summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2018-04-07Clear more globals between messagesJeremy Harris
2018-04-04Add client-ip info to iprev ${authres } lineJeremy Harris
2018-04-04ARC: add optional x= tag to signingJeremy Harris
2018-04-04local_scan: add note on Makefile requirementJeremy Harris
2018-04-04ARC: add optional t= tags to signingJeremy Harris
2018-04-04ARC: log signing-spec errors in mainlog only, not paniclogJeremy Harris
2018-04-04ARC: enhance debug for signing; explicitly init signing contextJeremy Harris
2018-04-04Fix non-ARC buildJeremy Harris
2018-04-04ARC: add guard in verify against lack of the dkim-verify contextJeremy Harris
needed for body-hashing
2018-04-04ARC: cutthrough delivery may not be used with ARC signingJeremy Harris
2018-04-04Cutthrough: enforce non-use in combination with DKIM signing or transport filterJeremy Harris
Broken-by: 02b41d7106
2018-04-04ARC: give more detail with "bad signing-spec" messageJeremy Harris
2018-04-04ARC: For signing, accept A-R header lacking ARC info as equivalent to "none"Jeremy Harris
2018-04-04ARC: add independent-source testcase. Fix signatures by not line-terminatingJeremy Harris
last header line being hashed.
2018-04-04ARC: AS header should have no c= tagJeremy Harris
2018-04-04ARC: on the smtp transport option take empty or forced-fail to disable signingJeremy Harris
2018-03-30Avoid doing logging in signal-handlers. Bug 1007Jeremy Harris
2018-03-30DANE: smtp transport option dane_require_tls_ciphersJeremy Harris
2018-03-13ARC: add $arc_state, $arc_state_reason and add reason to authres stringJeremy Harris
2018-03-13Mark variables unused before release of store in the queue-runner loopJeremy Harris
2018-03-13tidyingJeremy Harris
2018-03-13Mark variables unused before release of store in the daemon loopJeremy Harris
2018-03-13Compiler quieteningJeremy Harris
2018-03-12Fix memory leak during build process (Bug 2183)Heiko Schlittermann (HS12-RIPE)
(Normally we don't care about leaks in short lived processes we use during build time. But as -fsanitize=address breaks the build in an early stage, the leak is fixed now.) Thanks to Andrew Aitchison.
2018-03-12Fix dec64table[] OOB read in b64decode()Tomas Hoger
Possible values for y at this point are 0..255. However, dec64table[] only has 128 entries and hence valid indexes are 0..127. The values of y greater than 127 trigger out of bounds read. As dec64table[] is in the data segment, the OOB access is not detected by tools as valgrind or ASAN. This adds a check to ensure y is less than or equal to 127, just like in other cases where dec64table[] is accessed. Note that removal of the y == 0 condition is not a problem, as dec64table[0] == 255, so the second part of the condition is true.
2018-03-12Update to protocol used by avast 2.2.0 (Multiline responses) (Bug 2112)Heiko Schlittermann (HS12-RIPE)
Based on a patch by Victor Ustugov.
2018-03-11ARC: options on the verifyJeremy Harris
2018-03-11Fix ldap lookups for zero-length attribute value. Bug 2251Jeremy Harris
Broken-by: acec9514b1
2018-03-11tidyingJeremy Harris
2018-03-11ARC: compiler quieteningJeremy Harris
2018-03-11PRDR: append overall DATA acceptance message to delivery log line "C=" item. ↵Simon Arlott
Bug 2253 It can have useful tracking info from the destination, eg. their message Id.
2018-03-10Extra checks on inbound SMTP stream buffer refillJeremy Harris
2018-03-10Do not use bashism in /bin/sh scrit (Bug 2249)Heiko Schlittermann (HS12-RIPE)
2018-03-07Redis cluster DEFER & test results correctedGraeme Fowler
2018-03-07DANE: add dane:fail eventJeremy Harris
2018-03-06Testsuite: GnuTLS version of DANE/events testcaseJeremy Harris
Followon from: c0635b6dfe
2018-03-06Correction on string comparisonGraeme Fowler
2018-03-06Cheap method to follow redis cluster MOVED repliesGraeme Fowler
2018-03-03ARC initial implementation. Experimental. Bug 2162Jeremy Harris
2018-02-25Auths: for A-R header, and SMTP auth, note the public-name not the ↵Jeremy Harris
authenticator name Also, for TLS auth use a custom propspec
2018-02-24I18N: Fix utf8_downconvert propagation through a redirect routerJeremy Harris
2018-02-22OpenSSL: revert needless free of certificate list. The library handlies it ↵Jeremy Harris
internally. Reported-by: Torsten Tributh
2018-02-22WIPJeremy Harris
2018-02-22Fix exim_dbmbuild to permit directoryless filenames. Bug 2242Jeremy Harris
Broken-by: 0a6c178c6c
2018-02-20OpenSSL: Fix memory leak during multi-message connections using STARTTLSWolfgang Breyha
Reported-by: Wolfgang Breyha Fix-by: Wolfgang Breyha, with additions from Jeremy Harris
2018-02-18Expansions: make ${authresults } usable in a named ACLJeremy Harris
This will be more common than directly in the acl_smtp_data option, and suffers one less expansion in operation.
2018-02-18Debug: fix output for acl add_headerJeremy Harris
2018-02-18 DMARC: fix result reporting when a DKIM ACL overrides the verify result. ↵Jeremy Harris
Bug 2236
2018-02-18Expansions: new ${authresults {mch}} for an Authentication-Results headerJeremy Harris
2018-02-17Fix memory leak during multi-message reception using STARTTLSJeremy Harris
Reported-by: Wolfgang Breyha
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-17 16:34:20 +0000