summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2015-06-22Testsuite: fix operator precedence in dns_extract_auth_name()Jeremy Harris
2015-06-22Testsuite: Add a first test for dns_trust_aaHeiko Schlittermann (HS12)
2015-06-22Testsuite: fakens may return AUTHORITY recordsHeiko Schlittermann (HS12)
If an entry in db.<zone> is prefixed with "AA ", fakens will put a valid NS record into the AUTHORITY section of the returned packet. This will be used by dns_trust_aa checks.
2015-06-22Before importing a certificate, free any previous one. Bug 1648Jeremy Harris
Second try
2015-06-21Extract NS/SOA in dns_extract_auth_name() more precisly.Heiko Schlittermann (HS12)
2015-06-21Fix and extend the checks in dns_is_secure()Heiko Schlittermann (HS12)
2015-06-21Change noteJeremy Harris
2015-06-21Before importing a certificate, free any previous one. Bug 1648Jeremy Harris
Because the SSL libraries do not use Exim's heap management this was a memory-leak in "exim -bp".
2015-06-21Docs: add warning on list-sep in headerss_removeJeremy Harris
2015-06-20Docs typoexim-4_86_RC3Jeremy Harris
2015-06-20Fix build script. Bug 1646Gedalya
2015-06-20Add docs and massage coding standards for dns_trust_aaJeremy Harris
2015-06-20Add dns_trust_aaHeiko Schlittermann (HS12)
This new global option allows to trust the AA bit for specific domains the same way we'd trust the AD bit.
2015-06-16Docs: clarify notes on .ifdef Bug 1155Jeremy Harris
2015-06-15Docs: clarify notes on EventsJeremy Harris
2015-06-15DSN: fix null deref when bounce is due to conn-timeout. Bug 1630Wolfgang Breyha
2015-06-15Clarify that preceding 10ca4f was provided by Wolfgang BreyhaWolfgang Breyha
Massaged by JH
2015-06-14Add tls_eccurve main config option. Bug 1397Jeremy Harris
Patch from Suse, massaged by JH
2015-06-14minor tidyingJeremy Harris
2015-06-13Doc fix: server_secret expansions should failexim-4_86_RC2Phil Pennock
The `cyrusless_sasl` authenticator example failed to explicitly fail if no result was found from the lookup. Using `server_secret`, we should _always_ fail instead of expanding to an empty string. Doc-fix only.
2015-06-10Testsuite: additional EC encryptions seenJeremy Harris
2015-06-10Testsuite: Increase test delays and retry rule timesJeremy Harris
to allow slow hosts more reliable testing
2015-06-09Testsuite: less agressive PID-hidingJeremy Harris
2015-06-09Testsuite: quieteningJeremy Harris
2015-06-09Revert "Show the DNSSEC status (ad=) always in -bt/-bv output"Heiko Schlittermann (HS12)
This reverts commit e7a1b6ff65f1bebbc290f2a4fd7554fde00ae2f6. It's not production grade, since the wording (ad vs. trusted) is not final yet.
2015-06-09Testsuite: avoid IPv6 to avoid "no route to host" log linesJeremy Harris
2015-06-09Tighter guard for POLLRDHUPJeremy Harris
2015-06-08Truncate delay when peer closes connection. Bug 348Jeremy Harris
This is now possible on Linux, at least.
2015-06-07Testsuite: avoid IPv6 interfaces to avoid extra debug stderr linesJeremy Harris
2015-06-07Content scan: Use ETIMEDOUT not ETIME, as having better portability. Bug 1640Andreas Metzler
2015-06-06PRDR: enable server-side in the default configJeremy Harris
2015-06-06Logging: add log_selector items in the default config. Bug 1333Jeremy Harris
2015-06-06Doc: Add DKIM info in main sections. Bug 1607Jeremy Harris
2015-06-06DSN: fix null deref when bounce is due to conn-timeout. Bug 1630Wolfgang Breyha
2015-06-06Spamd: add missing initialiser. Rspamd mode was incorrectly sometimes seen.Jeremy Harris
Reported-by: Andreas Metzler
2015-06-05Guard routing against a null-deref. Bug 1639Jeremy Harris
2015-06-05release tooling: unbreak website build when not verbosePhil Pennock
2015-06-04release tooling: let make cmd be overridenexim-4_86_RC1Phil Pennock
Also let tar flag actually take an argument
2015-06-04Copyright year updates (things touched in 2015)Phil Pennock
Update current year in docs and banner copyright in src/src/globals.c Rest of changes from: vi $(git whatchanged --since=2015-01-01 | grep '^:100' | sed -n 's/^[^M]*M//p' | sort -u | fgrep -v test/) Note that there are a lot of changes made because of const propagation; I opted to include the copyright year updates in that, but we could be doing a better job with who gets the copyright credit for these changes. Changes visible with: git diff $(git rev-list -n1 --before="2015-01-01" master)
2015-06-04TLS authenticatorJeremy Harris
2015-06-04refactor build scriptJeremy Harris
2015-05-29Adjust my maintainership status to reflect realityPhil Pennock
2015-05-29OpenSSL: guard X509_check_host against LibreSSLPhil Pennock
LibreSSL's fork does not have this new function; as well as adding a `LIBRESSL_VERSION_NUMBER` value, that project bumped the OpenSSL version number in such a way as to conflict with our existing version checks. * Add a guard. * Add commentary, suggesting how to avoid getting into twistier knots with API divergence. Reported by Jasper Wallace, who provided a slightly different patch. Fixes bug 1635
2015-05-27Testsuite: Add $USER to env if missingHeiko Schlittermann (HS12)
2015-05-27Expand docs re. logs dir, and make eximon logs dir match exim's. Bug 1324Andreas Metzler
2015-05-27Note MAIL commands in -bS batch, to avoid smtp_no_mail logline. Bug 1346Jeremy Harris
2015-05-26Fix some typos in EDITMEHeiko Schlittermann (HS12)
2015-05-26TLS: Enable ECDHE on OpenSSL, just the NIST P-256 curve. Bug 1397Phil Pennock
Original by Phil Pennock; tweaked by JH.
2015-05-23New ${env {NAME}} expansion. Bug 1604Jeremy Harris
2015-05-23Testsuite: move test.again.dns and test.fail.dns handling to fakensJeremy Harris
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-29 02:16:35 +0000