Jeremy Harris [Tue, 7 Nov 2017 19:01:42 +0000 (19:01 +0000)]
DKIM: Allow the DKIM ACL to override verification results. Bug 2186
This provides generic support, though is covers the need introduced
by https://datatracker.ietf.org/doc/draft-ietf-dcrup-dkim-usage/?include_text=1
(deprecating sha-1 and RSA keys shorter than 1024 bits).
Jeremy Harris [Tue, 7 Nov 2017 16:09:28 +0000 (16:09 +0000)]
TLS: support multiple certificate files in server. Bug 2092
Jeremy Harris [Fri, 3 Nov 2017 13:05:16 +0000 (13:05 +0000)]
Docs: add index entry
Jeremy Harris [Fri, 3 Nov 2017 11:02:19 +0000 (11:02 +0000)]
DKIM: better syntax for control of oversigning. Bug 2180
Phil Pennock [Thu, 2 Nov 2017 18:48:30 +0000 (14:48 -0400)]
Use LDFLAGS not EXTRALIBS_EXIM; 1.0.2 needs ldl too
Heiko Schlittermann (HS12-RIPE) [Wed, 1 Nov 2017 21:38:43 +0000 (22:38 +0100)]
exigrep: we need to run with perl 5.8.x
The defined-or operator '//' does not exist yet.
Jeremy Harris [Wed, 1 Nov 2017 12:32:13 +0000 (12:32 +0000)]
Use back-compatible variable for perl version
The modern $^V is not present in some buildfarm animals' perl versions.
Heiko Schlittermann (HS12-RIPE) [Wed, 1 Nov 2017 06:45:55 +0000 (07:45 +0100)]
Testsuite: Output the --version from exigrep, exinext, eximstats
Heiko Schlittermann (HS12-RIPE) [Wed, 1 Nov 2017 06:45:14 +0000 (07:45 +0100)]
Add --version to all installed Perl and Shell scripts.
This option outputs the build info, and for Perl scripts it additionally
outputs the Perl version that is running the current script.
Jeremy Harris [Tue, 31 Oct 2017 16:31:34 +0000 (16:31 +0000)]
Lose extraneous line
Broken-by: 9650d98a07
Jeremy Harris [Tue, 31 Oct 2017 15:31:50 +0000 (15:31 +0000)]
Add macro support to -be expansion test mode. Bug 1623
Jeremy Harris [Mon, 30 Oct 2017 10:15:26 +0000 (10:15 +0000)]
Testsuite: notify perl version at runtest startup
Andreas Metzler [Sat, 28 Oct 2017 17:45:30 +0000 (19:45 +0200)]
Make exim_monitor build reproducible.
Adapt changes to exim for SOURCE_DATE_EPOCH from exim
6e411084a29a7658f7bc88aa5a62ab9016c22c79 to exim_monitor.
Jeremy Harris [Sat, 28 Oct 2017 14:09:05 +0000 (15:09 +0100)]
Do not exit when cwd has no name. Bug 2078
Andreas Metzler [Sat, 28 Oct 2017 13:23:50 +0000 (14:23 +0100)]
Build: fix repeatable-build typo
Jeremy Harris [Sat, 28 Oct 2017 13:04:12 +0000 (14:04 +0100)]
Fix build warning. Bug 2181
Andreas Metzler [Sat, 28 Oct 2017 12:26:48 +0000 (14:26 +0200)]
Correct typo "psuedo" in exipick documentation.
Phil Pennock [Fri, 27 Oct 2017 17:07:48 +0000 (13:07 -0400)]
nit: typo-fix in comment (my goof)
Jeremy Harris [Thu, 26 Oct 2017 20:48:12 +0000 (21:48 +0100)]
Copyright year bumps for substantive changes 2017
Jeremy Harris [Thu, 26 Oct 2017 19:20:41 +0000 (20:20 +0100)]
Testsuite: OpenSSL version output variances
Jeremy Harris [Thu, 26 Oct 2017 17:43:55 +0000 (18:43 +0100)]
Testsuite: support platform variance in debug output
Solaris printf %p gives hex without a leading 0x
Jeremy Harris [Thu, 26 Oct 2017 17:34:48 +0000 (18:34 +0100)]
Testsuite: add missing testcase files
Jeremy Harris [Thu, 26 Oct 2017 17:26:37 +0000 (18:26 +0100)]
Testsuite: create test db on-the-fliy for LMDB testcase
Jeremy Harris [Thu, 26 Oct 2017 16:17:22 +0000 (17:17 +0100)]
Testsuite: more time for slow test platform
Jeremy Harris [Thu, 26 Oct 2017 13:54:02 +0000 (14:54 +0100)]
Revert "Build: tidying"
This reverts commit
3a40b2f9648ce9737b3f8f542e5079e58c4db3c3.
It didn't work with Pmake (FreeBSD/OpenBSD)
Jeremy Harris [Thu, 26 Oct 2017 13:47:11 +0000 (14:47 +0100)]
Debug: add trace in the inlist expansion condition
Jeremy Harris [Wed, 25 Oct 2017 17:13:19 +0000 (18:13 +0100)]
Build: tidying
Jeremy Harris [Wed, 25 Oct 2017 15:59:30 +0000 (16:59 +0100)]
Testsuite: more time for slow test platform
Jeremy Harris [Wed, 25 Oct 2017 14:54:31 +0000 (15:54 +0100)]
Docs: clarify DKIM default signing. Bug 2179
Jeremy Harris [Wed, 25 Oct 2017 14:19:32 +0000 (15:19 +0100)]
Testsuite: ignore timezone-specific debug output
Jeremy Harris [Wed, 25 Oct 2017 13:51:17 +0000 (14:51 +0100)]
Unbreak non-DKIM build
Jeremy Harris [Wed, 25 Oct 2017 09:58:18 +0000 (10:58 +0100)]
DKIM: add builtin macro with default list of headers for signing
Jeremy Harris [Sun, 22 Oct 2017 19:40:11 +0000 (20:40 +0100)]
Docs: expand TFO information
Jeremy Harris [Sun, 22 Oct 2017 14:47:13 +0000 (15:47 +0100)]
Testsuite: ignore optional-config output
Jeremy Harris [Sat, 21 Oct 2017 20:52:54 +0000 (21:52 +0100)]
tidying
Jeremy Harris [Sat, 21 Oct 2017 20:20:46 +0000 (21:20 +0100)]
tidying
Jeremy Harris [Sat, 21 Oct 2017 19:29:25 +0000 (20:29 +0100)]
Add equivalent for missing poll(2) #define
Needed in FreeBSD and OpenBSD, and probably Solaris
Jeremy Harris [Sat, 21 Oct 2017 18:27:01 +0000 (19:27 +0100)]
CHUNKING: Fix flush of chunk on error
Jeremy Harris [Sat, 21 Oct 2017 17:36:31 +0000 (18:36 +0100)]
Testsuite: make debug output for proxied TLS less indeterminate
Jeremy Harris [Fri, 20 Oct 2017 22:21:27 +0000 (23:21 +0100)]
Use safer routine for possibly-overlapping copy
Fixes a logging bug seen on aarch64
Jeremy Harris [Fri, 20 Oct 2017 22:20:57 +0000 (23:20 +0100)]
Testsuite: make debug output for proxied TLS less indeterminate
Jeremy Harris [Fri, 20 Oct 2017 18:30:20 +0000 (19:30 +0100)]
Debug: output type of process as it terminates
Jeremy Harris [Fri, 20 Oct 2017 16:45:21 +0000 (17:45 +0100)]
Testsuite: accept changed output from perl version difference
Jeremy Harris [Fri, 20 Oct 2017 15:21:32 +0000 (16:21 +0100)]
Testsuite: ignore optional-config output
Jeremy Harris [Fri, 20 Oct 2017 14:40:42 +0000 (15:40 +0100)]
Testsuite: dump stdout for a force-continue
Jeremy Harris [Fri, 20 Oct 2017 14:28:07 +0000 (15:28 +0100)]
Add equivalent for missing poll(2) #define in OpenBSD
Jeremy Harris [Wed, 18 Oct 2017 21:34:12 +0000 (22:34 +0100)]
Docs: note that } chars in a RE are also needing escaping for ${sg }
Heiko Schlittermann (HS12-RIPE) [Wed, 18 Oct 2017 20:38:20 +0000 (22:38 +0200)]
Include sys/uio.h for writev()
Heiko Schlittermann (HS12-RIPE) [Wed, 18 Oct 2017 20:19:44 +0000 (22:19 +0200)]
More information string for missing MxSQL Base Version
Jeremy Harris [Sat, 14 Oct 2017 20:53:10 +0000 (21:53 +0100)]
Testsuite: avoid indeterminate delivery ordering
Jeremy Harris [Sat, 14 Oct 2017 20:43:37 +0000 (21:43 +0100)]
Testsuite: OpenSSL version output variances
Jeremy Harris [Sat, 14 Oct 2017 18:56:50 +0000 (19:56 +0100)]
Tidy build for OpenBSD
Jeremy Harris [Sat, 14 Oct 2017 18:16:59 +0000 (19:16 +0100)]
Tidy build for OpenBSD
Jeremy Harris [Sat, 14 Oct 2017 14:37:01 +0000 (15:37 +0100)]
coding standards
Jeremy Harris [Thu, 12 Oct 2017 21:05:14 +0000 (22:05 +0100)]
String handling: refactor the expanding-string routines and users to use a descriptor struct
Heiko Schlittermann (HS12-RIPE) [Fri, 13 Oct 2017 22:24:54 +0000 (00:24 +0200)]
Fix mariadb/mysql macro confusion
Jeremy Harris [Fri, 13 Oct 2017 16:05:59 +0000 (17:05 +0100)]
Testsuite: add cipher-suite seen on OpenBSD
Jeremy Harris [Thu, 12 Oct 2017 17:20:56 +0000 (18:20 +0100)]
Testsuite: openssl variant debug output
Jeremy Harris [Thu, 12 Oct 2017 13:03:08 +0000 (14:03 +0100)]
Fix queue_run_in_order to ignore the PID portion of the message ID
Jeremy Harris [Tue, 10 Oct 2017 20:39:54 +0000 (21:39 +0100)]
MySQL: fix build on Fedora 27, where MariaDB version information has become unavailable
Jeremy Harris [Tue, 10 Oct 2017 20:38:42 +0000 (21:38 +0100)]
Fix FreeBSD build (again)
Jeremy Harris [Tue, 10 Oct 2017 12:09:43 +0000 (13:09 +0100)]
Avoid build conflict vs. FreeBSD /usr/include/sys/file.h
Jeremy Harris [Sun, 8 Oct 2017 18:00:37 +0000 (19:00 +0100)]
Fix debug_printf data size
Jeremy Harris [Sun, 8 Oct 2017 17:56:13 +0000 (18:56 +0100)]
Logging: show when input from truncated for logging "next input sent too soon"
Jeremy Harris [Sun, 8 Oct 2017 16:34:16 +0000 (17:34 +0100)]
TFO: early-data for identd queries
Jeremy Harris [Sun, 8 Oct 2017 15:12:06 +0000 (16:12 +0100)]
TFO: on FreeBSD avoid client TFO-mode connects unless a TCP_FASTOPEN setsocketopt succeeds
This fixes the FreeSBD no-kernel-support issues (it succeded the sendto for the
connect-with-data, but dod not queue the data). Having checked dynamically, do
not claim support-for TFO either.
Jeremy Harris [Sat, 7 Oct 2017 13:36:52 +0000 (14:36 +0100)]
Fix identd connections on FreeBSD under TCP Fast Open
Jeremy Harris [Fri, 6 Oct 2017 21:58:39 +0000 (22:58 +0100)]
Testsuite: accept different debug detail for peer-terminated connection
Jeremy Harris [Fri, 6 Oct 2017 21:18:30 +0000 (22:18 +0100)]
Use flag names rather than values in debug output
The values differ between Linux and FreeBSD
Heiko Schlittermann (HS12-RIPE) [Wed, 4 Oct 2017 20:25:45 +0000 (22:25 +0200)]
Check for proper output separator in expanding ${addresses:STRING} (Closes 2171)
Better yet would be to force setting the output separator literally,
and not after expansion of the STRING. But this would be an incompatible
change.
Jeremy Harris [Fri, 6 Oct 2017 17:11:22 +0000 (18:11 +0100)]
Better handling of printing NULL pointers
Jeremy Harris [Thu, 5 Oct 2017 21:41:03 +0000 (22:41 +0100)]
testsuite output changes
Jeremy Harris [Thu, 5 Oct 2017 20:54:28 +0000 (21:54 +0100)]
Fix debug output for NULL pointers on FreeBSD.
The testsuite had failures, mostly in DB opens finding no existing file,
where debug output to stderr showed "0xAAAAAAAA" rather than "(nil)".
Code it explicitly, at least in %p handling, rather than relying on sprintf() bevahiour.
Jeremy Harris [Sun, 1 Oct 2017 20:45:11 +0000 (21:45 +0100)]
Testsuite: for TFO testcases manipulate the system state
Linux-centric; will need elaboration for other platforms
Jeremy Harris [Sun, 1 Oct 2017 17:11:36 +0000 (18:11 +0100)]
TFO: better detection of client fast-open connections (again)
Jeremy Harris [Mon, 25 Sep 2017 17:53:12 +0000 (18:53 +0100)]
Testsuite: Ignore optional-config output change
Jeremy Harris [Mon, 25 Sep 2017 15:36:47 +0000 (16:36 +0100)]
DKIM: support specifying alternate-identity tag for signing. Bug 2170
Jeremy Harris [Tue, 19 Sep 2017 20:57:30 +0000 (21:57 +0100)]
TFO: early-data for ClamAV and for readsocket expansion
Jeremy Harris [Tue, 19 Sep 2017 20:45:10 +0000 (21:45 +0100)]
Avoid repeated string-copy building command-string for rspamd
Jeremy Harris [Tue, 19 Sep 2017 14:10:21 +0000 (15:10 +0100)]
TFO: better detection of client fast-open connections
Jeremy Harris [Tue, 19 Sep 2017 12:24:43 +0000 (13:24 +0100)]
Fix testsuite build for non-TFO platforms
Jeremy Harris [Mon, 18 Sep 2017 10:50:07 +0000 (11:50 +0100)]
TFO: early-data for client outbound via socks5 proxy
Heiko Schlittermann (HS12-RIPE) [Mon, 18 Sep 2017 20:56:36 +0000 (22:56 +0200)]
exipick: add -C|--config option
This fits better to
echo test | exim -C /tmp/test.conf -v test@example.com
exipick -C /tmp/test.conf
Jeremy Harris [Mon, 18 Sep 2017 16:47:52 +0000 (17:47 +0100)]
SOCKS: fix unitialized-pointer
Jeremy Harris [Sat, 16 Sep 2017 22:43:54 +0000 (23:43 +0100)]
tidying
Jeremy Harris [Sat, 16 Sep 2017 17:05:57 +0000 (18:05 +0100)]
Fix build on FreeBSD
Jeremy Harris [Sat, 16 Sep 2017 16:32:37 +0000 (17:32 +0100)]
Fix function prototype
Jeremy Harris [Sat, 16 Sep 2017 16:11:20 +0000 (17:11 +0100)]
Support parallel-build for the buildtin macros
Jeremy Harris [Sat, 16 Sep 2017 15:03:32 +0000 (16:03 +0100)]
tidying
Heiko Schlittermann (HS12-RIPE) [Sat, 16 Sep 2017 13:13:15 +0000 (15:13 +0200)]
Provide readn() as a wrapper around read()
This readn() reads all the data requested, even if the
writer sends it in smaller chunks.
Heiko Schlittermann (HS12-RIPE) [Thu, 29 Jun 2017 18:13:40 +0000 (20:13 +0200)]
Use writev(2) when sending delivery status to the parent
Heiko Schlittermann (HS12-RIPE) [Wed, 5 Jul 2017 06:47:56 +0000 (08:47 +0200)]
Do not use O_NONBLOCK for reading the delivery transport pipe
Jeremy Harris [Tue, 12 Sep 2017 19:27:19 +0000 (20:27 +0100)]
Tidy build under pre-v3 GnuTLS
Jeremy Harris [Tue, 12 Sep 2017 16:49:58 +0000 (17:49 +0100)]
DKIM: support multiple signing, by selector
Jeremy Harris [Tue, 12 Sep 2017 16:37:48 +0000 (17:37 +0100)]
DKIM: support multiple hash methods
Jeremy Harris [Fri, 19 May 2017 12:32:53 +0000 (13:32 +0100)]
DKIM: rename internal signing api
Jeremy Harris [Sun, 10 Sep 2017 19:23:21 +0000 (20:23 +0100)]
DKIM: fix signing bug induced by total size of parameter text
causing header-line fold between "b=" and terminating ";" of
pseudo-header.
Jeremy Harris [Fri, 8 Sep 2017 18:24:40 +0000 (19:24 +0100)]
specified-initialisers
Phil Pennock [Tue, 5 Sep 2017 00:24:56 +0000 (20:24 -0400)]
Fix sieve QP regression from Coverity cleanups
Fixes: 2161
Jeremy Harris [Sat, 2 Sep 2017 15:16:43 +0000 (16:16 +0100)]
Logging: restrict TFO client-side to Linux
The detection method depends on a getsockopt struct member apparently
not supported by FreeBSD (at least). Other platforms status unknown.