Commit graph

105 commits

Author SHA1 Message Date
Andreas Rammhold
4fee20e267
dovecot: add the dovecot NixOS test to passthru.tests
While we already had some test we might as well add the test for that
exact package to the tests attribute set. After all that should be what
(primarily) tests dovecot.
2021-01-04 17:45:28 +01:00
Andreas Rammhold
58c7d3ff17
dovecot: 2.3.11.3 -> 2.3.13
This fixes CVE_2020-24386, CVE-2020-25725 and a bunch of regular bugs
[1].

* CVE-2020-24386: Specially crafted command can cause IMAP hibernate to
	  allow logged in user to access other people's emails and filesystem
	  information.

* CVE-2020-25275: Mail delivery / parsing crashed when the 10 000th MIME part was
  message/rfc822 (or if parent was multipart/digest). This happened
  due to earlier MIME parsing changes for CVE-2020-12100.

[1] https://raw.githubusercontent.com/dovecot/core/2.3.13/NEWS
2021-01-04 17:37:32 +01:00
Rickard Nilsson
5d4cc0e25c Unmaintain a few packages 2020-09-24 21:12:32 +02:00
Robert Schütz
c62812c321 dovecot_pigeonhole: 0.5.10 -> 0.5.11 2020-08-13 09:56:43 +02:00
Robert Schütz
4f5b797ec3 dovecot: 2.3.10.1 -> 2.3.11.3 2020-08-13 09:54:32 +02:00
Léo Gaspard
b0a2d1cef7
Merge pull request #78780 from ju1m/dovecot_fts_xapian
Dovecot plugin for Full Text Search (FTS) with Xapian
2020-06-16 22:00:26 +02:00
Martin Weinelt
6cf48856d2
dovecot: v2.3.10 → v2.3.10.1
Fixes: CVE-2020-10957, CVE-2020-10958, CVE-2020-10967
2020-05-18 18:40:40 +02:00
Julien Moutinho
8be7358384 maintainers: add julm 2020-05-09 14:13:31 +02:00
Julien Moutinho
1ef7bea94d dovecot_fts_xapian: init at 1.3.1 2020-05-09 13:46:53 +02:00
R. RyanTM
da5e9d4ab9 dovecot_pigeonhole: 0.5.9 -> 0.5.10 2020-03-13 03:37:40 +00:00
R. RyanTM
8d08f45368 dovecot: 2.3.9.3 -> 2.3.10 2020-03-12 00:00:26 +00:00
Franz Pletz
f9a34082e6
dovecot: 2.3.9.2 -> 2.3.9.3
Fixes CVE-2020-7046 & CVE-2020-7957:

  https://dovecot.org/pipermail/dovecot-news/2020-February/000429.html
2020-02-17 15:14:29 +01:00
Milan Pässler
a77524e2e3 dovecot_pigeonhole: 0.5.8 -> 0.5.9
Fixes build with dovecot 2.3.9+.
2019-12-17 23:28:27 +01:00
Andreas Rammhold
cd394340d8
dovecot: 2.3.8 -> 2.3.9.2
Update to latest version & updated the patch file to match with the
lastest verison.

Fixes the following security issue:
  * CVE-2019-19722: Mails with group addresses in From or To fields
    caused crash in push notification drivers.
2019-12-15 20:11:01 +01:00
Robert Schütz
395cdd7d4c dovecot_pigeonhole: 0.5.7.2 -> 0.5.8
https://dovecot.org/pipermail/dovecot-news/2019-October/000420.html
2019-10-09 17:09:47 +02:00
Robert Schütz
5f03f32fa6 dovecot: 2.3.7.2 -> 2.3.8
https://dovecot.org/pipermail/dovecot-news/2019-October/000419.html
2019-10-09 17:08:50 +02:00
Vladimír Čunát
22a216849b
Re-Revert "Merge branch 'staging-next'"
This reverts commit f8a8fc6c7c.
2019-09-22 09:38:09 +02:00
Vladimír Čunát
f8a8fc6c7c
Revert "Merge branch 'staging-next'"
This reverts commit 41af38f372, reversing
changes made to f0fec244ca.

Let's delay this.  We have some serious regressions.
2019-09-21 20:05:09 +02:00
Izorkin
329a88efa7 treewide: replace mysql.connector-c to libmysqlclient 2019-09-09 15:55:34 +03:00
Frederik Rietdijk
fc74ba8291 Merge master into staging-next 2019-08-31 09:50:38 +02:00
Andreas Rammhold
46ff96c05b
dovecot-pigeonhole: 0.5.7.1 -> 0.5.7.2 (CVE-2019-11500)
This is a followup on #67623
2019-08-28 17:57:57 +02:00
Daniel Frank
d7582c994d
dovecot: 2.3.7.1 -> 2.3.7.2 (CVE-2019-11500) 2019-08-28 15:01:36 +02:00
Vladimír Čunát
2e6bf42a22
Merge branch 'master' into staging-next
There ver very many conflicts, basically all due to
name -> pname+version.  Fortunately, almost everything was auto-resolved
by kdiff3, and for now I just fixed up a couple evaluation problems,
as verified by the tarball job.  There might be some fallback to these
conflicts, but I believe it should be minimal.

Hydra nixpkgs: ?compare=1538299
2019-08-24 08:55:37 +02:00
Robin Gloster
4e60b0efae
treewide: update globin's maintained drvs 2019-08-20 19:36:05 +02:00
volth
46420bbaa3 treewide: name -> pname (easy cases) (#66585)
treewide replacement of

stdenv.mkDerivation rec {
  name = "*-${version}";
  version = "*";

to pname
2019-08-15 13:41:18 +01:00
Izorkin
4f38967ce2 dovecot_pigeonhole: 0.5.6 > 0.5.7.1 2019-07-25 15:33:59 +03:00
Izorkin
e2173096b3 dovecot: 2.3.7 > 2.3.7.1 2019-07-25 15:32:50 +03:00
R. RyanTM
5eb574010e dovecot: 2.3.6 -> 2.3.7
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/dovecot/versions
2019-07-15 01:18:44 -07:00
Robert Schütz
c38b485197 dovecot_pigeonhole: 0.5.5 -> 0.5.6
https://dovecot.org/pipermail/dovecot-news/2019-April/000411.html
2019-04-30 15:56:59 +02:00
Robert Schütz
427dfadfa9 dovecot: 2.3.5.2 -> 2.3.6
fixes CVE-2019-11494 and CVE-2019-11499
https://dovecot.org/pipermail/dovecot-news/2019-April/000408.html
2019-04-30 15:43:10 +02:00
Robert Schütz
041fc67610 dovecot: 2.3.5.1 -> 2.3.5.2
https://dovecot.org/pipermail/dovecot-news/2019-April/000407.html
fixes CVE-2019-10691
2019-04-18 16:53:36 +02:00
Robert Schütz
640416bf71
dovecot_pigeonhole: 0.5.4 -> 0.5.5 (#58511)
This is the appropriate version for dovecot 2.3.5 according to
https://dovecot.org/pipermail/dovecot-news/2019-March/000400.html
2019-04-02 10:16:26 +02:00
Robert Schütz
d3ca36bd64 dovecot: 2.3.5 -> 2.3.5.1
https://dovecot.org/list/dovecot-news/2019-March/000401.html
fixes CVE-2019-7524
2019-03-28 14:00:15 +01:00
R. RyanTM
2ba743d5b5 dovecot: 2.3.4.1 -> 2.3.5
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/dovecot/versions
2019-03-21 08:36:33 -07:00
Robert Schütz
d49ffaac8a dovecot: 2.3.4 -> 2.3.4.1
fixes CVE-2019-3814:
https://dovecot.org/list/dovecot-news/2019-February/000394.html
2019-02-06 15:54:11 +01:00
Jörg Thalheim
562d9d472c dovecot: fix cross-build 2018-12-11 18:13:21 +01:00
Robert Schütz
b6c96c6419 dovecot: 2.3.3 -> 2.3.4, dovecot_pigeonhole: 0.5.3 -> 0.5.4 2018-11-24 17:03:22 +01:00
Léo Gaspard
2986ce16a8
meta.tests: rename into passthru.tests
Nix currently rejects derivations in `meta` values. This works around
that limitation by using `passthru` instead.

Closes https://github.com/NixOS/nixpkgs/issues/50230
2018-11-11 23:11:46 +09:00
Peter Simons
4fc8527697 dovecot, opensmtpd: comment out invalid meta.tests attribute
See https://github.com/NixOS/nixpkgs/issues/50230 for details.
2018-11-11 14:02:20 +01:00
Matthew Bauer
51e8c7943c dovecot: remove install_name_tool
No longer needed now that libclucene has the right install name.
2018-11-07 13:02:50 -06:00
Léo Gaspard
02e1f00ffd
dovecot, opensmtpd: add link to test in meta.tests
Rationale
---------

Currently, tests are hard to discover. For instance, someone updating
`dovecot` might not notice that the interaction of `dovecot` with
`opensmtpd` is handled in the `opensmtpd.nix` test.

And even for someone updating `opensmtpd`, it requires manual work to go
check in `nixos/tests` whether there is actually a test, especially
given not so many packages in `nixpkgs` have tests and this is thus most
of the time useless.

Finally, for the reviewer, it is much easier to check that the “Tested
via one or more NixOS test(s)” has been checked if the file modified
already includes the list of relevant tests.

Implementation
--------------

Currently, this commit only adds the metadata in the package. Each
element of the `meta.tests` attribute is a derivation that, when it
builds successfully, means the test has passed (ie. following the same
convention as NixOS tests).

Future Work
-----------

In the future, the tools could be made aware of this `meta.tests`
attribute, and for instance a `--with-tests` could be added to
`nix-build` so that it also builds all the tests. Or a `--without-tests`
to build without all the tests. @Profpatsch described in his NixCon talk
such systems.

Another thing that would help in the future would be the possibility to
reasonably easily have cross-derivation nix tests without the whole
NixOS VM stack. @7c6f434c already proposed such a system.

This RFC currently handles none of these concerns. Only the addition of
`meta.tests` as metadata to be used by maintainers to remember to run
relevant tests.
2018-10-30 21:31:39 +09:00
R. RyanTM
e00bfcd798 dovecot_pigeonhole: 0.5.2 -> 0.5.3 (#47820)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/dovecot-pigeonhole/versions
2018-10-10 23:27:56 +02:00
R. RyanTM
5a6c4d39fb dovecot: 2.3.2.1 -> 2.3.3 (#47814)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/dovecot/versions
2018-10-10 23:27:28 +02:00
Julien Moutinho
27f95f3f9c dovecot: allow sasl_bind=yes in the LDAP driver.
Dovecot has its own SASL implementation,
but needs Cyrus SASL's headers to bind to an LDAP server using SASL.

This is useful to avoid the need to manage a dnpass= in dovecot-ldap.conf
by using the Unix socket to authenticate.

This is done with sasl_mech=EXTERNAL in dovecot-ldap.conf, and some olcAccess: with
 by dn="gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" read
in the slapd's cn=config for the LDAP database queried by dovecot/auth (which runs as root).
2018-09-19 17:20:29 +02:00
Lluís Batlle i Rossell
66d7126255 Take me (viric) out of most maintenance
Since years I'm not maintaining anything of the list below other
than some updates when I needed them for some reason. Other people
is doing that maintenance on my behalf so I better take me out but
for very few packages. Finally!
2018-07-22 21:50:19 +02:00
volth
52f53c69ce pkgs/*: remove unreferenced function arguments 2018-07-21 02:48:04 +00:00
R. RyanTM
2d1d17032b dovecot: 2.3.2 -> 2.3.2.1 (#43351)
Semi-automatic update generated by https://github.com/ryantm/nixpkgs-update tools. This update was made based on information from https://repology.org/metapackage/dovecot/versions.
2018-07-11 17:51:32 +02:00
Robert Schütz
21774be1bd dovecot: 2.3.1 -> 2.3.2, dovecot-pigeonhole: 0.5.1 -> 0.5.2 (#42779) 2018-06-30 13:41:39 +02:00
Silvan Mosberger
57bccb3cb8 treewide: http -> https sources (#42676)
* treewide: http -> https sources

This updates the source urls of all top-level packages from http to
https where possible.

* buildtorrent: fix url and tab -> spaces
2018-06-28 20:43:35 +02:00
John Wiegley
80e730c9a4 Allow some packages to build on darwin as well 2018-03-30 15:39:25 -07:00