keystore issueshttps://git.autistici.org/id/keystore/-/issues2018-11-20T21:25:41Zhttps://git.autistici.org/id/keystore/-/issues/1Disable mail_crypt when a user has no keys2018-11-20T21:25:41ZaleDisable mail_crypt when a user has no keysIf a user has no keys, instead of returning a noMatch (N) dict response as we do now, we should probably disable the mail_crypt plugin altogether, or we get this error:
> get_public_key(INBOX) failed: mailbox_attribute_get(INBOX, /share...If a user has no keys, instead of returning a noMatch (N) dict response as we do now, we should probably disable the mail_crypt plugin altogether, or we get this error:
> get_public_key(INBOX) failed: mailbox_attribute_get(INBOX, /shared/vendor/vendor.dovecot/pvt/crypt/active) failed: Mailbox attributes not enabled (in reply to end of DATA command))
which is caused by mail_crypt being enabled and the mail_crypt_global_\* parameters being unset. To disable a plugin, I think we must instead return a valid response and set mail_plugins to exclude mail_crypt (or so the [dovecot docs](https://wiki2.dovecot.org/Plugins) say).https://git.autistici.org/id/keystore/-/issues/2Dependency Dashboard2024-03-26T15:33:32ZrenovateDependency DashboardThis issue lists Renovate updates and detected dependencies. Read the [Dependency Dashboard](https://docs.renovatebot.com/key-concepts/dashboard/) docs to learn more.
## Open
These updates have all been created already. Click a checkbo...This issue lists Renovate updates and detected dependencies. Read the [Dependency Dashboard](https://docs.renovatebot.com/key-concepts/dashboard/) docs to learn more.
## Open
These updates have all been created already. Click a checkbox below to force a retry/rebase of any.
- [ ] <!-- rebase-branch=renovate/git.autistici.org-ai3-go-common-digest -->[Update git.autistici.org/ai3/go-common digest to b3aa3fb](!36)
- [ ] <!-- rebase-branch=renovate/github.com-go-ldap-ldap-v3-3.x -->[Update module github.com/go-ldap/ldap/v3 to v3.4.6](!40)
- [ ] <!-- rebase-branch=renovate/github.com-lib-pq-1.x -->[Update module github.com/lib/pq to v1.10.9](!37)
- [ ] <!-- rebase-branch=renovate/github.com-mattn-go-sqlite3-1.x -->[Update module github.com/mattn/go-sqlite3 to v1.14.22](!39)
- [ ] <!-- rebase-branch=renovate/github.com-go-sql-driver-mysql-1.x -->[Update module github.com/go-sql-driver/mysql to v1.8.1](!38)
- [ ] <!-- rebase-branch=renovate/github.com-prometheus-client_golang-1.x -->[Update module github.com/prometheus/client_golang to v1.19.0](!13)
- [ ] <!-- rebase-branch=renovate/golang.org-x-crypto-0.x -->[Update module golang.org/x/crypto to v0.21.0](!27)
- [ ] <!-- rebase-branch=renovate/golang.org-x-sync-0.x -->[Update module golang.org/x/sync to v0.6.0](!44)
- [ ] <!-- rebase-all-open-prs -->**Click on this checkbox to rebase all open MRs at once**
## Detected dependencies
<details><summary>gomod</summary>
<blockquote>
<details><summary>go.mod</summary>
- `go 1.15`
- `git.autistici.org/ai3/go-common v0.0.0-20221125154433-06304016b1da@06304016b1da`
- `git.autistici.org/id/go-sso v0.0.0-20230822064459-ed921a53bb33@ed921a53bb33`
- `github.com/coreos/go-systemd/v22 v22.5.0`
- `github.com/go-ldap/ldap/v3 v3.4.4`
- `github.com/go-sql-driver/mysql v1.7.0`
- `github.com/lib/pq v1.10.7`
- `github.com/mattn/go-sqlite3 v1.14.16`
- `github.com/prometheus/client_golang v1.12.2`
- `golang.org/x/crypto v0.0.0-20220829220503-c86fa9a7ed90@c86fa9a7ed90`
- `golang.org/x/sync v0.3.0`
- `gopkg.in/yaml.v3 v3.0.1`
</details>
</blockquote>
</details>https://git.autistici.org/id/keystore/-/issues/3Don't lose keys when two users are logged in at the same time2022-12-19T19:29:44ZaleDon't lose keys when two users are logged in at the same timeIf the first user logs out, the Close() call will cause us to lose the key, disrupting the other session.If the first user logs out, the Close() call will cause us to lose the key, disrupting the other session.https://git.autistici.org/id/keystore/-/issues/4Support Dovecot dict protocol version 32023-08-29T09:31:43ZaleSupport Dovecot dict protocol version 3With Dovecot 2.3.17 they introduced a new major version of the dict protocol. This currently breaks dovecot-keylookupd (which does not check the client protocol version).
Reference: https://doc.dovecot.org/developer_manual/design/dict_p...With Dovecot 2.3.17 they introduced a new major version of the dict protocol. This currently breaks dovecot-keylookupd (which does not check the client protocol version).
Reference: https://doc.dovecot.org/developer_manual/design/dict_protocol/https://git.autistici.org/id/keystore/-/issues/5Implement protocol version check in dovecot-keylookupd2023-08-29T10:32:08ZaleImplement protocol version check in dovecot-keylookupdA change in the major dict protocol version (see #4) caused dovecot-keylookupd to silently fail with recent Dovecot clients, due to an error in parsing the L ("lookup") command now that it has additional fields.
Dovecot-keylookupd shoul...A change in the major dict protocol version (see #4) caused dovecot-keylookupd to silently fail with recent Dovecot clients, due to an error in parsing the L ("lookup") command now that it has additional fields.
Dovecot-keylookupd should parse the H ("hello") line and reject clients with versions it does not support.