summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2015-08-02GnuTLS: avoid using OCSP on buggy library versions. Bug 1664Jeremy Harris
2015-08-02Testsuite: Add testcase for OCSP-nonaware client, to supporting server. Bug ↵Jeremy Harris
1664 The logfile here is for (I hope) the passing case, though the fixed GnuTLS library is not yet available. Also due to the bug, client-gnutls is not usable for the test; client-openssl must be used - meaning that a GnuTLS-only system cannot run the testcase: OCSP-GnuTLS/5650 OCSP stapling, server ** Command 15 ("client-ssl", starting at line 98) ** Return code 127 (expected 0)
2015-07-30Docs: Add a note about the maximum spam bar lengthHeiko Schlittermann (HS12-RIPE)
2015-07-26Compiler quieteningJeremy Harris
2015-07-15Add check on tls_auth pseudo-command. Bug 1659Jeremy Harris
2015-07-12Compile with DISABLE_PRDR setPhil Pennock
2015-07-04Bump LOCAL_SCAN_ABI_VERSION.Andreas Metzler
In 4.86 the size of struct recipient_item changed when EXPERIMENTAL_DSN was made default. This broke the local scan ABI (rebuild required). See <http://bugs.debian.org/790616>.
2015-06-23Fix error message for router headers_remove expansion failureJeremy Harris
Associated with Bug 1533
2015-06-22Fix support of $spam_ variables at delivery time. Bug 1647Jeremy Harris
This change is forced on us by the documentation claiming clearly the support is there, though the code does not and never has. The doc change that introduced the claim is 7d9f747b5ef8
2015-06-22Testsuite: fix operator precedence in dns_extract_auth_name()Jeremy Harris
2015-06-22Before importing a certificate, free any previous one. Bug 1648Jeremy Harris
Second try
2015-06-21Extract NS/SOA in dns_extract_auth_name() more precisly.Heiko Schlittermann (HS12)
2015-06-21Fix and extend the checks in dns_is_secure()Heiko Schlittermann (HS12)
2015-06-21Before importing a certificate, free any previous one. Bug 1648Jeremy Harris
Because the SSL libraries do not use Exim's heap management this was a memory-leak in "exim -bp".
2015-06-20Add docs and massage coding standards for dns_trust_aaJeremy Harris
2015-06-20Add dns_trust_aaHeiko Schlittermann (HS12)
This new global option allows to trust the AA bit for specific domains the same way we'd trust the AD bit.
2015-06-15DSN: fix null deref when bounce is due to conn-timeout. Bug 1630Wolfgang Breyha
2015-06-14Add tls_eccurve main config option. Bug 1397Jeremy Harris
Patch from Suse, massaged by JH
2015-06-14minor tidyingJeremy Harris
2015-06-09Revert "Show the DNSSEC status (ad=) always in -bt/-bv output"Heiko Schlittermann (HS12)
This reverts commit e7a1b6ff65f1bebbc290f2a4fd7554fde00ae2f6. It's not production grade, since the wording (ad vs. trusted) is not final yet.
2015-06-09Tighter guard for POLLRDHUPJeremy Harris
2015-06-08Truncate delay when peer closes connection. Bug 348Jeremy Harris
This is now possible on Linux, at least.
2015-06-07Content scan: Use ETIMEDOUT not ETIME, as having better portability. Bug 1640Andreas Metzler
2015-06-06PRDR: enable server-side in the default configJeremy Harris
2015-06-06Logging: add log_selector items in the default config. Bug 1333Jeremy Harris
2015-06-06DSN: fix null deref when bounce is due to conn-timeout. Bug 1630Wolfgang Breyha
2015-06-06Spamd: add missing initialiser. Rspamd mode was incorrectly sometimes seen.Jeremy Harris
Reported-by: Andreas Metzler
2015-06-05Guard routing against a null-deref. Bug 1639Jeremy Harris
2015-06-04Copyright year updates (things touched in 2015)Phil Pennock
Update current year in docs and banner copyright in src/src/globals.c Rest of changes from: vi $(git whatchanged --since=2015-01-01 | grep '^:100' | sed -n 's/^[^M]*M//p' | sort -u | fgrep -v test/) Note that there are a lot of changes made because of const propagation; I opted to include the copyright year updates in that, but we could be doing a better job with who gets the copyright credit for these changes. Changes visible with: git diff $(git rev-list -n1 --before="2015-01-01" master)
2015-06-04TLS authenticatorJeremy Harris
2015-06-04refactor build scriptJeremy Harris
2015-05-29Adjust my maintainership status to reflect realityPhil Pennock
2015-05-29OpenSSL: guard X509_check_host against LibreSSLPhil Pennock
LibreSSL's fork does not have this new function; as well as adding a `LIBRESSL_VERSION_NUMBER` value, that project bumped the OpenSSL version number in such a way as to conflict with our existing version checks. * Add a guard. * Add commentary, suggesting how to avoid getting into twistier knots with API divergence. Reported by Jasper Wallace, who provided a slightly different patch. Fixes bug 1635
2015-05-27Expand docs re. logs dir, and make eximon logs dir match exim's. Bug 1324Andreas Metzler
2015-05-27Note MAIL commands in -bS batch, to avoid smtp_no_mail logline. Bug 1346Jeremy Harris
2015-05-26Fix some typos in EDITMEHeiko Schlittermann (HS12)
2015-05-26TLS: Enable ECDHE on OpenSSL, just the NIST P-256 curve. Bug 1397Phil Pennock
Original by Phil Pennock; tweaked by JH.
2015-05-23New ${env {NAME}} expansion. Bug 1604Jeremy Harris
2015-05-23Testsuite: move test.again.dns and test.fail.dns handling to fakensJeremy Harris
2015-05-23tidyingJeremy Harris
2015-05-22DANE: do not fail/defer message due to TLSA lookup but dane is only requestedJeremy Harris
2015-05-21Fix DANE for multiple-MX when all TLSA lookup defer. Bug 1634Jeremy Harris
2015-05-20Add DNS debug aid if we requested AD but got AAHeiko Schlittermann (HS12)
If the resolver we ask is authoritive (AA) for some domain, we never ever get the AD (authentic data) bit in the answer.
2015-05-20Add DNS debug aid if we requsted AD but got AAHeiko Schlittermann (HS12)
If the resolver we ask is authoritive (AA) for some domain, we never ever get the AD (authentic data) bit in the answer.
2015-05-19Change HELO-verify forward case from byname to bydns and add DNSSEC trackingJeremy Harris
2015-05-19Change host_lookup re-forward from byname to bydns; checking DNSSECJeremy Harris
2015-05-19struct dnssec_domainsJeremy Harris
2015-05-18Show the DNSSEC status (ad=) always in -bt/-bv outputHeiko Schlittermann (HS12)
2015-05-18Fix truncated dns-lookup return record handlingJeremy Harris
2015-05-18Testsuite: move manyhome.test,ex handling from exim to fakensJeremy Harris
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-27 21:30:51 +0000