Hello community, here is the log from the commit of package dovecot checked in at Mon Jul 10 16:13:17 CEST 2006. -------- --- dovecot/dovecot.changes 2006-05-25 08:52:52.000000000 +0200 +++ dovecot/dovecot.changes 2006-07-10 14:47:21.000000000 +0200 @@ -1,0 +2,102 @@ +Wed Jun 28 03:18:54 CEST 2006 - mrueckert@suse.de + +- Update to version 1.0.rc2: + * disable_plaintext_auth=yes: Removed hardcoded 127.* and ::1 IP + checks. Now we just assume that the connection is secure if the + local IP matches the remote IP address. + * SSL code rewrite which hopefully makes it work better than before. + Seems to work correctly, but if you suddently have trouble with SSL + connections this is likely the reason. + + verbose_ssl=yes: Log also SSL alerts and BIO errors + - If namespace's location field wasn't set, the default location + was supposed to be used but it wasn't. + - When copying ssl-parameters.dat file from /var/lib to /var/run its + permissions went wrong if it couldn't be copied with hard linking. + - Fixed filesystem quota plugin to work with BSDs. + - Maildir: Saving mails didn't work if quota plugin was enabled (again) + - Maildir: Messages' received time wasn't saved properly when + saving/copying multiple messages at a time. Also if using quota + plugin the S= size was only set for the first saved file, and even + that was wrong. + - passdb passwd-file: Don't require valid uid/gid fields if file + isn't also being used as a userdb. + - PostgreSQL: Handle failures better so that there won't be + "invalid fd" errors in logs. + - Don't try to expunge messages if the mailbox is read-only. It'll + just cause our index files to go out of sync with the real + mailbox and cause errors. + - ANONYMOUS authentication mechanism couldn't work because + anonymous_username setting wasn't passed from master process. + +------------------------------------------------------------------- +Wed Jun 28 03:18:54 CEST 2006 - mrueckert@suse.de + +- Update to version 1.0.rc1: + * PAM: If user's password is expired, give "Password expired" error + message to the user. Now actually working thanks to Vaidas Pilkauskas + * Relicensed dovecot-auth, lib-sql and lib-ntlm to MIT license. See + COPYING file for more information. + * Abuse prevention: When creating a mailbox, limit the number of + hierarchies (up to 20) and the length of the mailbox name within + a hierarchy (up to 200 characters). + * mbox: If saved mail doesn't end with LF, add it ourself so that the + mails always have one empty line before the next From-line. + + + Added --with-statedir configure option which defaults to + $localstatedir/lib/dovecot. ssl-parameters.dat is permanently + stored in that directory and is copied to login_dirs from there. + + IMAP: Support SASL-IR extension (SASL initial response) + + Support initial SASL response with LOGIN mechanism. Patch by Anders + Karlsson + + Added PLAIN-MD4 password scheme. Patch by Andrey Panin. + + Added support for XFS disk quotas. Patch by Pawel Jarosz + + If another process deletes the opened mailbox, try to handle it + without writing errors to log file. Handles the most common cases. + + Added TLS support for LDAP if the library supports it. + - SEARCH command was more or less broken with OR and NOT conditions + - Dovecot corrupted mbox files which had CR+LF linefeeds in headers + - MySQL code could have crashed while escaping strings + - MD4 code with NTLM authentication was broken with 64bit systems. + Patch by Andrey Panin + - Plugin loading was broken in some OSes (eg. FreeBSD) + - Several fixes to handling empty values in configuration file + - Several fixes to dictionary quota backend and dict server. + Also changed how they're configured. + - deliver: Fixed plugin handling settings + - mbox_min_index_size handling was somewhat broken + - passdb passwd-file: extra_args field wasn't read unless the file + was also used as userdb. + +- Addtional changes from v1.0.beta9: + * PAM: Don't call pam_setcred() unless setcred=yes PAM passdb + argument was given. + * Moved around settings in dovecot-example.conf to be in more logical + groups. + + + Local delivery agent (deliver binary) works again. + + LDAP: Added support for SASL binding. Patch by Geert Jansen + + ssl_verify_client_cert: Check CRLs. If auth_verbose=yes, log + invalid sent certificates. If verbose_ssl=yes, log even the valid + certificates. When using the username from the certificate, use + CommonName. Based on patch by HenkJan Wolthuis + + PAM: Set PAM_TTY which is needed by some PAM plugins + + dovecot --exec-mail ext <binary path> can now be used to start + binaries which want dovecot.conf to be read, for example the + convert-tool. + - Expunging needed to be done twice if client used STORE +FLAGS.SILENT + command to set the \Deleted flags + - Added sql_escape_string() to lib-sql API and use it instead of + normal \-escaping. + - ACL plugin fixes + - DIGEST-MD5: Trying to use subsequent authentication crashed + dovecot-auth. + - Fetching BODY when BODYSTRUCTURE was already cached caused the + reply to be broken in some cases + - Lots of fixes for index file handling + - dbox fixes and changes + - mbox syncing broke if some extraneous/broken headers were removed + (eg. extra X-IMAPbase headers in mails) + - Running Dovecot from inetd work now properly with POP3 + - Quota plugin fixes for calculating the quota correctly + +------------------------------------------------------------------- Old: ---- dovecot-1.0.beta6_pie.patch dovecot-1.0.beta8.tar.gz dovecot-lda.tar.bz2 New: ---- dovecot-1.0.cvs_pie.patch dovecot-1.0.rc2.tar.gz dovecot-sieve.cvs_pie.patch dovecot-sieve.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ dovecot.spec ++++++ --- /var/tmp/diff_new_pack.0GwfBL/_old 2006-07-10 16:10:56.000000000 +0200 +++ /var/tmp/diff_new_pack.0GwfBL/_new 2006-07-10 16:10:56.000000000 +0200 @@ -1,5 +1,5 @@ # -# spec file for package dovecot (Version 1.0.beta8) +# spec file for package dovecot (Version 1.0.rc2) # # Copyright (c) 2006 SUSE LINUX Products GmbH, Nuernberg, Germany. # This file and all modifications and additions to the pristine @@ -11,23 +11,36 @@ # norootforbuild Name: dovecot -Version: 1.0.beta8 +%define makeinstall make install DESTDIR=%{buildroot} +%define pkg_name dovecot +Version: 1.0.rc2 Release: 1 # Group: Productivity/Networking/Email/Servers License: LGPL, X11/MIT # BuildRoot: %{_tmppath}/%{name}-%{version}-build -BuildRequires: krb5-devel mysql-devel openldap2 openldap2-devel pam-devel pkgconfig postgresql-devel sqlite-devel +BuildRequires: mysql-devel openldap2 openldap2-devel pam-devel pkgconfig postgresql-devel sqlite-devel +%if 0%{?suse_version} +%if 0%{?suse_version} < 1000 +BuildRequires: heimdal-lib +%else +BuildRequires: krb5-devel +%endif +%else +BuildRequires: krb5-devel +%endif Prereq: /usr/sbin/useradd, /usr/sbin/usermod, /usr/sbin/groupadd +Conflicts: dovecot-snapshot # URL: http://www.dovecot.org -Source: http://www.dovecot.org/test/%{name}-%{version}.tar.gz -Source1: dovecot-lda.tar.bz2 -Source2: %{name}.init -Source3: %{name}.pam -Source4: %{name}.README.SuSE -Patch9: dovecot-1.0.beta6_pie.patch +Source: http://www.dovecot.org/test/%{pkg_name}-%{version}.tar.gz +Source1: dovecot-sieve.tar.bz2 +Source2: %{pkg_name}.init +Source3: %{pkg_name}.pam +Source4: %{pkg_name}.README.SuSE +Patch: dovecot-1.0.cvs_pie.patch +Patch1: dovecot-sieve.cvs_pie.patch # Summary: IMAP and POP3 Server Written Primarily with Security in Mind @@ -48,155 +61,262 @@ %prep %setup -a 1 -%patch9 -%{__sed} -i -e 's|#ssl_disable = no|ssl_disable = yes|' %{name}-example.conf -%{__sed} -i -e 's|/usr/libexec|%{_libdir}|g' %{name}-example.conf +%patch +%patch1 +%{__sed} -i -e 's|#ssl_disable = no|ssl_disable = yes|' %{pkg_name}-example.conf +%{__sed} -i -e 's|/usr/libexec|%{_libdir}|g' %{pkg_name}-example.conf %build -%if %suse_version < 1001 - export CFLAGS="%{optflags} -DLDAP_DEPRECATED" -%else - export CFLAGS="%{optflags} -DLDAP_DEPRECATED -fstack-protector" +export CFLAGS="%{optflags} -g -DLDAP_DEPRECATED" +%if 0%{?suse_version} > 1000 + export CFLAGS="$CFLAGS -fstack-protector" %endif -autoreconf -fi +#./autogen.sh +aclocal +autoheader +libtoolize --force +automake --add-missing +autoconf %configure \ - --enable-ipv6 \ -%if %suse_version < 1001 - --with-notify=dnotify \ -%else - --with-notify=inotify \ -%endif - --with-ioloop=poll \ + --sysconfdir=%{_sysconfdir}/%{pkg_name} \ + --libexecdir=%{_prefix}/lib \ + --with-moduledir=%{_libdir}/%{pkg_name}/modules \ + --with-ioloop=best \ + --with-notify=auto \ + --with-static-userdb \ + --with-prefetch-userdb \ + --with-storages="maildir,mbox" \ --with-ldap \ + --with-sql \ --with-pgsql \ --with-mysql \ --with-sqlite \ --with-ssl=openssl \ --with-gssapi \ - --enable-pie \ - --with-static-userdb \ - --with-prefetch-userdb \ - --with-storages="maildir,mbox" \ - --sysconfdir=%{_sysconfdir}/%{name} \ - --libexecdir=%{_prefix}/lib/ \ - --with-moduledir=%{_libdir}/%{name}/modules -%{__make} -pushd dovecot-lda - autoreconf -fi + --with-deliver \ + --enable-ipv6 \ + --enable-pie +make +pushd dovecot-sieve + ./autogen.sh + # work around for the broken CFLAGS in the libsieve package + %if 0%{?sles_version} > 0 + export CFLAGS="$CFLAGS -fPIC -DPIC" + %endif %configure \ - --with-dovecot=../ \ - --sysconfdir=%{_sysconfdir}/%{name} \ + --sysconfdir=%{_sysconfdir}/%{pkg_name} \ --libexecdir=%{_prefix}/lib/ \ - --with-moduledir=%{_libdir}/%{name}/modules - %{__make} + --with-moduledir=%{_libdir}/%{pkg_name}/modules \ + --with-dovecot=../ \ + --enable-pie + ln -fsv ../ylwrap ylwrap + make popd %install -%makeinstall docdir=%{_docdir}/%{name} +%makeinstall docdir=%{_docdir}/%{pkg_name} -%makeinstall -C dovecot-lda docdir=%{_docdir}/%{name} -find %{buildroot}%{_libdir}/%{name}/modules/ -type f -name \*.la -print0 | xargs -r0 rm -v -find %{buildroot}%{_libdir}/%{name}/modules/ -type f -name \*.a -print0 | xargs -r0 rm -v -%{__install} -m 0755 -d \ - %{buildroot}%{_sysconfdir}/init.d \ - %{buildroot}%{_sysconfdir}/pam.d \ - %{buildroot}%{_var}/run/%{name}/login \ - %{buildroot}%{_var}/adm/notify/messages \ +%makeinstall -C dovecot-sieve docdir=%{_docdir}/%{pkg_name} +find %{buildroot}%{_libdir}/%{pkg_name}/modules/ -type f -name \*.la -print0 | xargs -r0 rm -v +find %{buildroot}%{_libdir}/%{pkg_name}/modules/ -type f -name \*.a -print0 | xargs -r0 rm -v +%{__install} -m 0755 -Dd %{buildroot}%{_var}/run/%{pkg_name}/login/ %{buildroot}%{_var}/lib/%{pkg_name}/ +# # fix config filename and install additional config -%{__mv} %{buildroot}%{_sysconfdir}/%{name}/%{name}{-example,}.conf -%{__install} -m 0640 doc/*conf %{buildroot}%{_sysconfdir}/%{name} -%{__install} -m 0644 %{S:3} %{buildroot}%{_sysconfdir}/pam.d/%{name} +%{__mv} %{buildroot}%{_sysconfdir}/%{pkg_name}/%{pkg_name}{-example,}.conf +%{__install} -m 0640 doc/*conf %{buildroot}%{_sysconfdir}/%{pkg_name} +%{__install} -D -m 0644 %{S:3} %{buildroot}%{_sysconfdir}/pam.d/%{pkg_name} +# +# install the init script +%{__install} -D -m 0755 %{S:2} %{buildroot}%{_sysconfdir}/init.d/%{pkg_name} +%{__ln_s} -f %{_sysconfdir}/init.d/%{pkg_name} %{buildroot}%{_sbindir}/rc%{pkg_name} +# # install the script to create dummy selfsigned certs -%{__install} -m 0755 doc/mkcert.sh %{buildroot}%{_docdir}/%{name} -%{__install} -m 0644 doc/*.cnf %{buildroot}%{_docdir}/%{name} -%{__install} -m 0644 %{S:4} %{buildroot}%{_docdir}/%{name}/README.SuSE -# documentation for the LDA part -for i in dovecot-lda/src/libsieve/{AUTHORS,COPYING,NEWS,README} ; do - %{__install} -m 0644 $i %{buildroot}%{_docdir}/%{name}/${i##dovecot-lda/src/libsieve/}.sieve +%{__install} -m 0755 doc/mkcert.sh %{buildroot}%{_docdir}/%{pkg_name} +%{__install} -m 0644 doc/*.cnf %{buildroot}%{_docdir}/%{pkg_name} +%{__install} -m 0644 %{S:4} %{buildroot}%{_docdir}/%{pkg_name}/README.SuSE +# +# documentation for the cmu sieve module +for i in dovecot-sieve/src/libsieve/{AUTHORS,ChangeLog,COPYING,NEWS,README} ; do + %{__install} -m 0644 $i %{buildroot}%{_docdir}/%{pkg_name}/${i##dovecot-sieve/src/libsieve/}.libsieve done -%{__install} -m 0644 dovecot-lda/ChangeLog %{buildroot}%{_docdir}/%{name}/ChangeLog.lda +for i in dovecot-sieve/AUTHORS ; do + %{__install} -m 0644 $i %{buildroot}%{_docdir}/%{pkg_name}/${i##dovecot-sieve/}.dovecot-sieve +done +# # additional docs for the main package %{__install} -m 0644 \ - COPYING COPYING.MIT NEWS TODO AUTHORS COPYING.LGPL README ChangeLog \ - %{buildroot}%{_docdir}/%{name}/ -%{__gzip} -9v %{buildroot}%{_docdir}/%{name}/ChangeLog -# install the init script -%{__install} -m 0755 %{S:2} %{buildroot}%{_sysconfdir}/init.d/%{name} -%{__ln_s} -f %{_sysconfdir}/init.d/%{name} %{buildroot}%{_sbindir}/rc%{name} + AUTHORS ChangeLog COPYING* NEWS TODO README \ + %{buildroot}%{_docdir}/%{pkg_name}/ +%{__gzip} -9v %{buildroot}%{_docdir}/%{pkg_name}/ChangeLog %clean -%{__rm} -rf "${RPM_BUILD_ROOT}" +%{__rm} -rf "%{buildroot}" %pre -/usr/sbin/groupadd -r %{name} &>/dev/null || : -/usr/sbin/useradd -o -g %{name} -s /bin/false -r -c "User for Dovecot imapd" -d %{_var}/run/%{name} %{name} &>/dev/null || : +/usr/sbin/groupadd -r %{pkg_name} &>/dev/null || : +/usr/sbin/useradd -o -g %{pkg_name} -s /bin/false -r -c "User for Dovecot imapd" -d %{_var}/run/%{pkg_name} %{pkg_name} &>/dev/null || : %preun -%stop_on_removal %{name} +%stop_on_removal %{pkg_name} %post -%{fillup_and_insserv -f dovecot} +%fillup_and_insserv -f %{pkg_name} %postun %insserv_cleanup -%restart_on_update %{name} +%restart_on_update %{pkg_name} %files %defattr(-,root,root) -%{_sysconfdir}/init.d/%{name} -%{_sbindir}/%{name}* -%{_sbindir}/rc%{name} -%dir %{_sysconfdir}/%{name} -%config(noreplace) %attr(0644,root,root) %{_sysconfdir}/%{name}/* -%config(noreplace) %{_sysconfdir}/pam.d/%{name} -%dir %{_prefix}/lib/%{name} -%{_prefix}/lib/%{name}/checkpassword-reply -%{_prefix}/lib/%{name}/dovecot-auth -%{_prefix}/lib/%{name}/rawlog -%{_prefix}/lib/%{name}/imap* -%{_prefix}/lib/%{name}/pop3* -%{_prefix}/lib/%{name}/deliver -%{_prefix}/lib/%{name}/dict -%{_prefix}/lib/%{name}/gdbhelper -%{_prefix}/lib/%{name}/ssl-build-param -%{_prefix}/lib/%{name}/sievec +%{_sysconfdir}/init.d/%{pkg_name} +%{_sbindir}/%{pkg_name}* +%{_sbindir}/rc%{pkg_name} +%dir %{_sysconfdir}/%{pkg_name} +%config(noreplace) %attr(0644,root,root) %{_sysconfdir}/%{pkg_name}/* +%config(noreplace) %{_sysconfdir}/pam.d/%{pkg_name} +%dir %{_prefix}/lib/%{pkg_name} +%{_prefix}/lib/%{pkg_name}/checkpassword-reply +%{_prefix}/lib/%{pkg_name}/dovecot-auth +%{_prefix}/lib/%{pkg_name}/rawlog +%{_prefix}/lib/%{pkg_name}/imap* +%{_prefix}/lib/%{pkg_name}/pop3* +%{_prefix}/lib/%{pkg_name}/deliver +%{_prefix}/lib/%{pkg_name}/dict +%{_prefix}/lib/%{pkg_name}/gdbhelper +%{_prefix}/lib/%{pkg_name}/ssl-build-param +%{_prefix}/lib/%{pkg_name}/sievec +%{_prefix}/lib/%{pkg_name}/sieved # # plugins # -%dir %{_libdir}/%{name} -%dir %{_libdir}/%{name}/modules/ -%{_libdir}/%{name}/modules/lib01_quota_plugin.so -%{_libdir}/%{name}/modules/lib02_trash_plugin.so -%{_libdir}/%{name}/modules/lib01_convert_plugin.so -%dir %{_libdir}/%{name}/modules/imap -%{_libdir}/%{name}/modules/imap/lib01_convert_plugin.so -%{_libdir}/%{name}/modules/imap/lib01_zlib_plugin.so -%{_libdir}/%{name}/modules/imap/lib01_quota_plugin.so -%{_libdir}/%{name}/modules/imap/lib02_trash_plugin.so -%{_libdir}/%{name}/modules/imap/lib02_imap_quota_plugin.so -%dir %{_libdir}/%{name}/modules/lda -%{_libdir}/%{name}/modules/lda/lib01_convert_plugin.so -%{_libdir}/%{name}/modules/lda/lib01_quota_plugin.so -%{_libdir}/%{name}/modules/lda/lib02_trash_plugin.so -%dir %{_libdir}/%{name}/modules/pop3 -%{_libdir}/%{name}/modules/pop3/lib01_convert_plugin.so -%{_libdir}/%{name}/modules/pop3/lib01_quota_plugin.so +%dir %{_libdir}/%{pkg_name} +%dir %{_libdir}/%{pkg_name}/modules/ +%{_libdir}/%{pkg_name}/modules/lib01_quota_plugin.so +%{_libdir}/%{pkg_name}/modules/lib02_trash_plugin.so +%{_libdir}/%{pkg_name}/modules/lib01_convert_plugin.so +%dir %{_libdir}/%{pkg_name}/modules/imap +%{_libdir}/%{pkg_name}/modules/imap/lib01_convert_plugin.so +%{_libdir}/%{pkg_name}/modules/imap/lib01_zlib_plugin.so +%{_libdir}/%{pkg_name}/modules/imap/lib01_quota_plugin.so +%{_libdir}/%{pkg_name}/modules/imap/lib02_trash_plugin.so +%{_libdir}/%{pkg_name}/modules/imap/lib02_imap_quota_plugin.so +%dir %{_libdir}/%{pkg_name}/modules/lda +%{_libdir}/%{pkg_name}/modules/lda/lib01_convert_plugin.so +%{_libdir}/%{pkg_name}/modules/lda/lib01_quota_plugin.so +%{_libdir}/%{pkg_name}/modules/lda/lib02_trash_plugin.so +%{_libdir}/%{pkg_name}/modules/lda/lib90_cmusieve_plugin.so +%dir %{_libdir}/%{pkg_name}/modules/pop3 +%{_libdir}/%{pkg_name}/modules/pop3/lib01_convert_plugin.so +%{_libdir}/%{pkg_name}/modules/pop3/lib01_quota_plugin.so # acl plugin -%{_libdir}/%{name}/modules/imap/lib01_acl_plugin.so -%{_libdir}/%{name}/modules/lda/lib01_acl_plugin.so -%{_libdir}/%{name}/modules/lib01_acl_plugin.so +%{_libdir}/%{pkg_name}/modules/imap/lib01_acl_plugin.so +%{_libdir}/%{pkg_name}/modules/lda/lib01_acl_plugin.so +%{_libdir}/%{pkg_name}/modules/lib01_acl_plugin.so # # documentation # -%doc %{_docdir}/%{name} +%doc %{_docdir}/%{pkg_name} # # setting up permissions # -%dir %attr(0755, root, root ) %{_var}/run/%{name} -%dir %attr(0750, root, %{name}) %{_var}/run/%{name}/login +%dir %attr(0755, root, root) %{_var}/run/%{pkg_name}/ +%dir %attr(0750, root, %{pkg_name}) %{_var}/run/%{pkg_name}/login/ +%dir %attr(0750, root, root) %{_var}/lib/%{pkg_name}/ %changelog -n dovecot +* Wed Jun 28 2006 - mrueckert@suse.de +- Update to version 1.0.rc2: + * disable_plaintext_auth=yes: Removed hardcoded 127.* and ::1 IP + checks. Now we just assume that the connection is secure if the + local IP matches the remote IP address. + * SSL code rewrite which hopefully makes it work better than before. + Seems to work correctly, but if you suddently have trouble with SSL + connections this is likely the reason. + + verbose_ssl=yes: Log also SSL alerts and BIO errors +- If namespace's location field wasn't set, the default location + was supposed to be used but it wasn't. +- When copying ssl-parameters.dat file from /var/lib to /var/run its + permissions went wrong if it couldn't be copied with hard linking. +- Fixed filesystem quota plugin to work with BSDs. +- Maildir: Saving mails didn't work if quota plugin was enabled (again) +- Maildir: Messages' received time wasn't saved properly when + saving/copying multiple messages at a time. Also if using quota + plugin the S= size was only set for the first saved file, and even + that was wrong. +- passdb passwd-file: Don't require valid uid/gid fields if file + isn't also being used as a userdb. +- PostgreSQL: Handle failures better so that there won't be + "invalid fd" errors in logs. +- Don't try to expunge messages if the mailbox is read-only. It'll + just cause our index files to go out of sync with the real + mailbox and cause errors. +- ANONYMOUS authentication mechanism couldn't work because + anonymous_username setting wasn't passed from master process. +- Update to version 1.0.rc1: + * PAM: If user's password is expired, give "Password expired" error + message to the user. Now actually working thanks to Vaidas Pilkauskas + * Relicensed dovecot-auth, lib-sql and lib-ntlm to MIT license. See + COPYING file for more information. + * Abuse prevention: When creating a mailbox, limit the number of + hierarchies (up to 20) and the length of the mailbox name within + a hierarchy (up to 200 characters). + * mbox: If saved mail doesn't end with LF, add it ourself so that the + mails always have one empty line before the next From-line. + + Added --with-statedir configure option which defaults to + $localstatedir/lib/dovecot. ssl-parameters.dat is permanently + stored in that directory and is copied to login_dirs from there. + + IMAP: Support SASL-IR extension (SASL initial response) + + Support initial SASL response with LOGIN mechanism. Patch by Anders + Karlsson + + Added PLAIN-MD4 password scheme. Patch by Andrey Panin. + + Added support for XFS disk quotas. Patch by Pawel Jarosz + + If another process deletes the opened mailbox, try to handle it + without writing errors to log file. Handles the most common cases. + + Added TLS support for LDAP if the library supports it. +- SEARCH command was more or less broken with OR and NOT conditions +- Dovecot corrupted mbox files which had CR+LF linefeeds in headers +- MySQL code could have crashed while escaping strings +- MD4 code with NTLM authentication was broken with 64bit systems. + Patch by Andrey Panin +- Plugin loading was broken in some OSes (eg. FreeBSD) +- Several fixes to handling empty values in configuration file +- Several fixes to dictionary quota backend and dict server. + Also changed how they're configured. +- deliver: Fixed plugin handling settings +- mbox_min_index_size handling was somewhat broken +- passdb passwd-file: extra_args field wasn't read unless the file + was also used as userdb. +- Addtional changes from v1.0.beta9: + * PAM: Don't call pam_setcred() unless setcred=yes PAM passdb + argument was given. + * Moved around settings in dovecot-example.conf to be in more logical + groups. + + Local delivery agent (deliver binary) works again. + + LDAP: Added support for SASL binding. Patch by Geert Jansen + + ssl_verify_client_cert: Check CRLs. If auth_verbose=yes, log + invalid sent certificates. If verbose_ssl=yes, log even the valid + certificates. When using the username from the certificate, use + CommonName. Based on patch by HenkJan Wolthuis + + PAM: Set PAM_TTY which is needed by some PAM plugins + + dovecot --exec-mail ext <binary path> can now be used to start + binaries which want dovecot.conf to be read, for example the + convert-tool. +- Expunging needed to be done twice if client used STORE +FLAGS.SILENT + command to set the \Deleted flags +- Added sql_escape_string() to lib-sql API and use it instead of + normal \-escaping. +- ACL plugin fixes +- DIGEST-MD5: Trying to use subsequent authentication crashed + dovecot-auth. +- Fetching BODY when BODYSTRUCTURE was already cached caused the + reply to be broken in some cases +- Lots of fixes for index file handling +- dbox fixes and changes +- mbox syncing broke if some extraneous/broken headers were removed + (eg. extra X-IMAPbase headers in mails) +- Running Dovecot from inetd work now properly with POP3 +- Quota plugin fixes for calculating the quota correctly * Thu May 25 2006 - mrueckert@suse.de - Update to 1.0.beta8: * Fixed a security hole with mbox: "1 LIST .. *" command could ++++++ dovecot-1.0.cvs_pie.patch ++++++ Index: configure.in =================================================================== --- configure.in.orig +++ configure.in @@ -28,6 +28,15 @@ fi, want_ipv6=yes) +AC_ARG_ENABLE(pie, +[ --enable-pie Enable PIE support (default)], + if test x$enableval = xno; then + want_pie=no + else + want_pie=yes + fi, + want_pie=no) + AC_ARG_ENABLE(debug, [ --enable-debug Enable some extra checks for debugging], if test x$enableval = xyes; then @@ -1665,6 +1674,29 @@ ]) AM_CONDITIONAL(BUILD_ZLIB, test "$have_zlib" = "yes") + +dnl ** +dnl ** PIE check +dnl ** + +if test $want_pie = yes; then + AC_MSG_CHECKING([if we can use PIE]) + # try to compile something with pie + old_cflags=$CFLAGS + CFLAGS="-pie -fPIE -DPIE -Werror" + AC_TRY_LINK([],,[ + LIBS="$LIBS -pie" + # enforce -fPIC so all objects are compiled with it + CFLAGS="$old_cflags -fPIC -DPIC" + ac_want_pie="yes" + ], [ + # restore old CFLAGS + CFLAGS="$old_cflags" + ac_want_pie="no" + ]) + AC_MSG_RESULT($ac_want_pie) +fi + dnl ** dnl ** capabilities dnl ** ++++++ dovecot-sieve.cvs_pie.patch ++++++ Index: dovecot-sieve/configure.in =================================================================== --- dovecot-sieve/configure.in.orig +++ dovecot-sieve/configure.in @@ -12,6 +12,37 @@ AC_PROG_YACC AM_PROG_LIBTOOL +AC_ARG_ENABLE(pie, +[ --enable-pie Enable PIE support (default)], + if test x$enableval = xno; then + want_pie=no + else + want_pie=yes + fi, + want_pie=no) + +dnl ** +dnl ** PIE check +dnl ** + +if test $want_pie = yes; then + AC_MSG_CHECKING([if we can use PIE]) + # try to compile something with pie + old_cflags=$CFLAGS + CFLAGS="-pie -fPIE -DPIE -Werror" + AC_TRY_LINK([],,[ + LIBS="$LIBS -pie" + # enforce -fPIC so all objects are compiled with it + CFLAGS="$old_cflags -fPIC -DPIC" + ac_want_pie="yes" + ], [ + # restore old CFLAGS + CFLAGS="$old_cflags" + ac_want_pie="no" + ]) + AC_MSG_RESULT($ac_want_pie) +fi + AC_ARG_WITH(dovecot, [ --with-dovecot[=DIR] Dovecot base directory (../)], dovecotdir="$withval", ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-commit-unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit-help@opensuse.org