summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2015-06-21Before importing a certificate, free any previous one. Bug 1648Jeremy Harris
Because the SSL libraries do not use Exim's heap management this was a memory-leak in "exim -bp".
2015-06-21Docs: add warning on list-sep in headerss_removeJeremy Harris
2015-06-20Docs typoexim-4_86_RC3Jeremy Harris
2015-06-20Fix build script. Bug 1646Gedalya
2015-06-20Add docs and massage coding standards for dns_trust_aaJeremy Harris
2015-06-20Add dns_trust_aaHeiko Schlittermann (HS12)
This new global option allows to trust the AA bit for specific domains the same way we'd trust the AD bit.
2015-06-16Docs: clarify notes on .ifdef Bug 1155Jeremy Harris
2015-06-15Docs: clarify notes on EventsJeremy Harris
2015-06-15DSN: fix null deref when bounce is due to conn-timeout. Bug 1630Wolfgang Breyha
2015-06-15Clarify that preceding 10ca4f was provided by Wolfgang BreyhaWolfgang Breyha
Massaged by JH
2015-06-14Add tls_eccurve main config option. Bug 1397Jeremy Harris
Patch from Suse, massaged by JH
2015-06-14minor tidyingJeremy Harris
2015-06-13Doc fix: server_secret expansions should failexim-4_86_RC2Phil Pennock
The `cyrusless_sasl` authenticator example failed to explicitly fail if no result was found from the lookup. Using `server_secret`, we should _always_ fail instead of expanding to an empty string. Doc-fix only.
2015-06-10Testsuite: additional EC encryptions seenJeremy Harris
2015-06-10Testsuite: Increase test delays and retry rule timesJeremy Harris
to allow slow hosts more reliable testing
2015-06-09Testsuite: less agressive PID-hidingJeremy Harris
2015-06-09Testsuite: quieteningJeremy Harris
2015-06-09Revert "Show the DNSSEC status (ad=) always in -bt/-bv output"Heiko Schlittermann (HS12)
This reverts commit e7a1b6ff65f1bebbc290f2a4fd7554fde00ae2f6. It's not production grade, since the wording (ad vs. trusted) is not final yet.
2015-06-09Testsuite: avoid IPv6 to avoid "no route to host" log linesJeremy Harris
2015-06-09Tighter guard for POLLRDHUPJeremy Harris
2015-06-08Truncate delay when peer closes connection. Bug 348Jeremy Harris
This is now possible on Linux, at least.
2015-06-07Testsuite: avoid IPv6 interfaces to avoid extra debug stderr linesJeremy Harris
2015-06-07Content scan: Use ETIMEDOUT not ETIME, as having better portability. Bug 1640Andreas Metzler
2015-06-06PRDR: enable server-side in the default configJeremy Harris
2015-06-06Logging: add log_selector items in the default config. Bug 1333Jeremy Harris
2015-06-06Doc: Add DKIM info in main sections. Bug 1607Jeremy Harris
2015-06-06DSN: fix null deref when bounce is due to conn-timeout. Bug 1630Wolfgang Breyha
2015-06-06Spamd: add missing initialiser. Rspamd mode was incorrectly sometimes seen.Jeremy Harris
Reported-by: Andreas Metzler
2015-06-05Guard routing against a null-deref. Bug 1639Jeremy Harris
2015-06-05release tooling: unbreak website build when not verbosePhil Pennock
2015-06-04release tooling: let make cmd be overridenexim-4_86_RC1Phil Pennock
Also let tar flag actually take an argument
2015-06-04Copyright year updates (things touched in 2015)Phil Pennock
Update current year in docs and banner copyright in src/src/globals.c Rest of changes from: vi $(git whatchanged --since=2015-01-01 | grep '^:100' | sed -n 's/^[^M]*M//p' | sort -u | fgrep -v test/) Note that there are a lot of changes made because of const propagation; I opted to include the copyright year updates in that, but we could be doing a better job with who gets the copyright credit for these changes. Changes visible with: git diff $(git rev-list -n1 --before="2015-01-01" master)
2015-06-04TLS authenticatorJeremy Harris
2015-06-04refactor build scriptJeremy Harris
2015-05-29Adjust my maintainership status to reflect realityPhil Pennock
2015-05-29OpenSSL: guard X509_check_host against LibreSSLPhil Pennock
LibreSSL's fork does not have this new function; as well as adding a `LIBRESSL_VERSION_NUMBER` value, that project bumped the OpenSSL version number in such a way as to conflict with our existing version checks. * Add a guard. * Add commentary, suggesting how to avoid getting into twistier knots with API divergence. Reported by Jasper Wallace, who provided a slightly different patch. Fixes bug 1635
2015-05-27Testsuite: Add $USER to env if missingHeiko Schlittermann (HS12)
2015-05-27Expand docs re. logs dir, and make eximon logs dir match exim's. Bug 1324Andreas Metzler
2015-05-27Note MAIL commands in -bS batch, to avoid smtp_no_mail logline. Bug 1346Jeremy Harris
2015-05-26Fix some typos in EDITMEHeiko Schlittermann (HS12)
2015-05-26TLS: Enable ECDHE on OpenSSL, just the NIST P-256 curve. Bug 1397Phil Pennock
Original by Phil Pennock; tweaked by JH.
2015-05-23New ${env {NAME}} expansion. Bug 1604Jeremy Harris
2015-05-23Testsuite: move test.again.dns and test.fail.dns handling to fakensJeremy Harris
2015-05-23tidyingJeremy Harris
2015-05-22DANE: do not fail/defer message due to TLSA lookup but dane is only requestedJeremy Harris
2015-05-21Fix DANE for multiple-MX when all TLSA lookup defer. Bug 1634Jeremy Harris
2015-05-20Testsuite: Check debug message if we requested AD but got AAHeiko Schlittermann (HS12)
2015-05-20Testsuite: Add support for authoritive answer to fakensHeiko Schlittermann (HS12)
2015-05-20Add DNS debug aid if we requested AD but got AAHeiko Schlittermann (HS12)
If the resolver we ask is authoritive (AA) for some domain, we never ever get the AD (authentic data) bit in the answer.
2015-05-20Add DNS debug aid if we requsted AD but got AAHeiko Schlittermann (HS12)
If the resolver we ask is authoritive (AA) for some domain, we never ever get the AD (authentic data) bit in the answer.
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-28 17:22:35 +0000