apply new patches

src/globals/patch/0001_imap_macos.patch

@@ -0,0 +1,220 @@
+From 5ab3bd7fa858eec0626a9dd0117ca3b050ef4660 Mon Sep 17 00:00:00 2001
+From: crazywhalecc <jesse2061@outlook.com>
+Date: Mon, 13 Nov 2023 00:00:52 +0800
+Subject: [PATCH] make macOS static compile happy
+
+---
+ src/c-client/netmsg.c     | 1 +
+ src/c-client/nntp.c       | 1 +
+ src/osdep/amiga/dummy.c   | 1 +
+ src/osdep/amiga/mbx.c     | 1 +
+ src/osdep/amiga/mh.c      | 1 +
+ src/osdep/amiga/mtx.c     | 1 +
+ src/osdep/amiga/unix.c    | 1 +
+ src/osdep/unix/dummy.c    | 1 +
+ src/osdep/unix/mbx.c      | 1 +
+ src/osdep/unix/mh.c       | 1 +
+ src/osdep/unix/mmdf.c     | 1 +
+ src/osdep/unix/mtx.c      | 1 +
+ src/osdep/unix/mx.c       | 1 +
+ src/osdep/unix/tcp_unix.c | 1 +
+ src/osdep/unix/tenex.c    | 2 ++
+ src/osdep/unix/unix.c     | 1 +
+ 16 files changed, 17 insertions(+)
+
+diff --git a/src/c-client/netmsg.c b/src/c-client/netmsg.c
+index 187e4eb..f316d0b 100644
+--- a/src/c-client/netmsg.c
++++ b/src/c-client/netmsg.c
+@@ -29,6 +29,7 @@
+ 
+ #include <stdio.h>
+ #include <errno.h>
++#include <time.h>
+ extern int errno;		/* just in case */
+ #include "c-client.h"
+ #include "netmsg.h"
+diff --git a/src/c-client/nntp.c b/src/c-client/nntp.c
+index fe90edb..b2f7536 100644
+--- a/src/c-client/nntp.c
++++ b/src/c-client/nntp.c
+@@ -29,6 +29,7 @@
+ 
+ #include <ctype.h>
+ #include <stdio.h>
++#include <time.h>
+ #include "c-client.h"
+ #include "newsrc.h"
+ #include "netmsg.h"
+diff --git a/src/osdep/amiga/dummy.c b/src/osdep/amiga/dummy.c
+index b003a0b..2c65824 100644
+--- a/src/osdep/amiga/dummy.c
++++ b/src/osdep/amiga/dummy.c
+@@ -35,6 +35,7 @@ extern int errno;		/* just in case */
+ #include "osdep.h"
+ #include <pwd.h>
+ #include <sys/stat.h>
++#include <time.h>
+ #include "dummy.h"
+ #include "misc.h"
+ 
+diff --git a/src/osdep/amiga/mbx.c b/src/osdep/amiga/mbx.c
+index 1ece5d8..2495965 100644
+--- a/src/osdep/amiga/mbx.c
++++ b/src/osdep/amiga/mbx.c
+@@ -43,6 +43,7 @@ extern int errno;		/* just in case */
+ #include <pwd.h>
+ #include <sys/stat.h>
+ #include <sys/time.h>
++#include <utime.h>
+ #include "misc.h"
+ #include "dummy.h"
+ #include "fdstring.h"
+diff --git a/src/osdep/amiga/mh.c b/src/osdep/amiga/mh.c
+index 0226b7a..e7c907a 100644
+--- a/src/osdep/amiga/mh.c
++++ b/src/osdep/amiga/mh.c
+@@ -36,6 +36,7 @@ extern int errno;		/* just in case */
+ #include <pwd.h>
+ #include <sys/stat.h>
+ #include <sys/time.h>
++#include <utime.h>
+ #include "misc.h"
+ #include "dummy.h"
+ #include "fdstring.h"
+diff --git a/src/osdep/amiga/mtx.c b/src/osdep/amiga/mtx.c
+index 8e6f76e..ca7b368 100644
+--- a/src/osdep/amiga/mtx.c
++++ b/src/osdep/amiga/mtx.c
+@@ -43,6 +43,7 @@ extern int errno;		/* just in case */
+ #include <pwd.h>
+ #include <sys/stat.h>
+ #include <sys/time.h>
++#include <utime.h>
+ #include "misc.h"
+ #include "dummy.h"
+ #include "fdstring.h"
+diff --git a/src/osdep/amiga/unix.c b/src/osdep/amiga/unix.c
+index be3c437..c755fe7 100644
+--- a/src/osdep/amiga/unix.c
++++ b/src/osdep/amiga/unix.c
+@@ -46,6 +46,7 @@ extern int errno;		/* just in case */
+ #include "osdep.h"
+ #include <time.h>
+ #include <sys/stat.h>
++#include <utime.h>
+ #include "unix.h"
+ #include "pseudo.h"
+ #include "fdstring.h"
+diff --git a/src/osdep/unix/dummy.c b/src/osdep/unix/dummy.c
+index b003a0b..2c65824 100644
+--- a/src/osdep/unix/dummy.c
++++ b/src/osdep/unix/dummy.c
+@@ -35,6 +35,7 @@ extern int errno;		/* just in case */
+ #include "osdep.h"
+ #include <pwd.h>
+ #include <sys/stat.h>
++#include <time.h>
+ #include "dummy.h"
+ #include "misc.h"
+ 
+diff --git a/src/osdep/unix/mbx.c b/src/osdep/unix/mbx.c
+index 1ece5d8..2495965 100644
+--- a/src/osdep/unix/mbx.c
++++ b/src/osdep/unix/mbx.c
+@@ -43,6 +43,7 @@ extern int errno;		/* just in case */
+ #include <pwd.h>
+ #include <sys/stat.h>
+ #include <sys/time.h>
++#include <utime.h>
+ #include "misc.h"
+ #include "dummy.h"
+ #include "fdstring.h"
+diff --git a/src/osdep/unix/mh.c b/src/osdep/unix/mh.c
+index 0226b7a..e7c907a 100644
+--- a/src/osdep/unix/mh.c
++++ b/src/osdep/unix/mh.c
+@@ -36,6 +36,7 @@ extern int errno;		/* just in case */
+ #include <pwd.h>
+ #include <sys/stat.h>
+ #include <sys/time.h>
++#include <utime.h>
+ #include "misc.h"
+ #include "dummy.h"
+ #include "fdstring.h"
+diff --git a/src/osdep/unix/mmdf.c b/src/osdep/unix/mmdf.c
+index e962434..8cc9fae 100644
+--- a/src/osdep/unix/mmdf.c
++++ b/src/osdep/unix/mmdf.c
+@@ -34,6 +34,7 @@ extern int errno;		/* just in case */
+ #include "osdep.h"
+ #include <time.h>
+ #include <sys/stat.h>
++#include <utime.h>
+ #include "pseudo.h"
+ #include "fdstring.h"
+ #include "misc.h"
+diff --git a/src/osdep/unix/mtx.c b/src/osdep/unix/mtx.c
+index 8e6f76e..ca7b368 100644
+--- a/src/osdep/unix/mtx.c
++++ b/src/osdep/unix/mtx.c
+@@ -43,6 +43,7 @@ extern int errno;		/* just in case */
+ #include <pwd.h>
+ #include <sys/stat.h>
+ #include <sys/time.h>
++#include <utime.h>
+ #include "misc.h"
+ #include "dummy.h"
+ #include "fdstring.h"
+diff --git a/src/osdep/unix/mx.c b/src/osdep/unix/mx.c
+index 4549527..9d444c9 100644
+--- a/src/osdep/unix/mx.c
++++ b/src/osdep/unix/mx.c
+@@ -36,6 +36,7 @@ extern int errno;		/* just in case */
+ #include <pwd.h>
+ #include <sys/stat.h>
+ #include <sys/time.h>
++#include <utime.h>
+ #include "misc.h"
+ #include "dummy.h"
+ #include "fdstring.h"
+diff --git a/src/osdep/unix/tcp_unix.c b/src/osdep/unix/tcp_unix.c
+index 5bad706..5d6cd03 100644
+--- a/src/osdep/unix/tcp_unix.c
++++ b/src/osdep/unix/tcp_unix.c
+@@ -27,6 +27,7 @@
+  */
+ 
+ #include "ip_unix.c"
++#include <poll.h>
+ 
+ #undef write			/* don't use redefined write() */
+  
+diff --git a/src/osdep/unix/tenex.c b/src/osdep/unix/tenex.c
+index eee61fb..61760f0 100644
+--- a/src/osdep/unix/tenex.c
++++ b/src/osdep/unix/tenex.c
+@@ -46,6 +46,8 @@ extern int errno;		/* just in case */
+ #include "mail.h"
+ #include "osdep.h"
+ #include <sys/stat.h>
++#include <time.h>
++#include <utime.h>
+ #include "misc.h"
+ #include "dummy.h"
+ 
+diff --git a/src/osdep/unix/unix.c b/src/osdep/unix/unix.c
+index be3c437..c755fe7 100644
+--- a/src/osdep/unix/unix.c
++++ b/src/osdep/unix/unix.c
+@@ -46,6 +46,7 @@ extern int errno;		/* just in case */
+ #include "osdep.h"
+ #include <time.h>
+ #include <sys/stat.h>
++#include <utime.h>
+ #include "unix.h"
+ #include "pseudo.h"
+ #include "fdstring.h"
+-- 
+2.39.3 (Apple Git-145)
+

src/globals/patch/1006_openssl1.1_autoverify.patch

@@ -1,58 +0,0 @@
-Description: Support OpenSSL 1.1
- When building with OpenSSL 1.1 and newer, use the new built-in
- hostname verification instead of code that doesn't compile due to
- structs having been made opaque.
-Bug-Debian: https://bugs.debian.org/828589
-
---- a/src/osdep/unix/ssl_unix.c
-+++ b/src/osdep/unix/ssl_unix.c
-@@ -227,8 +227,16 @@ static char *ssl_start_work (SSLSTREAM *
- 				/* disable certificate validation? */
-   if (flags & NET_NOVALIDATECERT)
-     SSL_CTX_set_verify (stream->context,SSL_VERIFY_NONE,NIL);
--  else SSL_CTX_set_verify (stream->context,SSL_VERIFY_PEER,ssl_open_verify);
-+  else {
-+#if OPENSSL_VERSION_NUMBER >= 0x10100000      
-+      X509_VERIFY_PARAM *param = SSL_CTX_get0_param(stream->context);
-+      X509_VERIFY_PARAM_set_hostflags(param, X509_CHECK_FLAG_NO_PARTIAL_WILDCARDS);
-+      X509_VERIFY_PARAM_set1_host(param, host, 0);
-+#endif
-+
-+      SSL_CTX_set_verify (stream->context,SSL_VERIFY_PEER,ssl_open_verify);
- 				/* set default paths to CAs... */
-+  }
-   SSL_CTX_set_default_verify_paths (stream->context);
- 				/* ...unless a non-standard path desired */
-   if (s = (char *) mail_parameters (NIL,GET_SSLCAPATH,NIL))
-@@ -266,6 +274,7 @@ static char *ssl_start_work (SSLSTREAM *
-   if (SSL_write (stream->con,"",0) < 0)
-     return ssl_last_error ? ssl_last_error : "SSL negotiation failed";
- 				/* need to validate host names? */
-+#if OPENSSL_VERSION_NUMBER < 0x10100000
-   if (!(flags & NET_NOVALIDATECERT) &&
-       (err = ssl_validate_cert (cert = SSL_get_peer_certificate (stream->con),
- 				host))) {
-@@ -275,6 +284,7 @@ static char *ssl_start_work (SSLSTREAM *
-     sprintf (tmp,"*%.128s: %.255s",err,cert ? cert->name : "???");
-     return ssl_last_error = cpystr (tmp);
-   }
-+#endif
-   return NIL;
- }
-
-@@ -313,6 +323,7 @@ static int ssl_open_verify (int ok,X509_
-  * Returns: NIL if validated, else string of error message
-  */
-
-+#if OPENSSL_VERSION_NUMBER < 0x10100000
- static char *ssl_validate_cert (X509 *cert,char *host)
- {
-   int i,n;
-@@ -342,6 +353,7 @@ static char *ssl_validate_cert (X509 *ce
-   else ret = "Unable to locate common name in certificate";
-   return ret;
- }
-+#endif
-
- /* Case-independent wildcard pattern match
-  * Accepts: base string

src/globals/patch/2014_openssl1.1.1_sni.patch

@@ -1,42 +0,0 @@
-Bug-Debian: https://bugs.debian.org/916041
-Bug-Ubuntu: https://bugs.launchpad.net/bugs/1834340
-Description: 
- Google IMAP servers require SNI if TLSv1.3 is used,
- otherwise it sends a self-signed certificate which
- fails validation.
-
- OpenSSL support/versions:
- - TLSv1.3 on 1.1.1,
- - a2i_IPADDRESS() on 0.9.8'ish,
- - SSL_set_tlsext_host_name() on 0.9.8'ish/1.0.0;
- per 'git blame/describe' and the CHANGES file.
-
- So check for TLSv1.3 support / OpenSSL 1.1.1
- not to incur behavior changes on pre-TLSv1.3,
- and set host_name to 'host' (ssl_open_verify()
- validates this, via 'ssl_last_host' variable)
-
- This patch just combines these two patches:
- - BTS#916041 (message #5) by Ed Spiridonov,
- - LP#1834340 (comment #6) by David Zuelke.
-Author: Mauricio Faria de Oliveira <mfo@canonical.com>
-
-Index: uw-imap-2007f~dfsg/src/osdep/unix/ssl_unix.c
-===================================================================
---- uw-imap-2007f~dfsg.orig/src/osdep/unix/ssl_unix.c
-+++ uw-imap-2007f~dfsg/src/osdep/unix/ssl_unix.c
-@@ -266,6 +266,14 @@ static char *ssl_start_work (SSLSTREAM *
- 				/* create connection */
-   if (!(stream->con = (SSL *) SSL_new (stream->context)))
-     return "SSL connection failed";
-+#if OPENSSL_VERSION_NUMBER >= 0x10101000
-+  /* Use SNI in case server requires it with TLSv1.3.
-+   * Literal IP addresses not permitted per RFC 6066. */
-+  if (!a2i_IPADDRESS(host)) {
-+    ERR_clear_error();
-+    SSL_set_tlsext_host_name(stream->con,host);
-+  }
-+#endif
-   bio = BIO_new_socket (stream->tcpstream->tcpsi,BIO_NOCLOSE);
-   SSL_set_bio (stream->con,bio,bio);
-   SSL_set_connect_state (stream->con);