openSUSE Build Service

Overview Repositories Revisions Requests Users Attributes Meta

Revisions of dovecot23

Peter Varkoly (varkoly) accepted request 940830 from

Fabian Vogt (favogt) over 2 years ago (revision 100)

- Update dovecot-2.3.0-dont_use_etc_ssl_certs.patch to also adjust
  the path in the 10-ssl.conf example (boo#1193758)
- Rebase dovecot-2.3.0-better_ssl_defaults.patch

Marcus Rueckert (darix) accepted request 936363 from

Michael Ströder (stroeder) over 2 years ago (revision 99)

update to 2.3.17.1 and pigeonhole to 0.5.17.1

Marcus Rueckert (darix) accepted request 911327 from

Michael Ströder (stroeder) almost 3 years ago (revision 98)

update to 2.3.16 and pigeonhole to 0.5.16 with back-port fix for big-endian platforms

Marcus Rueckert (darix) committed almost 3 years ago (revision 97)

- use lua 5.1 for sle12

Marcus Rueckert (darix) accepted request 901209 from

Michael Ströder (stroeder) almost 3 years ago (revision 96)

- update to 2.3.15 and pigeonhole to 0.5.15:
  * security fixes for CVE-2021-29157, CVE-2021-33515, and CVE-2020-28200

FWIW: It seems to work for me on Tumbleweed x64_64.

buildservice-autocommit accepted request 893339 from

Dirk Mueller (dirkmueller) about 3 years ago (revision 95)

baserev update by copy to link target

Dirk Mueller (dirkmueller) accepted request 893083 from

Fabian Vogt (favogt) about 3 years ago (revision 94)

- Add patch to fix insecure default openssl.cnf (boo#1184552):
  * openssl-cnf-default_bits-2048.patch
- Use %autosetup

buildservice-autocommit accepted request 878317 from

Factory Maintainer (factory-maintainer) about 3 years ago (revision 93)

baserev update by copy to link target

Marcus Rueckert (darix) accepted request 876725 from

Michael Ströder (stroeder) about 3 years ago (revision 92)

- update to 2.3.14 and pigeonhole to 0.5.14
* removed obsolete fix-timeval_cmp_margin-for-32bit-systems.patch
Dovecot 2.3.14
* Added new aliases for some variables. Usage of the old ones is possible,
but discouraged. (These were partially added already to v2.3.13.)
See https://doc.dovecot.org/configuration_manual/config_file/config_variables/
for more information.
* Optimize imap/pop3/submission/managesieve proxies to use less CPU at
the cost of extra memory usage.
* Remove autocreate, expire, snarf and mail-filter plugins.
* Remove cydir storage driver.
* Remove XZ/LZMA write support. Read support will be removed in future release.
* doveadm -D: Add timestamps to debug output even when LOG_STDERR_TIMESTAMP
environment variable is not set. Timestamp format is taken from
log_timestamp setting.
* If BROKENCHAR or listescape plugin is used, the escaped folder names
may be slightly different from before in some situations. This is
unlikely to cause issues, although caching clients may redownload the
folders.
* imapc: It now enables BROKENCHAR=~ by default to escape remote folder
names if necessary. This also means that if there are any '~'
characters in the remote folder names, they will be visible as "~7e".
* imapc: When using local index files folder names were escaped on
filesystem a bit differently. This affects only if there are folder
names that actually require escaping, which isn't so common. The old
style folders will be automatically deleted from filesystem.
* stats: Update exported metrics to be compliant with OpenMetrics standard.
+ doveadm: Add an optional '-p' parameter to metadata list command. If
enabled, "/private", and "/shared" metadata prefixes will be prepended
to the keys in the list output.
+ doveconf: Support environment variables in config files. See
https://doc.dovecot.org/configuration_manual/config_file/config_file_syntax/#environment-variables
for more details.
+ indexer-worker: Change indexer to disconnect from indexer-worker
after each request. This allows service indexer-worker's service_count &
idle_kill settings to work. These can be used to restart indexer-worker
processes once in a while to reduce their memory usage.
- auth: "nodelay" with various authentication mechanisms such as apop
and digest-md5 crashed AUTH process if authentication failed.
- auth: Auth lua script generating an error triggered an assertion
failure: Panic: file db-lua.c: line 630 (auth_lua_call_password_verify):
assertion failed: (lua_gettop(script->L) == 0).
- configure: Fix libunwind detection to work on other than x86_64 systems.
- doveadm-server: Process could crash if logging was done outside command
handling. For example http-client could have done debug logging
afterwards, resulting in either segfault or Panic:
file http-client.c: line 642 (http_client_context_close):
assertion failed: (cctx->clients_list == NULL).
- dsync: Folder name escaping with BROKENCHAR didn't work completely
correctly. This especially caused problems with dsync-migrations using
imapc where some of the remote folder names may not have been accessible.
- dsync: doveadm sync + imapc doesn't always sync all mails when doing
an incremental sync (-1), which could lead to mail loss when it's used
for migration. This happens only when GUIDs aren't used (i.e.
imapc without imapc_features=guid-forced).
- fts-tika: When tika server returns error, some mails cause Panic:
file message-parser.c: line 802 (message_parser_deinit_from_parts):
assertion failed: (ctx->nested_parts_count == 0 || i_stream_have_bytes_left(ctx->input))
- lib-imap: imapc parsing illegal BODYSTRUCTUREs with NILs could have
resulted in crashes. This exposed that Dovecot was wrongly accepting
atoms in "nstring" handling. Changed the IMAP parsing to be more
strict about this now.
- lib-index: If dovecot.index.cache has corrupted message size, fetching
BODY/BODYSTRUCTURE may cause assert-crash:
Panic: file index-mail.c: line 1140 (index_mail_parse_body_finish):
assertion failed: (mail->data.parts != NULL).
- lib-index: Minor error handling and race condition fixes related to
rotating dovecot.index.log. These didn't usually cause problems,
unless the log files were rotated rapidly.
- lib-lua: Lua scripts using coroutines or lua libraries using coroutines
(e.g., cqueues) panicked.
- Message PREVIEW handled whitespace wrong so first space would get
eaten from between words.
- FTS and message PREVIEW (snippet) parsed HTML &entities case-sensitively.
- lib-mail: When max nested MIME parts were reached, IMAP BODYSTRUCTURE
was written in a way that may have caused confusion for IMAP clients
and also Dovecot itself when parsing it. The truncated part is now
written out using application/octet-stream MIME type.
- lib-oauth2: HS512 and HS384 JWT token algorithms crash when you try to
use them: Panic: file hmac.c: line 26 (hmac_init): assertion failed:
(meth->context_size <= MAC_MAX_CONTEXT_SIZE).
- event filters: NOT keyword did not have the correct associativity.
NOT a AND b were getting parsed as NOT (a AND b) instead of
(NOT a) AND b.
- Ignore ECONNRESET when closing socket. This avoids logging useless
errors on systems like FreeBSD.
- event filters: event filter syntax error may lead to Panic:
file event-filter.c: line 137 (event_filter_parse): assertion failed:
(state.output == NULL)
- lib: timeval_cmp_margin() was broken on 32-bit systems. This could
potentially have caused HTTP timeouts to be handled incorrectly.
- log: instance_name wasn't used as syslog ident by the log process.
- master: After a service reached process_limit and client_limit, it
could have taken up to 1 second to realize that more client connections
became available. During this time client connections could have been
unnecessarily rejected and a warning logged:
Warning: service(...): process_limit (...) reached, client connections are being dropped
- stats: Crash would occur when generating openmetrics data for metrics
using aggregating functions.
- stats: Event filters comparing against empty strings crash the stats
process.
Pigeonhole 0.5.14
* IMAP FILTER command: cmd-filter-sieve - Do not allow NIL as
script name argument.

buildservice-autocommit accepted request 869704 from

Christian Wittmer (computersalat) over 3 years ago (revision 91)

baserev update by copy to link target

Christian Wittmer (computersalat) accepted request 869119 from

Arjen de Korte (adkorte) over 3 years ago (revision 90)

- add BuildRequires openssl-devel >= 1.0.1
- add fix-timeval_cmp_margin-for-32bit-systems.patch
  Fix timeval_cmp_margin for 32-bit systems
  https://github.com/dovecot/core/pull/149

buildservice-autocommit accepted request 860321 from

Peter Varkoly (varkoly) over 3 years ago (revision 89)

baserev update by copy to link target

Peter Varkoly (varkoly) committed over 3 years ago (revision 88)

Remove not needed files

Peter Varkoly (varkoly) accepted request 860209 from

Arjen de Korte (adkorte) over 3 years ago (revision 87)

- update to 2.3.13 and pigeonhole to 0.5.13
  Dovecot 2.3.13
  * CVE-2020-24386: Specially crafted command can cause IMAP hibernate to
    allow logged in user to access other people's emails and filesystem
    information.
  * Metric filter and global event filter variable syntax changed to a
    SQL-like format. See
    https://doc.dovecot.org/configuration_manual/event_filter/
  * auth: Added new aliases for %{variables}. Usage of the old ones is
    possible, but discouraged.
  * auth: Removed RPA auth mechanism, SKEY auth mechanism, NTLM auth
    mechanism and related password schemes.
  * auth: Removed passdb-sia, passdb-vpopmail and userdb-vpopmail.
  * auth: Removed postfix postmap socket
  + auth: Added new fields for auth server events. These fields are now
    also available for all auth events. See
    https://doc.dovecot.org/admin_manual/list_of_events/#authentication-server
    for details.
  + imap-hibernate: Added imap_client_hibernated, imap_client_unhibernated
    and imap_client_unhibernate_retried events. See
    https://doc.dovecot.org/admin_manual/list_of_events/ for details.
  + lib-index: Added new mail_index_recreated event. See
    https://doc.dovecot.org/admin_manual/list_of_events/#mail-index-recreated
  + lib-sql: Support TLS options for cassandra driver. This requires
    cpp-driver v2.15 (or later) to work reliably.
  + lib-storage: Missing $HasAttachment / $HasNoAttachment flags are now
    added to existing mails if mail_attachment_detection_option=add-flags
    and it can be done inexpensively.
  + login proxy: Added login_proxy_max_reconnects setting (default 3) to
    control how many reconnections are attempted.

buildservice-autocommit accepted request 850665 from

Peter Varkoly (varkoly) over 3 years ago (revision 86)

baserev update by copy to link target

Peter Varkoly (varkoly) accepted request 850375 from

Guillaume GARDET (Guillaume_G) over 3 years ago (revision 85)

- Fix test on 32-bit:
  * dovecot-2.3.11.3-ftbfs1.patch
  * dovecot-2.3.11.3-ftbfs2.patch

buildservice-autocommit accepted request 849256 from

Peter Varkoly (varkoly) over 3 years ago (revision 84)

baserev update by copy to link target

Peter Varkoly (varkoly) accepted request 846304 from

Thorsten Kukuk (kukuk) over 3 years ago (revision 83)

- dovecot is already creating the user accounts, no need to duplicate
  the code as this package does not need them.
- Don't hard require systemd

buildservice-autocommit accepted request 834633 from

Marcus Rueckert (darix) over 3 years ago (revision 82)

baserev update by copy to link target

Marcus Rueckert (darix) accepted request 834577 from

Arjen de Korte (adkorte) over 3 years ago (revision 81)

- add dovecot-2.3.11.3-gssapi-nul.patch:
  Fix for bug introduced in v2.3.11.3. It appears GSSAPI can contain NUL.
  https://github.com/dovecot/core/pull/133

Displaying revisions 21 - 40 of 120

Places

Revisions of dovecot23

Places