Hi,
One interesting thing in this release is the support for configuring OAUTH2
openid-configuration element. It would be nice if IMAP clients started
supporting this feature to enable OAUTH2 for all IMAP servers, not just Gmail
and a few others. This would allow all kinds of new authentication methods for
IMAP and improve the authentication security in general.
https://dovecot.org/releases/2.3/dovecot-2.3.16.tar.gz
https://dovecot.org/releases/2.3/dovecot-2.3.16.tar.gz.sig
Binary packages in https://repo.dovecot.org/
Docker images in https://hub.docker.com/r/dovecot/dovecot
<https://hub.docker.com/r/dovecot/dovecot>
* Any unexpected exit() will now result in a core dump. This can
especially help notice problems when a Lua script causes exit(0).
* auth-worker process is now restarted when the number of auth
requests reaches service auth-worker { service_count }. The default
is still unlimited.
+ Event improvements: Added data_stack_grow event and http-client
category. See https://doc.dovecot.org/admin_manual/list_of_events/
+ oauth2: Support RFC 7628 openid-configuration element. This allows
clients to support OAUTH2 for any server, not just a few hardcoded
servers like they do now. See openid_configuration_url setting in
dovecot-oauth2.conf.ext.
+ mysql: Single statements are no longer enclosed with BEGIN/COMMIT.
+ dovecot-sysreport --core supports multiple core files now and does
not require specifying the binary path.
+ imapc: When imap_acl plugin is loaded and imapc_features=acl is used,
IMAP ACL commands are proxied to the remote server. See
https://doc.dovecot.org/configuration_manual/mail_location/imapc/
+ dict-sql now supports the "UPSERT" syntax for SQLite and
PostgreSQL.
+ imap: If IMAP client disconnects during a COPY command, the copying
is aborted, and changes are reverted. This may help to avoid many
email duplicates if client disconnects during COPY and retries it
after reconnecting.
- master process was using 100% CPU if service attempted to create more
processes due to process_min_avail, but process_limit was already
reached. v2.3.15 regression.
- Using attachment detection flags wrongly logged unnecessary "Failed
to add attachment keywords" errors. v2.3.13 regression.
- IMAP QRESYNC: Expunging UID 1 mail resulted in broken VANISHED
response, which could have confused IMAP clients. v2.3.13 regression.
- imap: STORE didn't send untagged replies for \Seen changes for
(shared) mailboxes using INDEXPVT. v2.3.10 regression.
- rawlog_dir setting would not log input that was pipelined after
authentication command.
- Fixed potential infinite looping with autoexpunging.
- Log event exporter: Truncate long fields to 1000 bytes
- LAYOUT=index: ACL inheritance didn't work when creating mailboxes
- Event filters: Unquoted '?' wildcard caused a crash at startup
- fs-metawrap: Fix to handling zero sized files
- imap-hibernate: Fixed potential crash at deinit.
- acl: dovecot-acl-list files were written for acl_ignore_namespaces
- program-client (used by Sieve extprograms, director_flush_socket)
may have missed status response from UNIX and network sockets,
resulting in unexpected failures.
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<https://dovecot.org/pipermail/dovecot/attachments/20210806/85ae7417/attachment.html>
Thank you Timo However, this leads to kernel: imap[228122]: segfault at 50 ip 00007f7015ee332b sp 00007fffa7178740 error 4 in lib20_fts_plugin.so[7f7015ee1000+11000] Returning to 2.3.15 resolves the problem On 2021-08-06 12:42, Timo Sirainen wrote:> Hi, > > One interesting thing in this release is the support for configuring > OAUTH2 openid-configuration element. It would be nice if IMAP clients > started supporting this feature to enable OAUTH2 for all IMAP servers, > not just Gmail and a few others. This would allow all kinds of new > authentication methods for IMAP and improve the authentication security > in general. > https://dovecot.org/releases/2.3/dovecot-2.3.16.tar.gz > https://dovecot.org/releases/2.3/dovecot-2.3.16.tar.gz.sig > > Binary packages in https://repo.dovecot.org/ > Docker images in https://hub.docker.com/r/dovecot/dovecot > > * Any unexpected exit() will now result in a core dump. This can > especially help notice problems when a Lua script causes exit(0). > * auth-worker process is now restarted when the number of auth > requests reaches service auth-worker { service_count }. The default > is still unlimited. > > + Event improvements: Added data_stack_grow event and http-client > category. See https://doc.dovecot.org/admin_manual/list_of_events/ > + oauth2: Support RFC 7628 openid-configuration element. This allows > clients to support OAUTH2 for any server, not just a few hardcoded > servers like they do now. See openid_configuration_url setting in > dovecot-oauth2.conf.ext. > + mysql: Single statements are no longer enclosed with BEGIN/COMMIT. > + dovecot-sysreport --core supports multiple core files now and does > not require specifying the binary path. > + imapc: When imap_acl plugin is loaded and imapc_features=acl is used, > IMAP ACL commands are proxied to the remote server. See > https://doc.dovecot.org/configuration_manual/mail_location/imapc/ > + dict-sql now supports the "UPSERT" syntax for SQLite and PostgreSQL. > + imap: If IMAP client disconnects during a COPY command, the copying > is aborted, and changes are reverted. This may help to avoid many > email duplicates if client disconnects during COPY and retries it > after reconnecting. > - master process was using 100% CPU if service attempted to create more > processes due to process_min_avail, but process_limit was already > reached. v2.3.15 regression. > - Using attachment detection flags wrongly logged unnecessary "Failed > to add attachment keywords" errors. v2.3.13 regression. > - IMAP QRESYNC: Expunging UID 1 mail resulted in broken VANISHED > response, which could have confused IMAP clients. v2.3.13 regression. > - imap: STORE didn't send untagged replies for \Seen changes for > (shared) mailboxes using INDEXPVT. v2.3.10 regression. > - rawlog_dir setting would not log input that was pipelined after > authentication command. > - Fixed potential infinite looping with autoexpunging. > - Log event exporter: Truncate long fields to 1000 bytes > - LAYOUT=index: ACL inheritance didn't work when creating mailboxes > - Event filters: Unquoted '?' wildcard caused a crash at startup > - fs-metawrap: Fix to handling zero sized files > - imap-hibernate: Fixed potential crash at deinit. > - acl: dovecot-acl-list files were written for acl_ignore_namespaces > - program-client (used by Sieve extprograms, director_flush_socket) > may have missed status response from UNIX and network sockets, > resulting in unexpected failures. > > _______________________________________________ > Dovecot-news mailing list > Dovecot-news at dovecot.org > https://dovecot.org/mailman/listinfo/dovecot-news-------------- next part -------------- An HTML attachment was scrubbed... URL: <https://dovecot.org/pipermail/dovecot/attachments/20210806/eb79b785/attachment-0001.html>
On Aug 6, 2021, at 7:42 AM, Timo Sirainen <timo at sirainen.com> wrote:> https://dovecot.org/releases/2.3/dovecot-2.3.16.tar.gz > https://dovecot.org/releases/2.3/dovecot-2.3.16.tar.gz.sigThe patch from https://dovecot.org/pipermail/dovecot/2021-June/122375.html is still necessary to build on newer Mac OS X (for the same reason). Tested on Mac OS version 11.5.1. -- Daniel J. Luke
Was the update issue sorted? Is it safe to update or was/is there a glitch? Or did the person with the issue update from the wrong branch? And just to confirm, based on the change log in this email it doesn't look like we need to change anything in our config for this update? (Coming from 2.3.15)