aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFiles
* Move SSL fingerprint verification to the the verify callback.Guilhem Moulin2015-09-162
|
* Display the certificate chain, SSL protocol and cipher in debug mode.Guilhem Moulin2015-09-162
|
* Set X.509 certificate purpose to 'SSL Server' for SSL_verify=YES.Guilhem Moulin2015-09-162
|
* Don't set SO_KEEPALIVE on the socket.Guilhem Moulin2015-09-152
| | | | | This is most likely useless in our case since the TCP keepalive time is usually much higher than the IMAP timeout.
* Remove support for the Binary Content extension [RFC3516].Guilhem Moulin2015-09-156
| | | | | | | | | | | | | “If the server does not know how to decode the section's CTE, it MUST fail the request and issue a "NO" response that contains the "UNKNOWN-CTE" extended response code.” — [RFC3516 section 4.3] Unfortunately the client doesn't know which message couldn't be decoded, so it can't fallback and use BODY instead. This made ‘use-binary=NO’ pretty much mandatory. Hence we remove support for BINARY [RFC3516]. Instead, we increase the thresold for when to add Zlib full flush points from 4096 to the buffer size (32768).
* Don't catch SIGHUP as it only work during IDLE.Guilhem Moulin2015-09-153
| | | | | Sending any signal while some mails are being copied interrupts the syscall (eg, write) and attempting to resume crashes interimap.
* wibbleGuilhem Moulin2015-09-152
|
* Add the ability to proxy TCP connections through a SOCKSv5 proxy.Guilhem Moulin2015-09-154
|
* Replace IO::Socket::INET dependency by the lower lever Socket to enable IPv6.Guilhem Moulin2015-09-153
|
* Add a SIGNAL section to the manpage.Guilhem Moulin2015-09-141
|
* wibbleGuilhem Moulin2015-09-141
|
* Accept non-fully qualified commands.Guilhem Moulin2015-09-142
|
* Pass literals by reference to save memory.Guilhem Moulin2015-09-142
|
* Replace IO::Socket::SSL dependency by the lower level Net::SSLeay.Guilhem Moulin2015-09-135
| | | | | | | | | | | | Also, * Rename the 'SSL_verify_trusted_peer', 'SSL_ca_path', and 'SSL_cipher_list' options to 'SSL_CApath', 'SSL_verify' and 'SSL_cipherlist', respectively. * Add an option 'SSL_CAfile' to specify a file containing trusted certificates to use during server certificate authentication. * Replace Compress::Zlib dependency by the lower level Compress::Raw::Zlib.
* Fix detection of boolean options.Guilhem Moulin2015-09-132
|
* Use 0/1 internally for 'NO'/'YES'.Guilhem Moulin2015-09-111
|
* Factor the SSL code (imaps and STARTTLS).Guilhem Moulin2015-09-112
| | | | | | | | Also, add SSL options SINGLE_ECDH_USE, SINGLE_DH_USE, NO_SSLv2, NO_SSLv3 and NO_COMPRESSION to the compiled-in CTX options. And use SSL_MODE_AUTO_RETRY to avoid SSL_read failures during a handshake.
* Print IMAP traffic stats when receiving a SIGHUP.Guilhem Moulin2015-09-103
|
* Don't warn that no compression is enabled if the server doesn't support it.Guilhem Moulin2015-09-101
|
* wibbleGuilhem Moulin2015-09-101
|
* Exit with return value 0 when receiving a TERM signal.Guilhem Moulin2015-09-092
|
* Bump version.Guilhem Moulin2015-09-092
|
* Add a list of supported extensions.Guilhem Moulin2015-09-092
|
* Refactoring.Guilhem Moulin2015-09-092
|
* Add support for the Binary Content extension [RFC3516].Guilhem Moulin2015-09-095
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Unfortunately as of Debian Wheezy it doesn't work for Dovecot with COMPRESS=DEFLATE [RFC4978] and non-synchronizing literals. perl -e 'use Compress::Raw::Zlib; print "a COMPRESS DEFLATE\r\n"; sleep 1; my $d = new Compress::Raw::Zlib::Deflate( -WindowBits => -15 ); $d->deflate("b APPEND TRASH ~{1+}\r\nx\r\n", my $buf); print $buf; $d->flush($buf, Z_SYNC_FLUSH); print $buf; sleep 1; ' | /usr/lib/dovecot/imap imap(guilhem): Panic: stream doesn't support seeking backwards Interestingly, it works just fine for non-binary literals: perl -e 'use Compress::Raw::Zlib; print "a COMPRESS DEFLATE\r\n"; sleep 1; my $d = new Compress::Raw::Zlib::Deflate( -WindowBits => -15 ); $d->deflate("b APPEND TRASH {1+}\r\nx\r\n", my $buf); print $buf; $d->flush($buf, Z_SYNC_FLUSH); print $buf; sleep 1; ' | /usr/lib/dovecot/imap However I can't reproduce the problem Dovecot 2.2.18 and Debian Sid (but it doesn't help to install Dovecot from testing to my Wheezy box.)
* Add a configuration option 'null-stderr=YES'.Guilhem Moulin2015-09-094
| | | | To send STDERR to /dev/null for type=tunnel.
* Add support for the IMAP COMPRESS extension [RFC4978].Guilhem Moulin2015-09-097
| | | | | Also, add traffic statistics after closing the connection to the IMAP server.
* wibbleupstream/0.1Guilhem Moulin2015-09-081
|
* Add an option --watch to keep the connections open and wait for changes.Guilhem Moulin2015-09-084
|
* wibbleGuilhem Moulin2015-09-081
|
* Block SIGINT signals to the children for type=tunnel.Guilhem Moulin2015-09-083
| | | | So we can clean after us (and for instance remove the lockfile).
* Rename ‘imapsync’ to ‘interimap’.Guilhem Moulin2015-09-078
| | | | To avoid confusion with http://imapsync.lamiral.info .
* Add a note imapsync vs. offlineimap.Guilhem Moulin2015-09-071
|
* Add instruction for how to build a Debian package from the last release.Guilhem Moulin2015-09-071
|
* Add instructions for how to build the Debian package.Guilhem Moulin2015-09-061
|
* Promote SSH connections to the remote IMAP server.Guilhem Moulin2015-09-061
|
* wibbleGuilhem Moulin2015-09-061
|
* Getopt::Long is a core module.Guilhem Moulin2015-09-061
|
* Fix typo: lUID ↔ rUID.Guilhem Moulin2015-09-061
|
* Message Sequence Match Data: sequence set come before UIDs.Guilhem Moulin2015-09-062
| | | | | | Cf. RFC 7162: seq-match-data = "(" known-sequence-set SP known-uid-set ")"
* Add README file.Guilhem Moulin2015-09-051
|
* Add INSTALL file.Guilhem Moulin2015-09-051
|
* typoGuilhem Moulin2015-09-051
|
* Sample UIDs in SELECT $mailbox (QRESYNC ...) commands.Guilhem Moulin2015-09-052
| | | | | | | | | This should avoids most false-positive among messages reported as VANISHED by the server but unknown from the database. The reason for this server behavior is that QRESYNC [RFC7162] doesn't force the server to remember the MODSEQs of EXPUNGEd messages. By passing a sample of known UIDs/sequence numbers we let the server know that the messages have been EXPUNGEd [RFC7162, section 3.2.5.2].
* typoGuilhem Moulin2015-09-011
|
* typoGuilhem Moulin2015-09-011
|
* Use groff's mailto markup.Guilhem Moulin2015-09-011
|
* typoGuilhem Moulin2015-09-011
|
* Compress "No match for vanished local/remote UID ..." warnings.Guilhem Moulin2015-09-011
|
* Unconditionally restart the systemd service.Guilhem Moulin2015-08-201
| | | | | | | | It's unfortunate in that the service keep restarting every n secs in case the remote server is down. Ideally systemd would offer a way to restart services with a non-constant (e.g., exponential) progression in case of failure.