Age | Commit message (Collapse) | Author | |
---|---|---|---|
2015-08-02 | Testsuite: pass GnuTLS despite OCSP whining | Jeremy Harris | |
2015-08-02 | Testsuite: Add testcase for OCSP-nonaware client, to supporting server. Bug ↵ | Jeremy Harris | |
1664 The logfile here is for (I hope) the passing case, though the fixed GnuTLS library is not yet available. Also due to the bug, client-gnutls is not usable for the test; client-openssl must be used - meaning that a GnuTLS-only system cannot run the testcase: OCSP-GnuTLS/5650 OCSP stapling, server ** Command 15 ("client-ssl", starting at line 98) ** Return code 127 (expected 0) | |||
2015-06-22 | Testsuite: Add a first test for dns_trust_aa | Heiko Schlittermann (HS12) | |
2015-06-22 | Testsuite: fakens may return AUTHORITY records | Heiko Schlittermann (HS12) | |
If an entry in db.<zone> is prefixed with "AA ", fakens will put a valid NS record into the AUTHORITY section of the returned packet. This will be used by dns_trust_aa checks. | |||
2015-06-10 | Testsuite: additional EC encryptions seen | Jeremy Harris | |
2015-06-10 | Testsuite: Increase test delays and retry rule times | Jeremy Harris | |
to allow slow hosts more reliable testing | |||
2015-06-09 | Testsuite: less agressive PID-hiding | Jeremy Harris | |
2015-06-09 | Testsuite: quietening | Jeremy Harris | |
2015-06-09 | Testsuite: avoid IPv6 to avoid "no route to host" log lines | Jeremy Harris | |
2015-06-08 | Truncate delay when peer closes connection. Bug 348 | Jeremy Harris | |
This is now possible on Linux, at least. | |||
2015-06-07 | Testsuite: avoid IPv6 interfaces to avoid extra debug stderr lines | Jeremy Harris | |
2015-06-04 | TLS authenticator | Jeremy Harris | |
2015-05-27 | Testsuite: Add $USER to env if missing | Heiko Schlittermann (HS12) | |
2015-05-27 | Note MAIL commands in -bS batch, to avoid smtp_no_mail logline. Bug 1346 | Jeremy Harris | |
2015-05-26 | TLS: Enable ECDHE on OpenSSL, just the NIST P-256 curve. Bug 1397 | Phil Pennock | |
Original by Phil Pennock; tweaked by JH. | |||
2015-05-23 | New ${env {NAME}} expansion. Bug 1604 | Jeremy Harris | |
2015-05-23 | Testsuite: move test.again.dns and test.fail.dns handling to fakens | Jeremy Harris | |
2015-05-23 | tidying | Jeremy Harris | |
2015-05-22 | DANE: do not fail/defer message due to TLSA lookup but dane is only requested | Jeremy Harris | |
2015-05-21 | Fix DANE for multiple-MX when all TLSA lookup defer. Bug 1634 | Jeremy Harris | |
2015-05-20 | Testsuite: Check debug message if we requested AD but got AA | Heiko Schlittermann (HS12) | |
2015-05-20 | Testsuite: Add support for authoritive answer to fakens | Heiko Schlittermann (HS12) | |
2015-05-19 | Change HELO-verify forward case from byname to bydns and add DNSSEC tracking | Jeremy Harris | |
2015-05-19 | Change host_lookup re-forward from byname to bydns; checking DNSSEC | Jeremy Harris | |
2015-05-19 | Testsuite: avoid tryng to run in net 10. | Jeremy Harris | |
2015-05-18 | Testsuite: Add ad= to even more outputs | Heiko Schlittermann (HS12) | |
2015-05-18 | Fix truncated dns-lookup return record handling | Jeremy Harris | |
2015-05-18 | Testsuite: move manyhome.test,ex handling from exim to fakens | Jeremy Harris | |
2015-05-17 | Remove word "rejected" from ACL-discard log lines. Bug 1632 | Jeremy Harris | |
2015-05-17 | Testsuite: Munge the output to fit the ad=… lines | Heiko Schlittermann (HS12) | |
2015-05-15 | Callout: additional debug on cache operations | Jeremy Harris | |
2015-05-14 | Testsuite: missing output file | Jeremy Harris | |
2015-05-13 | Testsuite: Check dnssec_{request,require}_domains for dnslookup | Heiko Schlittermann (HS12) | |
2015-05-12 | Testsuite: locate fakens relative to the config_main_directory | Heiko Schlittermann (HS12) | |
This makes the test configs more intuitive, because the spool_directory=SPOOL/spool does not need to be there anymore, except we really need a spool directory. | |||
2015-05-12 | Output dnssec status in -bt/-bv mode | Heiko Schlittermann (HS12) | |
Currently this feature is enabled only if running_in_test_harness, because I don't want to break anything else. | |||
2015-05-11 | Do not use the A lookup following an AAAA for setting the FQDN. Bug 1588 | Jeremy Harris | |
Normally benign, it bites when the pair was led to by a CNAME; modern usage is to not canoicalize the domain to a cname target (and we were inconsistent anyway for A-only vs AAAA+A). | |||
2015-05-09 | Support SOA lookup in dnsdb lookups. Bug 286 | Jeremy Harris | |
2015-05-09 | Add retrans/retry options to dnsdb lookup. Bug 1539 | Jeremy Harris | |
2015-05-08 | Testsuite: fix build on older Linuxen | Jeremy Harris | |
2015-05-07 | Log lengthy DNS lookups. Bug 514 | Jeremy Harris | |
Original by <derrick.rice@gmail.com>, massaged by JH | |||
2015-05-06 | Testsuite: Fix the [U]pdate for new testcases | Heiko Schlittermann (HS12) | |
2015-05-06 | Log reason for defer, on a hostlist dns-lookup temporary error. Bug 1328 | Jeremy Harris | |
2015-05-05 | Testsuite: fix testcase sequencing | Jeremy Harris | |
Broken-by: f41e05066084 Replaces: 0368847fd98d | |||
2015-05-04 | I18N: new ${imapfolder_<sep>:<string>} expansion item. Bug 420 | Jeremy Harris | |
2015-05-04 | Testsuite: Patch for lost server -> exim interlock | Jeremy Harris | |
This is an interim workaround. Broken-by: f41e05066084 | |||
2015-05-04 | Testsuite: fix scripts for daemon interlock | Jeremy Harris | |
Broken-by: f41e05066084 | |||
2015-05-03 | Testsuite: allow long server startup delay after big file write | Jeremy Harris | |
Needed for running on an SD-card filesystem | |||
2015-05-03 | Testsuite: interlock daemon startup with testcase run | Jeremy Harris | |
Required for running on an SD card filesystem, which is subject to obscene delays (possibly flash background processing). | |||
2015-04-26 | MIME: Support RFC2231 for filenames. Bug 466 | Jeremy Harris | |
Patch originally from Alexander Shikoff, heavily reworked by JH. | |||
2015-04-25 | Make dnssec_request_domains/dnssec_require_domains generic | Heiko Schlittermann (HS12) | |
Not only the dnslookup router should use DNSSEC for lookups. The manualroute and even queryprogram router may just generate a host list. The names then need to be resolved, optionally via DNSSEC. |