Hello community, here is the log from the commit of package dovecot22 for openSUSE:Factory checked in at 2015-10-19 22:50:12 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/dovecot22 (Old) and /work/SRC/openSUSE:Factory/.dovecot22.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "dovecot22" Changes: -------- --- /work/SRC/openSUSE:Factory/dovecot22/dovecot22.changes 2015-06-23 12:00:47.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.dovecot22.new/dovecot22.changes 2015-10-20 00:04:12.000000000 +0200 @@ -1,0 +2,90 @@ +Sun Oct 4 21:49:19 UTC 2015 - mrueck...@suse.de + +- update to dovecot 2.2.19 + * pop3_deleted_flag has been broken since v2.2.10. Using it would + cause buffer overflows, which could be exploitable. However, + this bug would have become visible quite soon after users had + deleted some POP3 mails, because the pop3 processes would have + started crashing all the time even in normal use. + * "doveadm director flush" command has a changed meaning now: It + safely moves users to their wanted backends, instead of simply + forgetting the mapping entirely and leaving the existing + connections untouched. Use -F parameter to get the original + unsafe behavior. + + Added imap-hibernate processes (see imap_hibernate_timeout + setting). IDLEing IMAP connections can be hibernated, which + saves memory. + + Optimized tracking mailboxes' vsizes (= sum of all messages' + sizes). If mailbox_list_index=yes, it's also stored in there. + This makes it very efficient to look up vsizes for all + mailboxes. + + Added a quota "count" backend, which uses the mailbox vsizes + to get the current quota usage. It requires using the new + quota_vsizes=yes setting, which tracks the messages' "virtual + sizes" rather than "physical sizes". Their distiction is minor + and mostly irrelevant nowadays (if mail sizes should be counted + with LF or CRLF newlines). + + "doveadm director up/down" commands added. The monitoring + script should be using these commands instead of changing the + vhost count. This allows admin to manually disable a server by + changing the vhost count to 0 without the monitoring script + changing it back. + + Added support for HAProxy protocol: + http://wiki2.dovecot.org/HAProxy + + Added push-notification plugin framework, which can be used to + easily implement push notifications to various backends. + Implemented "ox" backend for notifying Open-Xchange via + HTTP/json. + + imap_logout_format supports more variables now, e.g. number of + deleted messages. + + pop3: Added pop3_delete_type setting + (related to pop3_deleted_flag). + + plugin { fts_enforced=yes } setting now fails body searches unless + it can be done via the full text search engine. + + Added %{passdb:*} and %{userdb:*} variables to various places + + auth: Added ":protected" suffix for passdb and userdb fields. + If used, the field doesn't overwrite an existing field. + + IMAP/POP3 proxy: If a backend server dies, avoid client + reconnection spikes by slowly disconnecting clients over time. + This is enabled by setting + login_proxy_max_disconnect_delay=secs passdb extra field. + + imap: Added new read-only METADATA entries: + /private/specialuse, /shared/comment, /shared/admin + + imap: If client disconnects in the middle of a command, log + how long the command had been running. + - mdbox: Rebuilding could have caused message's reference count + to overflow the 16bit number in some situations, causing + problems when trying to expunge the duplicates. + - Various search fixes (fts, solr, tika, lib-charset, indexer) + - Various virtual plugin fixes + - Various fixes and optimizations to dsync, imapc and + pop3-migration + - imap: Various RFC compliancy and crash fixes to NOTIFY +- update to pigeonhole 0.4.9 + * Properly implemented checking of ABI version for Sieve + interpreter plugins, much like Dovecot itself does for plugins. + This will prevent plugin ABI mismatches. + + Implemented a vnd.dovecot.environment extension. This builds + upon the standard environment extension and adds a few more + environment items, such as username and default mailbox. It + also creates a variables namespace so that environment items + can be accessed directly. I am still thinking about more + environment items that can be added. + + Sieve extprograms plugin: Made line endings of the input + passed to the external programs configurable. This can be + configured separately for each of the three extensions. + + ManageSieve: Implemented proxy XCLIENT support. This allows + the proxy to pass client information to the back-end. + - ManageSieve: Fixed an assert failure occurring when a client + disconnects during the GETSCRIPT command. + - doveadm sieve plugin: Fixed incorrect initialization of mail + user. This caused a few memory leaks. + - sieve-filter command line tool: Fixed handling of + failure-related implicit keep when there is an explicit default + destination folder. This caused message duplication. + - lib-sieve: Fixed bug in RFC5322 header folding. Words longer + than the optimal line length caused empty lines in the output, + which would break the resulting message header. This surfaced + in References: headers with very long message IDs. + +------------------------------------------------------------------- Old: ---- dovecot-2.2-pigeonhole-0.4.8.tar.gz dovecot-2.2.18.tar.gz New: ---- dovecot-2.2-pigeonhole-0.4.9.tar.gz dovecot-2.2.19.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ dovecot22.spec ++++++ --- /var/tmp/diff_new_pack.W7T5As/_old 2015-10-20 00:04:13.000000000 +0200 +++ /var/tmp/diff_new_pack.W7T5As/_new 2015-10-20 00:04:13.000000000 +0200 @@ -17,11 +17,11 @@ Name: dovecot22 -Version: 2.2.18 +Version: 2.2.19 Release: 0 %define pkg_name dovecot -%define dovecot_version 2.2.18 -%define dovecot_pigeonhole_version 0.4.8 +%define dovecot_version 2.2.19 +%define dovecot_pigeonhole_version 0.4.9 %define dovecot_branch 2.2 %define dovecot_pigeonhole_source_dir %{pkg_name}-%{dovecot_branch}-pigeonhole-%{dovecot_pigeonhole_version} %define dovecot_pigeonhole_docdir %{_docdir}/%{pkg_name}/dovecot-pigeonhole @@ -520,6 +520,7 @@ %{_prefix}/lib/%{pkg_name}/dovecot-lda %{_prefix}/lib/%{pkg_name}/gdbhelper %{_prefix}/lib/%{pkg_name}/imap +%{_prefix}/lib/%{pkg_name}/imap-hibernate %{_prefix}/lib/%{pkg_name}/imap-login %{_prefix}/lib/%{pkg_name}/imap-urlauth %{_prefix}/lib/%{pkg_name}/imap-urlauth-login @@ -567,6 +568,7 @@ %{_libdir}/%{pkg_name}/modules/lib20_mailbox_alias_plugin.so %{_libdir}/%{pkg_name}/modules/lib20_expire_plugin.so %{_libdir}/%{pkg_name}/modules/lib20_zlib_plugin.so +%{_libdir}/%{pkg_name}/modules/lib20_push_notification_plugin.so %{_libdir}/%{pkg_name}/modules/lib20_autocreate_plugin.so %{_libdir}/%{pkg_name}/modules/lib20_listescape_plugin.so %{_libdir}/%{pkg_name}/modules/lib20_quota_clone_plugin.so ++++++ dovecot-2.2-pigeonhole-0.4.8.tar.gz -> dovecot-2.2-pigeonhole-0.4.9.tar.gz ++++++ ++++ 4075 lines of diff (skipped) ++++++ dovecot-2.2.18-better_ssl_defaults.patch ++++++ --- /var/tmp/diff_new_pack.W7T5As/_old 2015-10-20 00:04:14.000000000 +0200 +++ /var/tmp/diff_new_pack.W7T5As/_new 2015-10-20 00:04:14.000000000 +0200 @@ -1,7 +1,7 @@ -Index: dovecot-2.2.18/doc/example-config/conf.d/10-ssl.conf +Index: dovecot-2.2.19/doc/example-config/conf.d/10-ssl.conf =================================================================== ---- dovecot-2.2.18.orig/doc/example-config/conf.d/10-ssl.conf -+++ dovecot-2.2.18/doc/example-config/conf.d/10-ssl.conf +--- dovecot-2.2.19.orig/doc/example-config/conf.d/10-ssl.conf ++++ dovecot-2.2.19/doc/example-config/conf.d/10-ssl.conf @@ -9,8 +9,8 @@ # dropping root privileges, so keep the key file unreadable by anyone but # root. Included doc/mkcert.sh can be used to easily generate self-signed @@ -39,10 +39,10 @@ # no_compression - Disable compression. -#ssl_options = +ssl_options = no_compression -Index: dovecot-2.2.18/src/lib-master/master-service-ssl-settings.c +Index: dovecot-2.2.19/src/lib-master/master-service-ssl-settings.c =================================================================== ---- dovecot-2.2.18.orig/src/lib-master/master-service-ssl-settings.c -+++ dovecot-2.2.18/src/lib-master/master-service-ssl-settings.c +--- dovecot-2.2.19.orig/src/lib-master/master-service-ssl-settings.c ++++ dovecot-2.2.19/src/lib-master/master-service-ssl-settings.c @@ -43,8 +43,8 @@ static const struct master_service_ssl_s .ssl_cert = "", .ssl_key = "", @@ -54,16 +54,3 @@ .ssl_cert_username_field = "commonName", .ssl_crypto_device = "", .ssl_verify_client_cert = FALSE, -Index: dovecot-2.2.18/src/lib-sql/driver-mysql.c -=================================================================== ---- dovecot-2.2.18.orig/src/lib-sql/driver-mysql.c -+++ dovecot-2.2.18/src/lib-sql/driver-mysql.c -@@ -156,7 +156,7 @@ static void driver_mysql_parse_connect_s - const char *const *args, *name, *value; - const char **field; - -- db->ssl_cipher = "HIGH"; -+ db->ssl_cipher = "ALL:!aNULL:!eNULL:!EXPORT:!DES:!3DES:!MD5:!PSK:!RC4:!ADH:!LOW@STRENGTH"; - db->ssl_verify_server_cert = 0; /* FIXME: change to 1 for v2.3 */ - - args = t_strsplit_spaces(connect_string, " "); ++++++ dovecot-2.2-pigeonhole-0.4.8.tar.gz -> dovecot-2.2.19.tar.gz ++++++ ++++ 895561 lines of diff (skipped)