1
0
Fork 1
mirror of https://github.com/NixOS/nixpkgs.git synced 2024-11-30 09:31:01 +00:00
Commit graph

108 commits

Author SHA1 Message Date
Ben Siraphob 872973d7d1 pkgs/servers: stdenv.lib -> lib 2021-01-15 14:24:03 +07:00
Profpatsch 4a7f99d55d treewide: with stdenv.lib; in meta -> with lib;
Part of: https://github.com/NixOS/nixpkgs/issues/108938

meta = with stdenv.lib;

is a widely used pattern. We want to slowly remove
the `stdenv.lib` indirection and encourage people
to use `lib` directly. Thus let’s start with the meta
field.

This used a rewriting script to mostly automatically
replace all occurances of this pattern, and add the
`lib` argument to the package header if it doesn’t
exist yet.

The script in its current form is available at
https://cs.tvl.fyi/depot@2f807d7f141068d2d60676a89213eaa5353ca6e0/-/blob/users/Profpatsch/nixpkgs-rewriter/default.nix
2021-01-11 10:38:22 +01:00
Andreas Rammhold bedb3528b6
dovecot_pigeonhole: 0.5.11 -> 0.5.13
This updates to the latest version. According to the changelog 0.5.12
was skipped. The changes in this release are required to be compatible
with the latest dovecot release.

Changes:
  - duplicate: The test was handled badly in a multiscript (sieve_before,
    sieve_after) scenario in which an earlier script in the sequence with
    a duplicate test succeeded, while a later script caused a runtime
    failure. In that case, the message is recorded for duplicate tracking,
    while the message may not actually have been delivered in the end.
  - editheader: Sieve interpreter entered infinite loop at startup when
    the "editheader" configuration listed an invalid header name. This
    problem can only be triggered by the administrator.
  - relational: The Sieve relational extension can cause a segfault at
    compile time. This is triggered by invalid script syntax. The segfault
    happens when this match type is the last argument of the test command.
    This situation is not possible in a valid script; positional arguments
    are normally present after that, which would prevent the segfault.
  - sieve: For some Sieve commands the provided mailbox name is not
    properly checked for UTF-8 validity, which can cause assert crashes at
    runtime when an invalid mailbox name is encountered. This can be
    caused by the user by writing a bad Sieve script involving the
    affected commands ("mailboxexists", "specialuse_exists").
    This can be triggered by the remote sender only when the user has
    written a Sieve script that passes message content to one of the
    affected commands.
  - sieve: Large sequences of 8-bit octets passed to certain Sieve
    commands that create or modify message headers that allow UTF-8 text
    (vacation, notify and addheader) can cause the delivery or IMAP
    process (when IMAPSieve is used) to enter a memory-consuming
    semi-infinite loop that ends when the process exceeds its memory
    limits. Logged in users can cause these hangs only for their own
    processes.
2021-01-04 17:59:57 +01:00
Andreas Rammhold 4fee20e267
dovecot: add the dovecot NixOS test to passthru.tests
While we already had some test we might as well add the test for that
exact package to the tests attribute set. After all that should be what
(primarily) tests dovecot.
2021-01-04 17:45:28 +01:00
Andreas Rammhold 58c7d3ff17
dovecot: 2.3.11.3 -> 2.3.13
This fixes CVE_2020-24386, CVE-2020-25725 and a bunch of regular bugs
[1].

* CVE-2020-24386: Specially crafted command can cause IMAP hibernate to
	  allow logged in user to access other people's emails and filesystem
	  information.

* CVE-2020-25275: Mail delivery / parsing crashed when the 10 000th MIME part was
  message/rfc822 (or if parent was multipart/digest). This happened
  due to earlier MIME parsing changes for CVE-2020-12100.

[1] https://raw.githubusercontent.com/dovecot/core/2.3.13/NEWS
2021-01-04 17:37:32 +01:00
Rickard Nilsson 5d4cc0e25c Unmaintain a few packages 2020-09-24 21:12:32 +02:00
Robert Schütz c62812c321 dovecot_pigeonhole: 0.5.10 -> 0.5.11 2020-08-13 09:56:43 +02:00
Robert Schütz 4f5b797ec3 dovecot: 2.3.10.1 -> 2.3.11.3 2020-08-13 09:54:32 +02:00
Léo Gaspard b0a2d1cef7
Merge pull request #78780 from ju1m/dovecot_fts_xapian
Dovecot plugin for Full Text Search (FTS) with Xapian
2020-06-16 22:00:26 +02:00
Martin Weinelt 6cf48856d2
dovecot: v2.3.10 → v2.3.10.1
Fixes: CVE-2020-10957, CVE-2020-10958, CVE-2020-10967
2020-05-18 18:40:40 +02:00
Julien Moutinho 8be7358384 maintainers: add julm 2020-05-09 14:13:31 +02:00
Julien Moutinho 1ef7bea94d dovecot_fts_xapian: init at 1.3.1 2020-05-09 13:46:53 +02:00
R. RyanTM da5e9d4ab9 dovecot_pigeonhole: 0.5.9 -> 0.5.10 2020-03-13 03:37:40 +00:00
R. RyanTM 8d08f45368 dovecot: 2.3.9.3 -> 2.3.10 2020-03-12 00:00:26 +00:00
Franz Pletz f9a34082e6
dovecot: 2.3.9.2 -> 2.3.9.3
Fixes CVE-2020-7046 & CVE-2020-7957:

  https://dovecot.org/pipermail/dovecot-news/2020-February/000429.html
2020-02-17 15:14:29 +01:00
Milan Pässler a77524e2e3 dovecot_pigeonhole: 0.5.8 -> 0.5.9
Fixes build with dovecot 2.3.9+.
2019-12-17 23:28:27 +01:00
Andreas Rammhold cd394340d8
dovecot: 2.3.8 -> 2.3.9.2
Update to latest version & updated the patch file to match with the
lastest verison.

Fixes the following security issue:
  * CVE-2019-19722: Mails with group addresses in From or To fields
    caused crash in push notification drivers.
2019-12-15 20:11:01 +01:00
Robert Schütz 395cdd7d4c dovecot_pigeonhole: 0.5.7.2 -> 0.5.8
https://dovecot.org/pipermail/dovecot-news/2019-October/000420.html
2019-10-09 17:09:47 +02:00
Robert Schütz 5f03f32fa6 dovecot: 2.3.7.2 -> 2.3.8
https://dovecot.org/pipermail/dovecot-news/2019-October/000419.html
2019-10-09 17:08:50 +02:00
Vladimír Čunát 22a216849b
Re-Revert "Merge branch 'staging-next'"
This reverts commit f8a8fc6c7c.
2019-09-22 09:38:09 +02:00
Vladimír Čunát f8a8fc6c7c
Revert "Merge branch 'staging-next'"
This reverts commit 41af38f372, reversing
changes made to f0fec244ca.

Let's delay this.  We have some serious regressions.
2019-09-21 20:05:09 +02:00
Izorkin 329a88efa7 treewide: replace mysql.connector-c to libmysqlclient 2019-09-09 15:55:34 +03:00
Frederik Rietdijk fc74ba8291 Merge master into staging-next 2019-08-31 09:50:38 +02:00
Andreas Rammhold 46ff96c05b
dovecot-pigeonhole: 0.5.7.1 -> 0.5.7.2 (CVE-2019-11500)
This is a followup on #67623
2019-08-28 17:57:57 +02:00
Daniel Frank d7582c994d
dovecot: 2.3.7.1 -> 2.3.7.2 (CVE-2019-11500) 2019-08-28 15:01:36 +02:00
Vladimír Čunát 2e6bf42a22
Merge branch 'master' into staging-next
There ver very many conflicts, basically all due to
name -> pname+version.  Fortunately, almost everything was auto-resolved
by kdiff3, and for now I just fixed up a couple evaluation problems,
as verified by the tarball job.  There might be some fallback to these
conflicts, but I believe it should be minimal.

Hydra nixpkgs: ?compare=1538299
2019-08-24 08:55:37 +02:00
Robin Gloster 4e60b0efae
treewide: update globin's maintained drvs 2019-08-20 19:36:05 +02:00
volth 46420bbaa3 treewide: name -> pname (easy cases) (#66585)
treewide replacement of

stdenv.mkDerivation rec {
  name = "*-${version}";
  version = "*";

to pname
2019-08-15 13:41:18 +01:00
Izorkin 4f38967ce2 dovecot_pigeonhole: 0.5.6 > 0.5.7.1 2019-07-25 15:33:59 +03:00
Izorkin e2173096b3 dovecot: 2.3.7 > 2.3.7.1 2019-07-25 15:32:50 +03:00
R. RyanTM 5eb574010e dovecot: 2.3.6 -> 2.3.7
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/dovecot/versions
2019-07-15 01:18:44 -07:00
Robert Schütz c38b485197 dovecot_pigeonhole: 0.5.5 -> 0.5.6
https://dovecot.org/pipermail/dovecot-news/2019-April/000411.html
2019-04-30 15:56:59 +02:00
Robert Schütz 427dfadfa9 dovecot: 2.3.5.2 -> 2.3.6
fixes CVE-2019-11494 and CVE-2019-11499
https://dovecot.org/pipermail/dovecot-news/2019-April/000408.html
2019-04-30 15:43:10 +02:00
Robert Schütz 041fc67610 dovecot: 2.3.5.1 -> 2.3.5.2
https://dovecot.org/pipermail/dovecot-news/2019-April/000407.html
fixes CVE-2019-10691
2019-04-18 16:53:36 +02:00
Robert Schütz 640416bf71
dovecot_pigeonhole: 0.5.4 -> 0.5.5 (#58511)
This is the appropriate version for dovecot 2.3.5 according to
https://dovecot.org/pipermail/dovecot-news/2019-March/000400.html
2019-04-02 10:16:26 +02:00
Robert Schütz d3ca36bd64 dovecot: 2.3.5 -> 2.3.5.1
https://dovecot.org/list/dovecot-news/2019-March/000401.html
fixes CVE-2019-7524
2019-03-28 14:00:15 +01:00
R. RyanTM 2ba743d5b5 dovecot: 2.3.4.1 -> 2.3.5
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/dovecot/versions
2019-03-21 08:36:33 -07:00
Robert Schütz d49ffaac8a dovecot: 2.3.4 -> 2.3.4.1
fixes CVE-2019-3814:
https://dovecot.org/list/dovecot-news/2019-February/000394.html
2019-02-06 15:54:11 +01:00
Jörg Thalheim 562d9d472c dovecot: fix cross-build 2018-12-11 18:13:21 +01:00
Robert Schütz b6c96c6419 dovecot: 2.3.3 -> 2.3.4, dovecot_pigeonhole: 0.5.3 -> 0.5.4 2018-11-24 17:03:22 +01:00
Léo Gaspard 2986ce16a8
meta.tests: rename into passthru.tests
Nix currently rejects derivations in `meta` values. This works around
that limitation by using `passthru` instead.

Closes https://github.com/NixOS/nixpkgs/issues/50230
2018-11-11 23:11:46 +09:00
Peter Simons 4fc8527697 dovecot, opensmtpd: comment out invalid meta.tests attribute
See https://github.com/NixOS/nixpkgs/issues/50230 for details.
2018-11-11 14:02:20 +01:00
Matthew Bauer 51e8c7943c dovecot: remove install_name_tool
No longer needed now that libclucene has the right install name.
2018-11-07 13:02:50 -06:00
Léo Gaspard 02e1f00ffd
dovecot, opensmtpd: add link to test in meta.tests
Rationale
---------

Currently, tests are hard to discover. For instance, someone updating
`dovecot` might not notice that the interaction of `dovecot` with
`opensmtpd` is handled in the `opensmtpd.nix` test.

And even for someone updating `opensmtpd`, it requires manual work to go
check in `nixos/tests` whether there is actually a test, especially
given not so many packages in `nixpkgs` have tests and this is thus most
of the time useless.

Finally, for the reviewer, it is much easier to check that the “Tested
via one or more NixOS test(s)” has been checked if the file modified
already includes the list of relevant tests.

Implementation
--------------

Currently, this commit only adds the metadata in the package. Each
element of the `meta.tests` attribute is a derivation that, when it
builds successfully, means the test has passed (ie. following the same
convention as NixOS tests).

Future Work
-----------

In the future, the tools could be made aware of this `meta.tests`
attribute, and for instance a `--with-tests` could be added to
`nix-build` so that it also builds all the tests. Or a `--without-tests`
to build without all the tests. @Profpatsch described in his NixCon talk
such systems.

Another thing that would help in the future would be the possibility to
reasonably easily have cross-derivation nix tests without the whole
NixOS VM stack. @7c6f434c already proposed such a system.

This RFC currently handles none of these concerns. Only the addition of
`meta.tests` as metadata to be used by maintainers to remember to run
relevant tests.
2018-10-30 21:31:39 +09:00
R. RyanTM e00bfcd798 dovecot_pigeonhole: 0.5.2 -> 0.5.3 (#47820)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/dovecot-pigeonhole/versions
2018-10-10 23:27:56 +02:00
R. RyanTM 5a6c4d39fb dovecot: 2.3.2.1 -> 2.3.3 (#47814)
Semi-automatic update generated by
https://github.com/ryantm/nixpkgs-update tools. This update was made
based on information from
https://repology.org/metapackage/dovecot/versions
2018-10-10 23:27:28 +02:00
Julien Moutinho 27f95f3f9c dovecot: allow sasl_bind=yes in the LDAP driver.
Dovecot has its own SASL implementation,
but needs Cyrus SASL's headers to bind to an LDAP server using SASL.

This is useful to avoid the need to manage a dnpass= in dovecot-ldap.conf
by using the Unix socket to authenticate.

This is done with sasl_mech=EXTERNAL in dovecot-ldap.conf, and some olcAccess: with
 by dn="gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" read
in the slapd's cn=config for the LDAP database queried by dovecot/auth (which runs as root).
2018-09-19 17:20:29 +02:00
Lluís Batlle i Rossell 66d7126255 Take me (viric) out of most maintenance
Since years I'm not maintaining anything of the list below other
than some updates when I needed them for some reason. Other people
is doing that maintenance on my behalf so I better take me out but
for very few packages. Finally!
2018-07-22 21:50:19 +02:00
volth 52f53c69ce pkgs/*: remove unreferenced function arguments 2018-07-21 02:48:04 +00:00
R. RyanTM 2d1d17032b dovecot: 2.3.2 -> 2.3.2.1 (#43351)
Semi-automatic update generated by https://github.com/ryantm/nixpkgs-update tools. This update was made based on information from https://repology.org/metapackage/dovecot/versions.
2018-07-11 17:51:32 +02:00