| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2021-07-18 | TLS: ALPN options | Jeremy Harris | |
| 2021-07-11 | GnuTLS: Fix certextract expansion | Jeremy Harris | |
| 2021-06-28 | Testsuite: munge for LibreSSL TLSv1.3 | Jeremy Harris | |
| 2021-06-28 | acceptable log output change | Jeremy Harris | |
| 2021-06-24 | Testsuite: Fix 608 | Heiko Schlittermann (HS12-RIPE) | |
| 2021-06-24 | Revert "testsuite: adjust 622 for taintwarn" | Heiko Schlittermann (HS12-RIPE) | |
| This reverts commit 7ab3a6cd7fe7b033b5e267617f3be8a99b33db31. | |||
| 2021-06-24 | testsuite: adjust 622 for taintwarn | Heiko Schlittermann (HS12-RIPE) | |
| (cherry picked from commit 460aac0eb9a289af1ab0f32a242a27dab851fa18) | |||
| 2021-06-24 | testsuite: add 0990 for allow_insecure_tainted_data | Heiko Schlittermann (HS12-RIPE) | |
| (cherry picked from commit 56213337357265eb42c40dd04a22f6ac433b9e81) | |||
| 2021-06-24 | deliver | Heiko Schlittermann (HS12-RIPE) | |
| (cherry picked from commit 2bafe3fc82cf62f0c21f939f5891b8d067f3abc7) | |||
| 2021-06-21 | Testsuite: fix testcases for non-TLS build | Jeremy Harris | |
| 2021-06-21 | Testsuite: fix munging for no-TLS build | Jeremy Harris | |
| Broken-by: da40b1ec6b | |||
| 2021-06-19 | Testsuite: split out OpenSSL TLS1.3 resume tests | Jeremy Harris | |
| Older library versions do not support 1.3 so a separate numbered testcase is needed | |||
| 2021-06-19 | Testsuite: allow time for daemon to listen before terminating | Jeremy Harris | |
| 2021-06-17 | Testsuite: output changes for OpenSSL library variants | Jeremy Harris | |
| Broken-by: 2f8e0a5f6b | |||
| 2021-06-15 | hosts_require_helo | Jeremy Harris | |
| 2021-06-13 | Testsuite: EC cert | Jeremy Harris | |
| 2021-06-06 | Observability: listen queue backlog | Jeremy Harris | |
| 2021-06-06 | Testsuite: testcase for multiple listener sockets ready | Jeremy Harris | |
| 2021-06-05 | Testsuite: fix OCSP/OpenSSL/1.3 testcase | Jeremy Harris | |
| 2021-06-04 | debug: fix openssl output | Jeremy Harris | |
| 2021-06-04 | Testsuite: regen certificates suite with fixed Authority Identifier | Jeremy Harris | |
| 2021-06-03 | Testsuite: use higher-spec certs, for more-recent GnuTLS versions which ↵ | Jeremy Harris | |
| deprecate weaker ones Needed for GnuTLS 3.6.15 (on Fedora 33) | |||
| 2021-05-28 | Update testcase output to match newly applied default config limit | Jeremy Harris | |
| Broken-by: f07847e436 | |||
| 2021-05-28 | Fix testsuite output for DB cases | Jeremy Harris | |
| Broken-by: 186e99bafc | |||
| 2021-05-27 | testsuite: reproduce BDAT with missing eol (Bug 1974) | Heiko Schlittermann (HS12-RIPE) | |
| (cherry picked from commit e9cecc465a570c1a4f34b199eae6bdd0a52ee2b0) | |||
| 2021-05-27 | Honour the outcome of parse_extract_address(), testsuite 471 | Heiko Schlittermann (HS12-RIPE) | |
| (cherry picked from commit 39d83bf19fc0c4364e0a665360b14194c62e4ab4) | |||
| 2021-05-27 | CVE-2020-28007: Link attack in Exim's log directory | Qualys Security Advisory | |
| We patch this vulnerability by opening (instead of just creating) the log file in an unprivileged (exim) child process, and by passing this file descriptor back to the privileged (root) parent process. The two functions log_send_fd() and log_recv_fd() are inspired by OpenSSH's functions mm_send_fd() and mm_receive_fd(); thanks! This patch also fixes: - a NULL-pointer dereference in usr1_handler() (this signal handler is installed before process_log_path is initialized); - a file-descriptor leak in dmarc_write_history_file() (two return paths did not close history_file_fd). Note: the use of log_open_as_exim() in dmarc_write_history_file() should be fine because the documentation explicitly states "Make sure the directory of this file is writable by the user exim runs as." (cherry picked from commit 2502cc41d1d92c1413eca6a4ba035c21162662bd) (cherry picked from commit 93e9a18fbf09deb59bd133986f4c89aeb2d2d86a) | |||
| 2021-05-27 | CVE-2020-28014, CVE-2021-27216: PID file handling | Heiko Schlittermann (HS12-RIPE) | |
| Arbitrary PID file creation, clobbering, and deletion. Patch provided by Qualys. (cherry picked from commit 974f32939a922512b27d9f0a8a1cb5dec60e7d37) (cherry picked from commit 43c6f0b83200b7082353c50187ef75de3704580a) | |||
| 2021-05-27 | Add priv.c: reworked version of priv dropping code | Heiko Schlittermann (HS12-RIPE) | |
| (cherry picked from commit 82b545236e6dc82b7af34528c532811bfc74ea19) (cherry picked from commit be31ef213f118abe5fc68732f5492b6b16d28b87) | |||
| 2021-05-27 | Handle SIGINT as we do with SIGTERM | Heiko Schlittermann (HS12-RIPE) | |
| (cherry picked from commit cdc5c672e1c309294626cd5ed90acdccb05baaa1) (cherry picked from commit f9c8211fb0ad0dd362f471978a5e0abc5dfa71b4) | |||
| 2021-05-27 | testsuite: tidy logs/4520 and confs/4520 | Heiko Schlittermann (HS12-RIPE) | |
| This fixed 4520 failure en-passant, but I'm sure it's a timing issue here (the order of the mainlog output lines didn't exactly match the logs/4520) (cherry picked from commit 95306ca61531d9d79c5dac808a5a571158acd29c) (cherry picked from commit 0439d2e0566d64c84feaf1434e0e4a3fd8ce29b3) | |||
| 2021-05-25 | Use separate line in Received: header for timestamp | Jeremy Harris | |
| 2021-05-12 | Named Queues: fix immediate-delivery. Bug 2743 | Jeremy Harris | |
| 2021-05-11 | TLS DANE to multiple recipients w/ different DNSSec status | Heiko Schlittermann (HS12-RIPE) | |
| 2021-05-11 | Fix DANE + SNI handling (Bug 2265) | Heiko Schlittermann (HS12-RIPE) | |
| Broken in d8e99d6047e709b35eabb1395c2046100d1a1dda Thanks to JGH and Wolfgang Breyha for contributions. (cherry picked from commit e8ac8be0a3d56ba0a189fb970c339ac6e84769be) | |||
| 2021-05-08 | DNS: Better handling of SOA when negative-caching lookups | Jeremy Harris | |
| 2021-05-05 | wip | Jeremy Harris | |
| 2021-05-04 | Fix ${ipv6norm:} | Jeremy Harris | |
| 2021-04-25 | Testsuite: tidying | Jeremy Harris | |
| 2021-04-18 | Experimental: ESMTP LIMITS extension | Jeremy Harris | |
| 2021-04-18 | Testsuite: output changes arising | Jeremy Harris | |
| Somewhere recently (possibly 3f06b9b4c7) we stopped overwriting errno; the "Permission denied" seen now in 4520 for the ${bogus} expansion is as expected. | |||
| 2021-04-16 | Log queue_time and queue_time_overall exclusive of receive time. Bug 2672 | Jeremy Harris | |
| 2021-04-14 | taint: allow appendfile create_file option to specify a de-tainting safe ↵ | Jeremy Harris | |
| path | |||
| 2021-04-10 | Logging: better tracking of continued-connection use | Jeremy Harris | |
| 2021-04-07 | Pass proxy addresses/ports to continued trasnports. Bug 2710 | Jeremy Harris | |
| 2021-04-03 | testsuite: fix runtest (File::Copy used in another place) | Heiko Schlittermann (HS12-RIPE) | |
| 2021-04-01 | testsuite: provide cp() if File::Copy is too old. | Heiko Schlittermann (HS12-RIPE) | |
| 2021-03-31 | testsuite: use File::Copy "cp" to copy the permissions (x-bit) | Heiko Schlittermann (HS12-RIPE) | |
| 2021-03-28 | testsuite: add --fail-any option to runtest | Heiko Schlittermann (HS12-RIPE) | |
| This option makes runtest's exit status !0 on any failure in any test. (Useful in -c mode and git-bisect) | |||
| 2021-03-27 | testsuite: make runtest exit(!0) on failure in continue mode | Heiko Schlittermann (HS12-RIPE) | |
| This makes it possible to use `runtest -c <xx>` for `git bisect run …` | |||
 |
index : user/henk/code/exim.git | |
| [no description] | git repository hosting |
| summaryrefslogtreecommitdiff |