Dovecot v2.2.5 released

Arieh

Arieh

Verified User
Joined
May 27, 2008
Messages
1,236
Location
The Netherlands
Dovecot v2.2.5 released
So, I'm back from the first vacation I've had in about 10 years. (Well, maybe there were a few short ones.) I was planning on coding it the whole time, but looks like I didn't manage to get anything at all done. Maybe that's a good vacation?.. Anyway, I've still a few more pending things to look into, but it's been too long since v2.2.4 so here are the fixes so far.

+ SSL: Added support for ECDH/ECDHE cipher suites (by David Hicks)
+ Added some missing man pages (by Pascal Volk)
+ quota-status: Added quota_status_toolarge setting (by Ulrich Zehl)
- director: Users near expiration could have been redirected to
different servers at the same time.
- pop3: Avoid assert-crash if client disconnects during LIST.
- mdbox: Corrupted index header still wasn't automatically fixed.
- dsync: Various fixes to work better with imapc and pop3c storages.
- ldap: sasl_bind=yes caused crashes, because Dovecot's lib-sasl
symbols conflicted with Cyrus SASL library.
- imap: Various error handling fixes to CATENATE. (Found using
Apple's stress test script.)
Click to expand...
 
Scratch that. Back to 2.2.4.

Errors on multiple test systems (including CentOS 4)... although, CentOS 5 worked fine.

Code: 
iostream-openssl-context.c: In function 'ssl_proxy_ctx_set_crypto_params':
iostream-openssl-context.c:451: error: 'SSL_OP_SINGLE_ECDH_USE' undeclared (first use in this function)
iostream-openssl-context.c:451: error: (Each undeclared identifier is reported only once
iostream-openssl-context.c:451: error: for each function it appears in.)
iostream-openssl-context.c:436: warning: unused parameter 'set'
iostream-openssl-context.c:437: warning: unused parameter 'error_r'
make[3]: *** [iostream-openssl-context.lo] Error 1
They'll likely need to add some code like:
Code: 
#ifdef SSL_OP_SINGLE_ECDH_USE
to bypass the error on these older boxes.
For now, we'll stick with 2.2.4.

Edit: More info on how to properly check for ECDH cipher's in SSL at compile time.. not that we'd be changing the dovecot code, but in case anyone else stumbles here:
http://www.mail-archive.com/[email protected]/msg48136.html

John
 
You must log in or register to reply here.
Back
Top