users/jgh/exim.git
9 years agoTestsuite: case for malware= avast
Jeremy Harris [Sun, 21 Dec 2014 21:35:04 +0000 (21:35 +0000)]
Testsuite: case for malware= avast

9 years agoTestsuite: cases for malware= interfaces to f-protd, aveserver, fsecure, soophie...
Jeremy Harris [Sun, 21 Dec 2014 21:32:13 +0000 (21:32 +0000)]
Testsuite: cases for malware= interfaces to f-protd, aveserver, fsecure, soophie & clamav

There are running against scripts not the rea thing
so only useful for spotting gross breakage.

9 years agoApply timeout to Fsecure malware response. Bug 1549
Jeremy Harris [Fri, 21 Nov 2014 18:04:07 +0000 (18:04 +0000)]
Apply timeout to Fsecure malware response.  Bug 1549

9 years agoTweak Avast scanner interface
Jeremy Harris [Sat, 20 Dec 2014 18:24:25 +0000 (18:24 +0000)]
Tweak Avast scanner interface

9 years agoPropagate more error codes internally
Jeremy Harris [Sat, 20 Dec 2014 18:05:33 +0000 (18:05 +0000)]
Propagate more error codes internally

9 years agoEXPERIMENTAL_DSN: use the SMTP return messsage for Diagnostic-Code lines. Bug 1559
Wolfgang Breyha [Fri, 19 Dec 2014 15:51:45 +0000 (15:51 +0000)]
EXPERIMENTAL_DSN: use the SMTP return messsage for Diagnostic-Code lines.  Bug 1559

Minor tweaking by JH.

9 years agoEXPERIMENTAL_DSN: use the SMTP return messsage for Diagnostic-Code lines. Bug 1559
Wolfgang Breyha [Fri, 19 Dec 2014 15:51:45 +0000 (15:51 +0000)]
EXPERIMENTAL_DSN: use the SMTP return messsage for Diagnostic-Code lines.  Bug 1559

Minor tweaking by JH.

9 years agoTestsuite: random number used for DSN MIME boundary can have few digits
Jeremy Harris [Tue, 16 Dec 2014 15:20:24 +0000 (15:20 +0000)]
Testsuite: random number used for DSN MIME boundary can have few digits

9 years agoDocs typo
Jeremy Harris [Tue, 16 Dec 2014 15:10:06 +0000 (15:10 +0000)]
Docs typo

9 years agoTestsuite: move testcase (requires plaintext authenticator)
Jeremy Harris [Tue, 16 Dec 2014 15:02:48 +0000 (15:02 +0000)]
Testsuite: move testcase (requires plaintext authenticator)

9 years agoTestsuite: move testcase (requires plaintext authenticator) exim-4_85_RC3
Jeremy Harris [Tue, 16 Dec 2014 15:02:48 +0000 (15:02 +0000)]
Testsuite: move testcase (requires plaintext authenticator)

9 years agoTestsuite: output changes resulting from 4df169c48
Jeremy Harris [Tue, 16 Dec 2014 14:56:55 +0000 (14:56 +0000)]
Testsuite: output changes resulting from 4df169c48

9 years agoMove DSN support to mainline
Wolfgang Breyha [Tue, 16 Dec 2014 12:05:32 +0000 (12:05 +0000)]
Move DSN support to mainline
Affects bug 893

9 years agoClose dangling file. Bug 1379
Jeremy Harris [Sun, 14 Dec 2014 22:41:31 +0000 (22:41 +0000)]
Close dangling file.  Bug 1379

9 years agoTestsuite: additional crypto cypher useable
Jeremy Harris [Sun, 14 Dec 2014 18:58:45 +0000 (18:58 +0000)]
Testsuite: additional crypto cypher useable

Seen on Fedora 21 / OpenSSL 1.0.1j-fips

9 years agoTestsuite: additional crypto cypher useable
Jeremy Harris [Sun, 14 Dec 2014 18:58:45 +0000 (18:58 +0000)]
Testsuite: additional crypto cypher useable

Seen on Fedora 21 / OpenSSL 1.0.1j-fips

9 years agoTestsuite: output changes resulting from 4df169c48
Jeremy Harris [Sun, 14 Dec 2014 18:38:15 +0000 (18:38 +0000)]
Testsuite: output changes resulting from 4df169c48

9 years agoRevert "Testsuite: Use explicit interface for send to localhost"
Jeremy Harris [Sun, 14 Dec 2014 17:31:44 +0000 (17:31 +0000)]
Revert "Testsuite: Use explicit interface for send to localhost"

This reverts commit 30079bc1d20c0473d012ef33654358cfadb0a2ff.
The buildfarm member running FreeBSD 10.0 was not fixed by that commit,
as was hoped.

9 years agoUpdated Avast scanner interface. Bug 1033
Heiko Schlittermann [Sun, 14 Dec 2014 16:55:58 +0000 (16:55 +0000)]
Updated Avast scanner interface.  Bug 1033

9 years agoAccount properly for quoted or 2047-encoded MIME parameters while walking headers...
Jeremy Harris [Sun, 14 Dec 2014 15:15:34 +0000 (15:15 +0000)]
Account properly for quoted or 2047-encoded MIME parameters while walking headers. Bug 1558

9 years agoTestsuite: Use explicit interface for send to localhost
Jeremy Harris [Sat, 13 Dec 2014 20:18:39 +0000 (20:18 +0000)]
Testsuite: Use explicit interface for send to localhost

FreeBSD is more lax in its choice of local address to bind; the
difference is just noise in testcase output.

9 years agoDocs clarification
Jeremy Harris [Tue, 9 Dec 2014 10:41:00 +0000 (10:41 +0000)]
Docs clarification

9 years agoEmphasize whitespace in hostnames in debug output
Jeremy Harris [Sat, 6 Dec 2014 18:04:35 +0000 (18:04 +0000)]
Emphasize whitespace in hostnames in debug output

9 years agoCompiler quietening
Jeremy Harris [Sat, 6 Dec 2014 15:18:56 +0000 (15:18 +0000)]
Compiler quietening

9 years agoTestsuite: Explicit disabling of identd no longer needed
Jeremy Harris [Fri, 5 Dec 2014 18:32:21 +0000 (18:32 +0000)]
Testsuite: Explicit disabling of identd no longer needed

9 years agoDisable identd (rfc1413) lookups by default
Jeremy Harris [Fri, 5 Dec 2014 15:50:51 +0000 (15:50 +0000)]
Disable identd (rfc1413) lookups by default

9 years agoAdd support for avast malware scanner. Bug 1033
Jeremy Harris [Fri, 5 Dec 2014 15:24:57 +0000 (15:24 +0000)]
Add support for avast malware scanner.  Bug 1033

Originally by Dominic Benson <dominic@lenny.cus.org>
Rebased for current malware.c by JGH.
Testing by Heiko Schlittermann <hs@schlittermann.de>

9 years agoDocs typo
Jeremy Harris [Fri, 5 Dec 2014 15:17:10 +0000 (15:17 +0000)]
Docs typo

9 years agoFail a DANE-mode verify on totally missing certificate
Jeremy Harris [Thu, 4 Dec 2014 19:17:47 +0000 (19:17 +0000)]
Fail a DANE-mode verify on totally missing certificate

9 years agoDocs: clarify interaction of DANE and CA-based certificate verification options
Jeremy Harris [Thu, 4 Dec 2014 18:39:28 +0000 (18:39 +0000)]
Docs: clarify interaction of DANE and CA-based certificate verification options

9 years agoTestsuite: add more DANE testcases
Jeremy Harris [Wed, 3 Dec 2014 21:09:54 +0000 (21:09 +0000)]
Testsuite: add more DANE testcases

9 years agoSet previous version in doc XML exim-4_85_RC2
Todd Lyons [Mon, 1 Dec 2014 15:24:17 +0000 (07:24 -0800)]
Set previous version in doc XML

9 years agoDocs: update drweb malware scanner interface description
Jeremy Harris [Sun, 30 Nov 2014 17:34:00 +0000 (17:34 +0000)]
Docs: update drweb malware scanner interface description

9 years agoCompiler quietening. Bug 1555
Jeremy Harris [Sat, 29 Nov 2014 22:20:05 +0000 (22:20 +0000)]
Compiler quietening.  Bug 1555

9 years agoDocument interface to f-protd av_scanner type. Bug 923
Jeremy Harris [Sat, 29 Nov 2014 21:50:23 +0000 (21:50 +0000)]
Document interface to f-protd av_scanner type.  Bug 923

9 years agoNew variable $exim_version. Bug 306
Jeremy Harris [Sat, 29 Nov 2014 19:52:09 +0000 (19:52 +0000)]
New variable $exim_version.  Bug 306

9 years agoNew variable $config_dir, $config_file. Bug 1553
Heiko Schlittermann [Sat, 29 Nov 2014 19:39:58 +0000 (19:39 +0000)]
New variable $config_dir, $config_file.  Bug 1553

9 years agoTestsuite: treat ECONNRESET the same as ECONNREFUSED on the new connection
Jeremy Harris [Sat, 29 Nov 2014 19:05:28 +0000 (19:05 +0000)]
Testsuite: treat ECONNRESET the same as ECONNREFUSED on the new connection

9 years agoWhen following a CNAME chain, if any lookup is insecure the whole must be too
Jeremy Harris [Thu, 20 Nov 2014 20:17:32 +0000 (20:17 +0000)]
When following a CNAME chain, if any lookup is insecure the whole must be too

9 years agoTidying
Jeremy Harris [Sat, 29 Nov 2014 16:53:23 +0000 (16:53 +0000)]
Tidying

9 years agoTestsuite: fix feature name
Jeremy Harris [Sat, 29 Nov 2014 17:30:27 +0000 (17:30 +0000)]
Testsuite: fix feature name

9 years agoCompiler quietening
Jeremy Harris [Sat, 29 Nov 2014 16:28:15 +0000 (16:28 +0000)]
Compiler quietening

9 years agoGit: ignore a few more nonsource files
Jeremy Harris [Fri, 28 Nov 2014 19:26:10 +0000 (19:26 +0000)]
Git: ignore a few more nonsource files

9 years agoTestsuite: avoid ipv6 when testing retry data
Jeremy Harris [Fri, 28 Nov 2014 19:10:05 +0000 (19:10 +0000)]
Testsuite: avoid ipv6 when testing retry data
Some test hosts cannot do ipv6.  We assume that ipv4 is available.

9 years agoTestsuite: avoid ipv6 when testing retry data
Jeremy Harris [Fri, 28 Nov 2014 19:10:05 +0000 (19:10 +0000)]
Testsuite: avoid ipv6 when testing retry data
Some test hosts cannot do ipv6.  We assume that ipv4 is available.

9 years agoFix buffer overrun in spam= acl condition. Bug 1552
Jeremy Harris [Thu, 27 Nov 2014 16:26:44 +0000 (16:26 +0000)]
Fix buffer overrun in spam= acl condition.  Bug 1552

9 years agoTidying
Jeremy Harris [Thu, 27 Nov 2014 16:28:03 +0000 (16:28 +0000)]
Tidying

9 years agoReformat to project standard
Jeremy Harris [Thu, 27 Nov 2014 15:17:24 +0000 (15:17 +0000)]
Reformat to project standard

9 years agoFix buffer overrun in spam= acl condition. Bug 1552
Jeremy Harris [Thu, 27 Nov 2014 16:26:44 +0000 (16:26 +0000)]
Fix buffer overrun in spam= acl condition.  Bug 1552

9 years agoTestsuite: sort output of retry DB dumps
Jeremy Harris [Wed, 26 Nov 2014 17:40:00 +0000 (17:40 +0000)]
Testsuite: sort output of retry DB dumps

Different systems will have dump output in different order
so to tidy up the Solaris runs, sort pairs of lines by the
leading "word".

10 years agoTestsuite: "echo -n" portability - use printf(1) if possible
Jeremy Harris [Tue, 25 Nov 2014 22:12:42 +0000 (22:12 +0000)]
Testsuite: "echo -n" portability - use printf(1) if possible

10 years agoError the build if DANE included but DNSSEC not available
Jeremy Harris [Tue, 25 Nov 2014 17:11:50 +0000 (17:11 +0000)]
Error the build if DANE included but DNSSEC not available

10 years agoDocs typo in index entry. Fixes: #1551
Nigel Metheringham [Tue, 25 Nov 2014 08:46:52 +0000 (08:46 +0000)]
Docs typo in index entry. Fixes: #1551

10 years agoLog certificate verification status by default
Jeremy Harris [Sun, 23 Nov 2014 22:38:14 +0000 (22:38 +0000)]
Log certificate verification status by default

10 years agoMake smtp transport try server cert verify by default
Jeremy Harris [Sun, 23 Nov 2014 17:01:14 +0000 (17:01 +0000)]
Make smtp transport try server cert verify by default
This is an exim client checking a server certificate.

10 years agoMake "system" location for certificate CA bundle the default
Jeremy Harris [Sun, 23 Nov 2014 16:58:06 +0000 (16:58 +0000)]
Make "system" location for certificate CA bundle the default

10 years agoSupport use of system default CA bundle
Jeremy Harris [Sun, 23 Nov 2014 16:10:30 +0000 (16:10 +0000)]
Support use of system default CA bundle

10 years agoMove certificate name checking to mainline, default enabled
Jeremy Harris [Sat, 22 Nov 2014 19:16:19 +0000 (19:16 +0000)]
Move certificate name checking to mainline, default enabled
This is an exim client checking a server certificate.

10 years agoDocument OpenSSL behaviour on system default CA bundle
Jeremy Harris [Sun, 23 Nov 2014 16:16:11 +0000 (16:16 +0000)]
Document OpenSSL behaviour on system default CA bundle

10 years agoDocs: fix missing quotes
Jeremy Harris [Sat, 22 Nov 2014 19:19:09 +0000 (19:19 +0000)]
Docs: fix missing quotes

10 years agoDocs: crossref $sending_ip_address. Bug 1319
Jeremy Harris [Fri, 21 Nov 2014 16:52:38 +0000 (16:52 +0000)]
Docs: crossref $sending_ip_address.  Bug 1319

10 years agoAs client, request PRDR by default if the server offers it
Jeremy Harris [Fri, 21 Nov 2014 15:15:15 +0000 (15:15 +0000)]
As client, request PRDR by default if the server offers it

10 years agoTestsuite: case 0601 logging ordering
Jeremy Harris [Fri, 21 Nov 2014 15:12:17 +0000 (15:12 +0000)]
Testsuite: case 0601 logging ordering

10 years agoTestsuite: cat 0601 logging ordering
Jeremy Harris [Fri, 21 Nov 2014 15:12:17 +0000 (15:12 +0000)]
Testsuite: cat 0601 logging ordering

10 years agoUpdate RFC conformance notes
Jeremy Harris [Fri, 21 Nov 2014 13:44:26 +0000 (13:44 +0000)]
Update RFC conformance notes

10 years agoUpdate RFC conformance notes
Jeremy Harris [Fri, 21 Nov 2014 13:52:22 +0000 (13:52 +0000)]
Update RFC conformance notes

10 years agoTestsuite: debugging Solaris run ordering issue. Log +received_recipients
Jeremy Harris [Fri, 21 Nov 2014 13:21:48 +0000 (13:21 +0000)]
Testsuite: debugging Solaris run ordering issue. Log +received_recipients

10 years agoWhen following a CNAME chain, if any lookup is insecure the whole must be too
Jeremy Harris [Thu, 20 Nov 2014 20:17:32 +0000 (20:17 +0000)]
When following a CNAME chain, if any lookup is insecure the whole must be too

10 years agoConst-ification
Jeremy Harris [Thu, 20 Nov 2014 20:16:58 +0000 (20:16 +0000)]
Const-ification

10 years agoRefactor common uses of list-checking
Jeremy Harris [Thu, 20 Nov 2014 16:32:35 +0000 (16:32 +0000)]
Refactor common uses of list-checking

10 years agoConst-ification
Jeremy Harris [Thu, 20 Nov 2014 16:14:47 +0000 (16:14 +0000)]
Const-ification

10 years agoFix copying of host_used in smtp transport
Jeremy Harris [Thu, 20 Nov 2014 16:46:48 +0000 (16:46 +0000)]
Fix copying of host_used in smtp transport

Following c562f "More regular logging use of H=<name> [<ip>]" there
were error cases where a host-item that was being expanded per-call
was used.  Move the copy earlier so these are covered.

10 years agoMake the multi_domain smtp transport option expanded
Jeremy Harris [Sun, 16 Nov 2014 17:47:50 +0000 (17:47 +0000)]
Make the multi_domain smtp transport option expanded

10 years agoMake the retry_include_ip_address smtp transport option expanded. Bug 1545
Jeremy Harris [Sun, 16 Nov 2014 14:14:35 +0000 (14:14 +0000)]
Make the retry_include_ip_address smtp transport option expanded. Bug 1545

10 years agoTestsuite: msglog files
Jeremy Harris [Tue, 18 Nov 2014 19:56:44 +0000 (19:56 +0000)]
Testsuite: msglog files

10 years agoCompiler quietening
Jeremy Harris [Tue, 18 Nov 2014 19:43:09 +0000 (19:43 +0000)]
Compiler quietening

10 years agoFix debug output of name of transport option list being matched
Jeremy Harris [Sun, 16 Nov 2014 20:57:10 +0000 (20:57 +0000)]
Fix debug output of name of transport option list being matched

10 years agoTest case for retry_include_ip_address
Jeremy Harris [Sat, 15 Nov 2014 21:11:23 +0000 (21:11 +0000)]
Test case for retry_include_ip_address

10 years agodocs typo
Jeremy Harris [Sun, 16 Nov 2014 13:54:01 +0000 (13:54 +0000)]
docs typo

10 years agoAdd items to NewStuff exim-4_85_RC1
Todd Lyons [Thu, 13 Nov 2014 21:15:13 +0000 (13:15 -0800)]
Add items to NewStuff

10 years agoChangeLog entries for minor feates and fixes since 4.84
Jeremy Harris [Thu, 13 Nov 2014 17:14:09 +0000 (17:14 +0000)]
ChangeLog entries for minor feates and fixes since 4.84

10 years agoMove DANE desgin doc, drop extra dane drafts
Todd Lyons [Wed, 12 Nov 2014 17:23:24 +0000 (09:23 -0800)]
Move DANE desgin doc, drop extra dane drafts

10 years agoTestsuite: munge for unrelated test affected by EXPERIMENTAL_CERTNAMES
Jeremy Harris [Wed, 12 Nov 2014 15:49:28 +0000 (15:49 +0000)]
Testsuite: munge for unrelated test affected by EXPERIMENTAL_CERTNAMES

10 years agoTestsuite: 0393 intermittently spits an extra stderr line. Unimportant
Jeremy Harris [Wed, 12 Nov 2014 14:47:01 +0000 (14:47 +0000)]
Testsuite: 0393 intermittently spits an extra stderr line. Unimportant
for the testcase, so ignore it.

10 years agoHandle UTC vs specified-timezone for certificate extractors. Bug 1541
Jeremy Harris [Mon, 10 Nov 2014 16:41:12 +0000 (16:41 +0000)]
Handle UTC vs specified-timezone for certificate extractors.  Bug 1541

10 years agoTestsuite: additional dns zone for certificate name testing
Jeremy Harris [Sat, 8 Nov 2014 23:45:00 +0000 (23:45 +0000)]
Testsuite: additional dns zone for certificate name testing

10 years agoFix smtp transport certificate-verification option matching to use correct host
Jeremy Harris [Sat, 8 Nov 2014 13:24:21 +0000 (13:24 +0000)]
Fix smtp transport certificate-verification option matching to use correct host
Fix certificate name verification done with tls_try_verify_hosts

Affected tls_verify_hosts, tls_try_verify_hosts, tls_verify_cert_hostnames.

10 years agoEXPERIMENTAL_CERTNAMES: Hostlist for cert name checks should match host
Jeremy Harris [Thu, 6 Nov 2014 21:22:18 +0000 (21:22 +0000)]
EXPERIMENTAL_CERTNAMES: Hostlist for cert name checks should match host
connected-to, not be list of acceptable names.  The name checked is the
host name.

10 years agoDo not permit multi-component wildcards on certificate names (OpenSSL, EXPERIMENTAL_C...
Jeremy Harris [Wed, 5 Nov 2014 18:24:00 +0000 (18:24 +0000)]
Do not permit multi-component wildcards on certificate names (OpenSSL, EXPERIMENTAL_CERTNAMES)

10 years agoDo not permit multi-component wildcards on certificate names (OpenSSL)
Jeremy Harris [Sun, 26 Oct 2014 21:06:46 +0000 (21:06 +0000)]
Do not permit multi-component wildcards on certificate names (OpenSSL)

10 years agoAdd doc examples for disabling SSLv3
Jeremy Harris [Wed, 5 Nov 2014 17:31:34 +0000 (17:31 +0000)]
Add doc examples for disabling SSLv3

10 years agoFix dnssec indication variable when used from verify-callout smtp:commect event
Jeremy Harris [Tue, 4 Nov 2014 15:13:00 +0000 (15:13 +0000)]
Fix dnssec indication variable when used from verify-callout smtp:commect event

10 years agoTweak docs on difference between "local" and "remote" source messages
Jeremy Harris [Mon, 3 Nov 2014 15:48:31 +0000 (15:48 +0000)]
Tweak docs on difference between "local" and "remote" source messages

10 years agoTestsuite: tidying
Jeremy Harris [Mon, 3 Nov 2014 15:48:15 +0000 (15:48 +0000)]
Testsuite: tidying

10 years agoTestsuite: tidying
Jeremy Harris [Sat, 1 Nov 2014 11:37:36 +0000 (11:37 +0000)]
Testsuite: tidying

10 years agoFix cert-try-verify when denied by event action
Jeremy Harris [Thu, 30 Oct 2014 20:48:02 +0000 (20:48 +0000)]
Fix cert-try-verify when denied by event action

10 years agoTest suite: disable OCSP for old openssl part 3
Jeremy Harris [Thu, 30 Oct 2014 20:32:14 +0000 (20:32 +0000)]
Test suite: disable OCSP for old openssl part 3

10 years agoFix dnssec indication variable when used from smtp:commect event
Jeremy Harris [Thu, 30 Oct 2014 18:52:45 +0000 (18:52 +0000)]
Fix dnssec indication variable when used from smtp:commect event

10 years agoFor connects and certificate-verifies denied by event actions, log
Jeremy Harris [Thu, 30 Oct 2014 12:12:31 +0000 (12:12 +0000)]
For connects and certificate-verifies denied by event actions, log
the string resulting from the event expansion

10 years agoTest suite: disable OCSP for old openssl part 2
Todd Lyons [Wed, 29 Oct 2014 14:50:41 +0000 (07:50 -0700)]
Test suite: disable OCSP for old openssl part 2

Make sure to only disable this if building for openssl, allow gnutls
  to build with OCSP for all versions that support it.