summaryrefslogtreecommitdiff
path: root/imap
AgeCommit message (Collapse)Author
2020-01-09 * When Alpine is built with the option --with-bundled-tools, the "makeEduardo Chappa
install" command will also install the mailutil program. Feature contributed by Professor Ryan Elliot.
2020-01-04 * The feature that stopped alpine from saving passwords in the passwordEduardo Chappa
file prevented users from actually saving their passwords in Windows and MAC OS. Fix the code so that passwords will be saved. Also, update the documentation of this feature. * Fix a buffer overflow bug in the XOAUTH2 code (off by one error). * Update PC-Alpine to work with Libressl version 3.0.2 instead of version 2.5.5 (update build.bat and lib files from the LibreSSL build). * Erase SSLXXXXXX file. * ssl_nt.c actually directs the code to ssl_libressl.c or ssl_win.c. The file ssl_libressl.c is the file ssl_unix.c from the unix osdep directory. The file ssl_win.c is the native SSL windows code. The Unix side provides S/MIME support for Alpine and the latest encryption protocols support for Alpine when connecting to a secure server, while the windows side provide TLSv1_3 support for Alpine, but not S/MIME support. In order to provide unix code for TLSv1_3 (once LibreSSL supports it) edit the file os_nt.c and remove the comments on the #ifdef section. This would provide both TLSv1_3 and S/MIME support with unix code. On the other hand, when we provide TLSv1_3 with the Windows code we need to undefine DF_ENCRYPTION_RANGE, and this is done in the file include/config.wnt.h. The way this is done as of this moment is by commenting an #else directive that preceedes this #undefine. * Update makefile.nt and friends in the windows side to account for the addition of XOAUTH2, and the use of only ssl_nt.c when dealing with Alpine. * Define SMIME_SSLCERTS as c:\libressl\ssl\certs, so that these certificates be considered while checking a digital S/MIME signature. * Improvements to the SMARTTIME24 token to account for changes in year.
2019-11-25 * Add lnpno port to imap/src/osdep/unix/Makefile to account for ports that doEduardo Chappa
not need/want to build using pam. Add more robustness to the configure process, to add -lcrypt to the build flags when --with-bundled-tools=no is given.
2019-11-23 * Change in build process. Now Alpine will not build the imap tools byEduardo Chappa
default. In order to build the imap tools (such as mtest, imapd, etc.) the configure script must be given the --with-bundled-tools option. Similarly, libpam is not required anymore, unless the option --with-bundled-tools is used.
2019-10-27 * Fix a bug in commit 418e8bc5789d... which made Alpine ignore a challengeEduardo Chappa
during authentication using CRAM-MD5. The intention was to ignore the challenge in the PLAIN authentication. This made Alpine fail to authenticate when using the CRAM-MD5 authenticator. Reported by Stefan Mueller.
2019-10-08 * Compilation problem and error in logic in function ssl_validate_cert.Eduardo Chappa
The issue with logic was that of the two checks for validation of if the first one was not done, the second one would not be done. The intention was to do the second check if the first check failed. Reported by Erich Ecknet.
2019-10-06 * Check for name of server in "server validation code" in more places.Eduardo Chappa
* Document request message for first time use reports IMAP for any remote connection. Report the correct type of service instead.
2019-09-26 * Return a read() to be a read of one byte. The current code has a codeEduardo Chappa
for a read of zero bytes, but this causes problems. Reported by Greg Oster.
2019-09-06 * Fixes so that Alpine will build in the Windows operating system. ThisEduardo Chappa
update takes care of building with LibreSSL.
2019-09-01 * Improvements to documentation and behavior of Alpine when users get aEduardo Chappa
non-empty challenge in a smtp server.
2019-08-22 * Ignore extra text in challenge from smtp server during authentication.Eduardo Chappa
2019-08-20 * Improve code that determines the type of encryption that is used accordingEduardo Chappa
to user's request.
2019-07-11 * Alpine crashes when trying to post an article in a newsgroup and theEduardo Chappa
connection is closed while the post is being composed, but later the post is attempted to be sent. In some instances, the stream may be open and closed during this time, but Alpine does not realize the connection was closed and attempts the post without a netstream, producing a crash.
2019-07-05 * Fix compilation error produced when a specific encryption protocolEduardo Chappa
has been disabled during the compilation of the Openssl library.
2019-06-22 * New version 2.21.99999 (06/22/2019)Eduardo Chappa
2019-05-23 * Code to limit versions of the encryption protocol uses old calls,Eduardo Chappa
and not the new calls.
2019-05-08 * Buffer overflow bug on auth_md5.c, where not enough dynamic memoryEduardo Chappa
was being allocated. Based on a report by Erich Eckner.
2019-05-04 * Initial release of XOAUTH2 authentication support in Alpine forEduardo Chappa
Gmail.
2019-04-28 * Compilation failure in Solaris when ldap is enabled. Reported byEduardo Chappa
"mechanic" in comp.mail.pine. * Configure script modifications to set the ldap-dir value correctly. * Fix some typos in documentation.
2019-02-28 * Clean up some code in the ssl_unix module. It adds to the lastEduardo Chappa
modifications in the ssl_unix module.
2019-02-17 * Rewrite support for specific SSL encryption protocols, includingEduardo Chappa
a. Add a new variable: encryption-protocol-range, which can be used to specify the minimum and maximum versions of the TLS protocol that Alpine will attempt to use to encrypt its communication with the server. b. Add support for the Server Name Identification (SNI) extension needed for TLSv1.3. c. Remove the DTLS code. It was not being used.
2019-02-15 * Restore recognition of empty directories. It was deleted by mistakeEduardo Chappa
when added support for internationalization in folders. Based on a report by Michael Rutter.
2019-02-15 * Add /auth=XYZ to the way to define a server. This allows users toEduardo Chappa
select the method to authenticate to an IMAP, SMTP or POP3 server. Examples are /auth=plain, or /auth=gssapi, etc.
2019-01-26 * Ignore errors coming from errors in parsing the ID from an IMAPEduardo Chappa
server. Based on a report by Stefan in the Alpine-info mailing list.
2018-12-08 * Let the client do a RSET when an error occurs while sending anEduardo Chappa
email via SMTP, but still report the previous error to the client.
2018-12-08 * Alpine would not report an error correctly in the case that there wasEduardo Chappa
a failure using an SMTP server. This was due to c-client sending a RSET command after the failure and Alpine reporting the reply of this command.
2018-09-30 * Define TLS_client_version to be the highest TLSv1*_client_methodEduardo Chappa
that is available in case that this is not defined by OpenSSL.
2018-09-29 * Add the /tls1_3 modifier to establish connections use the TLS protocolEduardo Chappa
version 1.3.
2018-08-12 * Several changes to the compilation of Alpine in Windows to useEduardo Chappa
LibreSSL in connecting to external servers. This complements the changes to support S/MIME. In particular, we add support for validation of certificates by using C:\\libressl\ssl\certs as the place to save CA certificates. In order to help users, some certificates are distributed. TODO: Kerberos port, w2k.
2018-07-06 * Remap UBOGON from 0xfffd to 0xfff8, since 0xfffd represents a missingEduardo Chappa
character in UTF-8, but 0xfff8 is undefined.
2018-07-04 * Kerberos was included twice in OSX due to a double definition of gssEduardo Chappa
coming from the configure script and imap/Makefile. Remove the double definition from imap/Makefile. Reported and patched by Wang Kang.
2018-06-14 * More changes to make Valgrind happy.Eduardo Chappa
2018-05-21 * Add the "g" option to the select command that works in IMAPEduardo Chappa
servers that implement the X-GM-EXT-1 capability (such as the one offered by Gmail.) This allows users to do selection in Alpine as if they were doing a search in the web interface for Gmail.
2018-05-13 * For a calendar entry with method PUBLISH, we show all entries in the ↵Eduardo Chappa
calendar. When "More Details" is selected for each individual event, the description of that entry is shown only. When the calendar is opened from the view attachment list screen, all entries will be shown. Mske sure there are no memory leaks. * Reverse some of the changes to make valgrind happy, as this may make Alpine crash by using memory that was released.
2018-05-13 * More changes to make Valgrind happy. Work in progress.Eduardo Chappa
2018-02-26 * New version 2.21.999Eduardo Chappa
* rewrite of some code in pith/ical.c to make sure function prototypes are correct. * Add a separator line to the calendar entry in case, the calendar is sent as the main body of the message.
2018-01-14 * Change to imap4r1.c to ignore text after a reply to a STATUSEduardo Chappa
command. The Exchange server adds a white space (US-ASCII 32) at the end of the reply to a STATUS command, making the parser fail, and ignoring the reply of the STATUS command.
2018-01-07 * Redefine TLSv1_1_client_method and TLSv1_2_client_methodEduardo Chappa
to TLS_client_methodto when compiling Alpine with OpenSSL 1.1.
2017-12-04 * New version 2.21.99Eduardo Chappa
* The online repo does not mimic the root local directory from which it is created. This is an attempt to fix this. This caused the problem that kerberos was not working with the bytes on the repo, but it would work on the root which created it. Reported by Holger Trapp.
2017-12-02 * Add /usr/local to add automatic support for ldap in Freebsd,Eduardo Chappa
in case the user has ldap installed.
2017-12-02 * Add binaries pico.exe, mailutil.exe, rpload.exe andd rpdump.exeEduardo Chappa
(alpine.exe had already been added in the previous commit.)
2017-09-29 * NTLM authentication support with the ntlm library, in Unix systems.Eduardo Chappa
Based on code provided by Maciej W. Rozycki.
2017-07-18 * Fix a few compiler warnings.Eduardo Chappa
2017-03-17 * New version 2.21Eduardo Chappa
2016-11-18 * Remove limit of encoded words in the c-client library, since anyEduardo Chappa
limit makes a search eventually fail for a long enough encoded word.
2016-09-03 * Alpine does not build with openssl 1.1.0, so this update fixes that.Eduardo Chappa
Users have the option to build with older versions of OpenSSL or with version 1.1.0. The current code is transitional and it is intended that we will move Alpine to build exclusively with version 1.1.0 or above in the future. This update also recognizes if we are using LibreSSL. It was tested with version 2.4.2.
2016-08-11 * Protect all calls to mail_elt in pith/ and alpine/ code. Protect meansEduardo Chappa
to check for correct range of message number before calling mail_elt. * Work in progress: correct some uses of system calls that do not check for returned value. This work will follow the lead given by Christian Kujau and Asheesh Laroia. Expect more changes of this type in subsequent commits.
2016-08-09 * Compilation fails in Debian Hardening, due to a printf call that isEduardo Chappa
not correctly made. Reported and patched by Christian Kujau. Final patch uses fprintf instead of printf.
2016-07-22 * Re-add _BSD_SOURCE, which is deprecated by gcc6. It will be fixedEduardo Chappa
later when it becomes an issue again. * Minor fix to documentation.
2016-07-05 * Do not define _BSD_SOURCE but define _DEFAULT_SOURCE instead.Eduardo Chappa