Jeremy Harris [Tue, 18 Feb 2014 21:26:13 +0000 (21:26 +0000)]
Fix up string types
Jeremy Harris [Sun, 16 Feb 2014 18:09:40 +0000 (18:09 +0000)]
Check "socket" scanner commandline spec for no more than one %s expansion
Jeremy Harris [Sun, 16 Feb 2014 16:33:01 +0000 (16:33 +0000)]
Refactor clamd socket connection
Jeremy Harris [Sun, 16 Feb 2014 14:32:19 +0000 (14:32 +0000)]
Merge branch 'master' into malware-1418
Jeremy Harris [Sun, 9 Feb 2014 21:03:27 +0000 (21:03 +0000)]
Fix build on systems having ipv6 but lacking an IPV6_TCLASS define (GNU Hurd). Bug 1441
By Samuel Thibault
Jeremy Harris [Sat, 8 Feb 2014 13:24:29 +0000 (13:24 +0000)]
WIP: refactor socket/ip connections
Jeremy Harris [Mon, 3 Feb 2014 00:19:23 +0000 (00:19 +0000)]
Refactor listarg RE compiles
Jeremy Harris [Sun, 2 Feb 2014 23:10:07 +0000 (23:10 +0000)]
Refactor reges operations
Jeremy Harris [Sun, 2 Feb 2014 22:17:46 +0000 (22:17 +0000)]
Generic "sock" malware scanner type, from Martin Poole
Jeremy Harris [Sun, 2 Feb 2014 20:09:10 +0000 (20:09 +0000)]
Refactor tcp socket opens
Jeremy Harris [Sun, 2 Feb 2014 18:55:18 +0000 (18:55 +0000)]
Use table for scanner name and default args
Jeremy Harris [Sun, 26 Jan 2014 22:49:30 +0000 (22:49 +0000)]
Refactor socket comms
Jeremy Harris [Sun, 26 Jan 2014 21:03:59 +0000 (21:03 +0000)]
Replace more fixed-size buffers with allocated strings
Jeremy Harris [Sun, 26 Jan 2014 18:03:01 +0000 (18:03 +0000)]
Fix tls_verify_certificates in gnutls use. Bug 1413.
Patch by W.Breyha, tested by H.Schlittermann
Jeremy Harris [Mon, 20 Jan 2014 01:41:34 +0000 (01:41 +0000)]
Log/return-defer: de-repeat strings
Jeremy Harris [Sun, 19 Jan 2014 22:44:55 +0000 (22:44 +0000)]
Coding style tweaks
Jeremy Harris [Sun, 19 Jan 2014 22:22:37 +0000 (22:22 +0000)]
Replace malware_name_buffer with exim-standard allocated space.
Also lose drweb_match_string, kav_match_string and pre_malware_nb
Wolfgang Breyha [Tue, 14 Jan 2014 14:12:38 +0000 (06:12 -0800)]
Bugzilla 1433: Fix DMARC SEGV
Properly escape value passed to expand_string().
Check for NULL return from expand_string().
Phil Pennock [Tue, 7 Jan 2014 06:59:04 +0000 (01:59 -0500)]
Update copyright year in --version output
Phil Pennock [Tue, 7 Jan 2014 06:56:40 +0000 (01:56 -0500)]
Copyright year updates:
vi $(git whatchanged --since=2013-01-01 | grep '^:100' | sed 's/^[^M]*M//' | sort -u | fgrep -v test/)
Did 2014 first, since otherwise every file I touched to update to 2013
would show as changed in 2014. Last invocation logged to git was during
2012. Will need to be more careful if auditing next year.
Phil Pennock [Tue, 7 Jan 2014 06:49:54 +0000 (01:49 -0500)]
Copyright year updates: 2014
vi $(git whatchanged --since=2014-01-01 | grep '^:100' | sed 's/^[^M]*M//' | sort -u | fgrep -v test/)
Jeremy Harris [Sun, 5 Jan 2014 21:22:06 +0000 (21:22 +0000)]
Document (and enforce) that DKIM-signing is not supported in cobination with cutthrough routing
Jeremy Harris [Sun, 5 Jan 2014 17:54:41 +0000 (17:54 +0000)]
Documant the non-support of header manipulation in post-RCPT ACLs in combination with cuttrhough.
Add check and paniclog attempts to do so. Bug 1411 (WONTFIX).
Jeremy Harris [Sun, 5 Jan 2014 15:27:19 +0000 (15:27 +0000)]
Explicitly disable cutthrough on transports having filters
Jeremy Harris [Sun, 29 Dec 2013 19:10:05 +0000 (19:10 +0000)]
Explicitly disable cutthrough on transports having filters
Todd Lyons [Mon, 30 Dec 2013 23:02:21 +0000 (15:02 -0800)]
Proxy negotiation saves socket timeout values.
Rename proxy expansions conforming to Exim standards.
Update documentation to reflect rename.
Seperate restore socket function
Jeremy Harris [Sun, 27 Oct 2013 15:18:44 +0000 (15:18 +0000)]
Add ${listextract {n}{list}...}
Jeremy Harris [Sun, 15 Dec 2013 18:36:48 +0000 (18:36 +0000)]
Fix use of uninitialized variable
Jeremy Harris [Sun, 15 Dec 2013 22:17:42 +0000 (22:17 +0000)]
Increase test CA key sizes from 512 to 1024 to handle TLS1.2 digest sizes.
Jeremy Harris [Sat, 7 Dec 2013 13:34:42 +0000 (13:34 +0000)]
Clarify interaction of delay_warning and retry configuration.
Todd Lyons [Sat, 30 Nov 2013 19:31:21 +0000 (11:31 -0800)]
Proxy Protocol - Server support
Initial conf setting and expansions
Logging setting whether to record proxy host, off by default
Put PROXY processing before connect ACL
Fix incoming address logging
Add Proxy Protocol to ChangeLog
Set window for Proxy Protocol header to be sent
Update docs and EDITME.
Phil Pennock [Thu, 21 Nov 2013 01:16:02 +0000 (17:16 -0800)]
build: try to get dash/bash for sanity
The "local" builtin is not part of POSIX. We want it. Try harder to
get a vaguely sane shell, rather than just a POSIX shell.
Also, safeguard to error out more gracefully if invoked from outside the
build process.
Jeremy Harris [Wed, 20 Nov 2013 14:19:37 +0000 (14:19 +0000)]
Fix testsuite build on Solaris
As of s11, Solaris & derivatives need libsocket and libnsl. Ensure they are searched for
by autoconfig. This seems to be successfully ignored on Linux.
Credit to Dave Edmondson (dme@dme.org) for the fix.
Todd Lyons [Thu, 31 Oct 2013 16:42:15 +0000 (09:42 -0700)]
Fix ldap option setting.
Some client libs set a global context, newer client libs set a global
default which then needs to be reloaded.
Jeremy Harris [Tue, 12 Nov 2013 19:51:10 +0000 (19:51 +0000)]
Fix memory management vs acl-as-conditional, redux
Jeremy Harris [Sun, 10 Nov 2013 21:31:17 +0000 (21:31 +0000)]
Fix memory management vs. acl-as-conditional
Jeremy Harris [Sun, 10 Nov 2013 21:12:51 +0000 (21:12 +0000)]
Add commented-braces for ease of brace-matching editor use
Phil Pennock [Sun, 10 Nov 2013 10:16:27 +0000 (05:16 -0500)]
spec: TLS certificates: avoid MD5
Make it clearer in the spec, where talking about certificates, that MD5
in certs is a really Quite Bad idea.
Todd Lyons [Sat, 12 Oct 2013 16:42:31 +0000 (09:42 -0700)]
Bug 1334: AutoDetect compression type in exigrep
Does not use any extra perl modules.
Attempts hard coded types first, so no extra code for the standard
case.
Easy to add more compression types.
Tony Finch [Thu, 7 Nov 2013 16:26:33 +0000 (16:26 +0000)]
Portability fix for Solaris without xpg4 utilities
Tony Finch [Thu, 7 Nov 2013 16:25:51 +0000 (16:25 +0000)]
quickrelease: A dumb script for making source-only tarballs
Todd Lyons [Tue, 5 Nov 2013 18:18:24 +0000 (10:18 -0800)]
Put back a required .new/.wen stanza
Todd Lyons [Tue, 5 Nov 2013 16:30:37 +0000 (08:30 -0800)]
Prep docs/markup for next release cycle
Tony Finch [Tue, 5 Nov 2013 15:20:05 +0000 (15:20 +0000)]
Explain the TLS cleanup bug in the ChangeLog
Tony Finch [Tue, 5 Nov 2013 12:18:02 +0000 (12:18 +0000)]
Correctly close the server side of TLS when forking for delivery.
Todd Lyons [Thu, 31 Oct 2013 13:04:27 +0000 (06:04 -0700)]
Only unbind ldap connection if bind succeeded
Phil Pennock [Fri, 25 Oct 2013 00:38:28 +0000 (20:38 -0400)]
Doc/Spec: section "Trust in configuration data"
Todd Lyons [Tue, 22 Oct 2013 12:11:33 +0000 (05:11 -0700)]
Merge branch 'master' of git://git.exim.org/exim
Todd Lyons [Tue, 22 Oct 2013 11:57:40 +0000 (04:57 -0700)]
Silence compiler string format warning
Todd Lyons [Sun, 20 Oct 2013 00:01:26 +0000 (17:01 -0700)]
Bug 1400: Fix GnuTLS PKCS11 issues
Can disable PKCS11 in Makefile with AVOID_GNUTLS_PKCS11 build flag.
Rename gnutls_enable_pkcs11 option to gnutls_allow_auto_pkcs11.
Update Changelog
Todd Lyons [Sat, 19 Oct 2013 14:17:36 +0000 (07:17 -0700)]
Tests: Don't delete patched exim if -KEEP is used
Todd Lyons [Sat, 19 Oct 2013 14:16:40 +0000 (07:16 -0700)]
Extra requires/notes for running test suite
Todd Lyons [Sat, 19 Oct 2013 13:53:59 +0000 (06:53 -0700)]
Bugzilla 1402 - Handle upper case chars in tests
Test 533 fails if there are any upper case chars in the path to the
test suite. Added caseful_local_part=true to the router which calls
the pipe.
Todd Lyons [Fri, 18 Oct 2013 18:49:57 +0000 (11:49 -0700)]
Adjust runtest -CONTINUE to work everywhere
Todd Lyons [Tue, 15 Oct 2013 20:41:21 +0000 (13:41 -0700)]
Format String safety
Todd Lyons [Tue, 15 Oct 2013 12:18:31 +0000 (05:18 -0700)]
Update copyright year in exim -bV output
Jeremy Harris [Sun, 13 Oct 2013 21:29:04 +0000 (22:29 +0100)]
Fix listnamed doc typos
Jeremy Harris [Sun, 13 Oct 2013 13:34:35 +0000 (14:34 +0100)]
Cross-ref av_scanner syntax to list syntax
Todd Lyons [Wed, 9 Oct 2013 20:40:49 +0000 (13:40 -0700)]
Added missing .new/.wen in spec.xpft
Todd Lyons [Wed, 9 Oct 2013 15:48:39 +0000 (08:48 -0700)]
Documentation for multiple TCP clamd servers
Todd Lyons [Fri, 9 Nov 2012 22:28:37 +0000 (14:28 -0800)]
Imported Bug 1057 multiple clamd patch from PLD repo
Todd Lyons [Tue, 8 Oct 2013 18:00:33 +0000 (11:00 -0700)]
Bug 1150: Enhance docs for ${addresses:} expansion
Jeremy Harris [Mon, 7 Oct 2013 19:47:54 +0000 (20:47 +0100)]
Fix TPDA text.
Credit Axel Rau for careful proofreading.
Todd Lyons [Mon, 7 Oct 2013 02:31:57 +0000 (19:31 -0700)]
Merge branch 'master' of ssh://git.exim.org/home/git/exim
Todd Lyons [Mon, 7 Oct 2013 02:21:55 +0000 (19:21 -0700)]
Bug 1289: Clarify host list processing failures
Enhance explanation of +ignore_unknown.
Jeremy Harris [Sun, 6 Oct 2013 17:31:15 +0000 (18:31 +0100)]
Typo in docs: routing rules mentioned in retry rules section. Bug 1349
Jeremy Harris [Sun, 6 Oct 2013 17:05:48 +0000 (18:05 +0100)]
Make smtp_accept_max_per_connection option text searchable. Bug 1361
Same fix as for 1197; abandon attempt to permit intelligent wrapping of the text
Todd Lyons [Sat, 5 Oct 2013 15:41:29 +0000 (08:41 -0700)]
Add exiqsumm fix to ChangeLog
Todd Lyons [Sat, 5 Oct 2013 15:31:49 +0000 (08:31 -0700)]
Fix exiqsumm output for single queue item.
Patch from Richard Hall, with one minor addition to prevent
uninitialized value error during output.
Wolfgang Breyha [Fri, 4 Oct 2013 20:02:44 +0000 (13:02 -0700)]
Bug 1392: Change status text when no dmarc record
Ted Cooper [Fri, 4 Oct 2013 00:17:19 +0000 (10:17 +1000)]
Fix DKIM variable name in documentation.
Todd Lyons [Thu, 3 Oct 2013 23:35:05 +0000 (16:35 -0700)]
Print tarball names in debug mode too
Todd Lyons [Thu, 3 Oct 2013 23:29:52 +0000 (16:29 -0700)]
Filter xfpt needs new macro too
Phil Pennock [Thu, 3 Oct 2013 20:13:52 +0000 (16:13 -0400)]
Finish the xfpt fix.
The readers of the version expect no surrounding whitespace; putting the
content in-place requires macro expansion, which requires that .literal
mode be `layout` or `off`, but either of those will escape the XML angle
brackets. The easiest fix is to generate the XML as part of the macro
definition.
Moved local_params rules out of Makefile and into GenLocalParams
Todd Lyons [Thu, 3 Oct 2013 23:24:14 +0000 (16:24 -0700)]
Bug 1389: Initialize and clear variables
Todd Lyons [Thu, 3 Oct 2013 23:11:04 +0000 (16:11 -0700)]
Merge branch 'master' of ssh://git.exim.org/home/git/exim
Phil Pennock [Thu, 3 Oct 2013 18:50:09 +0000 (14:50 -0400)]
Unbreak HTML build for RC candidates.
The HTML build now uses the website repo, which extracts the version
number from the XML (generated from the .xfpt). Meanwhile, commit
2aee48d6 made the version number in the build process dynamic, taking
the value from the release script (via an environ variable).
This change fixes the invocation to pass the version _without_ an RC
suffix to the XML build, letting HTML generation happen.
Todd Lyons [Thu, 3 Oct 2013 16:34:44 +0000 (09:34 -0700)]
Mention Redis lookup in NewStuff
Todd Lyons [Thu, 3 Oct 2013 13:42:26 +0000 (06:42 -0700)]
Setting LC_ALL with make overrode this sort check
Todd Lyons [Thu, 3 Oct 2013 02:21:22 +0000 (19:21 -0700)]
Fix docbook paths for xml generation
Todd Lyons [Tue, 1 Oct 2013 16:24:19 +0000 (09:24 -0700)]
Bugzilla 1217: Experimental Redis lookup
Add want_experimental() test in the script to create the lookups
Makefile to ease detection of requested Experimental features, and
simplify the #ifdef guards in the redis.c.
Jeremy Harris [Mon, 30 Sep 2013 19:24:13 +0000 (20:24 +0100)]
Do not use MSG_NOSIGNAL on send() in ${udpsend}
Some non-Posix systems don't define it. Anyway, Exim ignores SIGPIPE for most purposes.
Todd Lyons [Mon, 30 Sep 2013 19:55:44 +0000 (12:55 -0700)]
Merge branch 'patch-3' of https://github.com/bes-internal/exim into master_dmarc_doc
Todd Lyons [Mon, 30 Sep 2013 18:56:42 +0000 (11:56 -0700)]
Added documentation of features, acknowledgements
Todd Lyons [Mon, 30 Sep 2013 18:24:44 +0000 (11:24 -0700)]
Add ratelimit doc addition to ChangeLog
Todd Lyons [Mon, 30 Sep 2013 18:22:58 +0000 (11:22 -0700)]
Typo re-fix in ratelimit.pl doc
Todd Lyons [Mon, 30 Sep 2013 18:20:46 +0000 (11:20 -0700)]
Merge branch 'patch-1' of https://github.com/bes-internal/exim into master-bes-ratelimit.pl
Todd Lyons [Mon, 30 Sep 2013 18:10:50 +0000 (11:10 -0700)]
Merge branch 'master_tpda'
Todd Lyons [Mon, 30 Sep 2013 17:52:50 +0000 (10:52 -0700)]
Adjust test build link paths.
Details at: http://comments.gmane.org/gmane.mail.exim.user/91154
Add ignore for a logfile from test run.
Jeremy Harris [Mon, 30 Sep 2013 17:12:12 +0000 (10:12 -0700)]
Bug 1031: Experimental TPDA
Remove whitespace
Todd Lyons [Mon, 30 Sep 2013 17:08:53 +0000 (10:08 -0700)]
Remove whitespace
bes-internal [Mon, 30 Sep 2013 15:06:06 +0000 (18:06 +0300)]
fix dmarc_status condition documentation
Phil Pennock [Mon, 30 Sep 2013 04:57:07 +0000 (00:57 -0400)]
Fix dovecot with empty 334 challenge.
Thomas Morper reported, with 4.82RC1, that he saw "334 NULL" as the
challenge when using AUTH PLAIN to Dovecot when the client does not send
an initial response. I could replicate.
This was caused by commit
3f1df0e3 on 2012-11-19 (PP/13 of 4.82); I was
too cautious in the robustness fixes; the clue came in this line of
debug output:
76430 dovecot: warning: ignoring trailing tab
This change removes that check, and documents in a comment that this
input is acceptable protocol-wise, and why.
With this fix:
AUTH PLAIN
334
AGZyZWRlcmljAGh1bXB0eS1kdW1wdHk=
235 Authentication succeeded
bes-internal [Sat, 28 Sep 2013 18:26:02 +0000 (21:26 +0300)]
small typo
Jeremy Harris [Sat, 28 Sep 2013 12:49:33 +0000 (13:49 +0100)]
Correct spelling of dmarc_disable_verify
Jeremy Harris [Sat, 28 Sep 2013 12:46:04 +0000 (13:46 +0100)]
Add cscope.files build target
Jeremy Harris [Sat, 28 Sep 2013 12:31:43 +0000 (13:31 +0100)]
Fix non-IPv6 compile on v6-less system
bes-internal [Sat, 28 Sep 2013 11:01:32 +0000 (14:01 +0300)]
ratelimit.pl: format usage section, print debug to STDERR, add examples
Phil Pennock [Sat, 28 Sep 2013 00:47:52 +0000 (20:47 -0400)]
Document hexquote & udpsend in NewStuff/ChangeLog
Tony documented his new features in
7a5698fa; this change simply adds
them to the list of things that have changed.
Phil Pennock [Thu, 26 Sep 2013 18:18:09 +0000 (11:18 -0700)]
Clarify CL: the CVE security fix already in 4.80.1
On re-reading the text for 4.82, it read as though there were a new
security fix which might require an upgrade. Clarified that this fix
has already been released (in 4.80.1).