summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2016-12-29tidyingJeremy Harris
2016-12-29I18N: avoid trying to downconvert all-ascii domain names.Jeremy Harris
With the IDNA-2008 handling downconversion results in lowercasing; so avoid doing that if possible.
2016-12-29Allow relative file names in .include lines (Closes 1971)Heiko Schlittermann (HS12-RIPE)
2016-12-29Constify config_filenameHeiko Schlittermann (HS12-RIPE)
2016-12-29DKIM: More validation of DNS key record. Bug 1926Jeremy Harris
2016-12-29OpenSSL: add detail to certname verify fail log lineJeremy Harris
2016-12-29Pipe transport: expand the path optionJeremy Harris
2016-12-26I18N: support IDNA2008. Bug 1911Jeremy Harris
2016-12-18Fix DKIM information leakageJeremy Harris
2016-12-13Use long names for the _DRIVER_*, and _OPT_* macrosHeiko Schlittermann (HS12-RIPE)
2016-12-04OpenSSL: default to tls_eccurve = autoHeiko Schlittermann (HS12-RIPE)
For OpenSSL < 1.0.2: fallback to prime256v1, for newer libraries rely on auto-selection.
2016-12-03Build: disable OCSP, AUTH_TLS and EXPERIMENTAL_CERTNAMES if SUPPORT_TLS is ↵Jeremy Harris
not enabled
2016-11-23Fix memory leak on (Gnu)TLS close.Heiko Schlittermann (HS12-RIPE)
This leak doesn't show up under normal operation, as the process normally dies right after closing the session. But during callout repetitive TLS sessions are opened and closed from the same process (the process receiving the message). Depending on the amount of RAM and the number of callouts the same process does, this may be a problem. (On an amd64 machine with 4GB RAM, at about 1000 recipients the memory is exhausted.)
2016-11-23Fix crash in (Gnu)TLS debug outputHeiko Schlittermann (HS12-RIPE)
2016-11-15Callout: wait for response to QUIT before closingJeremy Harris
2016-11-13Tidying: coverity issuesJeremy Harris
2016-11-12DANE: Bitrot: Port to OpenSSL >= 1.1.0Jeremy Harris
2016-11-12OpenSSL 1.1 - STORE_CTX accessor functionsJeremy Harris
2016-11-12OpenSSL 1.1 - rework OCSP proof verification at load time in serverJeremy Harris
2016-11-08Ensure socket is nonblocking before draining. Bug 1914Jeremy Harris
2016-11-06tidyingexim-4_88_RC4Jeremy Harris
2016-11-04Add syslog_pid option.Heiko Schlittermann (HS12-RIPE)
This option suppresses the PID duplication to syslog. As syslog/systemd add the PID of the logging process automatically.
2016-11-04Do not use shutdown() when talking to rspamd. Fixes 1802Andrew Lewis
2016-11-04Introduce EXIM_BUILD_SUFFIX for src/Makefile and testsuiteHeiko Schlittermann (HS12-RIPE)
This enables parallel builds in a shared directory, if they have the same os-type and arch-type. Think about EXIM_BUILD_SUFFIX as 'name of your linux distro'
2016-11-02Fix OCSP proof verification for direct-signed proofs. Bug 1909Jeremy Harris
2016-11-02Reverse the scan direction for option-table builtin macrosJeremy Harris
so that names with substring-names work usefully
2016-10-29Tidying: coverity issuesJeremy Harris
2016-10-29Fix dns authority-name lookupJeremy Harris
2016-10-29constificationJeremy Harris
2016-10-29tidyingJeremy Harris
2016-10-25TFO: use IPPROTO_TCP not SOL_TCL for setsockopt, being present on more platformsJeremy Harris
Also downgrade errors from panic-log to debug
2016-10-23Update README.UPDATING; fix typos in ChangeLog/NewStuffPhil Pennock
2016-10-23TFO: feature advertisementexim-4_88_RC3Jeremy Harris
2016-10-23Fix bug with aborted server TLS connection, under GnuTLSJeremy Harris
Longstanding, but exposed by 60d10ce
2016-10-22TFO: Support compilation on systems which define TCP_FASTOPEN but not ↵Jeremy Harris
MSG_FASTOPEN RHEL 7.0 does that, oddly
2016-10-22tidyingJeremy Harris
2016-10-22TCP Fast OpenJeremy Harris
2016-10-21Expansions: errorcheck use of crypt() in the open-coded version of ↵Jeremy Harris
crypteq/crypt16 Previously, bad arguments crashed under OpenBSD
2016-10-20tidyingJeremy Harris
2016-10-18Unbreak build: crypto hdrs not in system includesPhil Pennock
If using pkg-config to get the paths for various packages and the crypto library headers are not in the system headers, then the hash work broke the Exim build by requiring the CFLAGS manipulation for _all_ builds, not just the TLS libraries. Shows up on MacOS where there's a system OpenSSL but not system OpenSSL headers (because only SecureTransport is supported) and using brew-installed OpenSSL. I've also coded the fix for GnuTLS on the same basis, but that's untested. Fixes bug 1906
2016-10-18Avoid pure-ACK TCP segments during command phaseJeremy Harris
2016-10-16Tidying: coverity issuesJeremy Harris
2016-10-16Fix sender-verify callout to not use trigger-message SIZEJeremy Harris
Broken-by: 9094b84b4cce
2016-10-16Tidying: coverity issuesJeremy Harris
2016-10-16Queuefile: avoid using buffered I/O - no point for a block-copyJeremy Harris
and it meant (an admittedly ingnorable) Coverity whine about a FILE leak Take the oppurtunity to constify a utility function
2016-10-15Include 'Configure owner' in -bV outputHeiko Schlittermann (HS12-RIPE)
2016-10-15tidyingJeremy Harris
2016-10-15Queuefile: refactorJeremy Harris
2016-10-15New: queuefile transport, under EXPERIMENTAL_QUEUEFILEAndrew Colin Kissa
2016-10-10Lazy-create builtin macrosJeremy Harris
By only filling out the internal macro representation for the builtin macros when a config line includes an underscore followed by a letter which might be one we should save startup effort on configs which never use a builtin.
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-26 08:41:37 +0000