Age | Commit message (Collapse) | Author | |
---|---|---|---|
2015-01-12 | Make smtp transport try server cert verify by default | Jeremy Harris | |
This is an exim client checking a server certificate. | |||
2015-01-12 | Move certificate name checking to mainline, default enabled | Jeremy Harris | |
This is an exim client checking a server certificate. | |||
2015-01-12 | Make the multi_domain smtp transport option expanded | Jeremy Harris | |
2014-12-30 | Fix crash in mime acl when a parameter is unterminated | Jeremy Harris | |
Verified-by: Wolfgang Breyha <wbreyha@gmx.net> | |||
2014-12-27 | Testsuite: case for malware= cmdline | Jeremy Harris | |
2014-12-25 | Fix null-indirection in certextract expansion | Jeremy Harris | |
Found-by: Roman Rybalko | |||
2014-12-21 | Testsuite: cases for malware= interfaces to f-protd, aveserver, fsecure, ↵ | Jeremy Harris | |
soophie & clamav There are running against scripts not the rea thing so only useful for spotting gross breakage. | |||
2014-12-16 | Testsuite: move testcase (requires plaintext authenticator)exim-4_85_RC3 | Jeremy Harris | |
2014-12-14 | Testsuite: additional crypto cypher useable | Jeremy Harris | |
Seen on Fedora 21 / OpenSSL 1.0.1j-fips | |||
2014-12-14 | Revert "Testsuite: Use explicit interface for send to localhost" | Jeremy Harris | |
This reverts commit 30079bc1d20c0473d012ef33654358cfadb0a2ff. The buildfarm member running FreeBSD 10.0 was not fixed by that commit, as was hoped. | |||
2014-12-13 | Testsuite: Use explicit interface for send to localhost | Jeremy Harris | |
FreeBSD is more lax in its choice of local address to bind; the difference is just noise in testcase output. | |||
2014-12-03 | Testsuite: add more DANE testcases | Jeremy Harris | |
2014-11-28 | Testsuite: avoid ipv6 when testing retry data | Jeremy Harris | |
Some test hosts cannot do ipv6. We assume that ipv4 is available. | |||
2014-11-25 | Testsuite: "echo -n" portability - use printf(1) if possible | Jeremy Harris | |
2014-11-21 | Testsuite: debugging Solaris run ordering issue. Log +received_recipients | Jeremy Harris | |
2014-11-16 | Test case for retry_include_ip_address | Jeremy Harris | |
2014-11-11 | Handle UTC vs specified-timezone for certificate extractors. Bug 1541 | Jeremy Harris | |
2014-11-08 | Fix smtp transport certificate-verification option matching to use correct host | Jeremy Harris | |
Fix certificate name verification done with tls_try_verify_hosts Affected tls_verify_hosts, tls_try_verify_hosts, tls_verify_cert_hostnames. | |||
2014-11-06 | EXPERIMENTAL_CERTNAMES: Hostlist for cert name checks should match host | Jeremy Harris | |
connected-to, not be list of acceptable names. The name checked is the host name. | |||
2014-10-26 | Testcase 0601: move udpsend action from connect to rcpt ACL | Jeremy Harris | |
Some test runs were seeing the receiving perl output before the exim startup banner; try to get the udpsend to happpen after the banner gets a chance to be emitted. | |||
2014-10-25 | Add event for inbound cert visibility | Jeremy Harris | |
2014-10-25 | Rename facility to Event Actions, ifdeffed on EXPERIMENTAL_EVENT | Jeremy Harris | |
2014-10-22 | Fix labels in testsuite conf files | Todd Lyons | |
2014-10-16 | Handle certificate dir under GnuTLS, if recent enough | Jeremy Harris | |
Add testcases for certificate directories The GnuTLS implementation has been tested on Fedora 21 (alpha), using GnuTLS 3.3.9. The testsuite case is here but with the script commented-out. When enabled, the log/mail/stdout/stderr files will be created fresh. | |||
2014-09-02 | Introduce EXPERIMENTAL_DANE feature | Jeremy Harris | |
2014-08-29 | Fix crash in mime acl when a parameter is zero-length | Jeremy Harris | |
2014-08-29 | Fix tpda tcp:connect testcase | Jeremy Harris | |
2014-08-27 | Further TPDA events | Jeremy Harris | |
msg:complete msg:fail:internal msg:fail:delivery | |||
2014-08-20 | Merge branch dane-tpda into dane | Jeremy Harris | |
Conflicts: doc/doc-txt/experimental-spec.txt src/src/deliver.c src/src/functions.h src/src/smtp_out.c src/src/tls-openssl.c src/src/transports/smtp.c src/src/verify.c | |||
2014-08-20 | Merge branch 'master' into dane | Jeremy Harris | |
Conflicts: doc/doc-txt/ChangeLog src/src/tls-openssl.c src/src/transports/smtp.c src/src/verify.c | |||
2014-08-20 | Expanded EXPERIMENTAL_TPDA feature | Jeremy Harris | |
Note this introduces incompatible changes; users who are compiling the feature in, and with configuration files using it, will need to change their configurations appropriately. See the experimental-spec.txt file. | |||
2014-08-17 | Safer coding for utf8clean expansion operator | Jeremy Harris | |
2014-08-17 | Unbreak utf8clean testcase. | Jeremy Harris | |
Broken by my compile quitening; the issue was a variable declared local in a loop body and used for carrying data from one iteration to the next. I'd blindly added an initialiser, destroying the data. However, I *think* that compilers might be at liberty to not use the same location for separate iterations; if so the code was broken (and only worked by chance). Fix by moving the declaration outside the loop. | |||
2014-08-17 | Add observability variables and provision for avoiding OCSP conflicts | Jeremy Harris | |
2014-08-14 | Shuffle test order | Jeremy Harris | |
2014-08-14 | Add testcase for TLSA record access | Jeremy Harris | |
2014-08-13 | Testsuite - Squashed commit of the following: | Jeremy Harris | |
commit 7566c531c43298510e080eb8a7ed7cf767f9476b Author: Jeremy Harris <jgh146exb@wizmail.org> Date: Wed Aug 13 16:20:38 2014 +0100 Assorted OpenSSL cases fail on different library versions. Discard stdout info to hide this. commit 3d389bc6a5ba0943f1b451fa7a8f2e3246de0bb1 Author: Jeremy Harris <jgh146exb@wizmail.org> Date: Wed Aug 13 14:05:19 2014 +0100 Case 0563 was broken when the GECOS field had spaces. Accept quoted ones in stderr. commit d4333083f230702c8be45650dc48b6eb65a162eb Author: Jeremy Harris <jgh146exb@wizmail.org> Date: Mon Aug 11 18:30:49 2014 +0100 Case 0601 was unreliable; perl racing with exim for output. Quieten exim. | |||
2014-08-10 | Add (2 0 1) test | Jeremy Harris | |
2014-08-10 | Capture the knowlege that verification succeeded | Jeremy Harris | |
2014-08-10 | Verifiable conn with DANE-EE(3) / SPKI(1) / SHA2-512(2) | Jeremy Harris | |
2014-08-10 | On a host lookup name->MX->A->ip sequence, require both stages to | Jeremy Harris | |
be dnssec before declaring the lookup was secure. | |||
2014-08-08 | Test development | Jeremy Harris | |
2014-08-08 | Testsuite basics. | Jeremy Harris | |
Not actually excercising DANE yet, this will take additions in the fakedns and probably changes in certificates. | |||
2014-07-13 | Fix TLS SNI, and add regression test cases | Jeremy Harris | |
2014-06-08 | Testcase for udpsend | Jeremy Harris | |
2014-06-06 | Fix testcase for 984702 - the buffer boundary was deliberately | Jeremy Harris | |
being explored by the test | |||
2014-05-20 | Support optional server certificate name checking. Bug 1479 | Jeremy Harris | |
Enable EXPERIMENTAL_CERTNAMES to include. | |||
2014-05-13 | Extractors for certificate time fields support integer output modifier | Jeremy Harris | |
2014-05-13 | Extractor for named RDN element types from a certificate DN field. | Jeremy Harris | |
2014-05-11 | New expansion operator sha256 for certificates. Bug 1170 | Jeremy Harris | |