Age | Commit message (Collapse) | Author |
|
|
|
|
|
adding memory freeing calls when necessary.
|
|
* Update of copyright notice
* Update to release notes to indicate support of RFC 2971.
|
|
|
|
* crash on importing certificates that do not have an email address
associated to them, such as those of a Certificate Authority.
* Disable saving new passwords to the password file. Implemented
by Louis Raphael from dpslabs.com.
* Panda IMAP does not decode correctly Korean text encoded in UTF-8.
Reported by Chulho Yang.
|
|
body->nested.part instead of b->nested.part in the
do_detached_signature_verify function, and save its body and mime
headers in create_local_cache. Now all signed messages should
verify correctly.
* Protect against potential crash bug in write_passfile function by
checking if text != NULL. text can only be null if there are no
passwords to save. We assume we could get write_passfile called
with null arguments, so this is just to protect that.
* Add handling of corner cases to several functions by initializing some
variables. Reported and patched by James Jerkins.
* When selecting the certificate/key pair to encrypt/decrypt the password
file choose it in this order:
- if -pwdcertdir is given look for certificates there, if nothing
there, we bail out;
- otherwise we look in the default directory, if anything there
and it matches to be a key/cert pair, we use it;
- otherwise we check if smime_init() has been called. If not
we call it;
- we check if a key/cert pair has been found with smime initialized,
if so, use it and copy it to the default directory;
- if not, check if there is anything in the default smime directories
(.alpine-smime/private and .alpine-smime/public), and in this
case copy it to the default.
- otherwise we bail. We will eventually create a certificate/key
pair for the user;
- finally, if we called smime_init(), we call smime_deinit().
Throughout this process, if smime_init() was not called before
we tried to get the cert/key pair we exit this process without
ps_global->smime->inited set, so that other process that need
to call smime_init() get the right structure initialized. This is
done because we might pick a cert/key pair to decrypt the password
file.
|
|
* S/MIME configuration screen would deinitialize smime, not allowing
it to send encrypted or signed messages.
* Add documentation for /loser option in definition of external servers.
* crashing bug in certificate management screen due to a BIO_free() call
of memory that had not been allocated.
* When the password file is decrypted, smime is inited. If smime is inited
before the .pinerc is read, some values might not be correctly set.
* When a password file exists, and S/MIME is enabled, encrypt it by either
using an existing key/certificate pair. The key is saved separately
in ~/.alpine-smime/.pwd, or in the directory specified by the
-pwdcertdir command line option.
|
|
* check bounds and tie strings off to improve security. Contributed by
James Jerkins.
* Alpine crashed when a user attempted to add a folder collection, due
to bug in GET_NAMESPACE in imap4r1.c.
|
|
|
|
a url by
a browser.
|
|
|
|
* Add silent token to display filter
* Add option to preserve To: and Cc: fields on replies.
|
|
|