Mercurial > dovecot > original-hg > dovecot-1.2
annotate TODO @ 6782:4628e3ec65e4 HEAD 1.1.beta8
Released v1.1.beta8.
author | Timo Sirainen <tss@iki.fi> |
---|---|
date | Sun, 11 Nov 2007 19:06:38 +0200 |
parents | 4b92160ac256 |
children | ad1361eee1ae |
rev | line source |
---|---|
6782 | 1 - proxying should support connecting to multiple IPs or if nothing works |
2 fallbacking to logging in normally (optionally). | |
6754 | 3 - imap-login: file client-authenticate.c: line 193 (sasl_callback): assertion failed: (!client->destroyed || reply == SASL_SERVER_REPLY_CLIENT_ERROR || reply == SASL_SERVER_REPLY_MASTER_FAILED) |
4 - login_process_per_connection=yes, HUP | |
5 - index-sync.c: line 273 (index_mailbox_expunge_unseen_recent): assertion failed: (mail_index_view_is_inconsistent(ibox->view)) | |
6 - ^ imaptest -> ctrl-c | |
7 - dbox: inotify should wait on .log | |
6641 | 8 - ACL: "foo/bar" in public namespace -> LIST "" % doesn't show "foo" |
6608 | 9 - search: flag searching is too slow with huge mailboxes. at least optimize |
10 deleted search. | |
11 - group privilege handling is ugly/broken. if gid+egid == wanted gid, no | |
12 checking is done if there are extra groups that should be dropped. otherwise | |
13 if we're not root, setgroups() will fail with EPERM, and the error message | |
14 is difficult to understand. | |
6402 | 15 - message-header-decode.c: handle decoding errors by fallbacking to simply |
16 returning the data as ASCII (the whole thing, beginning from =?) | |
17 - dbox: clean up temp.* files once in a while | |
18 - expunged messages' flags may get updated in views where they're not yet | |
19 expunged (e.g. "expunge uid 2", "+flags \seen uid 1:3") | |
20 - POP3 UIDL caching | |
21 - Cydir/dbox doesn't respect LIST RETURN (CHILDREN) | |
6232 | 22 - SORT: Invalid input is supposed to be sorted last. |
6105 | 23 - indexes: are cache prev_offsets updated right? |
5621 | 24 |
6105 | 25 - maildir+pop3/deliver fast updates: |
26 - with locking enabled, pop3 could just keep the one and same sync lock and | |
27 do the whole thing using sync transaction | |
28 - don't update dovecot-uidlist if dovecot.index.cache doesn't exist / | |
29 there's nothing to cache | |
30 - if all messages are expunged and there are no unknown extensions in index, | |
31 unlink dovecot.index and rotate log and add some initial useful info to | |
32 the log (uidvalidity, nextuid) | |
5621 | 33 |
6105 | 34 - maildir |
35 - physical separator could be configurable | |
36 - setting flags to same as they already are causes unnecessary | |
37 rename()s with identical parameters | |
38 - deliver+maildir: if new mails are in new/ or cur/ they're not added to | |
39 dovecot-uidlist but newly saved mails are, so UIDs will be in wrong order | |
40 - maildir_copy_with_hardlinks: We're currently first hardlinking to tmp/ and | |
41 then rename()ing. This wouldn't be necessary if uidlist syncing noticed | |
42 that someone else already had added them to uidlist, and the existing UIDs | |
43 could be assigned to them in the index. | |
6754 | 44 - copying should copy already-cached data |
6105 | 45 - maildir_copy_preserve_filename=yes has a race condition causing "Append with |
46 UID n, but next_uid = y" errors when quota plugin is loaded. Practically | |
47 won't happen except in stress testing. | |
5621 | 48 |
6105 | 49 - mbox |
50 - UID renumbering doesn't really work after all? | |
51 - still problems with CRLF mboxes.. | |
52 | |
53 - Mailbox list indexes | |
54 - Should probably check dovecot.index.log stamp/size too so that non-zero | |
55 recent counters get reset | |
56 - Why are updates so slow? | |
57 - Support for FS layout | |
58 | |
5557 | 59 - don't use squat with header if index doesn't exist |
60 - don't use squat index if searching only a couple of mails | |
61 - threading: (all done?) | |
62 - duplicate: mark original as rebuild | |
63 - re-parent (also reparenting to root): mark as rebuild | |
64 - unref: if refcount drops to zero, set children's parent=0 (can happen | |
65 if there are only grandchildren and dummy children) | |
66 - mail-hash: stat() and reopen if needed | |
67 - subjects: group roots togethere already while gathering subjects. then | |
68 go through them and sort them to get their sent date. then start writing | |
69 the nodes out. sorting needs to these cases: | |
70 1) root is dummy -> just sort their children. if there are dummies | |
71 they're skipped and their children ascend | |
72 2) root is non-dummy -> there are no dummies at all in the thread. | |
73 the root has the oldest date in the thread. after the root if there | |
74 are re: or fwd: messages they're children to the root. if there are | |
75 more messages after that, a new dummy parent needs to be created, | |
76 and the rest of the messages need to be sorted before sending | |
77 | |
6105 | 78 - mail_log: log appends |
79 - pop3 proxying(?): dovecot: login: tried to change state 2 -> 2 | |
80 - logging consistency: | |
81 http://www.dovecot.org/list/dovecot/2007-April/021532.html | |
82 - EXPUNGE command in read-only mailbox should give an error message if | |
83 there are messages marked as \Deleted? | |
84 - dovecot -o setting=something overriding | |
5557 | 85 - file_cache: we're growing the mmap in page size blocks, which is horribly |
86 slow if mremap() doesn't exist. | |
87 - login_max_processes_count shouldn't count proxying processes | |
88 | |
89 - Allow %variables in mail_chroot setting | |
90 - something should be done to umask setting. we should be creating files with | |
91 0666 or 0777 and rely on umask, but we shouldn't do that unless we're sure | |
92 that the umask is the wanted one (ie. imap/pop3 process wasn't started | |
93 directly) | |
94 - ssl_verify_client_cert isn't working if the SSL cert doesn't have CRL | |
95 | |
3087 | 96 - keywords: |
97 - add some limits to how many there can be | |
98 - don't return \* in PERMANENTFLAGS when we're full | |
99 - remove unused keywords? | |
2774 | 100 |
101 - caching | |
3904 | 102 - force bits should be used only for nonregistered fields |
103 - change envelope parsing not to use get_headers() so imap.envelope can | |
104 actually be cached without all the headers.. | |
6105 | 105 - if there's no other pressure for compression, we should do it when |
106 enough temp fields are ready to be dropped | |
3904 | 107 - we could try compressing same field values into a single |
108 location in cache file. | |
109 - support caching all message headers. this could be useful when | |
110 indexes are in local disk but actual mails are accessed through NFS. | |
2774 | 111 |
3087 | 112 - mbox |
4449 | 113 - dirty state should be stored to index (with mbox_very_dirty_syncs) |
114 - after some locking timeouts: mbox-lock.c: line 518 (mbox_lock): | |
115 assertion failed: (lock_type == F_RDLCK || mbox->mbox_lock_type != F_RDLCK) | |
116 - controldir for mboxes too and place subscriptions file there? | |
3904 | 117 - syncing existing indexes takes 4x longer than creating new one, why? |
118 - how well does dirty sync + status work? it reads the last mail every | |
119 time? not very good.. | |
120 - always add empty line. make the parser require it too? syncing should | |
121 make sure there always exists two LFs at end of file. raw-mbox-stream | |
122 should make sure the last message ends with LF even if it doesn't exist | |
123 in the file | |
124 - Quote "From ", unquote ">From " | |
4449 | 125 - COPY doesn't work to itself (lock assert crash, for now just disallowed) |
2143 | 126 - if we can't create dotlock file for mbox, make sure it still can be |
127 selected in read-only state | |
128 | |
129 - index | |
130 - if log file is lost, generate it from old and new index | |
3087 | 131 - read-only support for mailboxes where we don't have write-access |
6105 | 132 - index file format changes: |
133 - pack UIDs to beginning of file with UID ranges | |
134 - use squat-like compressed uid ranges everywhere | |
6782 | 135 - write first extension intros in dovecot.index.log always with names |
136 - or better yet, drop the intro concept completely as it is now | |
137 - add "transaction boundaries" so we know which records belong to a | |
138 single transaction. | |
139 - only after that we can remove the transaction log offset | |
140 overwriting (otherwise we can get partial transactions in views) | |
2143 | 141 |
4449 | 142 - namespaces |
143 - namespaces: add new "auto_disable" flag so if the mailbox can't be opened | |
144 (eg. file doesn't exist), just ignore the problem and disable the | |
145 namespace | |
6641 | 146 - convert plugin doesn't support namespaces |
4449 | 147 |
148 - lib-storage | |
5557 | 149 - rename: allow moving between storages, as long as they're of same type |
4449 | 150 - x search charset asdf all -> should fail |
3087 | 151 - should we allow following symlinks in mbox/maildirs? they are now. |
152 - if we implement shared mailboxes with shared indexes, never do that or | |
153 others could symlink your personal mailboxes and see the indexes | |
154 created for it which may contain envelope etc. data | |
155 - this allows circular mailbox hierarchies which should be prevented by | |
156 eg. allowing max. 20 hierarchies. | |
157 | |
158 - login | |
4449 | 159 - when pipelining login command + post-login commands, login process should |
160 pass the command to imap/pop3 process (at least one pop3 client does this) | |
161 - imap-login: Master sent reply with unknown tag 1. client closed | |
162 connection at the exact same time master was logging it in? | |
163 see master_request_abort() | |
3087 | 164 - Digest-MD5: support integrity protection, and maybe crypting. Do it |
165 through login process like SSL is done? | |
166 - x login foo bar | |
167 x NO Authentication failed. | |
168 x login cras pass | |
169 * BYE Disconnected for inactivity. | |
170 ^ but it's not disconnecting! (buggy dovecot-auth not replying) | |
3744 | 171 probably because userdb lookup didn't reply, and fd was already sent |
172 for master.. should imap-login be handling it anymore?.. | |
3087 | 173 - imap-login: Authenticate PLAIN failed: Authentication failed: |
174 Authentication server isn't connected, try again later.. [127.0.0.1] | |
175 ^ NO Authentication failed. (should be Temporary login failure!) | |
176 - if auth process dies, login process should retry authentication if | |
177 possible. or if not, disconnect the client so it doesn't think the auth | |
178 failed. | |
179 - send client IP immediately after accept() to master process. make sure | |
180 master shows the IP if login dies unexpectedly. master should probably | |
181 also kill the login process if it doesn't kill itself soon enough.. or | |
182 maybe just log the IP immediately. | |
474 | 183 |
3087 | 184 - auth |
4449 | 185 - with blocking passdb we're not caching lookups if the password was wrong |
5557 | 186 - non-plaintext authentication doesn't support all features: |
187 - multiple passdbs don't work, only the first one is used | |
188 - auth cache's last_success password change check doesn't exist | |
3087 | 189 - remove system_user and allow returning multiple gids instead. |
190 - SIGHUP restarts auth processes .. but does it wait until they've finished | |
191 with all requests? no. | |
192 - does dovecot-auth really break when it runs out of fds? | |
4449 | 193 - dovecot-auth should limit how fast authentication requests are allowed |
194 from login processes. especially if there's one login/connection the speed | |
3087 | 195 should be something like once/sec. also limit how fast to accept new |
196 connections. | |
197 - support read-only logins. user could with alternative password get only | |
198 read-access to mails so mails could be read relatively safely with | |
199 untrusted computers. Maybe always send [ALERT] about the previous | |
200 read-only login time with IP? | |
4449 | 201 - dovecot-auth workers: create a separate dovecot-pam worker which shares |
202 pretty much all code with dovecot-auth worker but isn't linked against | |
203 any libraries. or..? this might be difficult to do, especially because the | |
204 workers currently can handle any kind of passdb/userb requests. perhaps | |
205 there should be a completely separate simple PAM authenticator binary. | |
526 | 206 |
3087 | 207 - master |
208 - configurable syslog prefix | |
3450 | 209 - if there are duplicate settings, complain about it |
3087 | 210 |
211 - quota | |
212 - if dovecot-uidlist can't be written, assume the new mails have UIDs | |
213 beginning from uidlist.next_uid. Whenever mails are expunged, overwrite | |
214 the next_uid field with the current highest next_uid. Whenever we have | |
215 assumed UIDs and uidlist gets updated, throw the client out with | |
216 "inconsist mailbox". | |
217 | |
218 - ssl | |
219 - add setting: ssl_options = bitmask. by default we enable all openssl | |
220 workarounds, this could be used to disable some of them | |
221 - gnutls support isn't working | |
965 | 222 |
3087 | 223 - search |
6232 | 224 - message header search: we should ignore LWSP between two MIME blocks(?) |
225 - message_search_init() could accept multiple search keywords so we | |
1250 | 226 wouldn't need to call it separately for each one (so we wouldn't need |
227 to parse the message multiple times). | |
228 - could optionally support scanning inside file attachments and use | |
229 plugins to extract text out of them (word, excel, pdf, etc. etc.) | |
230 - Create our own extension: When searching with TEXT/BODY, return | |
231 the message text surrounding the keywords just like web search engines | |
232 do. like: SEARCH X-PRINT-MATCHES TEXT "hello" -> * SEARCH 1 "He said: | |
233 Hello world!" 2 "Hello, I'm ...". This would be especially useful with | |
234 the above attachment scanning. | |
0 | 235 |
4449 | 236 - deliver |
5557 | 237 - recipient_delimiter setting so user+mailbox@domain works directly |
4449 | 238 |
3087 | 239 - general |
4449 | 240 - stop using atol(), atoi(), strtoul() etc. in places where we actually |
241 care about what they return, and rather create our own function which | |
242 checks if the input overflows the integer, and if so call i_fatal() | |
3087 | 243 - rfc2231 continuation support (useless?) |
1553 | 244 - rfc2557 support for BODYSTRUCTURE, as specified by RFC3501 |
4449 | 245 - LMTP server |
246 - ability to build plugins statically into the binaries | |
3087 | 247 - ~/.dovecotrc to override system wide settings. namespace settings should |
248 override all the previous namespace settings instead of adding new. | |
249 - things break if next_uid gets to 2^32 | |
376
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
250 |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
251 capabilities: |
4449 | 252 - preferrably all should be implemented as plugins |
376
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
253 - possibility to disable them from config file |
3087 | 254 - THREAD=ORDEREDSUBJECT - although pretty useless I'd think. |
5621 | 255 - acl (rfc4314) |
376
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
256 - id (rfc2971) |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
257 - must be configurable what gets sent, default to only name=Dovecot |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
258 - separate pre/post-login settings |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
259 - optionally log configured parts of the client information, but only |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
260 once, probably at the same time as logging "Logged in", |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
261 "Disconnected", etc. |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
262 - remember to force truncating values longer than 30 chars, |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
263 especially before logging |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
264 - mailbox-referrals (rfc2193) |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
265 - this is useful whenever we would otherwise need to make the |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
266 connection ourself. for example load balancing and shared mailboxes |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
267 requiring another UID to run. |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
268 - this rfc defines no exact way for server to detect if client |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
269 supports referrals or not. I don't think there's much point in |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
270 supporting only referrals, as most clients don't support them. |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
271 Instead we should return referrals when we know that client |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
272 supports them, otherwise do the connecting ourself. If client |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
273 issues RLIST or RLSUB command, it's safe to assume it supports |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
274 referrals. |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
275 - for load balancing this works just fine, but what about shared |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
276 mailboxes which require different UID? If we login with our own |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
277 username, we end up with our own UID instead of what we wanted. |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
278 IMAP URLs don't support separated authorization id which would |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
279 have made this very easy.. We could give the "userid@group" as |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
280 userid, but clients probably treat it as different userid and |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
281 ask the password again. |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
282 - problems, problems, .. maybe not worth the trouble. |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
283 - drafts: |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
284 - http://www.imc.org/ids.html |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
285 - annotate (draft-ietf-imapext-annotate) |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
286 - per-message annotations. this will be major change. especially |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
287 because currently there's no suitable storage for them, and |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
288 they'll probably change all the time.. maybe if we moved into |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
289 berkeley db to store the .data file and these annotations. |
1178 | 290 - this is separate problem from index files. indexes are treated as |
291 temporary files, annotations are permanent data. we'd have to | |
292 support non-db way to do this too, which would probably be just a | |
293 simple (slow) text file. | |
5621 | 294 - use lib-dict probably |
295 - metadata (draft-daboo-imap-annotatemore) | |
376
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
296 - server and per-mailbox annotations. much easier than |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
297 per-message annotations, but they'd be easier to place into |
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
298 db as well. |
5621 | 299 - lib-dict, again |
376
fd1fc4cf11b7
updated with lots of new capability comments
Timo Sirainen <tss@iki.fi>
parents:
340
diff
changeset
|
300 - binary (draft-nerenberg-imap-binary) |