| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2011-01-17 | Module loading working on FreeBSD (and unbreak). | Phil Pennock | |
| (1) Commit eec525c43adade97ff94d839810faf7cb35bd87f broke module support, because we *do* still need some exported variable definitions, as for a module to actually work, we need the per-module _INCLUDE/_LIBS settings. (2) FreeBSD's nsdispatch() will leave dlerror() returning a complaint about "_nss_cache_cycle_prevention_function"; we need to clear the error state before the dlsym() call, so that any error found afterwards must have come from that dlsym() call. Fix is just an extra call to dlerror(), which should be portable. I can now use sqlite3 from a module, in FreeBSD. | |||
| 2011-01-16 | Let /dev/null have normal permissions. | Phil Pennock | |
| The 4.73 fixes were a little too stringent and complained about the permissions on /dev/null. Exempt it from some checks. Reported by Andreas M. Kirchwitz | |||
| 2011-01-16 | Bug-fix for bash and no-dynamic case. | Phil Pennock | |
| When writing the patch, originally nothing other than a cp was needed if there were no dynamic modules. That changed, but the guard at the top did not. Remove that check. bash does not like a block which consists solely of a comment. Provide a ':' invocation. Both problems spotted by Simon Arlott -- thanks. | |||
| 2011-01-16 | Bug 139: portability fixes and documentation. | Phil Pennock | |
| Document the dynamic lookup module capability in spec.xfpt. Include a ChangeLog item. Avoid the GNU-specific "export" make(1) directive. Build the lookups Makefile using the existing framework. Build with BSD Make once more. The src/lookups/Makefile that is used at build time now has the dynamic content come from scripts/lookups-Makefile. Add CFLAGS_DYNAMIC support, which can be set in Local/Makefile. Provide defaults for Linux & FreeBSD. Ensure that build fails early if a dynamic module is requested but CFLAGS_DYNAMIC is not defined. | |||
| 2011-01-14 | src/deliver.c: log the error message when unlink(spoolname) fails | Tony Finch | |
| 2011-01-14 | src/transports/smtp.c: log LMTP confirmation same as SMTP | Tony Finch | |
| 2011-01-14 | src/dbfn.c: write lock aquisition failures to the panic log | Tony Finch | |
| 2011-01-14 | CONTRIBUTING: correct expansion of GPL | Tony Finch | |
| 2011-01-12 | Bugzilla #1067 - DKIM: Fix relaxed header canon for headers ending with ↵ | Tom Kistner | |
| whitespace. | |||
| 2011-01-05 | Include <dlfcn.h> only when necessary | David Woodhouse | |
| 2011-01-05 | Add dynamic lookup support | David Woodhouse | |
| Fixed: bug #139 | |||
| 2010-12-26 | Fixes: bug #1002 - Message loss when using multiple deliveries | Miroslav Lichvar | |
| 2010-12-26 | Eximstats documentstion - s/delivery_time/deliver_time/ | Nigel Metheringham | |
| Fixes: bug #1034 | |||
| 2010-12-21 | Do not refer to TRUSTED_CONFIG_PREFIX_FILE. | Andreas Metzler | |
| Refer to TRUSTED_CONFIG_LIST instead of TRUSTED_CONFIG_PREFIX_FILE in documentation and comments. | |||
| 2010-12-18 | Updated version numbers of code and documentation | Nigel Metheringham | |
| 2010-12-16 | Turn TRUSTED_CONFIG_PREFIX_LIST into TRUSTED_CONFIG_LIST. No prefix or regexes | David Woodhouse | |
| 2010-12-15 | Allow only Exim or CONFIGURE_OWNER to use whitelisted configs with -C | David Woodhouse | |
| We only added TRUSTED_CONFIG_PREFIX_FILE to compensate for the enforcing of ALT_CONFIG_ROOT_ONLY. Let's not open it up any further than we need to; other users don't get to make use of it. | |||
| 2010-12-15 | Kil va_copy(). It isn't present on some ancient systems. | David Woodhouse | |
| 2010-12-15 | Implement -D whitelist invoking user restriction. | Phil Pennock | |
| Document WHITELIST_D_MACROS. | |||
| 2010-12-14 | Implement -D filtering, first pass. | Phil Pennock | |
| 2010-12-14 | Change the default for system_filter_user. | Phil Pennock | |
| If the system filter needs to be run as root, let that be explicitly configured. The default is now the Exim run-time user. Document this, and a couple of other points, in IncompatibleChanges. | |||
| 2010-12-12 | Allow only absolute paths in TRUSTED_CONFIG_PREFIX_LIST, fix store leak | David Woodhouse | |
| 2010-12-12 | Set FD_CLOEXEC on SMTP sockets after forking to handle the connection. | David Woodhouse | |
| 2010-12-12 | Add TRUSTED_CONFIG_PREFIX_FILE option | David Woodhouse | |
| (Bug 1044, CVE-2010-4345) | |||
| 2010-12-12 | Remove ALT_CONFIG_ROOT_ONLY build option, effectively making it always true. | David Woodhouse | |
| We *never* want the Exim user to be able to specify arbitrary configuration files. Don't let them build it that way. (Bug 1044, CVE-2010-4345) | |||
| 2010-12-11 | Check configure file permissions even for non-default files if still privileged | David Woodhouse | |
| (Bug 1044, CVE-2010-4345) | |||
| 2010-12-11 | Don't allow a configure file which is writeable by the Exim user or group | David Woodhouse | |
| (Bug 1044, CVE-2010-4345) | |||
| 2010-12-11 | Add Valgrind hooks for memory pools | David Woodhouse | |
| It's useful to tell Valgrind when memory is undefined because it's been freed by store_reset(), and when it's not supposed to be accessed because although it's been allocated for the store it hasn't actually been given out by store_get() yet. | |||
| 2010-09-05 | OpenSSL 1.0.0 const fix for SSL_get_current_cipher | Phil Pennock | |
| OpenSSL 1.0.0 changes SSL_get_current_cipher()'s return value to include const. It looks like a safe change for older OpenSSL, so treat it appropriately and cast as needed. | |||
| 2010-09-05 | Guidance on contributing to Exim. | Phil Pennock | |
| 2010-09-05 | Rework clamd response handling to be more robust. | Phil Pennock | |
| In particular, clamd's ExtendedDetectionInfo option broke our parsing. | |||
| 2010-07-19 | Bugzilla #1006: Keep EHLO attributes in case STARTTLS errors are ignored | Tom Kistner | |
| Applied patch submitted by Micha Lenk. Thanks! | |||
| 2010-07-04 | Fix malware regression for cmdline scanner introduced in PP/08. | Phil Pennock | |
| Notification from Dr Andrew Aitchison. (Also: make the PP/08 description more complete) | |||
| 2010-06-13 | Remove logic branch which can use PRIdMAX for SIZE_T_FMT because it fails | Phil Pennock | |
| when size_t is 32-bit but the system supports 64-bit integers. | |||
| 2010-06-12 | removed extraneous "\n" from the end of some log_write lines, removed ↵ | John Jetmore | |
| "magic" string " => " from a non-delivery log line | |||
| 2010-06-12 | Add tcp_wrappers_daemon_name (closes: bug #278) | John Jetmore | |
| (I honestly have no memory of writing this patch...) | |||
| 2010-06-12 | iaddressing bug 966 and my own concerns, stop sending non-panic error to ↵ | John Jetmore | |
| panic log in dkim.c | |||
| 2010-06-07 | Run when EXIM_USER=notroot specified. | Phil Pennock | |
| 2010-06-07 | For the new SIZE_T_FMT, if not C99 then our size_t conversion specifier | Phil Pennock | |
| should use PRIdMAX; this was disabled because I was testing the other logic and forgot to restore before commit. Bleh, sorry. Add #if to protect against unused variable complaints for this too. | |||
| 2010-06-07 | Both bool{} and bool_lax{} should ignore trailing whitespace. | Phil Pennock | |
| 2010-06-07 | Added bool_lax{} expansion operator, which uses Router condition logic to | Phil Pennock | |
| determine whether or not a string is true. Switch the multiple-condition logic to use bool_lax{}. Add note where we combine multiple conditions regarding the memory leak. | |||
| 2010-06-07 | Allow Routers to have multiple conditions, IF each one yields a strict bool. | Phil Pennock | |
| Fixes: #816 | |||
| 2010-06-07 | Clean up compiler warnings from { gcc -Wall }, many of which I introduced with | Phil Pennock | |
| the ClamAV and openssl_options patches in this release. Logic in buildconfig.c for adjusting some print format strings assumed that long ints were four bytes; adjust to test this against reality, to remove spurious warnings on my dev box (FreeBSD/amd64). Note: this commit adds a buildconfig.h dependency upon inttypes.h, which was in SUSv2, so should be safe. | |||
| 2010-06-06 | Build without WITH_CONTENT_SCAN. | Phil Pennock | |
| Broken by -bmalware option added while reworking ClamAV to new API. Path from Andreas Metzler (adjusted slightly). | |||
| 2010-06-06 | No longer permit the exim user to be root. Fixes: #752 | Phil Pennock | |
| 2010-06-06 | Implement --version. Fixes: #973 | Phil Pennock | |
| 2010-06-06 | Implement "control = debug" ACL control. Fixes: #937 | Phil Pennock | |
| 2010-06-05 | New expansion operator: reverse_ip | Phil Pennock | |
| 2010-06-05 | ClamAV INSTREAM scanning by default, unless built with WITH_OLD_CLAMAV_STREAM. | Phil Pennock | |
| New command-line option, -bmalware (restricted to admin_user). Fixes: #926 | |||
| 2010-06-05 | Deal with anonymous SSL giving us no peer certificate. | Phil Pennock | |
 |
index : user/henk/code/exim.git | |
| [no description] | git repository hosting |
| summaryrefslogtreecommitdiff |