| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2014-08-10 | Verifiable conn with DANE-EE(3) / SPKI(1) / SHA2-512(2) | Jeremy Harris | |
| 2014-08-10 | Add support in the fakens utility for TLSA records | Jeremy Harris | |
| 2014-08-10 | On a host lookup name->MX->A->ip sequence, require both stages to | Jeremy Harris | |
| be dnssec before declaring the lookup was secure. | |||
| 2014-08-08 | Test development | Jeremy Harris | |
| 2014-08-08 | Testsuite basics. | Jeremy Harris | |
| Not actually excercising DANE yet, this will take additions in the fakedns and probably changes in certificates. | |||
| 2014-08-07 | Sketch in library interface | Jeremy Harris | |
| 2014-08-01 | Fix development-testing induced crash on second use | Jeremy Harris | |
| 2014-08-01 | Basic DANE entry points | Jeremy Harris | |
| 2014-07-31 | Add interface documentation for the DANE library | Jeremy Harris | |
| 2014-07-29 | Coding style closer to project norms | Jeremy Harris | |
| 2014-07-29 | Create a hosts_try_dane transport option, does nothing yet | Todd Lyons | |
| 2014-07-29 | Framework to build dane support | Todd Lyons | |
| 2014-07-23 | Bug 1506: Silence static checkers. | Lars Mueller | |
| Re-adds a return NULL which was removed because it was redundant. Static checkers don't parse the logic, so adding it back to make them happy. | |||
| 2014-07-23 | Bug 1506: Fix static typechecker output | Todd Lyons | |
| The end of the function can never be reached because the switch is only reached if the value it is checking is valid. Putting this return silences the warnings. | |||
| 2014-07-22 | Massage coding style to project norm | Jeremy Harris | |
| 2014-07-16 | Only expand integers for integer math once | Tony Finch | |
| 2014-07-14 | Fix parsing of mime headers | Jeremy Harris | |
| RFC2045 allows parameter values to be quoted; an embedded semicolon must then not terminate the parameter. | |||
| 2014-07-14 | DNSSEC: fix clang warning re && in || precedence | Phil Pennock | |
| I looked and AFAICT the compiler guidance gives the correct logical binding for the code intention. ``` dnsdb.c:362:32: warning: '&&' within '||' [-Wlogical-op-parentheses] || dnssec_mode == DEFER && !dns_is_secure(&dnsa) ~~ ~~~~~~~~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~ dnsdb.c:362:32: note: place parentheses around the '&&' expression to silence this warning || dnssec_mode == DEFER && !dns_is_secure(&dnsa) ^ ( ) ``` | |||
| 2014-07-14 | MacOS: fix clang redef warning | Phil Pennock | |
| 2014-07-14 | Use Ustrlen() on a uschar | Phil Pennock | |
| 2014-07-14 | Fix unsigned < 0 check | Phil Pennock | |
| Two places in malware.c were using `fsize`, defined as `unsigned int`, to receive the result of `lseek()` and then checking if the value was less than 0. As clang says: ``` malware.c:1228:46: warning: comparison of unsigned expression < 0 is always false [-Wtautological-compare] if ((fsize = lseek(clam_fd, 0, SEEK_END)) < 0) { ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ^ ~ ``` Fix. Use `off_t`, which we're already using elsewhere, then use `fsize_uint` to handle off_t being potentially 64-bit, and a sanity-check on conversion which hopefully won't be optimised away by compilers. | |||
| 2014-07-14 | Rename T_APL to T_ADDRESSES | Phil Pennock | |
| Fixes Github issue #15 Known DNS RRTYPE aliases can be found at <http://www.iana.org/assignments/dns-parameters/dns-parameters.xhtml> and `T_APL` conflicts with the `APL` RRTYPE, Address Prefix List, in experimental RFC 3123. Issue reported compilation issues on OpenBSD. Instead, use `T_ADDRESSES`. | |||
| 2014-07-13 | Fix TLS SNI, and add regression test cases | Jeremy Harris | |
| 2014-07-08 | Reinstate SNI variables under GnuTLS. Bug 1499exim-4_83_RC3 | Jeremy Harris | |
| 2014-07-03 | Add cscope files to git ignore list | Todd Lyons | |
| 2014-07-02 | Bug 1495: Exiqgrep -C check configfile readability | Andrew Colin Kissa | |
| 2014-06-20 | Use enum for var_entry type | Jeremy Harris | |
| 2014-06-17 | Fix build dependencies | Heiko Schlittermann | |
| "make distclean; make -j" was failing on config.h | |||
| 2014-06-15 | Fix testcase 0373 | Jeremy Harris | |
| A readsocket expansion against a unix-domain socket which is immediately closed. This gave variable results does to the race of the write into the client-end versus the close at the server end. Insert under-testsuite delays to assure sequencing; the testcase now specifically looks for a write into a closed peer. | |||
| 2014-06-11 | Fix dkim for no-key case under SENDFILE compile. Bug 934 | Wolfgang Breyha | |
| Tested-by: <wbreyha@gmx.net> | |||
| 2014-06-11 | Tidy coding style. Bug 934 | Jeremy Harris | |
| 2014-06-08 | Use strict C89 variable declaration positioning | Jeremy Harris | |
| 2014-06-06 | Initial set of warnings for the upcoming release | Jeremy Harris | |
| 2014-06-06 | More care with time types | Jeremy Harris | |
| 2014-06-05 | Fix udpsend and ip_connectedsocket().exim-4_83_RC2 | Tony Finch | |
| The ip_connectedsocket() function's socket type support and error reporting did not work properly. | |||
| 2014-06-05 | Tidy up OpenSSL certificate signature & sig_algorithm extractor results. | Jeremy Harris | |
| Bug 1489 | |||
| 2014-06-04 | Compiler quietening | Jeremy Harris | |
| 2014-06-04 | Ensure output buffer big enough for DSN additions to MAIL FROM. Bug 1482 | Jeremy Harris | |
| 2014-05-31 | Support service names for tls_on_connect_ports. Bug 72 | Jeremy Harris | |
| 2014-05-30 | Fix no-ssl build | Jeremy Harris | |
| 2014-05-29 | Fix delivery $host in client authenticator in verify/callout. Bug 1476 | Jeremy Harris | |
| 2014-05-29 | Log warnings on presence of deperecated options | Jeremy Harris | |
| 2014-05-29 | Fix dnssec dnsdb lookup in defer_never mode | Jeremy Harris | |
| 2014-05-28 | Bug 1444: Fix \r\n handling writing spool file | Todd Lyons | |
| Fix a bug which causes DKIM signatures to fail because what gets written to the spool file is different than what gets passed through the DKIM code. | |||
| 2014-05-28 | Merge tag 'exim-4_82_1'exim-4_83_RC1 | Todd Lyons | |
| Fix Conflicts: src/src/dmarc.c | |||
| 2014-05-26 | SECURITY: DMARC uses From header untrusted dataexim-4_82_1 | Todd Lyons | |
| CVE-2014-2957 To find the sending domain, expand_string() was used to directly parse the contents of the From header. This passes untrusted data directly into an internal function. Convert to use standard internal parsing functions. | |||
| 2014-05-26 | Increase limit of smtp_confirmation logging from 100 to 256 chars. Bug 1408 | Jeremy Harris | |
| 2014-05-26 | Errorcheck TLS library calls | Jeremy Harris | |
| 2014-05-26 | Restrict certificate name checkin for wildcards. | Jeremy Harris | |
| On more recent OpenSSL library versions the builtin wildcard checking can take a restriction option that we want, to disallow the more complex possibilities of wildcarding. | |||
| 2014-05-25 | Missing initialiser | Jeremy Harris | |
 |
index : user/henk/code/exim.git | |
| [no description] | git repository hosting |
| summaryrefslogtreecommitdiff |