summaryrefslogtreecommitdiff
AgeCommit message (Expand)Author
2017-12-20DANE/GnuTLS: filter TLSA records for usabilityJeremy Harris
2017-12-20DANE/GnuTLS: ignore traditional CA anchor validation in DANE-EE modeJeremy Harris
2017-12-20ACL: Disallow '/' characters in queue names specified for "queue="Jeremy Harris
2017-12-19Merge branch '4.next'Jeremy Harris
2017-12-19Docs: clean for next releaseJeremy Harris
2017-12-19Fix nossl buildJeremy Harris
2017-12-19DANE: support under GnuTLS. Bug 1523Jeremy Harris
2017-12-18Testsuite: move CRL testcases away from using SHA1-signed certsJeremy Harris
2017-12-16Testsuite: output changes arisingJeremy Harris
2017-12-16Testsuite: regenerate certs treeJeremy Harris
2017-12-16Testsuite: restore generation of OCSP status for EC certsJeremy Harris
2017-12-16Testsuite: do not bother with cert hostnames when testing OCSPJeremy Harris
2017-12-16Testsuite: restore lost dns config for DKIM extra-txt-records testcaseJeremy Harris
2017-12-16Testsuite output changes arisingJeremy Harris
2017-12-16DANE: fix type-2xx TLSA under older OpenSSL versions Bug 2198Viktor Dukhovni
2017-12-16Testsuite: testcase for Bug 2198Jeremy Harris
2017-12-12CHUNKING: flush input stream after message-fatal error detection. Bug 2201exim-4_90_RC4exim-4_90Jeremy Harris
2017-12-09Testsuite: regen TLSA records, to match cert treeJeremy Harris
2017-12-09Testsuite: regen TLSA records, to match cert treeJeremy Harris
2017-12-08openssl guidance: install shared libraries tooPhil Pennock
2017-12-08tidyingJeremy Harris
2017-12-08Add compile-time guard against BDB library version 6Jeremy Harris
2017-12-04Fix non-OCSP OpenSSL buildJeremy Harris
2017-12-03Docs: amend warning on on lack of multiple-OCSP-proof supportJeremy Harris
2017-12-03GnuTLS: multiple server certs, OCSP stapling. Bug 2092Jeremy Harris
2017-12-03Testsuite: regen certs trees, now with OCSP response for one EC certJeremy Harris
2017-12-03Docs: clarify smtp transport tls_verify_certificates optionJeremy Harris
2017-12-03DKIM: Ignore non-DKIM TXT records in DNS response. Bug 2207Heiko Schlittermann (HS12-RIPE)
2017-12-03Fix initialiser in smtp transportJeremy Harris
2017-12-03Docs: add notes on lack of multiple-OCSP-proof supportJeremy Harris
2017-12-03Change log updateJeremy Harris
2017-12-03Chunking: do not treat the first lonely dot special. CVE-2017-16944, Bug 2201Heiko Schlittermann (HS12-RIPE)
2017-12-03Logging: fix log line for local_scan() rejectionJeremy Harris
2017-12-03DKIM: fix tolerating spaces round tag valuesJeremy Harris
2017-12-03Fix filename length check in mime-handlingJeremy Harris
2017-12-03tidyingJeremy Harris
2017-12-02Fix initialiser in smtp transportJeremy Harris
2017-12-02Docs: add notes on lack of multiple-OCSP-proof supportJeremy Harris
2017-12-01Debug: fix coding in dnssec reporting. Bug 2205Jeremy Harris
2017-11-30TLS: avoid calling smtp_auth_acl on client cert when no tls authenticator is ...Jeremy Harris
2017-11-29TLS: Fix excessive calling of smtp_auth_acl under AUTH_TLS. Bug 2203Jeremy Harris
2017-11-28Change log updateexim-4_90_RC3Jeremy Harris
2017-11-28Chunking: do not treat the first lonely dot special. CVE-2017-16944, Bug 2201Heiko Schlittermann (HS12-RIPE)
2017-11-26Logging: fix log line for local_scan() rejectionJeremy Harris
2017-11-26DKIM: fix tolerating spaces round tag valuesJeremy Harris
2017-11-26Fix filename length check in mime-handlingJeremy Harris
2017-11-26tidyingJeremy Harris
2017-11-25tidyingJeremy Harris
2017-11-25Replace the store_release() internal interface, which was excessively unsafe.Jeremy Harris
2017-11-25Merge branch 'master' into 4.nextJeremy Harris