File dovecot22.changes of Package dovecot22

-------------------------------------------------------------------
Mon Jun 15 15:14:57 UTC 2015 - mrueckert@suse.de

- added dovecot-2.2.18-better_ssl_defaults.patch: (boo #854512)
- set the default cipher suite to:
ALL:!aNULL:!eNULL:!EXPORT:!DES:!3DES:!MD5:!PSK:!RC4:!ADH:!LOW@STRENGTH
- disable not just SSLv2 by default but also SSLv3
- set default dh params length to 2048
- prefer server side cipher order
- disable compression
- dropped all config changing via sed and folded them into this
patch

Upgrade note: if you want to benefit from those changes you have
to merge your /etc/dovecot/conf.d/10-ssl.conf with
/usr/share/doc/packages/dovecot/example-config/conf.d/10-ssl.conf

-------------------------------------------------------------------
Mon Jun 15 11:22:01 UTC 2015 - mrueckert@suse.de

- added dovecot-2.2.18-dont_use_etc_ssl_certs.patch:
Remove all references /etc/ssl/certs/. It should not be used
anymore. (boo #932386)

Please make sure you read README.SUSE after installing this
update.

-------------------------------------------------------------------
Mon May 18 15:41:46 UTC 2015 - mrueckert@suse.de

- disable textcat support again it leads to unresolvable symbols
which look related to libstemmer

-------------------------------------------------------------------
Fri May 15 18:58:04 UTC 2015 - mrueckert@suse.de

- update to pigeonhole 0.4.8
+ LDA Sieve plugin: Dovecot changed the deliver_log_format
setting to include
%{delivery_time}. This prompted changes in Pigeonhole that make
%this release
dependent on Dovecot v2.2.17.
+ Implemented magic to make sieve_default script visible from
ManageSieve under a configurable name. This way, users can see
the default rules, edit them and store a private adjusted
version. This could also be achieved by copying the default
script into the user's script storage, but updates to the
global sieve_default script would be ignored that way.
+ ManageSieve: Implemented support for reporting command
statistics at disconnect. Statistics include the number of
bytes and scripts uploaded/ downloaded/checked and the number
of scripts deleted/renamed.
- Fixed problem in address test: erroneously decoded mime-encoded
words in address headers.
- extprograms plugin: Fixed failure occurring when connecting to
script service without the need to read back the output from
the external program.
- Fixed bug in script storage path normalization occurring with
relative symbolic links below root.
- Fixed and updated various parts of the documentation
- ManageSieve: Used "managesieve" rather than "sieve" as login
service name, which means that all managesieve-specific
settings where ignored.
- Managesieve: Storage quota was not always enforced properly for
scripts uploaded as quoted string. Nobody uses that, but it is
allowed in the specification and we support it, so it should
work properly.

-------------------------------------------------------------------
Fri May 15 11:51:41 UTC 2015 - mrueckert@suse.de

- update to 2.2.18
- director: Login UNIX sockets were normally detected as doveadm
or director ring sockets, causing it to break in existing
installations.
- sdbox: When copying a mail in alt storage, place the
destination to alt storage as well.
- drop dovecot-2.2-tip.patch and the buildrequires for the
autotools

-------------------------------------------------------------------
Thu May 14 21:37:23 UTC 2015 - mrueckert@suse.de

- added dovecot-2.2-tip.patch: update to tip of the 2.2 branch to
fix the testsuite
- temporary buildrequires on autotools

-------------------------------------------------------------------
Thu May 14 16:22:50 UTC 2015 - mrueckert@suse.de

- enable testsuite also for dovecot

-------------------------------------------------------------------
Thu May 14 04:49:05 UTC 2015 - mrueckert@suse.de

- only use ICU for newer distros as at least SLE 11 lacks ICU I18N

-------------------------------------------------------------------
Thu May 14 03:56:33 UTC 2015 - mrueckert@suse.de

- rework the full text search support a bit
- build with ICU and textcat support (for newer than 12.3)
- split out the fts plugin into a sub package as we pull more
dependencies now
- for consistency split out the squat plugin into a subpackage
too.
- Recommend the squat package from the main package for
consistency

-------------------------------------------------------------------
Thu May 14 03:20:18 UTC 2015 - mrueckert@suse.de

- update to 2.2.17
* Dovecot no longer checks or warns if a mountpoint is removed.
This was causing more trouble than it was worth. Make sure that
all the mountpoints that Dovecot accesses aren't writable by
mail processes when they're unmounted.
* dict server wasn't properly escaping/unescaping data. Fixing
this broke backwards compatibility with data that contains line
feeds. This hopefully affects only very few installations. If
you're using dict to save multiline data (Sieve scripts to
SQL), you may be affected.
* imap: SPECIAL-USE capability is no longer advertised if there
are no special_use flags specified for any mailboxes.
+ lmtp: Added lmtp_hdr_delivery_address setting to specify
whether to include email address in Delivered-To: and Received:
headers.
+ Added initial version of full text search library, which
includes language-specific text normalization and filtering.
This is still in development, but it's already possible to use
for testing with fts-lucene and fts-solr.
+ lda, lmtp: deliver_log_format can now include %{delivery_time},
which expands to how many milliseconds it took to deliver the
mail. With LMTP %{session_time} also expands to how many
milliseconds the LMTP session took, not including the delivery
time.
+ lmtp proxy: Mail delivery logging includes timing information.
+ imap: Most IMAP commands now include in the tagged reply how
many milliseconds it took to run the command (not counting the
time spent on waiting for the IMAP client to read/write data).
+ director: Implemented director_proxy_maybe passdb extra field
to be able to run director and backend in the same Dovecot
instance. (LMTP doesn't support mixed proxy/non-proxy
destinations currently.)
+ doveadm: Added -F <file> parameter to read a list of users from
the given file and run the command for all the users. This is
similar to -A parameter reading the list of users from userdb
lookup.
+ Implemented initial Cassandra CQL support as lib-sql backend.
It's only usable as dict backend currently.
+ Added quota-clone plugin to copy current quota usage to a dict.
- auth: If auth_master_user_separator was set, auth process could
be crashed by trying to log in with empty master username.
- imap-login, pop3-login: Fixed crash on handshake failures with
new OpenSSL versions (v1.0.2) when SSLv3 was disabled.
- auth: If one passdb fails allow_nets check, it shouldn't have
failed all the other passdb checks later on.
- imap: Server METADATA couldn't be accessed
- imapc: Fixed \Muted label handling in gmail-migration.
- imapc: Various bugfixes and improvements.
- Trash plugin fixes by Alexei Gradinari
- mbox: Fixed crash/corruption in some situations

-------------------------------------------------------------------
Thu Apr 23 23:29:43 UTC 2015 - mrueckert@suse.de

- enable lz4 on 13.2 and newer
- added cyrus-sasl-devel to enable sasl support for ldap

-------------------------------------------------------------------
Thu Apr 23 23:14:08 UTC 2015 - mrueckert@suse.de

- update to 2.2.16
* dbox: Resyncing (e.g. doveadm force-resync) no longer deletes
dovecot.index.cache file. The cache file was rarely the problem
so this just caused unnecessary slowness.
* Mailbox name limits changed during mailbox creation: Each part
of a hierarchical name (e.g. "x" or "y" in "x/y") can now be up
to 255 chars long (instead of 200). This also reduces the max
number of hierarchical levels to 16 (instead of 20) to keep the
maximum name length 4096 (a common PATH_MAX limit). The 255
char limit is hopefully large enough for migrations from all
existing systems. It's also the limit on many filesystems.
+ director: Added director_consistent_hashing setting to enable
consistent hashing (instead of the mostly-random MD5 hashing).
This causes fewer user moves between backends when backend
counts are changed, which may improve performance (mainly due
to caching).
+ director: Added support for "tags", which allows one director
ring to serve multiple backend clusters with different sets of
users.
+ LMTP server: Added lmtp_user_concurrency_limit setting to limit
how many LMTP deliveries can be done concurrently for a single
user.
+ LMTP server: Added support for STARTTLS command.
+ If logging data is generated faster than it can be written, log
a warning about it and show information about it in log
process's process title in ps output. Also don't allow a single
service to flood too long at the cost of delaying other
services' logging.
+ stats: Added support for getting global statistics.
+ stats: Use the same session IDs as the rest of Dovecot.
+ stats: Plugins can now create their own statistics fields
+ doveadm server: Non-mail related commands can now also be used
via doveadm server (TCP socket).
+ doveadm proxying: passdb lookup can now override doveadm_port
and change the username.
+ doveadm: Search query supports now "oldestonly" parameter to
stop immediately on the first non-match. This can be used to
optimize: doveadm expunge mailbox Trash savedbefore 30d
oldestonly
+ doveadm: Added "save" command to directly save mails to
specified mailbox (bypassing Sieve).
+ doveadm fetch: Added body.snippet field, which returns the
first 100 chars of a message without whitespace or HTML tags.
The result is stored into dovecot.index.cache, so it can be
fetched efficiently.
+ dsync: Added -t <timestamp> parameter to sync only mails newer
than the given received-timestamp.
+ dsync: Added -F [-]<flag> parameter to sync only mails
with[out] the given flag/keyword.
+ dsync: Added -a <mailbox> parameter to specify the virtual
mailbox containing user's all mails. If this mailbox is already
found to contain the wanted mail (by its GUID), the message is
copied from there instead of being re-saved. (This isn't
efficient enough yet for incremental replication.)
+ dsync: -m parameter can now specify \Special-use names for
mailboxes.
+ imapc: Added imapc_features=gmail-migration to help migrations
from GMail. See http://wiki2.dovecot.org/Migration/Gmail
+ imapc: Added imapc_features=search to support IMAP SEARCH
command. (Currently requires ESEARCH support from remote
server.)
+ expire plugin: Added expire_cache=yes setting to cache most of
the database lookups in dovecot index files.
+ quota: If overquota-flag in userdb doesn't match the current
quota usage, execute a configured script.
+ redis dict: Added support for expiring keys (:expire_secs=n)
and specifying the database number (:db=n)
- auth: Don't crash if master user login is attempted without any
configured master=yes passdbs
- Parsing UTF-8 text for mails could have caused broken results
sometimes if buffering was split in the middle of a UTF-8
character. This affected at least searching messages.
- String sanitization for some logged output wasn't done
properly: UTF-8 text could have been truncated wrongly or the
truncation may not have happened at all.
- fts-lucene: Lookups from virtual mailbox consisting of over 32
physical mailboxes could have caused crashes.
- update to dovecot-pigeonhole 0.4.7
* editheader extension: Made protection against addition and
deletion of headers configurable separately. Also, the
`Received' and `Auto-Submitted' headers are no longer protected
against addition by default.
* Turned message envelope address parse errors into warnings.
* The interpreter now accepts non-standard domain names, e.g.
containing '_'.
+ Implemented the Sieve index extension (RFC 5260).
+ Implemented support for the mboxmetadata and servermetadata
extensions (RFC 5490).
+ Implemented new sieve commands for the doveadm command line
utility. These commands are currently limited to ManageSieve
operations, but the other current sieve tools will be migrated
to doveadm in the near future as well.
+ Added more debug output about binary up-to-date checking.
+ Added script metadata to binary dump output.
- Fixed Sieve script binary up-to-date checking by normalizing
the script location.
- The Sieve interpreter now flushes the duplicate database during
start phase of result execution rather than commit phase. This
makes sure locks on the duplicate database are released as soon
as possible, preventing contention.
- Performed a few optimizations in the lexical scanner of the
language.
- Fixed bug in `:matches' match-type that made a pattern without
wildcards match as if there were a '*' at the beginning.
- Fixed crash in validation of the string parameter of the
comparator tag.
- extprograms extension: Made sure supplemental group privileges
are also dropped. This was a problem reported by Debian
lintian.
- Fixed bug in handling of binary errors for action side-effects
and message overrides.
- file script storage: Restructured storage initialization to
address backwards compatibility issues.
- dict script storage: Fixed small memory allocation bug.
- reordered files section a little

-------------------------------------------------------------------
Mon Dec 15 11:35:33 UTC 2014 - mrueckert@suse.de

- update to dovecot-pigeonhole 0.4.6
- After make distclean the distributed tarball would fail to
recompile. This causes problems for some distribution builds.
- changes in dovecot-pigeonhole 0.4.5
+ Added a Pigeonhole version banner to doveconf output. This way,
future bug reports will also include Pigeonhole version
information.
- Fixed handling of implicit keep. Last version erroneously
reported that implicit keep succeeded after an earlier failure,
while it in fact had failed. Particularly occurred for mailbox
quota errors.
- Fixed segfault occurring on SunOS systems when there is no
active script.
- changes in dovecot-pigeonhole 0.4.4
* Added support for Japanese mail addresses with dots at
non-standard places in localpart.
* Changed handling of ENOSPACE into a normal temporary failure
and added handling of ENOQUOTA as a user error.
* Restructured result execution, so that all actions which
involve mail storage are always committed before all others.
+ Implemented support for generic Sieve storages. Using
alternative storages now also possible for
sieve_before/sieve_after.
+ Implemented storage driver for retrieving Sieve scripts from
LDAP. This currently cannot be used with ManageSieve.
+ Implemented sieve_redirect_envelope_from setting, which allows
configuring the envelope sender of redirected messages.
- Fixed handling of mail storage errors occurring while
evaluating the input message.
- managesieve-login:
- Removed bogus ALERT response code returned for AUTHENTICATE
command.
- Fixed handling of invalid initial response argument to
AUTHENTICATE command.
- Fixed handling of stream errors in lexical scanner.
- Fixed handling of SMTP errors. Permanent and temporary errors
were mixed up.
- Fixed several problems reported by CLang 3.4.
- duplicate extension: Fixed erroneous compile error about
conflicting tags when `:handle' argument was used last.
- relational extension: Fixed error handling of `:value' match.
- editheader extension: Fixed header unfolding and header
iteration.
- mailbox extension: Fixed the `:create' tag, which erroneously
subscribed an existing folder.
- extprograms plugin: Fixed handling of error codes.
- doveadm-sieve plugin: Fixed several bugs. Synchronization of
symbolic link in the file storage should now also work
properly.
- drop dovecot-2.2-pigeonhole-0.4.3_adapt_to_2.2.15.patch:
included in release
- enable ldap storage for sieve scripts

-------------------------------------------------------------------
Sun Nov 09 03:27:00 UTC 2014 - Led <ledest@gmail.com>

- fix bashisms in pre script

-------------------------------------------------------------------
Sun Oct 26 23:32:45 UTC 2014 - mrueckert@suse.de

- update to version 2.2.15
* Plugins can now print a banner comment in doveconf output
(typically the plugin version)
* Replication plugin now triggers low (instead of high) priority
for mail copying operations.
* IMAP/POP3/ManageSieve proxy: If destination server can't be
connected to, retry connecting once per second up to the value
of proxy_timeout. This allows quick restarts/upgrades on the
backend server without returning login failures.
* Internal passdb lookups (e.g. done by lmtp/doveadm proxy)
wasn't returning failure in some situations where it should
have (e.g. allow_nets mismatch)
* LMTP uses mail_log_prefix now for logging mail deliveries
instead of a hardcoded prefix. The non-delivery log prefix is
still hardcoded though.
+ passdb allow_nets=local matches lookups that don't contain an
IP address (internally done by Dovecot services)
+ Various debug logging and error logging improvements
- Various race condition fixes to LAYOUT=index
- v2.2.14 virtual plugin crashed in some situations
- added dovecot-2.2-pigeonhole-0.4.3_adapt_to_2.2.15.patch
Adjusted to datastack-related changes in Dovecot lib-storage.
Patch can be removed when we upgrade to pigeonhole 0.4.4

-------------------------------------------------------------------
Wed Oct 15 13:54:53 UTC 2014 - mrueckert@suse.de

- update to version 2.2.14
* lmtp: Delivered-To: header no longer contains <> around the
email address. Other MDAs don't have it either.
* "Out of disk space" errors are now treated as temporary errors
(not the same as "Out of disk quota").
* replication plugin: Use replication only for users who have a
non-empty mail_replica setting.
+ lmtp proxy: Log a line about each mail delivery.
+ Added login_source_ips setting. This can be used to set the
source IP address round-robin from a pool of IPs (in case you
run out of TCP ports).
+ Rawlog settings can use tcp:<host>:<port> as the path.
+ virtual plugin: Don't keep more than virtual_max_open_mailboxes
(default 64) number of backend mailboxes open.
+ SSL/TLS compression can be disabled with
ssl_options=no_compression
+ acl: Global ACL file now supports "quotes" around patterns.
+ Added last-login plugin to set user's last-login timestamp on
login.
+ LDAP auth: Allow passdb credentials lookup also with
auth_bind=yes
- IMAP: MODSEQ was sent in FETCH reply even if CONDSTORE/QRESYNC
wasn't enabled. This broke at least old Outlooks.
- passdb static treated missing password field the same as an
empty password field.
- mdbox: Fixed potential infinite looping when scanning a broken
mdbox file.
- imap-login, pop3-login: Fixed potential crashes when client
disconnected unexpectedly.
- imap proxy: The connection was hanging in some usage patterns.
This mainly affected older Outlooks.
- lmtp proxy: The proxy sometimes delivered empty mails in error
situations or potentially delivered truncated mails.
- fts-lucene: If whitespace_chars was set, we may have ended up
indexing some garbage words, growing the index size
unnecessarily.
- -c and -i parameters for dovecot/doveadm commands were ignored
if the config socket was readable.
- quota: Quota recalculation didn't include INBOX in some setups.
- Mail headers were sometimes added to dovecot.index.cache in
wrong order. The main problem this caused was with dsync+imapc
incremental syncing when the second sync thought the local
mailbox had changed.
- Fixed several race conditions with dovecot.index.cache handling
that may have caused unnecessary "cache is corrupted" errors.
- doveadm backup didn't notice if emails were missing from the
middle of the destination mailbox. Now it deletes and resyncs
the mailbox.
- auth: If auth client listed userdb and disconnected before
finishing, the auth worker process got stuck (and eventually
all workers could get used up and requests would start
failing).
- update dovecot pigeonhole to 0.4.3
* Editheader extension: Made control characters allowed for
editheader, except NUL. Before, this would cause a runtime
error.
+ Upgraded Dovecot-specific Sieve "vnd.dovecot.duplicate"
extension to match the new draft "duplicate" extension.
- Fixed sieve_result_global_log_error to log only as i_info in
administrator log (syslog) if executed from multiscript
context.
- Sieve redirect extension: Adjusted loop detection to show
leniency to resent messages.
- Sieve include extension: Fixed problem with handling of
duplicate includes with different parameters :once or
:optional.
- Sieve spamtest/virustest extensions: Tests were erroneously
performed against the original message. When used together with
extprograms filter to add the spam headers, the changes were
not being used by the spamtest and virustest extensions.
- Deprecated Sieve notify extension: Fixed segfault problems in
message string substitution.
- ManageSieve: Fixed active link verification to handle redundant
path slashes correctly.
- Sieve vacation extension:
- Fixed interaction of sieve_vacation_dont_check_recipient with
sieve_vacation_send_from_recipient setting.
- Fixed log message for discarded response.
- Sieve extprograms plugin:
- Forgot to disable the alarm() timeouts set for script
execution.
- Fixed fd leak and handling of output shutdown.
- Fixed 'Bad filedescriptor' error occurring when disconnecting
script client.
- Made sure that programs are never forked with root
privileges.

-------------------------------------------------------------------
Thu Sep 11 11:40:28 UTC 2014 - mrueckert@suse.de

- also track the config files from the sieve support in the %ghost

-------------------------------------------------------------------
Thu Sep 11 11:09:41 UTC 2014 - mrueckert@suse.de

- for the mysql subpackage use the really provided symbol and not
just part of the package name.

-------------------------------------------------------------------
Wed Sep 10 15:45:52 UTC 2014 - mrueckert@suse.de

- fix typo in conflicts: s/otherprovider/otherproviders/

-------------------------------------------------------------------
Wed Sep 10 10:51:45 UTC 2014 - mrueckert@suse.de

- while technically not needed, adding back conflicts on
otherprovider(subpackage)

-------------------------------------------------------------------
Tue Sep 9 10:18:05 UTC 2014 - mrueckert@suse.de

- add all dovecot-*.configfiles as sources

-------------------------------------------------------------------
Mon Sep 8 23:42:19 UTC 2014 - mrueckert@suse.de

- dont ghost the whole /etc/dovecot. on older rpms the directory is
not created in that case. we only ghost /etc/dovecot/* and have a
%dir entry for /etc/dovecot.

-------------------------------------------------------------------
Mon Sep 8 22:24:22 UTC 2014 - mrueckert@suse.de

- dont try to delete systemd files when not building with systemd.

-------------------------------------------------------------------
Mon Sep 8 20:14:32 UTC 2014 - mrueckert@suse.de

- also add dovecot config files for the other 2.x branches

-------------------------------------------------------------------
Mon Sep 8 14:35:56 UTC 2014 - mrueckert@suse.de

- finally found a way to preserve the configuration even over
version updates.
- have the same ghosting loop in this package as in the
unversioned package
- that way the config files are owned by oth and upgrading to a
newer version of dovecot e.g. 2.3 would also not kill the
config anymore as before.

-------------------------------------------------------------------
Fri Sep 5 19:04:10 UTC 2014 - mrueckert@suse.de

- added back the old style conflicts to make upgrading easier
- moved copying of the config to the unversioned package

-------------------------------------------------------------------
Fri Sep 5 18:23:46 UTC 2014 - mrueckert@suse.de

- move the copy part to %postun for handling the upgrading more
graceful.

-------------------------------------------------------------------
Fri Sep 5 17:36:38 UTC 2014 - mrueckert@suse.de

- we really need the %posttrans for reinstalling the same package

-------------------------------------------------------------------
Fri Sep 5 17:03:33 UTC 2014 - mrueckert@suse.de

- no longer obsolete older packages. module packages require
their base package with version. the main package has a conflicts
on other providers of dovecot-implementation.

-------------------------------------------------------------------
Fri Sep 5 16:15:14 UTC 2014 - mrueckert@suse.de

- guard the new %pre/%post snippets against missing dovecot package

-------------------------------------------------------------------
Fri Sep 5 16:06:18 UTC 2014 - mrueckert@suse.de

- fix https://bugzilla.redhat.com/show_bug.cgi?id=134325:
dovecot should be shut down before exchanging files.

-------------------------------------------------------------------
Fri Sep 5 11:02:25 UTC 2014 - mrueckert@suse.de

- remove all the init script related scripts from this package.
that we we can break the build cycle more easily.
- copy the example config in post.

-------------------------------------------------------------------
Fri Sep 5 10:45:17 UTC 2014 - mrueckert@suse.de

- split out all the things we can share with other versioned
dovecot packages.

-------------------------------------------------------------------
Thu Sep 4 15:45:02 UTC 2014 - mrueckert@suse.de

- no longer obsolete/provide dovecot
- provide dovecot-implementation

-------------------------------------------------------------------
Tue Jul 29 16:00:28 UTC 2014 - mrueckert@suse.de

- use xz-devel to fix build on SLE 11 SP3

-------------------------------------------------------------------
Tue Jul 29 14:28:04 UTC 2014 - mrueckert@suse.de

- only build clucene for sle 11 or newer

-------------------------------------------------------------------
Tue Jul 29 14:21:20 UTC 2014 - mrueckert@suse.de

- don't package /var/run on systemd systems

-------------------------------------------------------------------
Tue Jul 29 14:06:35 UTC 2014 - mrueckert@suse.de

- only lzma support on sle 11 or newer

-------------------------------------------------------------------
Tue Jul 29 13:44:20 UTC 2014 - mrueckert@suse.de

- moved all the conditionals in the spec file to bcond_with
- added new conditinal for lz4
- enabled lzma support
- fixed systemd support:
- added tmpfiles.d config for dovecot
- only install the old init script on non systemd systems.
- updated %pre*/%post scriptlets to the previous change
- added dovecot-rpmlintrc to sources list

-------------------------------------------------------------------
Tue Jul 29 11:50:16 UTC 2014 - varkoly@suse.com

- bnc#889030 - Package 'dovecot22' contains 'SuSE' spelling in a filename and/or SPEC file
- Enhance Readme.SUSE with informations about using dovecot with
postfix on SLE12

-------------------------------------------------------------------
Mon May 12 09:48:45 UTC 2014 - alexandre@exatati.com.br

- Update to 2.2.13:
- Security release:
Fixes CVE-2014-3430 (bnc#877255, rh#1096402).
* Fixed a DoS attack against imap/pop3-login processes. If SSL/TLS
handshake was started but wasn't finished, the login process
attempted to eventually forcibly disconnect the client, but failed
to do it correctly. This could have left the connections hanging
arond for a long time. (Affected Dovecot v1.1+)
+ mdbox: Added mdbox_purge_preserve_alt setting to keep the file
within alt storage during purge. (Should become enforced in v2.3.0?)
+ fts: Added support for parsing attachments via Apache Tika. Enable
with: plugin { fts_tika = http://tikahost:9998/tika/ }
+ virtual plugin: Delay opening backend mailboxes until it's necessary.
This requires mailbox_list_index=yes to work. (Currently IMAP IDLE
command still causes all backend mailboxes to be opened.)
+ mail_never_cache_fields=* means now to disable all caching. This may
be a useful optimization as doveadm/dsync parameter for some admin
tasks which shouldn't really update the cache file.
+ IMAP: Return SPECIAL-USE flags always for LSUB command.
- pop3 server was still crashing in v2.2.12 with some settings
- maildir: Various fixes and improvements to handling compressed mails,
especially when they have broken/missing S=sizes in filenames.
- fts-lucene, fts-solr: Fixed crash on search when the index contained
duplicate entries.
- Many fixes and performance improvements to dsync and replication
- director was somewhat broken when there were exactly two directors
in the ring. It caused errors about "weak users" getting stuck.
- mail_attachment_dir: Attachments with the last base64-encoded line
longer than the rest wasn't handled correctly.
- IMAP: SEARCH/SORT PARTIAL was handled completely wrong in v2.2.11+
- acl: Global ACL file handling was broken when multiple entries
matched the mailbox name. (Only the first entry was used.)

-------------------------------------------------------------------
Thu Feb 13 21:53:06 UTC 2014 - alexandre@exatati.com.br

- Update to 2.2.12:
- POP3 server code changes rarely, so I haven't spent time adding
automated testing for it. So of course now that it changed in
v2.1.11 there was a bug that caused it to crash most of the
time (except for the test case I was using while developing
it). This release fixes it, no other changes.

-------------------------------------------------------------------
Wed Feb 12 23:17:20 UTC 2014 - varkoly@suse.com

- Add conflicts to the spec file

-------------------------------------------------------------------
Wed Feb 12 21:07:23 UTC 2014 - alexandre@exatati.com.br

- Update to 2.2.11:
+ acl plugin: Added an alternative global ACL file that can contain
mailbox patterns. See http://wiki2.dovecot.org/ACL for details.
+ imap proxy: Added proxy_nopipelining passdb setting to work around
other IMAP servers' bugs (MS Exchange 2013 especially).
+ Added %{auth_user}, %{auth_username} and %{auth_domain} variables.
See http://wiki2.dovecot.org/Variables for details.
+ Added support for LZ4 compression.
+ stats: Track also wall clock time for commands.
+ pop3_migration plugin improvements to try harder to match the UIDLs
correctly.
- imap: SEARCH/SORT PARTIAL reponses may have been too large.
- doveadm backup: Fixed assert-crash when syncing mailbox deletion.

-------------------------------------------------------------------
Fri Dec 20 11:00:39 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.10:
+ auth: passdb/userdb dict rewrite to support much more complex
setups. See doc/example-config/dovecot-dict-auth.conf.ext.
The old settings will continue to work.
+ auth: Added userdb result_success/failure/tempfail and skip
settings, similar to passdb's. See
http://wiki2.dovecot.org/UserDatabase
+ imap: Implemented SETQUOTA command for admin user when quota_set is
configured. See http://master.wiki2.dovecot.org/Quota/Configuration
+ quota: Support "*" and "?" wildcards in mailbox names in quota_rules
+ mysql: Added ssl_verify_server_cert=no|yes parameter. This currently
defaults to "no" to make sure nothing breaks, but likely will become
"yes" in Dovecot v2.3.
+ ldap: Added blocking=yes setting to use auth worker processes for
ldap lookups. This is a workaround for now to be able to use multiple
simultaneous LDAP connections.
+ pop3c+dsync performance improvements
- quota-status: quota_grace was ignored
- ldap: Fixed memory leak with auth_bind=yes and without
auth_bind_userdn.
- imap: Don't send HIGHESTMODSEQ anymore on SELECT/EXAMINE when
CONDSTORE/QRESYNC has never before been enabled for the mailbox.
- imap: Fixes to handling mailboxes without permanent modseqs.
(When [NOMODSEQ] is returned by SELECT, mainly with in-memory
indexes.)
- imap: Various fixes to METADATA support.
- stats plugin: Processes that only temporarily dropped privileges
(e.g. indexer-worker) may have been logging errors about not being
able to open /proc/self/io.

-------------------------------------------------------------------
Mon Nov 25 02:50:00 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.9:
+ Full text search indexing can now be done automatically after
saving/copying mails by setting plugin { fts_autoindex=yes }
+ replicator: Added replication_dsync_parameters setting to pass
"doveadm sync" parameters (for controlling what to replicate).
+ Added mail-filter plugin
+ Added liblzma/xz support (zlib_save=xz)
- v2.2.8's improved cache file handling exposed several old bugs
related to fetching mail headers.
- v2.2.7's iostream handling changes were causing some connections
to be disconnected before flushing their output (e.g. POP3 logout
message wasn't being sent)

-------------------------------------------------------------------
Wed Nov 20 10:47:01 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.8:
+ Mail cache lookups work for the mail being saved. This improves
performance by avoiding the need to parse the mail multiple times
when using some plugins (e.g. mail_log).
+ Mail cache works for recently cached data also with in-memory
indexes.
+ imapc: Many performance improvements, especially when working with
dsync. Also added imapc_feature=fetch-headers which allows using
FETCH BODY.PEEK[HEADER.FIELDS (..)] to avoid reading the entire
header.
+ mail_location = ..:FULLDIRNAME=dbox-Mails is the same as
:DIRNAME=dbox-Mails, but it will also be used for
:INDEX and :CONTROL directories. (It should have worked this way
from the beginning, but can't be changed anymore without breaking
existing installations).
- Fixed infinite loop in message parsing if message ends with
"--boundary" and CR (without LF). Messages saved via SMTP/LMTP can't
trigger this, because messages must end with an "LF.". A user could
trigger this for him/herself though.
- lmtp: Client was sometimes disconnected before all the output was
sent to it.
- imap_zlib plugin caused crashes during client disconnection in
v2.2.7
- replicator: Database wasn't being exported to disk every 15 minutes
as it should have. Instead it was being imported, causing "doveadm
replicator remove" commands to not work very well.

-------------------------------------------------------------------
Tue Nov 5 03:12:46 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.7:
* Some usage of passdb checkpassword could have been exploitable by
local users. You may need to modify your setup to keep it working.
See http://wiki2.dovecot.org/AuthDatabase/CheckPassword#Security
+ auth: Added ability to truncate values logged by
auth_verbose_passwords (see 10-logging.conf comment)
+ mdbox: Added "mdbox_deleted" storage, which can be used to access
messages with refcount=0. For example: doveadm import
mdbox_deleted:~/mdbox "" mailbox inbox subject oops
+ ssl-params: Added ssl_dh_parameters_length setting.
- master process was doing a hostname.domain lookup for each created
process, which may have caused a lot of unnecessary DNS lookups.
- dsync: Syncing over 100 messages at once caused problems in some
situations, causing messages to get new UIDs.
- fts-solr: Different Solr hosts for different users didn't work.

-------------------------------------------------------------------
Wed Oct 9 15:14:07 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.6:
* acl: If public/shared namespace has a shared subscriptions file for
all users, don't list subscription entries that are not visible to
the user accessing it.
+ doveadm: Added "auth lookup" command for doing passdb lookup.
+ login_log_format_elements: Added %{orig_user}, %{orig_username}
and %{orig_domain} expanding to the username exactly as sent by
the client (before any changes auth process made).
+ Added ssl_prefer_server_ciphers setting.
+ auth_verbose_passwords: Log the password also for unknown users.
+ Linux: Added optional support for SO_REUSEPORT with
inet_listener { reuse_port=yes }
- director: v2.2.5 changes caused "SYNC lost" errors
- dsync: Many fixes and error handling improvements
- doveadm -A: Don't waste CPU by doing a separate config lookup
for each user
- Long-running ssl-params process no longer prevents Dovecot restart
- mbox: Fixed mailbox_list_index=yes to work correctly
- Update Pigeonhole to 0.4.2:
* Incompatible change in Sieve doveadm plugin: the root attribute for
Sieve scripts is changed. Make sure that you update both sides of a
dsync setup simultaneously when Sieve is involved, otherwise
synchronization will likely fail.
+ Added support for sending Sieve vacation replies with an actual
sender, rather than the default <> sender. Check the updated
doc/extensions/vacation.txt for more information.
- Fixed a binary code read problem in the `set' command of the Sieve
variables extension. Using the set command with a modifier and an
empty string value would cause code corruption problems while running
the script.
- Various fixes for doveadm-sieve plugin, mostly crashes. These include
a fix for the `Invalid value for default sieve attribute' problem.
- Various fixes for compiler and static analyzer warnings, e.g. as
reported by CLang and on 32 bit systems.
- Fixed the implementation of the new :options flag for the Sieve
include extension.
- Fixed potential segfault bug at deinitialization of the lda-sieve
plugin.
- Fixed messed up hex output for sieve-dump tool.

-------------------------------------------------------------------
Wed Aug 14 05:47:21 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.5:
+ SSL: Added support for ECDH/ECDHE cipher suites (by David Hicks)
+ Added some missing man pages (by Pascal Volk)
+ quota-status: Added quota_status_toolarge setting (by Ulrich Zehl)
- director: Users near expiration could have been redirected to
different servers at the same time.
- pop3: Avoid assert-crash if client disconnects during LIST.
- mdbox: Corrupted index header still wasn't automatically fixed.
- dsync: Various fixes to work better with imapc and pop3c storages.
- ldap: sasl_bind=yes caused crashes, because Dovecot's lib-sasl
symbols conflicted with Cyrus SASL library.
- imap: Various error handling fixes to CATENATE. (Found using
Apple's stress test script.)

-------------------------------------------------------------------
Wed Jul 3 21:25:06 UTC 2013 - alexandre@exatati.com.br

- Update Pigeonhole to 0.4.1:
+ Added support for handling temporary failures. These are passed back
to LDA/LTMP to produce an appropriate response towards the MTA.
- Sieve storage: Removed PATH_MAX limitation for active symlink. This
caused problems for GNU/Hurd.
- Fixed line endings in X-Sieve headers added by redirect command.
- ManageSieve: Fixed '[' ']' stupidity for response codes (only
happened before login).
- Fixed setting name in example-config/conf.d/20-managesieve.conf.
- Sieve extprograms plugin: Fixed interaction between pipe command and
remote script service. The output from the script service was never
read, causing a broken pipe error at the script service. Apparently,
this was broken since the I/O handling for extprograms was last
revised.
- Fixed assertion failure due to datastack problem in message header
composition.

-------------------------------------------------------------------
Tue Jun 25 04:27:13 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.4:
+ doveadm: Added "flags" command to modify message flags.
+ doveadm: Added "deduplicate" command to expunge message duplicates.
+ dsync: Show the state in process title with verbose_proctitle=yes.
- imap/pop3 proxy: Master user logins were broken in v2.2.3
- sdbox/mdbox: A corrupted index header with wrong size was never
automatically fixed in v2.2.3.
- mbox: Fixed assert-crashes related to locking.

-------------------------------------------------------------------
Mon Jun 17 02:13:21 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.3:
This is a pretty important upgrade for v2.2 users, because of the IMAP
ENVELOPE reply fix.
* LDA/LMTP: If new mail delivery first fails with "temporary
failure", tempfail the whole delivery instead of falling back to
delivering the mail to INBOX. (Requires new Pigeonhole as well.)
* doc/solr-schema.xml was updated to Solr v4.x format. Also the
default analyzers were changed, hopefully for the better. Note that
the schema can't be changed for existing Solr indexes without
rebuilding everything.
* Solr plugin does only soft commits from now on. You'll need a
cronjob to send a hard commit command to it every few minutes.
+ Added %N modifier for variables as %H-like "new hash"
+ sdbox, mdbox: Support POP3 message order field (for migrations)
+ Added mailbox { driver } to specify a different mail storage
format for the mailbox than generally used within the namespace.
+ Added initial lib-sasl library for client side SASL support.
Currently supports only PLAIN, LOGIN and plugins. Used currently
by IMAP and POP3 proxying when authenticating to the remote server.
- IMAP: If subject contained only whitespace, Dovecot returned an
ENVELOPE reply with a huge literal value, effectively causing the
IMAP client to wait for more data forever.
- IMAP: Various URLAUTH fixes.
- imapc: Various bugfixes and improvements
- pop3c: Various fixes to make it work in dsync (without imapc)
- dsync: Fixes to syncing subscriptions. Fixes to syncing mailbox
renames.

-------------------------------------------------------------------
Sat Jun 15 21:11:31 UTC 2013 - wr@rosenauer.org

- reenable sieve/pigeonhole extension
- conflict with otherproviders(dovecot) instead of explicit
package names

-------------------------------------------------------------------
Mon May 20 02:45:13 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.2:
+ zlib: Keep the last mail cached uncompressed in a temp file. This
fixes performance when doing small partial fetches from a large
mail.
+ acl: If plugin { acl_defaults_from_inbox = yes } is set, get the
default ACLs for private and shared namespaces from the user's INBOX.
(This probably will become default in v2.3.)
+ pop3: Added pop3_deleted_flag setting to switch POP3 deletions to
only hide the messages from POP3, but still be visible via IMAP.
- ACL plugin: Mailbox creation wasn't actually checking any ACLs
and always succeeded (due to some v2.2 API changes). The created
mailbox couldn't have been accessed though, so this couldn't have
caused any data leak.
- IMAP: Various URLAUTH fixes.
- IMAP: Fixed a hang with invalid APPEND parameters.
- IMAP LIST-EXTENDED: INBOX was never listed with \Subscribed flag.
- mailbox_list_index=yes still caused crashes.
- maildir: Fixed a crash after dovecot-keywords file was re-read.
- maildir: If files had reappeared unexpectedly to a Maildir, they
were ignored until index files were deleted.
- Maildir: Fixed handling over 26 keywords in a mailbox.
- Maildir++: Fixed mail_shared_explicit_inbox=no
- namespace { prefix="" list=no } was listing mailboxes.
- imap/pop3-login proxying: Fixed a crash if TCP connection succeeded,
but the remote login timed out.
- Case-insensitive search/sort didn't work correctly for all unicode
characters, as specified by i;unicode-casemap comparator. If full
text search indexes were used, they need to be rebuilt for old mails
to be handled correctly. (This bug has existed always in Dovecot.)

-------------------------------------------------------------------
Thu May 9 17:25:00 UTC 2013 - alexandre@exatati.com.br

- Update Pigeonhole to 0.4.0:
+ Added doveadm-sieve plugin that provides the possibility to sync
Sieve scripts using doveadm sync along with the user's mailboxes.
+ Added the Sieve extprograms plugin to the main Pigeonhole package. It
is still a plugin, but it is now included so that a separate compile
is no longer necessary and distributors are likely to include it. The
extprograms plugin provides Sieve language extensions that allows
executing (administrator-controlled) external programs for message
delivery, message filtering and string manipulation. Refer to
doc/plugins/sieve_extprograms.txt for more information.
+ Added debug message showing Pigeonhole version at initialization.
Makes it very clear that the plugin is properly loaded.
+ Finished implementation of the Sieve include extension. It should now
fully conform to RFC 6609. The main addition is the new :optional tag
which makes the include command ignore missing included scripts
without an error.
+ Finished implementation of the Sieve environment extension as much as
possible. Environment items "location", "phase" and "domain" now also
return a usable value.

-------------------------------------------------------------------
Thu Apr 18 21:49:06 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.1:
- mailbox_list_index=yes was broken.
- LAYOUT=index didn't list subscriptions.
- auth: Multiple master passdbs didn't work.
- Message parsing (e.g. during search) crashed when multipart
message didn't actually contain any parts.

-------------------------------------------------------------------
Fri Apr 12 17:40:59 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.0:
* When creating home directories, the permissions are copied from the
parent directory if it has setgid-bit set. For full details, see
http://wiki2.dovecot.org/SharedMailboxes/Permissions
* "doveadm auth" command was renamed to "doveadm auth test"
* IMAP: ID command now advertises server name as Dovecot by default.
It was already trivial to guess this from command replies.
* dovecot.index.cache files can be safely accessed only by v2.1.11+.
Older versions may think they're corrupted and delete them.
* LDA/LMTP: If saving a mail brings user from under quota to over
quota, allow it based on quota_grace setting (default: 10%
above quota limit).
* pop3_lock_session=yes now uses a POP3-only dovecot-pop3-session.lock
file instead of actually locking the mailbox (and causing
IMAP/LDA/LMTP to wait for the POP3 session to close).
* mail_shared_explicit_inbox setting's default switched to "no".
* ssl_client_ca_dir setting replaced imapc_ssl_ca_dir and
pop3c_ssl_ca_dir settings.
+ Implemented IMAP MOVE and BINARY extensions
+ Implemented IMAP CATENATE, URLAUTH and URLAUTH=BINARY extensions
(by Stephan Bosch).
+ Implemented IMAP NOTIFY extension. Requires mailbox_list_index=yes
to be enabled.
+ Redesigned and rewritten dsync. The new design makes the syncing
faster, more reliable and more featureful. The new dsync protocol
isn't backwards compatible with old dsync versions (but is designed
to be forwards compatible with future versions).
+ All mailbox formats now support per-user message flags for shared
mailboxes by using a private index. It can be enabled by adding
:INDEXPVT=<path> to mail location. This should be used instead of
:INDEX also for Maildir/mbox to improve performance.
+ Improved mailbox list indexes. They should be usable now, although
still disabled by default.
+ Added LAYOUT=index. The mailbox directories are created using their
GUIDs in the filesystem, while the actual GUID <-> name mapping
exists only in the index.
+ LMTP proxy: Implemented XCLIENT extension for passing remote IP
address through proxy.

-------------------------------------------------------------------
Thu Apr 11 16:18:42 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.rc7:
* checkpasword: AUTH_PASSWORD environment is no longer set.
* Running dsync no longer triggers quota warnings.
+ dsync: Commit large transactions every 100 new messages, so if a
large sync crashes it doesn't have to be restarted from the
beginning.
- replicator: doveadm commands and user list export may have skipped
some users.
- Various fixes to mailbox_list_index=yes

-------------------------------------------------------------------
Sun Apr 7 23:57:16 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.rc6:
* replicator: Don't create replicator-doveadm socket by default.
This way doveadm replicator commands don't accidentally start an
unconfigured replicator server.
+ replicator: Have remote dsync notify the remote replicator that
a user was just synced. This way the replicators are kept roughly
in sync.
+ Added ssl_client_ca_file to specify the CA certs as a file. This is
needed (instead of ssl_client_ca_dir) in RedHat-based systems.
+ Added "doveadm fs" commands, mainly to debug lib-fs backends.
- Mailbox list indexes weren't using proper file permissions based
on the root directory.

-------------------------------------------------------------------
Fri Apr 5 18:11:38 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.rc5:
One more API change that required also a Pigeonhole modification.
A few other random fixes. I'm planning on making v2.2.0 release
on Monday.
Please test before that. :)

-------------------------------------------------------------------
Fri Apr 5 03:10:28 UTC 2013 - alexandre@exatati.com.br

- Update to rc4:
A lot of small random fixes. Some last minute major cleanups/fixes to
lib-http and lib-ssl-iostream error handling, which makes them much
easier to debug if something goes wrong (so e.g. if https site has
invalid certificate, the caller gets error message saying that,
including the part of the cert that couldn't be validated).

I don't have anything important left in my v2.2 TODO. It passes all my
tests. So I'm hoping for v2.2.0 release any day now.

+ Added "doveadm replicator" commands
- Larger changes to lib-http and lib-ssl-iostream error handling.
The API caller can now get the exact error message as a string.
- Various bugfixes to LDAP changes in rc3

-------------------------------------------------------------------
Thu Mar 21 02:19:42 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.rc3:
+ dsync: Support syncing ACLs (and Sieve scripts with Pigeonhole)
+ ldap: Support subqueries and value pointers, see
http://wiki2.dovecot.org/AuthDatabase/LDAP/Userdb
+ postmaster_address setting: Expand %d to recipient's domain
- Fixed a crash when decoding quoted-printable content.
- dsync: Various bugfixes

-------------------------------------------------------------------
Tue Feb 26 01:19:15 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.rc2:
- A few fixes since beta2. Also added tcp and tcps (=tcp+ssl)
targets for dsync, where the destination needs to be a
doveadm-server listener.

-------------------------------------------------------------------
Fri Feb 22 17:02:02 UTC 2013 - alexandre@exatati.com.br

- Update to 2.2.beta2:
- A ton of fixes since beta1. Especially the new dsync and the
replication server related to that should really work now. It
also works correctly now for shared mailboxes with private
\Seen flags. And the replication server uses incremental
syncing after the initial full sync, so it should be pretty
efficient also.

-------------------------------------------------------------------
Wed Jan 9 10:52:25 UTC 2013 - alexandre@exatati.com.br

- Start packaging dovecot22 series using dovecot21 (at 2.1.13) spec
file as base;
- Start dovecot22 with dovecot-2.2.beta1.

Places

File dovecot22.changes of Package dovecot22

Places