summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2017-02-25Memory Management: new main-section config option "debug_store" to control ↵Jeremy Harris
extra internal checking (cherry picked from commit 10919584f8ad580434442c7d971083f91c315bc0) Signed-off-by: Phil Pennock <pdp@exim.org>
2017-02-25Pull in vdukhovni/ssl_dane 8270afba fixPhil Pennock
Negating an int and comparing to another int was a bug which we got lucky on.
2017-02-24tidyingJeremy Harris
2017-02-24Memory management: drop $acl_m_ variables explicitly as they go out-of-scopeJeremy Harris
between message receptions in an SMTP connection
2017-02-23Docs: clarify non-applicability of the tls_eccurve option to GnuTLSJeremy Harris
2017-02-22Move bdat_ungetc decl to hdr ∵ receive.c uses tooPhil Pennock
2017-02-19releng: able to use gnupg default keys for signingPhil Pennock
Git and our previous "must specify one keyid" approach is more constraining than GnuPG allows; cleanest and simplest way, without breaking support for people with multiple keys and such like, is to just provide a way to break out of our logic and say "use the configured default GnuPG keys". My PGP key has multiple signing subkeys, one RSA and one Ed25519; I think I might try a dual-signature in an upcoming RC to see how many people scream with broken OpenPGP clients.
2017-02-18Testsuite: add option to insert delays, for very slow test platformsJeremy Harris
An emulated PPC, running as a VM on x86_64, was seeing testcase fails where the trailing few log line were missing in munged output, despite on inspection being present in the spool. Adding a delay before the munge-and-compare made the issue go away.
2017-02-15testsuite: make patchexim more relaxed for tag namesHeiko Schlittermann (HS12-RIPE)
2017-02-15Docs: Add commandline option used for chunking on continued connectionJeremy Harris
2017-02-15Tidy quickreleaseHeiko Schlittermann (HS12-RIPE)
2017-02-14Fix broken-in-queue messages predating CHUNKING fixPhil Pennock
util/chunking_fixqueue_finalnewlines.pl walks the queue, fixing any affected messages; see README.UPDATING. We're extremely cautious about operation failure. We do one check without locking messages, so that we can quickly skip past before trying to lock and contending with an actual delivery. Then we lock and do another fix. Note that we use flock, not fcntl, because that's what Perl makes readily available; we use an OS-guard to barf if the OS is not handled.
2017-02-14nit: document that `fout` must be open for reading tooPhil Pennock
2017-02-14Fix missing line termination on the last received BDAT chunk (Bug 1974)Heiko Schlittermann (HS12-RIPE)
2017-02-14Use enum { SEEN_LF, …} for ch_state(s)Heiko Schlittermann (HS12-RIPE)
2017-02-12Handle PKG_CONFIG_PATH in Local/MakefilePhil Pennock
Handle PKG_CONFIG_PATH, stripping whitespace expanding globs, collecting multiple sets and just build one variable, and use it in environment at configure time so that the libraries are found.
2017-02-12Forward-port ChangeLog entries written for release branchexim-4.90devstartPhil Pennock
2017-02-12os_getcwd(): do not realloc if there was no malloc().Heiko Schlittermann (HS12-RIPE)
2017-02-12DKIM: fix crash with a verification when dkim disabled, under CHUNKINGJeremy Harris
2017-02-12Debug: avoid indenting line-prefixes (timestamp, pid, host-checking marker)Jeremy Harris
2017-02-12FreeBSD: only assume iconv for FreeBSD >= 10Phil Pennock
Since FreeBSD 10 is the oldest version of the OS supported by the FreeBSD Project, we shouldn't need this. But people are still using older versions. On closer examination, it's only been 6 weeks since 9.3 stopped being supported. People ignoring the status are playing with fire, getting no security updates, but let's not make that _our_ problem. Guard the "use system iconv" #define for the libiconv package with an OS version #ifdef.
2017-02-124.89 JH/17 -> 4.90 JH/01Phil Pennock
2017-02-11Fix missing Changelog entries for recent workPhil Pennock
2017-02-11Unbreak test_dbfn make-targetPhil Pennock
doc/dbm.discuss.txt describes how to make and use `test_dbfn` for testing DB functionality. Commit cf0812d5 adds a call to assert_no_variables into store.c which depends upon expand.c functionality and we can't link that in for test_dbfn without pulling in half of Exim. So adjust the test_dbfn target to rebuild store.o in COMPILE_UTILITY mode and link against that variant, then remove the custom-built store.o after the executable has been linked.
2017-02-11DNS: return explicit error code to caller on dnssec failure, for better loggingJeremy Harris
2017-02-11Mention FreeBSD/iconv in README.UPDATINGPhil Pennock
2017-02-10Compilation warnings shushingPhil Pennock
With this patch, in clang 3.4.1 we get no compilation complaints if Local/Makefile contains: CC=clang CFLAGS+=-Wno-dangling-else -Wno-logical-op-parentheses * In hash.c, for the OpenSSL case, use assert() to guard the paths which can't happen, instead of just assuming that the calling code never has a mistake * Fix some signed/unsigned issues * Be explicit about some ignored return values * Some parens around bit-twiddling * Use our os_getcwd with its extra guards in one place where getcwd was called * FreeBSD: use system iconv, safely, always (cherry picked from commit 845a3ced80964f562872aba841099adbc8933b40) Signed-off-by: Phil Pennock <pdp@exim.org>
2017-02-10perl paranoia about @INCPhil Pennock
2017-02-10TLS: rework error logging to pass more string back to caller for loggingJeremy Harris
This permits a library-sourced error to be associated with an address being delivered, collapsing pairs of log lines
2017-02-10Testsuite: fix munging of now-indented date in stdoutJeremy Harris
Broken-by: e1d04f48a45c
2017-02-09Fix release RC stamping & tarball ownershipPhil Pennock
The ability to release 4.XX.Y via hardcoding a version.sh as part of release broke the ability to do properly versioned RC releases. Fix that. Try to fix ownership of files in tarballs to not be local system user. (cherry picked from commit 7677a8673f89843326aab3944e608c6be4339039) Signed-off-by: Phil Pennock <pdp@exim.org>
2017-02-09Release packaging & scripting improvements.exim-4_89_RC3Phil Pennock
* Make the .xz tarball variant too, and work harder on compressing our files for distribution. + The .xz files have gained more positive feedback than any other part of the 4.89 release. * Drop usercodes from tarball + We shouldn't be embedding own-system-specifc ownership information into software release tarballs. That's for local system backups, not distribution. * Script for the size/checksums + We include checksums in the mail; this gets the format fixed and not including checksums-of-signatures, etc. I've also experimented with including the size, so let's script that to be portably generated. * Better tarball signing script + Automatically find the signing directory (if not already in it) + Sign all files, properly skipping existing .asc files + Find the signing key from git config, if available, else error out (Nigel is not on the hook as the default victim now) + Show what we're doing as we do it All changes made on the original `release_4_89` branch with `RELEASE EXPERIMENT` subject tags.
2017-02-08Fix DKIM/GnuTLS buildJeremy Harris
Broken-by: e1d04f48a45c
2017-02-08Debug: indent ACL and expreassion tracing by evaluation depthJeremy Harris
2017-02-08DKIM: trim debug verbosityJeremy Harris
This tidies some buildfarm fails on animals buildding without DKIM
2017-02-08Fix non-contentscan buildJeremy Harris
Broken-by: 90341c71c19c
2017-02-08Memory management: drop variables identified as going out-of-scopeJeremy Harris
Fixes crash in transport re-using bad $sender_ip_address from callout
2017-02-08Memory management: when running under the testsuite, check every string ↵Jeremy Harris
variable on store_reset On spotting data in a region being freed, panic
2017-02-07DocÖ Fix typo about spf lookup (experimental)Heiko Schlittermann (HS12-RIPE)
2017-02-07Testsuite: tidy generation and sorting of exim -bp outputHeiko Schlittermann (HS12-RIPE)
The root cause is, that exim -bp doesn't always return the message ids in the order they were created, but sorted. The 2nd part of the message id (PID) can be random on *BSD.
2017-02-06doc-fix: reference current libsrs_alt availabilityPhil Pennock
Matches site from Wiki, from Google SERP, etc.
2017-02-06CHUNKING: fix transport crash on temp-reject of pipelined non-first chunkJeremy Harris
2017-02-03DKIM: more care over untrustworthy data during verifyJeremy Harris
2017-02-03Fix no-SSL buildJeremy Harris
2017-02-02FreeBSD: Perl no longer in /usr/bin from PortsPhil Pennock
FreeBSD Ports by policy no longer allows symlinks in /usr/bin for things like Perl, so we have to look in /usr/local/bin for it instead.
2017-02-02Spec docs for IDNA2008 supportPhil Pennock
2017-02-02GnuTLS: fix use of SHA3 hashesJeremy Harris
2017-02-02Testsuite: Fix 0207 (message order)Heiko Schlittermann (HS12-RIPE)
Message ids are not always in ascending order (PIDs may be randomized) Thanks to Kirill Miazine.
2017-02-01Testsuite: output changes from a26fb6a77384Jeremy Harris
2017-02-01bug-fix test-driving inputPhil Pennock
The client driver is a little restrictive in the escape sequences it handles; two octets here were missing the `x` after the `\`, so `\05` is two octets, a 0 and then a 5, where `\x05` would be one octet. So we were sending two more octets than expected, not catching that Exim was parsing the wrong IP/port at the end, and now that Exim only reads as much of the proxy protocol header as belongs in it, instead of "up to the largest it could be", this test-bug has been exposed.