Jeremy Harris [Thu, 21 Mar 2024 23:48:32 +0000 (23:48 +0000)]
Option for taint when setting variable under -be
Jeremy Harris [Sat, 16 Mar 2024 13:54:42 +0000 (13:54 +0000)]
Autoreply: Remove Exim version 3 campatibility code
Jeremy Harris [Sat, 16 Mar 2024 13:50:45 +0000 (13:50 +0000)]
Lookups: fix dbmnz crash on zero-length datum. Bug 3079
Broken-by: 6d2c02560e5c
Peter Benie [Thu, 14 Mar 2024 16:11:14 +0000 (16:11 +0000)]
Rewrites: fix delivery crash from constant errors_to. Bug 3081
Broken-by: 753739fdef6d
Peter Benie [Thu, 14 Mar 2024 15:56:07 +0000 (15:56 +0000)]
Debug: fix transport-wait DB message. Bug 3082
Jeremy Harris [Sat, 9 Mar 2024 16:30:43 +0000 (16:30 +0000)]
Docs: add note on DKIM vs. tpt modifying headers
Andrew Aitchison [Fri, 8 Mar 2024 11:52:10 +0000 (11:52 +0000)]
Silence some compiler warnings. Bug 3076
Jeremy Harris [Fri, 8 Mar 2024 01:59:34 +0000 (01:59 +0000)]
Debug: expansions: refactor ascii-art/UTF8; mark up space & nl
Heiko Schlichting [Thu, 29 Feb 2024 19:26:48 +0000 (19:26 +0000)]
Fix crash on empty -oMt argument. Bug 3070
Fabrice Fontaine [Thu, 29 Feb 2024 19:01:49 +0000 (19:01 +0000)]
LibreSSL: fix build for 3.5.0+ Bug 3074
Jeremy Harris [Wed, 28 Feb 2024 13:46:56 +0000 (13:46 +0000)]
Lookups: avoid leaking user/passwd from server spec to log. Bug 3066
Jeremy Harris [Sat, 23 Dec 2023 17:44:31 +0000 (17:44 +0000)]
tidying
Jeremy Harris [Thu, 28 Sep 2023 10:10:13 +0000 (11:10 +0100)]
Build: avoid compiling code for unused transports, routers, authenticators
The smtp transport is not covered here; there are dependencies in
other bits of the exim body.
Jeremy Harris [Sun, 25 Feb 2024 00:07:37 +0000 (00:07 +0000)]
Docs: add note on DKIM verify disable
Jeremy Harris [Sat, 17 Feb 2024 16:11:23 +0000 (16:11 +0000)]
Teststuite: munges needed for buildfarm
Broken by:
90bd3832bc0f
Jeremy Harris [Fri, 16 Feb 2024 23:16:29 +0000 (23:16 +0000)]
Debug: option access for expansion
Jeremy Harris [Thu, 15 Feb 2024 19:56:40 +0000 (19:56 +0000)]
regex: avoid releasing built RE midloop
Jeremy Harris [Wed, 14 Feb 2024 11:25:52 +0000 (11:25 +0000)]
Expand recipients_max, smtp-batch input
Jeremy Harris [Sun, 11 Feb 2024 23:32:34 +0000 (23:32 +0000)]
Expand recipients_max
Jeremy Harris [Tue, 13 Feb 2024 17:34:19 +0000 (17:34 +0000)]
Use non-releasable memory for regex line-buffer
Broken-by: 5aacb69f5c8
Jeremy Harris [Sun, 11 Feb 2024 15:04:58 +0000 (15:04 +0000)]
use dynamic mem for regex_match_string
Jeremy Harris [Sun, 11 Feb 2024 13:57:18 +0000 (13:57 +0000)]
Use non-releaseable memory for regex match strings. Bug 3047
Broken-by: 35aacb69f5c8
Jeremy Harris [Sat, 10 Feb 2024 16:44:54 +0000 (16:44 +0000)]
Move ESMPT LIMITS extension from experimental to mainline
Jeremy Harris [Fri, 26 Jan 2024 21:18:01 +0000 (21:18 +0000)]
Fix smtp transport response to close after all rcpt fates determined. Bug 3059
Jeremy Harris [Fri, 26 Jan 2024 21:58:59 +0000 (21:58 +0000)]
ACL: in "regex" condition, release store every thousand lines. Bug 3047
Jeremy Harris [Thu, 25 Jan 2024 17:48:43 +0000 (17:48 +0000)]
Appendfile: release regex-match store every thousand files. Bug 3047
Jeremy Harris [Sat, 20 Jan 2024 12:38:15 +0000 (12:38 +0000)]
TLS: fix startup after forced-fail
Broken-by: cf0c61644d7d, ce93c6d840d5, 520ef00f56ce
Jeremy Harris [Mon, 15 Jan 2024 12:54:41 +0000 (12:54 +0000)]
Exinext: handle new-format message IDs
Broken-by: 46a36afae4
Jeremy Harris [Sat, 13 Jan 2024 15:24:12 +0000 (15:24 +0000)]
Lookups: log warning for deprecated syntax. Bug 3068
Heiko Schlichting [Fri, 12 Jan 2024 21:43:54 +0000 (21:43 +0000)]
Eximon: handle new-format message IDs
Broken-by: 46a36afae4
Jeremy Harris [Mon, 8 Jan 2024 16:01:55 +0000 (16:01 +0000)]
Fix recipient (or source) selection in combination with periodic queue run. Bug 3064
Broken-by: 1e835086d159
Simon Arlott [Sun, 7 Jan 2024 18:04:55 +0000 (18:04 +0000)]
DKIM: signing with t but no x timestamp. Bug 2851
Jeremy Harris [Thu, 4 Jan 2024 22:29:59 +0000 (22:29 +0000)]
Report two-phase queue run in daemon startup log line
Jeremy Harris [Mon, 1 Jan 2024 21:08:13 +0000 (21:08 +0000)]
Docs: expand SRS info
Jeremy Harris [Mon, 1 Jan 2024 15:34:51 +0000 (15:34 +0000)]
Testsuite: guard configs for no-PRDR build
Jeremy Harris [Sun, 31 Dec 2023 22:12:17 +0000 (22:12 +0000)]
Address qualification: ensure maformed addresses are logged. Bug 3061
Jeremy Harris [Sun, 31 Dec 2023 19:59:09 +0000 (19:59 +0000)]
Rewrites: avoid a split log line when rewiting hits a malformed address. Bug 3160
Jeremy Harris [Sat, 14 Oct 2023 18:35:34 +0000 (19:35 +0100)]
fdatasync the spool data file
Jeremy Harris [Fri, 29 Dec 2023 22:12:58 +0000 (22:12 +0000)]
Tidying: enum for smtp_write_mail_and_rcpt_cmds() retcodes
Jeremy Harris [Fri, 29 Dec 2023 16:11:02 +0000 (16:11 +0000)]
Docs: CVE note
Cherry-picked from:
5a8fc0799314
Jeremy Harris [Fri, 29 Dec 2023 15:29:27 +0000 (15:29 +0000)]
Tidying: defines for sync_responses() retcodes
Jeremy Harris [Fri, 29 Dec 2023 12:40:22 +0000 (12:40 +0000)]
DKIM: logging for signing in transport. Bug 3062
Jeremy Harris [Mon, 25 Dec 2023 16:50:23 +0000 (16:50 +0000)]
Testsuite: testcase for "smtp smuggling". Bug 3063
Also remove the unneeded sync point added in
cf1376206284
Jeremy Harris [Sat, 23 Dec 2023 17:42:57 +0000 (17:42 +0000)]
Reject "dot, LF" as ending data phase (pt. 2). Bug 3063
Jeremy Harris [Sat, 23 Dec 2023 15:59:53 +0000 (15:59 +0000)]
Use enum for body data input state-machine
Jeremy Harris [Fri, 22 Dec 2023 23:57:05 +0000 (23:57 +0000)]
Reject "dot, LF" as ending data phase. Bug 3063
Jeremy Harris [Thu, 21 Dec 2023 23:33:10 +0000 (23:33 +0000)]
tweak observability
Jeremy Harris [Mon, 18 Dec 2023 14:37:30 +0000 (14:37 +0000)]
Docs: more indexing for localhost_number
Jeremy Harris [Sat, 16 Dec 2023 17:37:30 +0000 (17:37 +0000)]
Testsuite: spilt testcase
Jeremy Harris [Sat, 16 Dec 2023 17:15:46 +0000 (17:15 +0000)]
Teststsuite: shuffle testcases
Jeremy Harris [Sat, 16 Dec 2023 16:31:06 +0000 (16:31 +0000)]
tidying
Jeremy Harris [Fri, 15 Dec 2023 21:05:32 +0000 (21:05 +0000)]
Fix periodic queue runs. Bug 3046
Broken-by: 7d5055276a22
Jeremy Harris [Thu, 7 Dec 2023 19:59:35 +0000 (19:59 +0000)]
Handle expansion fails in router "set" options. Bug 3058
Jeremy Harris [Wed, 6 Dec 2023 22:08:08 +0000 (22:08 +0000)]
typo
Broken-by: 5930166b4433
Jeremy Harris [Wed, 6 Dec 2023 19:54:40 +0000 (19:54 +0000)]
Logging: ensure that an error for a mistyped IPv6 address in a search
list is available for logging. Bug 3057
Hendrik Jäger [Wed, 6 Dec 2023 14:00:13 +0000 (14:00 +0000)]
Docs: typo
Jeremy Harris [Wed, 6 Dec 2023 12:25:14 +0000 (12:25 +0000)]
Supply strchrnul() for platforms apparently missing it
Broken-by: 2658a023286f
Jeremy Harris [Tue, 5 Dec 2023 21:23:46 +0000 (21:23 +0000)]
DKIM: tighten up parsing for DKIM DNS and header records. Bug 3056
Jeremy Harris [Tue, 5 Dec 2023 17:49:06 +0000 (17:49 +0000)]
Compiler quietening
Jeremy Harris [Fri, 1 Dec 2023 16:51:13 +0000 (16:51 +0000)]
Testsuite: output changes resulting
Jeremy Harris [Fri, 1 Dec 2023 15:44:57 +0000 (15:44 +0000)]
Avoid trying to send smtp repoonse for non-smtp input, on datafile close error
Broken-by: f70940c9489d
Jeremy Harris [Mon, 27 Nov 2023 17:51:25 +0000 (17:51 +0000)]
Build: fix for Solaris 11
Jeremy Harris [Sun, 26 Nov 2023 20:28:07 +0000 (20:28 +0000)]
Unbreak DISABLE_TLS_RESUME build
Broken-by: 5d5ad9fb16a2
Jeremy Harris [Sat, 25 Nov 2023 16:47:35 +0000 (16:47 +0000)]
DMARC: fix reporting, ARC-support but not in message
Jeremy Harris [Sat, 25 Nov 2023 15:46:12 +0000 (15:46 +0000)]
DMARC: fix reporting, no-ARC-support case
Jeremy Harris [Sun, 19 Nov 2023 11:31:45 +0000 (11:31 +0000)]
Support old-format message_id spoolfiles for mailq / -bp. Bug 3050
Broken-by: 46a36afae41f
Jeremy Harris [Fri, 17 Nov 2023 20:27:16 +0000 (20:27 +0000)]
Testsuite: support for multi-chunk DNS TXT records; more cases for dnsdb
adds to:
79670d3c32cc
Jeremy Harris [Fri, 17 Nov 2023 16:55:17 +0000 (16:55 +0000)]
Lookups: Fix dnsdb lookup of multi-chunk TXT. Bug 3054
Broken=by:
f6b1f8e7d642
Andrew Aitchison [Thu, 16 Nov 2023 17:09:57 +0000 (17:09 +0000)]
Compiler quiteneing
Andrew Aitchison [Thu, 16 Nov 2023 17:04:26 +0000 (17:04 +0000)]
Docs: fix local_scan decsription for new message-id format. Bug 3051
Broken-by: 46a36afae41f
Jeremy Harris [Wed, 15 Nov 2023 02:14:02 +0000 (02:14 +0000)]
constification
Jeremy Harris [Tue, 14 Nov 2023 12:10:36 +0000 (12:10 +0000)]
Check for missing commandline arg after options taking one. Bug 3049
Jeremy Harris [Tue, 14 Nov 2023 14:08:36 +0000 (14:08 +0000)]
constification
Jeremy Harris [Mon, 13 Nov 2023 18:12:31 +0000 (18:12 +0000)]
TLS: fix resumption for TLS-on-connect
Jeremy Harris [Fri, 10 Nov 2023 14:37:23 +0000 (14:37 +0000)]
fix doubled logging of message_id
Jeremy Harris [Wed, 8 Nov 2023 14:22:37 +0000 (14:22 +0000)]
typoes
Jeremy Harris [Tue, 7 Nov 2023 19:38:22 +0000 (19:38 +0000)]
Fix use of empty log_reject_target. Bug 3039
Broken-by: 4243a209fd94
Jeremy Harris [Tue, 7 Nov 2023 15:02:18 +0000 (15:02 +0000)]
OpenSSL: fix non-DANE build
Jeremy Harris [Sun, 5 Nov 2023 23:19:31 +0000 (23:19 +0000)]
Docs: requirements for transport filter processes
Jeremy Harris [Sun, 5 Nov 2023 21:29:53 +0000 (21:29 +0000)]
DANE: handle servefail for TLSA during Rverify. Bug 3030
Jeremy Harris [Sat, 4 Nov 2023 14:20:45 +0000 (14:20 +0000)]
Merge branch '4.next'
Jeremy Harris [Sat, 4 Nov 2023 14:19:05 +0000 (14:19 +0000)]
Docs: tidy for next release
Jeremy Harris [Sat, 4 Nov 2023 12:55:05 +0000 (12:55 +0000)]
Copyright updates:
vi $(git log --name-status --grep=SPDX: --invert-grep exim-4.96..master | awk '/^M/{print $2}' | grep -v '^test/' | sort -u)
Jeremy Harris [Thu, 5 Oct 2023 12:26:13 +0000 (13:26 +0100)]
Docs: try to be even more clear on the ${run...} expansion
Wolfgang Breyha [Fri, 20 Oct 2023 14:02:38 +0000 (15:02 +0100)]
Fix exipick for new message-id format
Broken-by: 46a36afae41f
Lutz Pressler [Fri, 20 Oct 2023 19:34:02 +0000 (21:34 +0200)]
fix: typo
Jeremy Harris [Sun, 15 Oct 2023 11:15:06 +0000 (12:15 +0100)]
DNS: more hardening against crafted responses
Heiko Schlittermann (HS12-RIPE) [Sat, 22 Oct 2022 21:15:44 +0000 (23:15 +0200)]
Add systemd units (examples)
- daemon
- socket activation
- socket activation (inetd mode)
- queuerunner
- maintainance
Heiko Schlittermann (HS12-RIPE) [Tue, 17 Oct 2023 10:53:44 +0000 (12:53 +0200)]
tidy: remove unused variables
Jeremy Harris [Mon, 16 Oct 2023 11:17:53 +0000 (12:17 +0100)]
Tidying: massage to project coding style
Jeremy Harris [Mon, 16 Oct 2023 10:54:50 +0000 (11:54 +0100)]
Use project-standard memory management rather than alloca()
Heiko Schlittermann (HS12-RIPE) [Sun, 15 Oct 2023 17:53:25 +0000 (19:53 +0200)]
Merge branch 'exim-4.96+security' into master+security
* exim-4.96+security:
docs: Changelog
Harden dnsdb against crafted DNS responses. Bug 3033
SPF: harden against crafted DNS responses
fix: string_is_ip_address (CVE-2023-42117) Bug 3031
Testsuite: Add testcases for string_is_ip_address (CVE-2023-42117)
Heiko Schlittermann (HS12-RIPE) [Sat, 14 Oct 2023 21:55:23 +0000 (23:55 +0200)]
docs: Changelog
Jeremy Harris [Tue, 10 Oct 2023 22:03:28 +0000 (23:03 +0100)]
Harden dnsdb against crafted DNS responses. Bug 3033
(cherry picked from commit
8787c8994f07c23c3664d76926e02f07314d699d)
Jeremy Harris [Tue, 10 Oct 2023 11:45:27 +0000 (12:45 +0100)]
SPF: harden against crafted DNS responses
(cherry picked from commit
4f07f38374f8662c318699fb30432273ffcfe0d3)
Heiko Schlittermann (HS12-RIPE) [Sat, 14 Oct 2023 21:33:07 +0000 (23:33 +0200)]
fix: proxy-protocol (CVE-2023-41227) Bug 3031
* fix-CVE-2023-42117:
fix: string_is_ip_address (CVE-2023-42117) (closes 3031)
Testsuite: Add testcases for string_is_ip_address (CVE-2023-42117)
Heiko Schlittermann (HS12-RIPE) [Thu, 5 Oct 2023 20:49:57 +0000 (22:49 +0200)]
fix: string_is_ip_address (CVE-2023-42117) Bug 3031
Heiko Schlittermann (HS12-RIPE) [Sat, 7 Oct 2023 11:07:59 +0000 (13:07 +0200)]
Testsuite: Add testcases for string_is_ip_address (CVE-2023-42117)
Jeremy Harris [Sat, 14 Oct 2023 21:29:08 +0000 (22:29 +0100)]
Handle error on close of spool data file
Jeremy Harris [Sat, 14 Oct 2023 21:27:41 +0000 (22:27 +0100)]
Tidying: readability defines