration :

OS : CentOS Linux release 7.3.1611 (Core)

Java : java version "1.8.0_121"

Openfire : 4.1.3

openSSL : OpenSSL 1.1.0e  16 Feb 2017

I made a detailed comparison of my 2 Openfires, test.free-solutions.org (Certificate 6 Jan 2017, All OKI still work); server webrtc.free-solutions.org : https : KO

See PDF attached for a detailled SSL analysis

Attachements :

• WORKS FINE(Not renewd yet) CompleteSSL Server Test_ test.free-solutions_ALLOKI_Oldcert.pdf 
• DOES NOT WORK : SSL-KO webrtc.free-solutions_certificate_renewed.pdf

Questions :

• Is there any applicable workarround or suggestion to fix this ? / I am totally stuck & down
• Do you face same problem ? I saw while googling several similar issues on other packages
  • This look similar to this issue for radius pkg
• do i need a signed DSA cert now ? it was working without till renewal

Scope : Not sure if i am the only case out there, potentially a big problem for many of us. No more https after cert exp, that the risk

Hey guys, question for ya i currently have 4.1.1 version of openfire and i have option of upgrading to 4.1.2 and 4.1.3 do i need to go in order or can i jump to 4.1.3 from 4.1.1 ? thanks

Hi all,

An Openfire SSO has been setup using examples from  28 Steps to Single Sign On for Openfire XMPP Server on Windows Server 2012 R2 with Spark  and a Spark client can connect successfully to the Openfire server using SSO. However, something odd happens after Windows 10 OS decides to go into the lock screen. It seems that the Spark client cannot re-login again using SSO .

Here are the debug logs shown:

Debug is true storeKey false useTicketCache true useKeyTab false doNotPrompt true ticketCache is null isInitiator true KeyTab is null refreshKrb5Config is true principal is null tryFirstPass is false useFirstPass is false storePass is false clearPass is false

Refreshing Kerberos configuration

        Acquire TGT from Cache

        Principle is null

        null credentials from Ticket Cache

[Krb5LoginModule] authentication failed

        Unable to obtain Principal Name for authentication

I then signed out of the Windows account and signed in again. After which, the Spark client can re-login using SSO. Anyone knows if this is the intended behavior?

Has anyone also encountered this issue before and managed to fix it?

Regards,

Johnny.

My company needs to open a new account for spark or openfire. Who do I contact and how do I do it?

Hi all,

We experienced a situation where our production Openfire instances crash out with a java.lang.OutOfMemoryError: Metaspace after a few days of operation. We use Openfire 3.10.2 with Java 8 in CentOS 6.8 servers. However, our tests show that this issue is reproducible in Openfire 4.0.4 as 4.1.1. Strangely, we do not see this error when running same Openfire versions under Java 7.

To replicate this issue, I made a simple client application that makes a number of simultaneous connections to Openfire through via ordinary sockets, joins a MUC room, posts a message and sits there. Once all the client connections have joined the room, and after a few seconds, all client connections are closed. When this process is repeated over a period of time, we see Openfire throwing out an Metaspace OOM error. I monitored Openfire Metaspace via VisualVM where I noticed usage grows continuously without any GC. I limited the amount Metaspace memory allocated to the JVM to reproduce the error sooner, but provided sufficient space for normal operations. However, with the same amount memory given to PermGen under Java 7 GC occurs as expected, and therefore there is no OOM error.

I have attached the simple test harness to reproduce. Please rebuild this Maven project as run as follows:

    java -jar target/openfire-memory-leak-trigger-1.0.jar <host> <port> <xmpp-domain> <muc-service> <muc-room> <session-count>

where <session-count> is the number of clients to connect and join the room. Make sure the <muc-service> and <muc-room> are created prior to running this code. Also, the credentials used to login is admin/admin, which are hard coded.

I executed the code with the following arguments:

   java -jar target/openfire-memory-leak-trigger-1.0.jar chat20.cloud.internal 5222 chat conference.chat beach 200

The Openfire configuration used in my tests are:

1. CentOS 6.8 / Oracle Java Hostspot 64-bit server VM - 1.8.0_92

2. Openfire 4.1.1 installed using official RPM but I removed the "jre" folder after installation. Fresh database on MySQL and created a room called "beach". Room properties are:

3. No plugins / I removed the "search" plugin

4. Added these JVM options OPENFIRE_OPTS environment variable.

export OPENFIRE_OPTS="-Xmx320M -Xms320M -XX:MaxMetaspaceSize=38500K -XX:+PrintGCDetails -XX:+PrintGCDateStamps -XX:+PrintTenuringDistribution -XX:+PrintPromotionFailure -XX:+HeapDumpOnOutOfMemoryError -Xloggc:/opt/openfire/logs/gc.log -Dcom.sun.management.jmxremote.port=4444 -Dcom.sun.management.jmxremote.ssl=false -Dcom.sun.management.jmxremote.authenticate=false"

Steps to reproduce are:

1. Launch Openfire after configuring OPENFIRE_OPTS as above

2. Connect VisualVM via JMX port 4444 (optional)

3. Login to Openfire Admin console.

4. Run the attached test harness with the appropriate command line arguments as noted above

5. Leave the harness running until Openfire throws out OutOfMemoryError: Metaspace. In my environment it took about 15 minutes with the Metaspace limit set to 38500K. Ideally you should not navigate to any other pages of the Admin console as it will require more Metaspace memory that what is specified above. The error should look like this:

java.lang.OutOfMemoryError: Metaspace

Dumping heap to java_pid22090.hprof ...

Heap dump file created [30859822 bytes in 0.334 secs]

Here are some screenshots of VisualVM taken during my tests:

Unfortunately, due to limitation of VisualVM we are unable to look at classes that accumulate in the Metaspace area. Perhaps another tool like AppDynamics would be more useful in this regard.

I have attached two zip files. One has the test harness code which is easily built using Maven. The other is a heap dump at the time OOM took place, if that's helpful.

We would greatly appreciate if someone could look into this issue or provide some insights. We are very keen to run our production Openfire servers with Java 8.

Cheers,

Luki