courier-imap-5.2.1-bp155.1.6

- update to 5.2.1
  * Fix a compatibility problem with OpenSSL 3 that results in TLS
    negotiation failures in some non-default configurations.
  * Fix an error in courier-imap's installation script that results in
    creation of absolute, rather than relative, symbolic links.

- update to 5.2.0
  * Switch to libidn2.
  * Debian/Ubuntu: update lintian overrides
  * make install: replace absolute links with relative links.
- update to 5.1.9
  * Adjust deb packaging. Check /etc/lsb-release and include the
    distribution release in the deb package version, to faciliate
    updating to the same version of the package in an updated release.
  * Fix build dependencies.

- update to 5.1.8
  * gcc 12 and autotools update. OpenSSL 3.0 update.
  * courier, courier-imap: remove the --disable-root-check configure
    option, now that make check can deal with it.
  * Add scripts to create installable .deb packages, update
    documentation.
  * imap/authenticate_auth.c: Fix broken SASL authentication.
  * Adjust behavior of inherited ACLs. After deleting and recreating
    a folder, have the recreated folder inherit its parent folder's ACLs,
    normally, instead of mysteriously restoring whatever ACLs the folder
    had when it was deleted.
  * Fixes to Makefile to workaround test suite failures related to
    permission checking when make check runs as root.
  * Fix minor memory leaks.

- update to 5.1.7
  * Fix linking failure on some Linux distributions.
- update to 5.1.6
  * Fix linking failure on some Linux distributions.
- update to 5.1.5
  * Fix minor memory leaks. If valgrind is installed, "make check" will
    run it to check for memory leaks.
  * Convert to PCRE2.
  * libcouriertls: use ALARM to kill couriertls if the server process
    terminates but openssl hangs trying to shut down the socket.

- update to 5.1.4
  * all: code changes so that courier can be compiled with -Wall
  - Werror gcc flags. The default compilation flags are not changed.
    This also includes changes to the configuration scripts, which
    includes removing outdated configuration settings.
  * pop3: buffer input by ourselves, clear input buffer before
    switching to TLS.
  * imap: fix crash if the connection to the client is terminated at
    the wrong/right time.

- update to 5.1.3
  * pop3d: pro-forma POP3 LANG extension.
  * pop3d-ssl.dist.in (TLS_STARTTLS_PROTOCOL): Remove duplicate entry
    in the pop3d-ssl configuration file.

- update to 5.1.2
  * make: Individual files that did not end in a newline were
    not handled correctly.
  * imap: adjust error message.

- update to 5.1.1
  * Fix swapped TLS_CACHEFILE settings in the IMAP and POP3
    configuration files

- update to 5.1.0
  * Implement support for the TLS ALPN extension.
  * Replace FAM/Gamin with inotify.
  * Install the maildirwatch tool.
  * Remove the IMAP_ENHANCEDIDLE setting from the imapd configuration
    file.
- update source download URL
- remove courier-imap-Makefile.patch (upstreamed)

- update to 5.0.14
  * Fix packaging problem with a faulty courier-unicode dependency
- update to 5.0.13
  * Fixes a crash caused by a malformed DNS query/response
- move SSL cache files to /var/cache/courier-imap/ and put (open)SUSE
  specific changes to configuration files in a patch file (instead of
  sed scripts)
  + courier-imap-config.patch
- remove obsolete SysV init files
  - courier-imap.init
  - courier-imap-ssl.init
  - courier-pop.init
  - courier-pop-ssl.init

- update to 5.0.12
  * openssl: Add TLS_PROTOCOL setting to disable client-initiated
    renegotiation.
  * imap: send corrupted Unicode alerts only for new messages.
  * waitlib: fix testwait.c failure with LTO enabled on F33.
  * pop3login.c: fflush before STARTLS.

- update to 5.0.11
  * courier-authlib API update.
  * Add AC_PROG_CC_C99 to configure
- remove courier-imap-stdc.patch (no longer needed)

- update to 5.0.10
  * tcpd/starttls.c (dossl): Start client after negotiating SSL, in
    order to allow EXTERNAL client certificate authentication.
  * Fix virtual IP and hostname handling when using GnuTLS for SSL.
  * imap, pop3: include remote port TCP port number together with the
    IP address, in log messages.
- add courier-imap-stdc.patch to remove 'for' loop initial declarations

- update to 5.0.8
  * Update documentation in the imapd and pop3d ssl config flies.
- update to 5.0.7
  * pop3dserver.c (do_retr): Use the new MIME_UNICODE_MESSAGE_TYPE
    setting to set the type of the wrapped MIME attachment.
- update to 5.0.6
  * pop3dserver.c: Fix parsing of pop3d file cache, on some
    architectures.
  * tcpd/libcouriertls.c: Ignore unreadable cert files.
- update to 5.0.5
  * fetch.c: Send an alert about a Unicode messages to a non-Unicode
    client at most once per IMAP session.
- update to 5.0.4
  * pop3dserver.c: Deal with MS Outlook's broken implementation of
    RFC 6856.
- update to 5.0.3
  * pop3dserver.c (calcsize): Fix spurious flagging of non-UTF8
    messages as UTF-8.
    To fix existing mailboxes with erroneously-flagged messages. In
    each mailbox, if its existing courierpop3dsizelist file starts with
    /3 [followed by additional data]
    Only if the first line in courierpop3dsizelist starts with /3, then
    execute:
    perl -p -i -e 's/:\d+$/:0/' courierpop3dsizelist
  * pop3dserver.c (readpop3dlist): Be able to update
    courierpop3dsizelist from version 2 to 3 in place.
    (do_retr): Instead of returning an ERR to a non-Unicode client,
    handle Unicode messages by wrapping them as an attachment.
- update to 5.0.2
  * configure.ac: Additional changes to how Unicode messages are
    handled with non-Unicode clients: disclaim all warranties, still
    report an error, but provide the raw message content, as is.
- update to 5.0.1
  * Provide an substitute message to IMAP clients that did not enable
    UTF-8.
  * couriertls: additional fixes.
  * couriertls: option to use a separate file for the SSL certificate's
    private key, as an alternative to the combined keyfile+certificate.
- update to 5.0.0
  * pop3dserver.c: update Courier-IMAP to support UTF8 POP3. Update
    version of the courierpop3dsizelist cache file.
  * courier-imap, sqwebmail: update Courier-IMAP to support UTF8 IMAP.
    Convert maildir folders to use UTF-8 for folder names. Add
  - -checkutf8 and --convutf8 options to maildirmake to convert
    pre-UTF8 maildirs to UTF8 maildirs, a mandatory upgrade procedure.
  * waitlib/configure.ac: Fix typo.
  * libs/tcpd/starttls.c (main): Add -user option. Additional fixes
    to startup script to have couriertls drop root privileges.
  * libs/tcpd/tlsclient.h: add username option, used in couriertls_start
    to set the child process's uid and gid.
  * imaplogin.c (starttls): Set username option for couriertls
  * pop3login.c (starttls): Set username option for couriertls
  * imapd-ssl.dist, pop3d-ssl.dist: Use separate imap and pop3 session
    cache files. Startup script: remove/set ownership and permsission
    on the imap and pop3 session cache files.
  * libs/tcpd/libcouriergnutls.c: Remove usage of deprecated OpenPGP
    API. Tag the "Unexpected SSL connection shutdown" with the "DEBUG"
    label just like the OpenSSL version does.
  * libs/tcpd/starttls.c: If TCPREMOTEIP is set, prepend it to error
    messages.
- delete reproducible.patch (upstreamed)
- add courier-imap.keyring for source verification
- cleanup spec

- removal of SuSEfirewall2 services, since SuSEfirewall2 has been replaced by
  firewalld, see [1].
  [1]: https://lists.opensuse.org/opensuse-factory/2019-01/msg00490.html

- BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to
  shortcut the build queues by allowing usage of systemd-mini

- Add reproducible.patch to override build date (boo#1047218)

- update to 4.18.2
  * imapd.c (do_folder_delete): Fix check for DELETE INBOX.
  * libs/maildrop/maildir.C (MaildirSave): Fix new/delete mismatch.
  * libs/sqwebmail/gpg.c: Fix external linkage.
  * libs/tcpd/libcouriertls.c: OpenSSL API update.
  * courier-unicode library API update.
  * libs/maildir/maildirquota.c (docheckquota): Skip DT_LNK.
  * OpenSSL 1.1.0 compilation fixes.
  * courier: switch default header encoding to UTF-8.
  * Fix to configure.ac

- Don't call insserv if we use systemd
- Don't install LSB init scripts if we use systemd
- Create rc* links to service command if we use systemd

- Remove directories already part of filesystem rpm

- Fix path of SuSEfirewall2.d directory

- update to 4.17.1
  * Fix TLS SNI code.
- update to 4.17.0
  * Stop using SSL2 and SSL3 openssl configuration methods.
  * libs/tcpd/libcouriertls.c: Add support for TLS SNI.
  * imaplogin.c (starttls): flush stdin after negotiating STARTTLS.
  * Fix Courier-IMAP rpm build on pre-systemd systems.
- rebase courier-imap-Makefile.patch

- update to 4.16.2
  * imap/mailboxlist.c (match_mailbox_prep): Use strncmp instead of
    memcmp, to pacify overzealous static analysis checkers.
  * Drop SSLv3 from TLS_CIPHER_LIST.
  * imap, pop3: Added AUTH_MKHOMEDIR_SKEL setting.
- update to 4.16.1
  * maildircache.c: fix use after free.
  * mkdhparams: make compatible with libressl
  * Handle 01-Jan-1970 for date-based searches.
  * Update to courier-unicode 1.2.
  * Add the makeimapaccess script.
- add Patch courier-imap-Makefile.patch

- update to 4.15.1.20141122
  * tcpd/libcouriertls.c: add parsing options for different protocol
    combination.
  * Update comments in *ssl config files.
  * libs/tcpd/libcouriertls.c (tls_create): Set SSL_OP_NOSSLv3 flag,
    to disable SSL3 support.
  * mkdhparams: TLS_DHPARAMS environmnt variable overrides default
    DH parameter file location.
  * courier-imap.spec.in: generate the default DH parameter file and
    package it into the rpm, instead of generating one on the first
    start.
  * libs/maildir/maildirinfo.c (maildir_info_imapmunge): Fix
    UTF-8 charset name.
  * tcpd/libcouriertls.c (tls_create): Initialize temporary ecdh
    parameters.
  * imap: try to print a message on stderr if the alarm() call, that
    detects FAM library breakage, goes off.
  * mkdhparams: default to 2048 DH params for OpenSSL.
  * courier-imap.service: bump up startup timeout, initial service start
    may take several minutes to generate DH parameters for the first
    time.
- add new dependency
  * courier-unicode-devel (libunicode)

- fix courier-imap.service
  * STARTTLS on port 143 (thanks to cschweingruber)

- update to 4.15
  * pop3login.c (starttls): Clear input buffer after STARTTLS.
  * imaplogin.c (starttls): Clear input buffer after STARTTLS.
  * Fix various compiler warnings about unchecked results from setuid
    and setgid calls.
  * libs/tcpd/libcouriergnutls.c, libs/tcpd/libcouriertls.c: remove the
    TLS_DHCERTFILE setting, and use TLS_CERTFILE for all functionality.
    Read DH parameters from TLS_CERTFILE, or from the new TLS_DHPARAMS
    environment variable.
  * mkdhparams: New script that generates DH parameters into a standalone
    file.
  * Remove TLS_DHCERTFILE setting from imapd-ssl, pop3d-ssl, esmtpd and
    esmtpd-ssl. Add TLS_DHPARAMS.
  * Update imapd.cnf.openssl, pop3d.cnf.openssl, esmtpd.cnf.openssl,
    set default number of bits for RSA keys to 4096.
  * libs/tcpd/libcouriertls.c (tls_create): Add TLSv1_1_method() and
    TLSv1_2 method(), based on patch by Rob Austein <sra@hactrn.net>.
  * pop3d-ssl.dist.in, imapd-ssl.dist.in: Fix up differences in the
    documentation of TLS options in various config files.
- added systemd service files
- fix build for SLE
  * fam-devel vs gamin-devel
- cleanup spec
  * RPM_BUILD_ROOT -> buildroot

- use gamin-devel instead of unmaintained fam(-devel) package

- update to 4.14.0
  * Autotool chain update.
  * imapd.c (mddelete): Reject DELETE folder if the maildir is a symlink.
  * imapd.c (doId): Implement the IMAP ID EXTENSION.
- 4.13.0
  * imap: add explicit mkdirs on PIDFILE directories to startup scripts.
  * rfc822: workaround for invalid utf-8 input making libidn go off the
    rails.
- fix License
  * GPL-3.0 -> GPL-3.0+
- rebase patches
  * imap-sbindir, imap-ulimit_conf

- update to 4.12.0
  * tcpd/libcouriergnutls.c (get_server_cert): Fix size of malloced
    buffer.
  * configure.in: Fix typo in configure check for setvbuf().
- rebase patches
  * sbindir (remove version), ulimit_conf (rename diff -> patch)

- update to 4.11.0
  * maildir/maildiraclt.c (maildir_acl_delete): Fix double-free on error
    path of an ENOMEM.
  * courier.spec.in: Fix the RPM spec to work around /bin symlink
    breakage in F17.
  * tcpd/tcpd.c: Update libgnutls API, replace obsoleted functions
    with current API. Obsoletes most TLS_* variables that set protocol
    priorities, replaced with Gnutls-specific single TLS_PRIORITY
    setting (existing TLS_* variables are still used by the OpenSSL
    alternative). Updated *-ssl configuration files accordingly.
  * tcpd: Compilation changes for gnutls 3
  * liblock/mail.c (dotlock_exists): Quell a compiler warning.
  * Miscellaneous spelling fixes.
- rebase sbindir patch (4.8.0 -> 4.11.0)

- update to 4.10.0
  * imapd.c (main): Open IMAPDEBUGFILE only if it exists already.
    (do_expunge): Optionally log deletions. Based on a patch by
    William Yodlowsky <wyodlows@andromeda.rutgers.edu>.
  * pop3dserver.c (cleanup): Optionally log deletions. Based on a patch by
    William Yodlowsky <wyodlows@andromeda.rutgers.edu>.
  * imapd.dist.in (IMAP_MOVE_EXPUNGE_TO_TRASH): Officially document how
    IMAPDEBUGFILE works.
  * imapscanclient.c: Postpone Y2038K for a while, for uid validities.
  * liblock/mail.c (dotlock_exists): Handle getting here because of a
    recycled pid.
  * unicode/unicode.c (init_default_chset): Handle NULL from setlocale().
  * rfc2045/reformime.c (main2): Fixed segfault on some arches from an
    initial null given to strtok.
  * rfc2045/reformime.c (main2): On ia64 and arm, argv is in readonly
    memory.
  * pop3dserver.c (openpop3dlist): Try a few times to reopen pop3dsizelist
    if it fails with ESTALE.
  * pop3d.dist.in: Add AUTHSERVICE settings. They've been supported
    all along.
  * Fix gcc 4.6 warnings
  * courier-imap.spec.in: switch to systemd. Remove script used when
    upgrading from ancient pre-sysconftool versions.
  * Fix autoconf warnings.

- change --with-authdaemonvar to /var/run/courier-authlib

- update to 4.9.3
  * msgenvelope.c (msgappends): Fix a fatal error upon encountering
    8-bit header content. Heuristically try to interpret it as UTF-8, and
    just ignore invalid UTF-8 sequences.
  - 4.9.2
  * rfc2045/rfc2045cdecode.c: Tolerate lowercase hexadecimal characters
    in quoted-printable-encoded content.
  * unicode/unicode.c: Compilation fixes.

- update to 4.9.1
  * tcpd/libcouriertls.c (tls_create): Remove SSLv2_method().
    (tls_create): Remove "!SSLv2" from the default TLS_CIPHER_LIST.
  * mkimapdcert.in (prefix): Create imapd.pem with 600 perms.
  * mkpop3dcert.in (prefix): Create pop3d.pem with 600 perms.
- for more info please see Changelog file
- fix License
  o GPLv2+ -> GPLv3
- fix path to ChangeLog file

- update to 4.8.1
  * Makefile.am (imapd.cnf): Compatibility fixes.
- 2010-08-15  Sam Varshavchik  <mrsam@courier-mta.com>
  * maildir/maildirwatch.c (maildirwatch_alloc): Use alarm() to kill
    the process if FAMOpen() takes more than 15 seconds to return.
    Should prevent a hung process if FAM/Gamin is fubared.
- 2010-07-11  Sam Varshavchik  <mrsam@courier-mta.com>
  * pop3dserver.c: Make printed() and putchar() macros.
- 2010-07-01  Sam Varshavchik  <mrsam@courier-mta.com>
  * imapd.cnf pop3d.cnf (default_md): added default_md = sha1
- 2010-06-28  Sam Varshavchik  <mrsam@courier-mta.com>
  * rfc822/rfc822.c (rfc822_print_common_nameaddr): Prevent segfault if
    address decode fails.
  * Fix make check failure when libidn is not available.
- 2010-05-31  Sam Varshavchik  <mrsam@courier-mta.com>
  * Rebuilt man pages with updated stylesheets.
- remove obsolete certsdir patch
- remove LDFLAGS patch, add configure option --disable-static

- have pop3d, imapd ssl certs in /etc/ssl/private
  [bnc#628487]; certsdir patch

- update to 4.8.0
  * tcpd/configure.in: Check if explicit linking with libgpg-error is
    required.
- 2010-03-20  "Stefan Hornburg (Racke)" <racke@linuxia.de>
  * imapd.c (main): Fix typo in alert message.
- 2010-03-18  Hugo Monteiro <hugo.monteiro@fct.unl.pt>
  * Big quota patch (with some changes).
- 2010-03-12  Sam Varshavchik  <mrsam@courier-mta.com>
  * imapd.c (main): Dummy FAM/Gamin initialization, report an error
    during login, upon a failure.
- 2010-03-10  Sam Varshavchik  <mrsam@courier-mta.com>
  * imapd.c (imapenhancedidle): Make FAM error more meaningful.
- 2010-02-25  Bernard Quatermass <bernard@quatermass.co.uk>
  * pop3dserver.c (main): "disableinsecurepop3" account option disables
    non-SSL logins.
  * imapd.c (chkdisabled): "disableinsecureimap" account option disables
    non-SSL logins.
- reworked sbindir patch