dovecot - Jan 2006 - 1.0.beta2 released

I had originally thought that I'd do a complete audit of the Dovecot's
sources this weekend, but looks like I didn't. Hopefully I've been
writing good enough code that the "1000 EUR for security hole" offer
lasts for a long time. :)

This release should fix the SSL parameter regeneration problem. There
were two changes that were needed to fix it, but I had forgotten the
other one.

v1.0.beta2 2006-01-22  Timo Sirainen <tss@iki.fi>

	+ Added SQLite support. Patch by Jakob Hirsch.
	+ Added auth_debug_passwords setting. If it's not enabled, hide all
	  password strings from logs.
	+ Added mail_cache_min_mail_count and mbox_min_index_size settings
	  which can be used to make Dovecot do less disk writes in small
	  mailboxes where they don't benefit that much.
	+ Added --build-ssl-parameters parameter to dovecot binary
	- SSL parameters were being regenerated every 10 minutes, although
	  not with all systems.
	- Fixed dovecot-auth crashing at startup. Happened only with some
	  specific compilers.
	- base_dir was supposed to be set world-readable, not world-writable

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url :
http://dovecot.org/pipermail/dovecot/attachments/20060122/fc30dffe/attachment.pgp

i386
http://fedora.ivazquez.net/yum/4/i386/RPMS.alternatives/dovecot-1.0-0.iva.3.beta2.i386.rpm
http://fedora.ivazquez.net/yum/4/i386/SRPMS.alternatives/dovecot-1.0-0.iva.3.beta2.src.rpm
ppc
http://fedora.ivazquez.net/yum/4/ppc/RPMS.alternatives/dovecot-1.0-0.iva.3.beta2.ppc.rpm
http://fedora.ivazquez.net/yum/4/ppc/SRPMS.alternatives/dovecot-1.0-0.iva.3.beta2.src.rpm
x86_64
http://fedora.ivazquez.net/yum/4/x86_64/RPMS.alternatives/dovecot-1.0-0.iva.3.beta2.x86_64.rpm
http://fedora.ivazquez.net/yum/4/x86_64/SRPMS.alternatives/dovecot-1.0-0.iva.3.beta2.src.rpm

-- 
Ignacio Vazquez-Abrams <ivazquez@ivazquez.net>
http://fedora.ivazquez.net/

gpg --keyserver hkp://subkeys.pgp.net --recv-key 38028b72
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url :
http://dovecot.org/pipermail/dovecot/attachments/20060123/ac8397a0/attachment.pgp

> but I had forgotten the other one.
You really should setup that Issue tracker ;)

Sebastjan
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
http://dovecot.org/pipermail/dovecot/attachments/20060123/f0811dab/attachment.htm

Timo Sirainen wrote:
>I had originally thought that I'd do a complete audit of the
Dovecot's
>sources this weekend, but looks like I didn't. Hopefully I've been
>writing good enough code that the "1000 EUR for security hole"
offer
>lasts for a long time. :)
>
>This release should fix the SSL parameter regeneration problem. There
>were two changes that were needed to fix it, but I had forgotten the
>other one.
>
>v1.0.beta2 2006-01-22  Timo Sirainen <tss@iki.fi>
>
>	+ Added SQLite support. Patch by Jakob Hirsch.
>	+ Added auth_debug_passwords setting. If it's not enabled, hide all
>	  password strings from logs.
>	+ Added mail_cache_min_mail_count and mbox_min_index_size settings
>	  which can be used to make Dovecot do less disk writes in small
>	  mailboxes where they don't benefit that much.
>	+ Added --build-ssl-parameters parameter to dovecot binary
>	- SSL parameters were being regenerated every 10 minutes, although
>	  not with all systems.
>	- Fixed dovecot-auth crashing at startup. Happened only with some
>	  specific compilers.
>	- base_dir was supposed to be set world-readable, not world-writable
>
>  
>
Hi,
I have attached patch that should fix all kqueue issues (I hope). It is 
smaller than it looks because I also reindented both kqueue files with 
tabs as is the rest of the source.

The ioloop.c hunk is necessarry for me to be able to io_remove() handle 
in io_loop_notify_handler_deinit() that I have added in 
io_loop_notify_handler_init(). Without it io_loop_destroy() will remove 
the io record behind my back which crashes the program.

The other attached patch is what I used for easier debugging. I think it 
could help somebody else too.

Vaclav Haisman

-------------- next part --------------
A non-text attachment was scrubbed...
Name: dovecot-1.0.beta2-kqueue.diff
Type: text/x-patch
Size: 15460 bytes
Desc: not available
Url :
http://dovecot.org/pipermail/dovecot/attachments/20060123/b8c36b75/dovecot-1.0.beta2-kqueue-0001.bin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: dovecot-1.0.beta2-failures.diff
Type: text/x-patch
Size: 3612 bytes
Desc: not available
Url :
http://dovecot.org/pipermail/dovecot/attachments/20060123/b8c36b75/dovecot-1.0.beta2-failures-0001.bin

Timo Sirainen <tss@iki.fi> writes:
> v1.0.beta2 2006-01-22  Timo Sirainen <tss@iki.fi>
>
> 	+ Added SQLite support. Patch by Jakob Hirsch.
I've listed Dovecot at
<http://www.sqlite.org/cvstrac/wiki?p=SqliteUsers>

I've also updated the Dovecot RPMs for SUSE 10.0 i586 (still no separate
x86_64 RPMs - use the i586 RPMs instead) to beta2 and added sqlite
support (note that the current build links everything into the "auth"
program even if unneeded - perhaps the SQL backends should be
implemented as standalone plugins so they can split across various
packages, to cut down dependencies in packages).

<http://mandree.home.pages.de/suse-10.0-i586/>
<http://mandree.home.pages.de/suse-10.0-src/>

Marcus R?ckert's directory still doesn't appear to have updated RPMs,
so I thought I'd do it again :-)

-- 
Matthias Andree