October 2010 - Dovecot-news

v2.0.6 released
by Timo Sirainen 21 Oct '10

21 Oct '10

http://dovecot.org/releases/2.0/dovecot-2.0.6.tar.gz http://dovecot.org/releases/2.0/dovecot-2.0.6.tar.gz.sig * Pre-login CAPABILITY includes IDLE again. Mainly to make Blackberry servers happy. * auth: auth_cache_negative_ttl default was 0 in earlier v2.0.x, but it was supposed to be 1 hour as in v1.x. Changed it back to 1h. If you want it disabled, make sure doveconf shows it as 0. + dbox: Added support for saving mail attachments to external files, with also support for single instance storage. This feature hasn't had much testing yet, so be careful with it. + doveadm: Added import command for importing mails from other storages. + Reduced NFS I/O operations for index file accesses + dbox, Maildir: When copying messages, copy also already cached fields from dovecot.index.cache + mdbox: Added mdbox_preallocate_space setting (Linux+ext3/XFS only) - Maildir: LDA/LMTP assert-crashed sometimes when saving a mail. - Fixed leaking fds when writing to dovecot.mailbox.log. - Fixed rare dovecot.index.cache corruption - IMAP: SEARCH YOUNGER/OLDER wasn't working correctly

1 0

Released Pigeonhole Sieve v0.1.18 and ManageSieve v0.11.12 for Dovecot v1.2.15
by Stephan Bosch 05 Oct '10

05 Oct '10

Hello Dovecot users, The recent release of Dovecot v1.2.15 is a good opportunity to release new versions of Sieve and ManageSieve for Dovecot v1.2. These releases consist entirely of bugfixes and introduce no new features. Changelog Sieve v0.1.18: - Imap4flags: fixed segfault bug occuring in multiscript context. Occured in specific situations when a script using imap4flags was followed in the sequence by scripts not using imap4flags. - Imap4flags: fixed bug in setflag command; when parameter was a stringlist, only the last item was actually set. - Prevented assertion failure due to currupt binary string representation. If the string were missing a final \0 character an assertion was produced in stead of a binary corruption error. - Multiscript: fixed duplicate implicit keep caused by erroneous execution state update. - Fixed Sieve script name checking to properly handle length limit and added 0x00ff as invalid character. - Removed spurious old stdio.h (top) includes; these caused compile issues on specific systems. - Fixed default Sieve capability (as reported by ManageSieve): extra extensions spamtest, spamtestplus and virustest were enabled by default. These should, however, only be enabled when properly configured and there is no default configuration. - Variables extension: fixed :length set modifier to recognize utf8 characters in stead of octets. - Fixed unnecessary reporting of dummy extensions in ManageSieve SIEVE capability; the comparator-i;octet and comparator-i;ascii-numeric 'extensions' were reported explicitly. - LDA Sieve plugin: added _version symbol to enable Dovecot's plugin version check. Without this check, people can forget to recompile the plugin, which can lead to unexpected effects. Changelog ManageSieve v0.11.12: - Fixed error handling of PUTSCRIPT commmand; save commit errors would not make the command fail. - Fixed PUTSCRIPT bug causing it to hang when given an empty script name. The releases are available as follows: Sieve http://www.rename-it.nl/dovecot/1.2/dovecot-1.2-sieve-0.1.18.tar.gz http://www.rename-it.nl/dovecot/1.2/dovecot-1.2-sieve-0.1.18.tar.gz.sig ManageSieve http://www.rename-it.nl/dovecot/1.2/dovecot-1.2-managesieve-0.11.12.tar.gz http://www.rename-it.nl/dovecot/1.2/dovecot-1.2-managesieve-0.11.12.tar.gz.… ManageSieve patch http://www.rename-it.nl/dovecot/1.2/dovecot-1.2.15-managesieve-0.11.12.diff… http://www.rename-it.nl/dovecot/1.2/dovecot-1.2.15-managesieve-0.11.12.diff… Refer to http://pigeonhole.dovecot.org and the Dovecot wiki for more information. Have fun testing this new release and don't hesitate to notify me when there are any problems. Regards, -- Stephan Bosch stephan(a)rename-it.nl

1 0

ACL handling bugs in v1.2.8+ and v2.0
by Timo Sirainen 02 Oct '10

02 Oct '10

I thought I'd write one mail about this, rather than duplicate the whole thing to both v1.2.15 and v2.0.5 release announcements. So, ever since this commit: 2009-11-10 Timo Sirainen <tss(a)iki.fi> * src/plugins/acl/acl-backend-vfile.c: acl: Merge group rights if user belongs to more than one. [76ff6831c9ae] The ACLs were being merged, rather than fully replaced, a bit too often. Since this is about merging, the problem could have happened only when using more than one entry in the ACL file. The main problems created by this were: a) If admin wanted to remove some rights from mailboxes in user's private namespace (e.g. symlinked shared mailboxes), they may not have gotten removed. b) When mixing up multiple ACL entries, such as groups/users the more specific entry may not have replaced the previous entry (e.g. group-override may not have worked as expected). The bug happened when two or more ACL entries of same "type" existed. The first entry was handled correctly, but the next ones may have only been adding ACLs rather than replacing them. For example if you had the following ACL file: group=people lrwi user=foo lr user=bar lr So basically everyone in "people" group should have "lrwi" rights, but foo and bar users should have only "lr" rights. If foo and bar didn't belong to people group, everything would work as expected. If they did, then what would happen is: * foo would work correctly, because it was the first entry of user type. * bar would keep "lrwi" rights, because the previous entry (user=foo) was of the same type (both are "user" type), so Dovecot decided to add the rights on top of group=people entry rather than replace them. BTW. The other ACL bug/"feature" of automatically adding admin rights that was fixed in v1.2.15 was already fixed in v2.0.beta2.

1 0

v2.0.5 released
by Timo Sirainen 02 Oct '10

02 Oct '10

http://dovecot.org/releases/2.0/dovecot-2.0.5.tar.gz http://dovecot.org/releases/2.0/dovecot-2.0.5.tar.gz.sig See the "ACL handling bugs" message for more details about the ACL merging bug. * acl: Fixed the logic of merging multiple ACL entries. Now it works as documented, while previously it could have done slightly different things depending on the order of the entries. * virtual: Allow opening virtual mailboxes that refer to non-existing mailboxes. It seems that the benefits of this outweigh the lack of error message when typoing a mailbox name. + Added some disk I/O optimizations to Maildir and index code. They're especially helpful with short-lived connections like POP3. + pop3: Added pop3_fast_size_lookups setting. - doveconf sometimes failed with complaining about missing ssl_key setting, causing e.g. dovecot-lda to fail. - lda: If there's an error in configuration, doveconf didn't exit with EX_TEMPFAIL as it should have. - sdbox: Fixed memory leak when copying messages with hard links. - zlib + sdbox combination didn't work - zlib: Fixed several crashes, which mainly showed up with mbox. - quota: Don't crash if user has quota disabled, but plugin loaded. - doveadm fetch uid was actually returning sequence, not uid. - v2.0.4's subscription listing ignored (and logged a warning about) subscriptions=no namespaces' entries in some configurations. (So listing shared mailboxes' subscriptions could have been broken.) - acl: Fixed crashing when sometimes listing shared mailboxes via dict proxy.

1 0

v1.2.15 released
by Timo Sirainen 02 Oct '10

02 Oct '10

http://dovecot.org/releases/1.2/dovecot-1.2.15.tar.gz http://dovecot.org/releases/1.2/dovecot-1.2.15.tar.gz.sig See the "ACL handling bugs" message for more details about the ACL merging bug. * acl: Fixed the logic of merging multiple ACL entries. Now it works as documented, while previously it could have done slightly different things depending on the order of the entries. * acl: Don't give admin rights to all owner mailboxes. This was originally done to make sure that mailbox owner couldn't accidentally remove their own admin rights. But this is already prevented by SETACL command, so it's not necessary. Also sysadmin may have intentionally removed some admin rights from some mailboxes (especially when using symlinked shared mailboxes). - Maildir: Fixed potential "Duplicate file entry" in dovecot-uidlist file errors. - Maildir: Avoid unnecessary uidlist recreation during mail delivery. - imap: When SELECT fails, it didn't close the previous mailbox. - Dovecot master process could have died if it got SIGCHLD signals very rapidly while it was trying to log. This could have happened for example if a lot of imap/pop3 sessions disconnected at the exact same time.

1 0