summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2018-04-02Avast: improve compliance with avast-protocol(5)Heiko Schlittermann (HS12-RIPE)
Treat scanner errors as malware. Defer on scanner tmpfail only.
2018-03-30Testcases for dane_require_tls_ciphersJeremy Harris
2018-03-28Implement dane_require_tls_ciphers (theoretically)Phil Pennock
It compiles with OpenSSL, on Darwin (if restore Darwin OS). It doesn't crash immediately, but more testing is needed from a place where port 25 is not just blocked.
2018-03-28ARC: log signing-spec errors in mainlog only, not paniclogJeremy Harris
2018-03-27ARC: enhance debug for signing; explicitly init signing contextJeremy Harris
2018-03-26Fix non-ARC buildJeremy Harris
2018-03-26ARC: add guard in verify against lack of the dkim-verify contextJeremy Harris
needed for body-hashing
2018-03-26Cutthrough: for an onward finaldot timeout, generate an initator 450 in ↵Jeremy Harris
defer=pass mode
2018-03-26ARC: cutthrough delivery may not be used with ARC signingJeremy Harris
2018-03-26Cutthrough: enforce non-use in combination with DKIM signing or transport filterJeremy Harris
Broken-by: 02b41d7106
2018-03-26SPF: remove the deprecated "err_temp" and "err_perm" result namesJeremy Harris
2018-03-26DKIM: document proper Ed25519 key-generation methods; remove helper programJeremy Harris
2018-03-26Expand directory opetion for queuefile transportJeremy Harris
2018-03-26Remove extraneus line - benign but pointless.Jeremy Harris
Broken-by: 9e70917d0a
2018-03-25Add non-mtp source info to ${authres }Jeremy Harris
2018-03-25DKIM: move ed25519_privkey_pem_to_pubkey_raw_b64 to src/util/ and add usage ↵Jeremy Harris
notes to docs
2018-03-24ARC: give more detail with "bad signing-spec" messageJeremy Harris
2018-03-24Mark variables that are unused before release of store in the queue-list loopJeremy Harris
2018-03-23ARC: For signing, accept A-R header lacking ARC info as equivalent to "none"Jeremy Harris
2018-03-23Fix spool_wireformat final-dot on LMTP transport. Bug 2258Jeremy Harris
Broken-by: 328c5688db
2018-03-23ARC: add independent-source testcase. Fix signatures by not line-terminatingJeremy Harris
last header line being hashed.
2018-03-23exiqsumm fix: Check @ARGV exists before testing itGraeme Fowler
2018-03-22Set a TERM handler to terminate properly if running as PID 1Heiko Schlittermann (HS12-RIPE)
2018-03-22SPF: additional variable $spf_result_guessed; tweak authresults string ↵Jeremy Harris
indicating guess
2018-03-21Pipe transport, part two. Bug 2257exim-4_91_RC2Jeremy Harris
2018-03-21ARC: AS header should have no c= tagJeremy Harris
2018-03-21ARC: on the smtp transport option take empty or forced-fail to disable signingJeremy Harris
2018-03-20Fix pipe transport to not use a socket-only syscall. Bug 2257Jeremy Harris
Broken-by: 42055a3385
2018-03-20DKIM: harden signature header parsingJeremy Harris
2018-03-19LibreSSL version numbering differe from OpenSSLJeremy Harris
2018-03-18DMARC: if ACL condition not called, do not add anything to authres stringJeremy Harris
Previously "skipped" was added; that is no only done for an actual call which could not be completed
2018-03-18Unbreak DMARCJeremy Harris
Broken-by: c780096c29
2018-03-18DMARC: add results to generic authres string; remove $dmarc_ar_headerJeremy Harris
2018-03-17typoJeremy Harris
2018-03-17DKIM: Ed25519 signatures under OpenSSL (1.1.1 or later)Jeremy Harris
OpenSSL 1.1.1 is not released yet, but operation has been checked against the current source
2018-03-17DMARC: add variables to list of those now-unused at the tail of the SMTP ↵Jeremy Harris
per-message loop
2018-03-17Build-variant tidyupJeremy Harris
2018-03-16Fix heavy-pipeline SMTP command input corruption. Bug 2250Jeremy Harris
2018-03-15Docs: copyright yearexim-4_91_RC1Jeremy Harris
2018-03-15Mark variables that are unused before release of store in the receive ↵Jeremy Harris
message loop
2018-03-13ARC: add $arc_state, $arc_state_reason and add reason to authres stringJeremy Harris
2018-03-13Mark variables unused before release of store in the queue-runner loopJeremy Harris
2018-03-13tidyingJeremy Harris
2018-03-13Mark variables unused before release of store in the daemon loopJeremy Harris
2018-03-13Compiler quieteningJeremy Harris
2018-03-12Fix memory leak during build process (Bug 2183)Heiko Schlittermann (HS12-RIPE)
(Normally we don't care about leaks in short lived processes we use during build time. But as -fsanitize=address breaks the build in an early stage, the leak is fixed now.) Thanks to Andrew Aitchison.
2018-03-12Fix dec64table[] OOB read in b64decode()Tomas Hoger
Possible values for y at this point are 0..255. However, dec64table[] only has 128 entries and hence valid indexes are 0..127. The values of y greater than 127 trigger out of bounds read. As dec64table[] is in the data segment, the OOB access is not detected by tools as valgrind or ASAN. This adds a check to ensure y is less than or equal to 127, just like in other cases where dec64table[] is accessed. Note that removal of the y == 0 condition is not a problem, as dec64table[0] == 255, so the second part of the condition is true.
2018-03-12Update to protocol used by avast 2.2.0 (Multiline responses) (Bug 2112)Heiko Schlittermann (HS12-RIPE)
Based on a patch by Victor Ustugov.
2018-03-11ARC: options on the verifyJeremy Harris
2018-03-11Fix ldap lookups for zero-length attribute value. Bug 2251Jeremy Harris
Broken-by: acec9514b1
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-29 09:48:43 +0000