summaryrefslogtreecommitdiff
path: root/include
AgeCommit message (Collapse)Author
2020-01-07 * Do not add -lcrypt to LIBS when it is not required. Reported by RyanEduardo Chappa
Elliot.
2020-01-04 * The feature that stopped alpine from saving passwords in the passwordEduardo Chappa
file prevented users from actually saving their passwords in Windows and MAC OS. Fix the code so that passwords will be saved. Also, update the documentation of this feature. * Fix a buffer overflow bug in the XOAUTH2 code (off by one error). * Update PC-Alpine to work with Libressl version 3.0.2 instead of version 2.5.5 (update build.bat and lib files from the LibreSSL build). * Erase SSLXXXXXX file. * ssl_nt.c actually directs the code to ssl_libressl.c or ssl_win.c. The file ssl_libressl.c is the file ssl_unix.c from the unix osdep directory. The file ssl_win.c is the native SSL windows code. The Unix side provides S/MIME support for Alpine and the latest encryption protocols support for Alpine when connecting to a secure server, while the windows side provide TLSv1_3 support for Alpine, but not S/MIME support. In order to provide unix code for TLSv1_3 (once LibreSSL supports it) edit the file os_nt.c and remove the comments on the #ifdef section. This would provide both TLSv1_3 and S/MIME support with unix code. On the other hand, when we provide TLSv1_3 with the Windows code we need to undefine DF_ENCRYPTION_RANGE, and this is done in the file include/config.wnt.h. The way this is done as of this moment is by commenting an #else directive that preceedes this #undefine. * Update makefile.nt and friends in the windows side to account for the addition of XOAUTH2, and the use of only ssl_nt.c when dealing with Alpine. * Define SMIME_SSLCERTS as c:\libressl\ssl\certs, so that these certificates be considered while checking a digital S/MIME signature. * Improvements to the SMARTTIME24 token to account for changes in year.
2019-12-19 * Update to configure script to work with LibreSSL. Reported by Michael.Eduardo Chappa
2019-07-09 * Clean up some generated files from the repository and updateEduardo Chappa
gitignore. Suggested by Edmund Lau.
2019-06-22 * New version 2.21.99999 (06/22/2019)Eduardo Chappa
2019-02-28 * Remove generated files from git repository. Patch provided by ErichEduardo Chappa
Eckner.
2019-02-17 * Rewrite support for specific SSL encryption protocols, includingEduardo Chappa
a. Add a new variable: encryption-protocol-range, which can be used to specify the minimum and maximum versions of the TLS protocol that Alpine will attempt to use to encrypt its communication with the server. b. Add support for the Server Name Identification (SNI) extension needed for TLSv1.3. c. Remove the DTLS code. It was not being used.
2018-09-29 * Add the /tls1_3 modifier to establish connections use the TLS protocolEduardo Chappa
version 1.3.
2018-07-06 * Update configure script to remove the search for a linking tclEduardo Chappa
library until the development header have been found, and update C_CLIENT_AUTHS to not to have a trailing space.
2018-06-17 * new version 2.21.9999Eduardo Chappa
2018-02-26 * New version 2.21.999Eduardo Chappa
* rewrite of some code in pith/ical.c to make sure function prototypes are correct. * Add a separator line to the calendar entry in case, the calendar is sent as the main body of the message.
2017-12-04 * New version 2.21.99Eduardo Chappa
* The online repo does not mimic the root local directory from which it is created. This is an attempt to fix this. This caused the problem that kerberos was not working with the bytes on the repo, but it would work on the root which created it. Reported by Holger Trapp.
2017-12-01 * PC-Alpine builds with LibreSSL and supports S/MIME.Eduardo Chappa
2017-09-19 * Upgrade to new version 2.21.9. Version 2.22 will be a bug releaseEduardo Chappa
version
2017-03-23 * New version 2.21.1Eduardo Chappa
2017-03-17 * New version 2.21Eduardo Chappa
2016-12-16 * New version 2.20.999Eduardo Chappa
2016-11-23 * New version 2.20.99; new release is scheduled for January 2017.Eduardo Chappa
2016-10-08 * new version 2.20.17Eduardo Chappa
2016-09-13 * New version 2.20.16Eduardo Chappa
* SMIME: Bouncing could sign (and therefore corrupt) a message when it is signed automatically. Reported by Björn Krellner.
2016-08-28 * New version 2.20.15.Eduardo Chappa
2016-07-23 * new version 2.20.14Eduardo Chappa
2016-05-29 * New version 2.20.13.Eduardo Chappa
2016-03-26 * New version 2.20.12.Eduardo Chappa
2016-02-02 * New version 2.20.11Eduardo Chappa
* Update of copyright notice * Update to release notes to indicate support of RFC 2971.
2015-12-07 * Several changes so that Alpine will build in Windows (changeEduardo Chappa
ldap_unbind_ext to ldap_unbind and add config.wnt.h to git repository)
2015-08-10 * add non-breaking space (UCS \240) to list of spaces in functionEduardo Chappa
lisblank. * Clean up some code in pith/smime.c.
2015-07-26 * several changes to reduce warnings, including adding sys/ioctl.hEduardo Chappa
in system.h.
2015-07-24 * new version 2.20.9.Eduardo Chappa
* Add command line argument -smimedir, which allows to specify the default path for a directory that contains the public, private, and ca directories. This is useful in case a user has a backup of old certificates that cannot be installed in the ~/.alpine-smime dir. * Update to alpine man page to include documentation on missing command line options such as -nowrite_password_cache, -passfile, -pwdcertdir, and -smimedir. * Various changes in the code to quell some compiler issued warnings in Mac OSX. Reported by Joe St Sauver. This includes the removing deprecated ldap functions from the code and the test in the configure script. The switch to not deprecated functions is done by the use of the belvar structure, which is not completely appropriate for what we are doing, but it is sufficient for our needs. The berval structure is more appropriate for binary data, but it works well with string data, which is what we need. * Various changes in the code to quell some warnings issued by clang 3.5.
2014-05-17 * New version 2.19.999Eduardo Chappa
* Introduce the option "Validate Using Certificate Store Only", and make it the default. This will make Alpine check for the validity of signatures in certificates that a user has installed in their system, and not in the certificates that come with the message. A user can override this, although is not recommended, by disabling this feature. * When viewing a signed message, the ^E command would present an empty screen or Alpine would crash because when Alpine would get the PKCS7 body of the message from body->sparep, it would not decode it properly due to the new way in which the sparep pointer is encoded that was introduced in version 2.19.991. * When a signed message is forwarded, the message might not be filtered correctly, and mime information might make it into the body of the forwarded message. In order to produce this, the message must be forwarded from the index screen and not be opened. The reason why this makes a difference is because opening a signed message changes its body structure. The reason why a person could forward a message before reading it is because the person could already be aware of the content of the message (e.g. the message is in the sent-mail folder). * When a message fails to validate and the body is saved from the server for validation, be careful in the way that body part pointers are set, in order to do this we split the mail_body function into two parts, one that gets the body, the other that gets the section of the body. The new function that gets the section of the body (mail_body_section), is used to assign pointers of the reconstructed new body. * When a container has not been defined, transferring messages to a container will succeed, and the name of the container will be written on screen. * When Alpine is receiving the envelopes from an imap server, it attempts to generate the index line immediately; while doing so it might need to compute a score, and for this, it might need to go back and do some operation in the same imap server. In this case, Alpine will crash with a "lock when already locked" message. In order to avoid this crash, a new check in match_pattern was added to Alpine to avoid the second trip to a server that is busy sending us envelopes. Reported by Peter Koellner. * Update copyright notice in mswin.rc and pmapi.rc, as well as first time user notice and special request notice. * Alpine cannot handle correctly some characters in the Windows-1256 character set, which might lead to a crash or a corruption in the screen. Work was done to contain the bug. A more complete fix will be done in a future release. Reported by Professor Robert Funnell. * Decode the name of attachment names, so they can be written as part of the description of the part. * When transferring certificates to a local container, create container with default names PublicContainer, PrivateContainer and CAContainer, as appropriate for these files, unless the user has provided some other names.
2014-04-08 * Fixes bug in 2.19.8 that would make Alpine fail to build in Windows.Eduardo Chappa
* S/MIME configuration screen would deinitialize smime, not allowing it to send encrypted or signed messages. * Add documentation for /loser option in definition of external servers. * crashing bug in certificate management screen due to a BIO_free() call of memory that had not been allocated. * When the password file is decrypted, smime is inited. If smime is inited before the .pinerc is read, some values might not be correctly set. * When a password file exists, and S/MIME is enabled, encrypt it by either using an existing key/certificate pair. The key is saved separately in ~/.alpine-smime/.pwd, or in the directory specified by the -pwdcertdir command line option.
2014-03-10 * Bump version to 2.19.9.Eduardo Chappa
* Fix windows strings to match version.
2014-03-09 * resetting the version to 2.19.8Eduardo Chappa
2014-03-09 to be undoneEduardo Chappa
2014-02-20 * New version 2.19.8Eduardo Chappa
* Forwarding messages with attachments of content-type multipart, failed when attempting to signed it, with and "Error writing pipe" error.
2014-02-17 * Encrypted and signed messages sent by Thunderbird did not validate.Eduardo Chappa
2014-02-09 * Update to version 2.19.6Eduardo Chappa
* Fixes to documentation to update old washington.edu/alpine site for patches.freeiz.com/alpine/
2014-02-02 * Update to version 2.19.5Eduardo Chappa
* check bounds and tie strings off to improve security. Contributed by James Jerkins. * Alpine crashed when a user attempted to add a folder collection, due to bug in GET_NAMESPACE in imap4r1.c.
2013-12-27 * new address alpine-count@patches.freeiz.com for counting users ofEduardo Chappa
Alpine. * When writing the .pinerc file, lines could not be longer than 10,000 characters, or else this caused corruption in the .pinerc data. Now they are allowed to be of any size. * Fix a problem that made Alpine remove files before they were open by the viewer. It requires that the user has an equivalent to a command such as "ps auxww" to list the list of processes. The default is "/bin/ps auxww", but it can be changed at compile time with the option --with-ps-cmd. * Remove -lregex from linker flags when building --with-supplied-regex. * Fix _INIT_ token for reply quote string to include support for 8-bit in personal names.
2013-11-18 * Update to version 2.19.3Eduardo Chappa
* Alpine computes the signature of a signed message on a different message than the one it sends, because of this, messages that are sent can not be validated either in the sent-mail folder, nor in the server that receives such message.
2013-10-06 * new version 2.11.8Eduardo Chappa
* Fix in configure script for recognition of SSL files in Ubuntu 12.04 * Alpine does not attempt to automatically reopen a collection that was not opened due to cancellation by the user. Instead, the user must try to open it explicitly. * few improvements on new /tls1, /tls1_1, etc. options.
2013-09-12 * Save command did not warn of existence of a message with a deletedEduardo Chappa
attachment in an aggregate save, unless cursor was positioned on a message with a deleted attachment. Reported by Florian Herzig. * Rewrite of configure script: ldap is checked for after ssl, which is checked after crypto, which is checked for after dl library. Set defaults for include and lib directories based on SSLDIR. Joint work with Florian Herzig. * Update contact information (remove alpine-contact@u.washington.edu and add chappa@gmx.com)
2013-08-18 * Opening a folder updates recent count in maildrops.Eduardo Chappa
* Fixes to configure script so that it will not require PAM for every system. * Fix to configure script so that it will use CPPFLAGS instead of CPPCFLAGS, and so the --with-ssl-include-dir option take effect during the build. Fix by Ulf-Dietrich Braumann. * Fix in WebAlpine: do not use deprecated dereference in pointer, needs to use tcl_getstringresult() instead. Reported by Ulf-Dietrich Braumann. * Fix in configure script to detect location of tcl library; add /usr/local in FreeBSD and fix a bug in configure script that used $alpine_TCLINC instead of $alpine_TCLINC/tcl.h. Reported and fixed by Werner Scheinast. * Move SSL configurations from UW-IMAP to configure script.
2013-08-04 * New version 2.10.99999Eduardo Chappa
* Pico: search backwards. * do not allow List- headers to be set up by users in accordance with RFC 2369. * minor fixes for new justification support (add comparison of a line with the previous *and* the next).
2013-05-28 * Changes to configure.ac to fix build in Debian/Ubuntu.Eduardo Chappa
- added check for libpam - added check for libcrypto
2013-02-08 * Add color options for folders and index screen.Eduardo Chappa
* Add silent token to display filter * Add option to preserve To: and Cc: fields on replies.
2013-02-03Initial Alpine VersionEduardo Chappa