aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFiles
...
* libinterimap: make SSL_verify check the hostname as well.Guilhem Moulin2020-12-119
| | | | | | | | | | More precisely, ensure that the certificate Subject Alternative Name (SAN) or Subject CommonName (CN) matches the hostname or IP literal specified by the 'host' option. Previously it was only verifying the chain of trust. This bumps the minimum Net::SSLeay version to 1.83 and OpenSSL version 1.0.2.
* libinterimap: factor out hostname/IP parsing.Guilhem Moulin2020-12-114
| | | | | Also, document that enclosing 'host' value in square brackets forces its interpretation as an IP literal (hence skips name resolution).
* test suite: always generate new certificates on `make test`.Guilhem Moulin2020-12-1110
| | | | | In addition, sign test certificates with the same root CA. Hence running `make test` now requires OpenSSL 1.1.1 or later.
* libinterimap: show the matching pinned SPKI in --debug mode.Guilhem Moulin2020-12-115
|
* documentation: replace example.org with example.net for consistency.Guilhem Moulin2020-12-103
|
* Fix broken URLs.Guilhem Moulin2020-12-092
|
* Prepare new release.upstream/0.5.3Guilhem Moulin2020-12-093
|
* New test with a server offering both RSA+ECDSA certificates.Guilhem Moulin2020-12-097
| | | | | | | | | | | | This requires dovecot-imapd 2.2.31 or later. Certificate generated with: $ openssl genpkey -algorithm EC -pkeyopt ec_paramgen_curve:P-256 -pkeyopt ec_param_enc:named_curve \ -out tests/snippets/dovecot/dovecot.ecdsa.key $ openssl req -x509 -days 3650 -subj "/CN=InterIMAP test suite" \ -key tests/snippets/dovecot/dovecot.ecdsa.key \ -out tests/snippets/dovecot/dovecot.ecdsa.crt
* typofixGuilhem Moulin2020-12-092
|
* libinterimap: SSL_fingerprint now supports a space-separate list of digests ↵Guilhem Moulin2020-12-095
| | | | | | | | | to pin. And succeeds if, and only if, the peer certificate SPKI matches one of the pinned digest values. Specifying multiple digest values can key useful in key rollover scenarios and/or when the server supports certificates of different types (for instance RSA+ECDSA).
* test suite: use a RSA certificate rather than ECDSA.Guilhem Moulin2020-12-0911
| | | | | | | | | It's arguably the most common use-case. Generated with $ openssl genpkey -algorithm RSA -out tests/snippets/dovecot/dovecot.rsa.key $ openssl req -x509 -days 3650 -subj "/CN=InterIMAP test suite" \ -key tests/snippets/dovecot/dovecot.rsa.key \ -out tests/snippets/dovecot/dovecot.rsa.crt
* libinterimap: 'debug' forces 'null-stderr' = 0.Guilhem Moulin2020-12-083
| | | | | | The standard error is never sent to /dev/null in debug mode. Closes: deb#968392
* typofixGuilhem Moulin2020-08-042
|
* typofixGuilhem Moulin2020-08-041
|
* Improve long command wrapping.Guilhem Moulin2020-08-044
|
* Upgrade URLs to secure HTTP.Guilhem Moulin2020-08-048
|
* wibbleGuilhem Moulin2020-08-031
|
* Prepare new release.upstream/0.5.2Guilhem Moulin2020-08-031
|
* libinterimap: abort on PREAUTH greeting received on plaintext connectionsGuilhem Moulin2020-08-036
| | | | | Set "STARTTLS = NO" to ignore. This is similar to CVE-2020-12398 and CVE-2020-14093.
* libinterimap: Fix response injection vulnerability after STARTTLS.Guilhem Moulin2020-08-037
| | | | For background see https://gitlab.com/muttmua/mutt/-/issues/248 .
* typofixGuilhem Moulin2020-08-031
|
* libinterimap: fail when a capability to ENABLE is missing from the server's ↵Guilhem Moulin2020-08-032
| | | | CAPABILITY listing.
* Bump version number.Guilhem Moulin2020-08-032
|
* Makefile: remove 'smart' extension from pandoc call to generate manuals.Guilhem Moulin2020-08-032
|
* HTML: Add background color to code snippets.Guilhem Moulin2020-07-021
|
* Prepare new release.upstream/0.5.1Guilhem Moulin2020-07-021
|
* Makefile: Major refactoring, add install and uninstall targets.Guilhem Moulin2020-07-026
| | | | | | Honor BUILD_DOCDIR and DESTDIR variables. Also, remove the `use lib` statement from our executables.
* Bump version number.Guilhem Moulin2020-07-022
|
* pullimap: Also compare RFC 5322 date and envelope information in mailbox ↵Guilhem Moulin2020-07-022
| | | | comparison tests.
* doc/development.md: Fix broken link.Guilhem Moulin2020-07-011
|
* doc/getting-started.md: Link to the IMAP wiki for QRESYNC support in IMAPd.Guilhem Moulin2020-05-121
|
* index: Add a short summary to the index.Guilhem Moulin2020-05-121
| | | | Per Stefan Kangas' suggestion.
* Fix version number.Guilhem Moulin2020-01-291
|
* doc/template.html: Switch from Glyphicons to Font Awesome.upstream/0.5Guilhem Moulin2020-01-031
|
* tests/run: Don't redirect stderr by process substitution.Guilhem Moulin2019-12-151
| | | | This seems to cause timing issues.
* tests/*/t: Increase timeout from 2 to 5s after background syncs.Guilhem Moulin2019-12-154
|
* typofixGuilhem Moulin2019-12-141
| | | | Closes: #946727.
* Prepare new release candidate.upstream/0.5-rcGuilhem Moulin2019-12-141
|
* doc/getting-started.md: Clarify use of `exec` built-in.Guilhem Moulin2019-12-131
|
* Add documentation for multi-remote setups.Guilhem Moulin2019-12-133
|
* New test for hierarchy delimiter change.Guilhem Moulin2019-12-134
| | | | | | | Cf. https://www.imapwiki.org/ClientImplementation/MailboxList#Hierarchy_separators “Some clients cache the hierarchy separator forever. This has problems if the server configuration is changed (e.g. server software changed). Try to avoid this problem.”
* doc/index.md: Include link to benchmark.Guilhem Moulin2019-11-221
|
* interimap(1): Add link to the "getting started" guide.Guilhem Moulin2019-11-191
|
* typofixGuilhem Moulin2019-11-191
|
* Add benchmark metrics, with timings and network + memory usage.Guilhem Moulin2019-11-196
| | | | Along with a comparison with OfflineIMAP.
* interimap(1): No longer recommend the NOTIFY extension.Guilhem Moulin2019-11-191
| | | | | As of 0.4 --notify is no longer used in the systemd service file, cf. d19ba0a20d0d7a7ec288c93df329210b31bf3c51.
* pullimap: Fix mangling of data lines starting with a dot.Guilhem Moulin2019-11-184
| | | | | | | Some LMTP servers, Dovecot's in particular, trims leading dots that are not doubled (e.g. “.foo” would become “foo”). In RFC 5322 sec. 4.5.2 explicitly says that when an RFC 5322 line starts with a '.', the character needs to be doubled.
* pullimap: Treat messages with a NIL RFC822 attribute as empty.Guilhem Moulin2019-11-182
|
* interimap: Gracefully ignore messages with NIL RFC822 attribute.Guilhem Moulin2019-11-172
| | | | | | Like we do for zero-length messages. Closes: #944812.
* Improve “UIDVALIDITY changed!” error message.Guilhem Moulin2019-11-152
| | | | | Mention the name of the problematic mailbox. (We may detect the violation while not in SELECTED state.)
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-05 02:08:50 +0000