Age | Commit message (Collapse) | Author | |
---|---|---|---|
2014-12-25 | Fix null-indirection in certextract expansion | Jeremy Harris | |
Found-by: Roman Rybalko | |||
2014-12-23 | Use TIME_T_FMT for formatting tv_sec. Bug 1561 | Jeremy Harris | |
2014-12-19 | EXPERIMENTAL_DSN: use the SMTP return messsage for Diagnostic-Code lines. ↵ | Wolfgang Breyha | |
Bug 1559 Minor tweaking by JH. | |||
2014-12-14 | Account properly for quoted or 2047-encoded MIME parameters while walking ↵ | Jeremy Harris | |
headers. Bug 1558 | |||
2014-12-04 | Fail a DANE-mode verify on totally missing certificate | Jeremy Harris | |
2014-11-29 | Compiler quietening. Bug 1555 | Jeremy Harris | |
2014-11-29 | Compiler quietening | Jeremy Harris | |
2014-11-28 | Git: ignore a few more nonsource files | Jeremy Harris | |
2014-11-27 | Fix buffer overrun in spam= acl condition. Bug 1552 | Jeremy Harris | |
2014-11-25 | Error the build if DANE included but DNSSEC not available | Jeremy Harris | |
2014-11-20 | When following a CNAME chain, if any lookup is insecure the whole must be too | Jeremy Harris | |
2014-11-20 | Const-ification | Jeremy Harris | |
2014-11-20 | Const-ification | Jeremy Harris | |
2014-11-20 | Fix copying of host_used in smtp transport | Jeremy Harris | |
Following c562f "More regular logging use of H=<name> [<ip>]" there were error cases where a host-item that was being expanded per-call was used. Move the copy earlier so these are covered. | |||
2014-11-18 | Compiler quietening | Jeremy Harris | |
2014-11-16 | Fix debug output of name of transport option list being matched | Jeremy Harris | |
2014-11-11 | Handle UTC vs specified-timezone for certificate extractors. Bug 1541 | Jeremy Harris | |
2014-11-08 | Fix smtp transport certificate-verification option matching to use correct host | Jeremy Harris | |
Fix certificate name verification done with tls_try_verify_hosts Affected tls_verify_hosts, tls_try_verify_hosts, tls_verify_cert_hostnames. | |||
2014-11-06 | EXPERIMENTAL_CERTNAMES: Hostlist for cert name checks should match host | Jeremy Harris | |
connected-to, not be list of acceptable names. The name checked is the host name. | |||
2014-11-05 | Do not permit multi-component wildcards on certificate names (OpenSSL, ↵ | Jeremy Harris | |
EXPERIMENTAL_CERTNAMES) | |||
2014-11-05 | Do not permit multi-component wildcards on certificate names (OpenSSL) | Jeremy Harris | |
2014-11-04 | Fix dnssec indication variable when used from verify-callout smtp:commect event | Jeremy Harris | |
2014-10-30 | Fix cert-try-verify when denied by event action | Jeremy Harris | |
2014-10-30 | Fix dnssec indication variable when used from smtp:commect event | Jeremy Harris | |
2014-10-30 | For connects and certificate-verifies denied by event actions, log | Jeremy Harris | |
the string resulting from the event expansion | |||
2014-10-26 | Do not claim OCSP support when compiled with too-old GnuTLS version | Jeremy Harris | |
2014-10-26 | Fix cert-try-verify when denied by event action | Jeremy Harris | |
2014-10-26 | Fix feature-ifdef for OpenSSL builtin certname checking | Jeremy Harris | |
2014-10-25 | Add event for inbound cert visibility | Jeremy Harris | |
2014-10-25 | Make transport name available in verify-callouts. Add verify_mode variable | Jeremy Harris | |
2014-10-25 | Rename facility to Event Actions, ifdeffed on EXPERIMENTAL_EVENT | Jeremy Harris | |
2014-10-22 | Make $host available in tpda delivery event, for cutthrough. Bug 1529 | Jeremy Harris | |
2014-10-22 | More regular logging use of H=<name> [<ip>] | Jeremy Harris | |
Note this may affect utilities which parse logs. | |||
2014-10-16 | Handle certificate dir under GnuTLS, if recent enough | Jeremy Harris | |
Add testcases for certificate directories The GnuTLS implementation has been tested on Fedora 21 (alpha), using GnuTLS 3.3.9. The testsuite case is here but with the script commented-out. When enabled, the log/mail/stdout/stderr files will be created fresh. | |||
2014-10-12 | Make dnssec status available in tpda delivery event, for cutthrough | Jeremy Harris | |
2014-10-12 | Quieten noisy compiler | Jeremy Harris | |
As usual, gcc whining that perfectly valid C coding is "ambiguous". Wrongly. | |||
2014-10-05 | Remove limit on remove_headers item size. Bug 1533 | Jeremy Harris | |
2014-09-29 | Fix Solaris build | Jeremy Harris | |
2014-09-28 | Fix transport-results pipe for multiple recipients combined with certs. | Wolfgang Breyha | |
The previous parsing failed when a result item split over a buffer boundary; fix by prefixing sizes to items, and checking enough has been read as the initial parsing stage. | |||
2014-09-25 | Clarify error message for host-connect fail. Bug 1505 | Jeremy Harris | |
2014-09-25 | Amplify comment on server requests for client certificates | Jeremy Harris | |
2014-09-23 | Merge remote-tracking branch 'exim_github/pr/18' | Todd Lyons | |
2014-09-16 | Replace use of index() with Ustrchr() | Jeremy Harris | |
2014-09-13 | Restrict dane to DANE-TA(2) and DANE-EE(3) usage TLSA records | Jeremy Harris | |
Also, just ignore TLSA records with unsipported match types. | |||
2014-09-12 | Fix needless OCSP request under DANE | Jeremy Harris | |
usage 3 and with require_ocsp in play though inactive | |||
2014-09-12 | Bug 1216: Add -M (related) to exigrep. | Todd Lyons | |
Thanks to Arkadiusz for pointing out that this was never merged. | |||
2014-09-11 | Fix ldap lookup for single-attr request, multiple-attr return. Bug 1521 | Heiko Schlittermann | |
Exim documented behaviour is that the single-request case controls the output format (by not labelling attributes with names). The code is broken for the case where attrs B, C are derived from A and A is requested (and the LDAP server used isn't buggy here; some are and only return A rather than A, B, C). | |||
2014-09-11 | Add debug for number of CA certs, for OpenSSL/file load | Jeremy Harris | |
2014-09-10 | Fix undersized buffer use by eximon. Bug 1527 | Jeremy Harris | |
The long spoolfile line now used for certificate info was too big, resulting in an apparent syntax error in the file. Apart from using a decent size, do autogrow in case of immense certificates. | |||
2014-09-10 | TPDA tidying | Jeremy Harris | |