| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2017-02-06 | CHUNKING: fix transport crash on temp-reject of pipelined non-first chunk | Jeremy Harris | |
| 2017-02-03 | DKIM: more care over untrustworthy data during verify | Jeremy Harris | |
| 2017-02-03 | Fix no-SSL build | Jeremy Harris | |
| 2017-02-02 | FreeBSD: Perl no longer in /usr/bin from Ports | Phil Pennock | |
| FreeBSD Ports by policy no longer allows symlinks in /usr/bin for things like Perl, so we have to look in /usr/local/bin for it instead. | |||
| 2017-02-02 | GnuTLS: fix use of SHA3 hashes | Jeremy Harris | |
| 2017-01-31 | Handle Proxy Protocol v2 safely as well. | Phil Pennock | |
| We had test suite failures (test suite success!) because Proxy Protocol v2 (PPv2) wasn't being detected; by only reading 12 octets, the >= 16 check was failing. But in fact I had previously only fixed reading "only enough" for PPv1. Handling both PPv1 and PPv2 is complicated because the minimum valid length for PPv1 is 15 octets but for PPv2 the size to read is in the 15th and 16th octets. So refactored a little and we now use a total of 3 reads for the PPv2 case (assuming no fragmentation, etc; we'll actually keep reading now instead of aborting) to get the entire PPv2 header of exactly the right size, so that TLS handshake immediately following the PP header is not also swallowed. Fixes: 2018 Tested: manually, TLS and non-TLS, PPv1 and PPv2, all ways. Release: should be cherry-picked into 4.89RC series | |||
| 2017-01-31 | Fix error logged for send failure | Jeremy Harris | |
| Broken-by: de6273b487f1 | |||
| 2017-01-31 | Callouts: fix recipient verify/random | Jeremy Harris | |
| Broken-by: e9166683487c | |||
| 2017-01-31 | Fix logging of drop-after-EHLO-reject. | Jeremy Harris | |
| An unset variable went wrong with clang, was fortuitously right with gcc. | |||
| 2017-01-31 | Avoid using "-w" option in perl script shebang lines, being incompatible ↵ | Jeremy Harris | |
| with "env perl" | |||
| 2017-01-30 | Copyright year bumps for substantive changes 2017exim-4_89_RC1 | Phil Pennock | |
| 2017-01-30 | Avoid reading too much data before TLS handshake | Phil Pennock | |
| 2017-01-30 | Fix size calculation, log unhandled amount. | Phil Pennock | |
| We did a `string_copy()` so `hdr.v1.line` is not the right base for an accurate size. Fix. Log unhanded amount. For clients waiting on the server before sending, this has to be 0. For clients speaking first (TLS) this can be non-zero. | |||
| 2017-01-30 | Restrict address-parsing to a maximum of five layers of nested angle-brackets, | Jeremy Harris | |
| under main-option strip_excess_angle_brackets | |||
| 2017-01-30 | Tidying: Coverity | Jeremy Harris | |
| 2017-01-29 | CHUNKING: Reject messages with malformed line ending. Bug 2000 | Jeremy Harris | |
| Actually test only the first header line, but still do full line-ending canonicalisation on the remainder of the message in case a Evil Person slips past that. | |||
| 2017-01-29 | TFO: remember setsockopt results, to condition non-transport client use. ↵ | Jeremy Harris | |
| Bug 2027 | |||
| 2017-01-29 | Shuffle proxy-protocol to wrap TLS-on-connect startup. Bug 2018 | Jeremy Harris | |
| 2017-01-29 | DANE: fix build under LibreSSL. Bug 2020 | Kirill Miazine | |
| 2017-01-28 | Testsuite: add dnsdb testcase for defer when used in ACL | Jeremy Harris | |
| 2017-01-28 | LMDB: include filename in open-error message | Jeremy Harris | |
| 2017-01-28 | DKIM: check pointer to calculated body hash before verify comparison. Bug 2029 | Jeremy Harris | |
| We can have a missing body hash from a malformed DKIM-Signature: header | |||
| 2017-01-28 | DKIM: rename variables for clarity | Jeremy Harris | |
| 2017-01-24 | Fix reception of (quoted) local-parts with embedded spaces. Bug 2025 | Jeremy Harris | |
| 2017-01-24 | TFO: Support compilation on Linus platforms which define TCP_FASTOPEN but ↵ | Jeremy Harris | |
| not MSG_FASTOPEN | |||
| 2017-01-24 | Define MIN and MAX for Solaris | Jeremy Harris | |
| 2017-01-23 | Fix build with OpenSSL, EXPERIMENTAL_DANE and DISABLE_EVENT | Jeremy Harris | |
| 2017-01-22 | DKIM: permit verify of sig blocks that sign other sig blocks. Bug 2014 | Jeremy Harris | |
| 2017-01-21 | Fix DKIM verify when used with CHUNKING. Bug 2016 | Jeremy Harris | |
| 2017-01-21 | Testcases for pipelined callout | Jeremy Harris | |
| 2017-01-21 | Use smtp_write_mail_and_rcpt_cmds() for verify callout | Jeremy Harris | |
| 2017-01-21 | use smtp_context struct for sync_responses() | Jeremy Harris | |
| 2017-01-21 | Split out smtp_write_mail_and_rcpt_cmds() from smtp_deliver() | Jeremy Harris | |
| 2017-01-21 | Split out cutthrough connection-cache / subsequent-rcpt handling, from ↵ | Jeremy Harris | |
| do_callout() | |||
| 2017-01-21 | Split out callout-cache handling from do_callout() | Jeremy Harris | |
| 2017-01-21 | Use smtp_setup_conn() for verify callout | Jeremy Harris | |
| 2017-01-21 | Split out smtp MAIL and RCPT option string building | Jeremy Harris | |
| 2017-01-21 | Split out smtp_setup_conn() from smtp_deliver, in the transport | Jeremy Harris | |
| 2017-01-21 | Fix DKIM verify operation in -bh test mode. Bug 2017 | Jeremy Harris | |
| 2017-01-19 | VRFY: advertise in EHLO response, if there is an ACL defined | Jeremy Harris | |
| 2017-01-19 | VRFY: add docs note on results, and additional test cases | Jeremy Harris | |
| 2017-01-18 | spelling: Mavrogiannopoulos | Josh Soref | |
| Committer note: the name was spelt as was used by Nikos at the time, but he's since switched to the other latinization form and is using it everywhere these days. Part of his response was "Feel free to use the Mavrogiannopoulos variant everywhere.", so I'm merging this commit too. | |||
| 2017-01-18 | replace keept with rotation | Josh Soref | |
| Log rotate documentation does not actually give a term for this portion of a filename, but to the extent that I can find a term, a number of places call it a "rotation number". Replacing keept which is inaccurate and misleading with rotation makes the code a little easier to read. | |||
| 2017-01-18 | Bug-fix no_require_dnssec parsing & spelling fixes | Josh Soref | |
| Patches from Josh Soref fixing spelling fixed two bugs: * Parsing `no_require_dnssec` configuration option * Setting `_HAVE_TRANSPORT_APPEND_MAILDIR` macro (for config parsing) [ PP pulled these two out into a separate commit to update the ChangeLog accordingly. ] | |||
| 2017-01-18 | 214 spelling fixes | Josh Soref | |
| 2017-01-12 | Provide alternative Heimdal pkg-config example | Phil Pennock | |
| Building Exim against Heimdal 1.5, heimdal-gssapi.pc was needed. There's been a major version bump in Heimdal, and against 7.1 that doesn't work; using heimdal-krb5.pc fails on missing `gss_*` functions. I can find no build documentation for Heimdal which describes what should be needed. heimdal-gssapi.pc does reference heimdal-krb5.pc in `Requires.private` but it's not being used by FreeBSD pkgconf in such a way that it's available when building on FreeBSD 10.3. Fortunately, our `*_PC` logic works with multiple packages listed, so provide that example. | |||
| 2017-01-03 | CHUNKING: fix non-pipelined synch checks. Bug 2004 | Jeremy Harris | |
| 2017-01-02 | PROXY: fix v2 protocol decode. Bugs 2003, 1747 | Jeremy Harris | |
| 2017-01-02 | wip: OpenSSL docs on custom install | Phil Pennock | |
| To fix before merge: ability to use `$ORIGIN` in linker line via Exim config file. | |||
| 2016-12-31 | Merge remote-tracking branch 'github/pr/50' | Phil Pennock | |
| GitHub user @YmrDtnJu "Björn" provided a patch to fix that we called ldap_start_tls_s on ldapi:// connections. This is obviously a correct change, since above we've avoiding initializing the TLS state if using ldapi. Added documentation noting this behaviour. | |||
 |
index : user/henk/code/exim.git | |
| [no description] | git repository hosting |
| summaryrefslogtreecommitdiff |