aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFiles
* tests: Ensure that pullimap locks its statefile.HEADmasterGuilhem Moulin2024-04-051
|
* tests/*/t: Explicitly pass `-in /dev/stdin` to openssl(1).Guilhem Moulin2024-03-066
|
* tests/certs/generate: Generate X.509 version 3 CA.Guilhem Moulin2024-03-061
| | | | | And pass CA:TRUE as basic constraint. This fixes the test suite with OpenSSL 3.2 with defaults to X.509v3 and CA:FALSE.
* tests/*/t: Replace filetype=sh with filetype=bash.Guilhem Moulin2024-03-0642
|
* Replace '$(dir $@)' with '$(@D)' in Makefile.Guilhem Moulin2022-03-101
|
* Prepare new release v0.5.7.v0.5.7Guilhem Moulin2022-02-274
|
* Documentation: Replace `foo=~/bar` with `foo=$HOME/bar`.Guilhem Moulin2022-02-271
| | | | POSIX doesn't mandate expansion of the former.
* Mention that interimap ≤0.5.6 did honor umask for DB creation.Guilhem Moulin2022-02-271
| | | | | | | | The commit message for 2447861913835637bbf49d96728ce9ac6ab0ae22 was misleading. DB creation does obey umask settings as of perl 5.34.0-3, libdbi-perl 1.643-3+b2, libdbd-sqlite3-perl 1.70-3+b1 and libsqlite3-0 3.37.2-2 from Debian Sid. Prefixing `make installcheck-interimap` with `umask 0077` makes the test suite pass for interimap 0.5.6-1.
* wibbleGuilhem Moulin2022-02-251
|
* Update copyright years.Guilhem Moulin2022-02-254
|
* tests/pullimap: Allow easy exclusion of --idle'ing tests.Guilhem Moulin2022-02-252
|
* tests/certs/generate: Use custom openssl.cnf.Guilhem Moulin2022-02-253
| | | | To avoid depending on the system default.
* tests/certs/generate: Redirect known error output to the standard output.Guilhem Moulin2022-02-252
| | | | That way we can avoid using autopkgtest's 'allow-stderr' restriction.
* Split interimap and pullimap test suites.Guilhem Moulin2022-02-255
|
* Documentation: Update URL targets from https://wiki.dovecot.org to ↵Guilhem Moulin2022-02-243
| | | | https://doc.dovecot.org .
* Update Changelog for v0.5.7.Guilhem Moulin2022-02-241
|
* interimap, pullimap: Ensure DB and statefiles are created with mode 0600.Guilhem Moulin2022-02-235
| | | | | | | It wasn't the case for interimap(1), see https://bugs.debian.org/608604 … Fortunately we create $XDG_DATA_HOME/interimap with a secure mode, but there is no reason to have the DB world-readable. Since we can't rely on SQLITE_OPEN_CREATE for secure mode we use sysopen(,,O_CREAT,0600).
* Document how to install without root privileges.Guilhem Moulin2022-02-232
| | | | | And make location for systemd user unit files configurable with systemd_userunitdir=.
* Fix minor space damage.Guilhem Moulin2022-02-231
|
* Makefile: Add target 'install-nodoc'.Guilhem Moulin2022-02-231
|
* Makefile: Replace shell test with $(if ,,).Guilhem Moulin2022-02-231
|
* Fix/improve doc/build.md.Guilhem Moulin2022-02-232
| | | | | | Update instructions/documentation obsolete since a1c089b997ebf705a9023b4f0f97327e5bd2814e and 733ed91162b02cd0fa5d7d1c443c780d3d4405e9.
* `make clean`: Also remove test keys and certificates.Guilhem Moulin2022-02-231
|
* Makefile: Add target 'installcheck' for post-install tests.Guilhem Moulin2022-02-231
|
* Makefile: Rename 'test' target to 'check'.Guilhem Moulin2022-02-232
| | | | Per convention, cf. https://www.gnu.org/prep/standards/html_node/Standard-Targets.html .
* Makefile: Add target 'all-nodoc'.Guilhem Moulin2022-02-231
| | | | This is useful for Debian packages built under ‘nodoc’ profile.
* Don't assume Net::IMAP::InterIMAP is always in @INC.Guilhem Moulin2022-02-238
| | | | | | | | | And make the installation path configurable at `make` time. Moreover, adjust the 'test' target so the site directory and interimap/pullimap path are configurable with INTERIMAP_I and INTERIMAP_PATH respectively. That way one can run `tests/run foo` to check the source, `make test` to check what's been built, and we also have the possibility to check the installed program e.g. for autopkgtests.
* Add https://guilhem.org/interimap/ documentation to .service files.Guilhem Moulin2022-02-233
|
* Don't hardcode $(bindir) in .service files.Guilhem Moulin2022-02-234
|
* Makefile: Honor builddir=.Guilhem Moulin2022-02-232
| | | | | Defaulting to ‘build’. Also, remove BUILD_DOCDIR= (replaced with ‘$(builddir)/doc’).
* Makefile: Ignore errors when installing manual pages.Guilhem Moulin2022-02-231
| | | | Per https://www.gnu.org/prep/standards/html_node/Standard-Targets.html#Standard-Targets .
* Makefile: Improve DESTDIR= handling.Guilhem Moulin2022-02-231
| | | | Per https://www.gnu.org/prep/standards/html_node/DESTDIR.html .
* Makefile: Honor INSTALL_PROGRAM and INSTALL_DATA.Guilhem Moulin2022-02-221
| | | | Cf. https://www.gnu.org/prep/standards/html_node/Command-Variables.html .
* Makefile: Honor srcdir=.Guilhem Moulin2022-02-221
| | | | Cf. https://www.gnu.org/prep/standards/html_node/Directory-Variables.html .
* Tests: Dovecot: Bump min protocol level to TLSv1.2.Guilhem Moulin2022-02-211
| | | | | And use security level 2 for ssl_cipher_list. As of dovecot 2.3.18 ssl_min_protocol defaults to TLSv1.2.
* Tests: TLS ciphers/protocols: Downgrade security level to 0.Guilhem Moulin2022-02-212
| | | | | | This is required to test TLS version <1.2 on systems with higher security levels, see SSL_CTX_set_security_level(3ssl). Addapted from a patch from <xnox> for Unbuntu.
* Improve message for unknown untagged UIDNEXT response.Guilhem Moulin2021-02-221
| | | | | | | | | | | | | | | | | Per RFC3501 §6.3.1 and §6.3.2 ‘UIDNEXT’ must be returned in an OK untagged response. See also Appendix B#34. However §6.3.1 suggests that it's in fact optional: “If this is missing, the client can not make any assumptions about the next unique identifier value.” A correction was proposed in Errata ID 3445 https://www.rfc-editor.org/errata/eid3445 , and rejected on the ground that clients SHOULD support the implement default behavior for missing data. We heavily rely on the ‘UIDNEXT’ presence and won't implement a workaround for its absence; instead we panic() with a more informative message.
* Prepare new release v0.5.6.v0.5.6Guilhem Moulin2021-01-014
|
* doc/template.html: remove type attribute from <style/> element.Guilhem Moulin2021-01-012
|
* Bump required Net::SSLeay version to 1.86_06.Guilhem Moulin2021-01-013
| | | | | | | | | | | That's when get_version() was introduced. Unfortunately the manual doesn't mention it, but 1.85 is lacking the function, see https://github.com/radiator-software/p5-net-ssleay/blob/1.88/Changes#L216 https://github.com/radiator-software/p5-net-ssleay/commit/ae33bb5405dadde973bc25a0c5e3941d5c83f8b1 Compatibility with Net::SSLeay 1.83 can be restored by reverting this commit and 35f4ecefa9c9ff55acfdb337b215e3d13345c86d.
* Prepare new release v0.5.5.v0.5.5Guilhem Moulin2020-12-264
|
* typofixGuilhem Moulin2020-12-171
|
* libinterimap: new option SSL_ciphersuites to set the TLSv1.3 ciphersuites.Guilhem Moulin2020-12-179
| | | | | Also, clarify that SSL_cipherlist only applies to TLSv1.2 and below. See SSL_CTX_set_cipher_list(3ssl).
* manuals: Clarify that known TLS protocol versions depend on the OpenSSL ↵Guilhem Moulin2020-12-173
| | | | version used.
* test suite: use stock OpenSSL config except for tests/tls-protocols.Guilhem Moulin2020-12-174
| | | | | It's best to use a stock (clean) environment when possible. We only need to test TLS protocol version <1.2 for tests/tls-protocols.
* typofixGuilhem Moulin2020-12-132
|
* Remove obsolete Changelog entry.Guilhem Moulin2020-12-131
|
* manual: improve wording.Guilhem Moulin2020-12-132
|
* libinterimap: _start_ssl() now fails immediately with OpenSSL <1.1.0.Guilhem Moulin2020-12-132
| | | | | | | It could in principle still work with earlier versions if the new settings SSL_protocol_{min,max} are not used, however it's cumbersome to do individual checks for specific settings, let alone maintain test coverage with multiple OpenSSL versions.
* libinterimap: use default locations for trusted CA certificates when neither ↵Guilhem Moulin2020-12-138
| | | | | | | | | | | CAfile nor CApath are set. In particular, OpenSSL's default locations can be overridden by the SSL_CERT_FILE resp. SSL_CERT_DIR environment variables, see SSL_CTX_load_verify_locations(3ssl). This bumps the minimum OpenSSL version to 1.1.0 (when SSL_verify is used).