exim.git
21 months agoRevert "Fix local-scan ABI. Bug 2458"
Jeremy Harris [Sat, 26 Oct 2019 18:11:41 +0000 (19:11 +0100)]
Revert "Fix local-scan ABI.  Bug 2458"
Too many older platforms have compilers do not support __VA_OPT__().

This reverts commit 276f020fb7d0ce2740e90a749b3a49d0d5f74d3d.

21 months agoFix local-scan ABI. Bug 2458
Andreas Metzler [Sat, 26 Oct 2019 17:06:09 +0000 (18:06 +0100)]
Fix local-scan ABI.  Bug 2458

21 months agoOutput newline after list of message IDs output by "-Mxxx" operations
Jeremy Harris [Fri, 25 Oct 2019 10:18:25 +0000 (11:18 +0100)]
Output newline after list of message IDs output by "-Mxxx" operations

21 months agoFix non-SUPPORT_MOVE_FROZEN_MESSAGES builds
Jeremy Harris [Fri, 25 Oct 2019 00:37:43 +0000 (01:37 +0100)]
Fix non-SUPPORT_MOVE_FROZEN_MESSAGES builds

21 months agoSupport moving messages across named queues. Bug 2456
Jeremy Harris [Thu, 24 Oct 2019 22:34:19 +0000 (23:34 +0100)]
Support moving messages across named queues.  Bug 2456

21 months agoTestsuite: handle slow test-hosts more intelligently
Jeremy Harris [Thu, 24 Oct 2019 11:58:19 +0000 (12:58 +0100)]
Testsuite: handle slow test-hosts more intelligently

21 months agoBe careful about DNS response AD/AA bits for error returns
Jeremy Harris [Mon, 21 Oct 2019 16:17:37 +0000 (17:17 +0100)]
Be careful about DNS response AD/AA bits for error returns

21 months agoTestsuite: munge for WITH_LOCAL_SCAN
Jeremy Harris [Tue, 22 Oct 2019 12:24:47 +0000 (13:24 +0100)]
Testsuite: munge for WITH_LOCAL_SCAN

21 months agoTestsuite: perl syntax (l-brace in RE)
Jeremy Harris [Mon, 21 Oct 2019 16:39:37 +0000 (17:39 +0100)]
Testsuite: perl syntax (l-brace in RE)

21 months agoFix logging of DANE, client-side under LibreSSL
Jeremy Harris [Mon, 21 Oct 2019 16:18:28 +0000 (17:18 +0100)]
Fix logging of DANE, client-side under LibreSSL

21 months agoTestsuite: munge for non-TLS builds
Jeremy Harris [Mon, 21 Oct 2019 10:55:28 +0000 (11:55 +0100)]
Testsuite: munge for non-TLS builds

21 months agoTestsuite: escape parens in REs
Jeremy Harris [Sun, 20 Oct 2019 22:06:59 +0000 (23:06 +0100)]
Testsuite: escape parens in REs

21 months agoDocs: Remove dnssec_request_domains = *
Heiko Schlittermann (HS12-RIPE) [Mon, 21 Oct 2019 12:41:36 +0000 (14:41 +0200)]
Docs: Remove dnssec_request_domains = *

The configure.default doesn't contain dnsseq_request_domains = *
anymore (as it's the default now), so the explained example config
does not need it anymore.

21 months agoTetsuite: feature-check multileaf OCSP testcases
Jeremy Harris [Sun, 20 Oct 2019 16:32:42 +0000 (17:32 +0100)]
Tetsuite: feature-check multileaf OCSP testcases

21 months agoTLS: Feature macros
Jeremy Harris [Sun, 20 Oct 2019 15:36:49 +0000 (16:36 +0100)]
TLS: Feature macros

21 months agoDocs: remove SUPPORT_TLS mentions
Jeremy Harris [Sun, 20 Oct 2019 15:19:50 +0000 (16:19 +0100)]
Docs: remove SUPPORT_TLS mentions

01603eec64 moved to DISABLE_TLS

21 months agoOpenSSL: clarify log line for nonreceived required stapling
Jeremy Harris [Sun, 20 Oct 2019 14:30:47 +0000 (15:30 +0100)]
OpenSSL: clarify log line for nonreceived required stapling

21 months agoOpenSSL: emit actual version on "wrong version number" error for SSL_accept
Jeremy Harris [Fri, 4 Oct 2019 09:21:24 +0000 (10:21 +0100)]
OpenSSL: emit actual version on "wrong version number" error for SSL_accept

21 months agoTestsuite: munge for WITH_LOCAL_SCAN
Jeremy Harris [Sat, 19 Oct 2019 22:02:00 +0000 (23:02 +0100)]
Testsuite: munge for WITH_LOCAL_SCAN

21 months agoCHUNKING: fix all-RCPTs-rejected, non-pipelined. Bug 2454
Jeremy Harris [Sat, 19 Oct 2019 21:25:27 +0000 (22:25 +0100)]
CHUNKING: fix all-RCPTs-rejected, non-pipelined.  Bug 2454

21 months agoFix HAVE_LOCAL_SCAN build. Bug 2457
Jeremy Harris [Sat, 19 Oct 2019 18:55:39 +0000 (19:55 +0100)]
Fix HAVE_LOCAL_SCAN build.  Bug 2457

Broken-by: f3ebb786e4
21 months agoTestsuite: when running under the testharness, wait longer for transport process...
Jeremy Harris [Sat, 19 Oct 2019 10:44:30 +0000 (11:44 +0100)]
Testsuite: when running under the testharness, wait longer for transport process to finish first

21 months agotidying
Jeremy Harris [Mon, 7 Oct 2019 12:32:44 +0000 (13:32 +0100)]
tidying

21 months agoRelease process: put the sizes, checksums in distinct files
Heiko Schlittermann (HS12-RIPE) [Fri, 18 Oct 2019 21:23:37 +0000 (23:23 +0200)]
Release process: put the sizes, checksums in distinct files

00-sizes.txt
00-sha256sums.txt
00-sha512sums.txt

This is for simpler verification and better visibility of the files.

21 months agoTestsuite: output changes resulting
Jeremy Harris [Fri, 18 Oct 2019 16:26:29 +0000 (17:26 +0100)]
Testsuite: output changes resulting

Broken-by: ab0e957b09
21 months agoMake makefile: Handle DISABLE_TLS (option changed from SUPPORT_TLS) exim-4.93-RC0
Heiko Schlittermann (HS12-RIPE) [Fri, 18 Oct 2019 13:15:47 +0000 (15:15 +0200)]
Make makefile: Handle DISABLE_TLS (option changed from SUPPORT_TLS)

21 months agoDisable EXIM_MONITOR
Heiko Schlittermann (HS12-RIPE) [Fri, 18 Oct 2019 13:15:41 +0000 (15:15 +0200)]
Disable EXIM_MONITOR

21 months agoDocs: Change default for hosts_try_dane to *
Heiko Schlittermann (HS12-RIPE) [Fri, 27 Sep 2019 01:49:47 +0000 (03:49 +0200)]
Docs: Change default for hosts_try_dane to *

21 months agoChange the default of dnssec_request_domains to '*'
Heiko Schlittermann (HS12-RIPE) [Fri, 27 Sep 2019 01:42:46 +0000 (03:42 +0200)]
Change the default of dnssec_request_domains to '*'

21 months agoOpenSSL: full-chain OCSP stapling. Bug 1466
Jeremy Harris [Thu, 17 Oct 2019 20:45:32 +0000 (21:45 +0100)]
OpenSSL: full-chain OCSP stapling.  Bug 1466

21 months agoARC: harden versus badly-formatted AMS line
Jeremy Harris [Thu, 17 Oct 2019 13:09:18 +0000 (14:09 +0100)]
ARC: harden versus badly-formatted AMS line

21 months agoexipick: use Pod::Usage
Heiko Schlittermann (HS12-RIPE) [Thu, 17 Oct 2019 05:22:54 +0000 (07:22 +0200)]
exipick: use Pod::Usage

21 months agoexipick: Add formatting tags for POD
Heiko Schlittermann (HS12-RIPE) [Wed, 16 Oct 2019 22:13:00 +0000 (00:13 +0200)]
exipick: Add formatting tags for POD

21 months agoexipick: support for named queues
Heiko Schlittermann (HS12-RIPE) [Wed, 16 Oct 2019 21:54:21 +0000 (23:54 +0200)]
exipick: support for named queues

21 months agoTestsuite: output changes resulting
Jeremy Harris [Tue, 15 Oct 2019 22:08:31 +0000 (23:08 +0100)]
Testsuite: output changes resulting

Broken-by: 2e5d9e711e
21 months agoOpenSSL: SSLKEYLOGFILE support
Jeremy Harris [Tue, 15 Oct 2019 20:28:20 +0000 (21:28 +0100)]
OpenSSL: SSLKEYLOGFILE support

21 months agoenvironment grooming
Jeremy Harris [Mon, 14 Oct 2019 09:45:32 +0000 (10:45 +0100)]
environment grooming

21 months agomissing type on Solaris dummy
Jeremy Harris [Sun, 13 Oct 2019 09:30:11 +0000 (10:30 +0100)]
missing type on Solaris dummy

21 months agoDummies for Solaris build
Jeremy Harris [Sat, 12 Oct 2019 18:03:30 +0000 (19:03 +0100)]
Dummies for Solaris build

21 months agoDummies for Solaris build
Jeremy Harris [Sat, 12 Oct 2019 13:22:25 +0000 (14:22 +0100)]
Dummies for Solaris build

21 months agoFix errorcheck in smtp transport
Jeremy Harris [Sat, 12 Oct 2019 13:12:56 +0000 (14:12 +0100)]
Fix errorcheck in smtp transport

21 months agoSRS: add basic documentation
Jeremy Harris [Sat, 12 Oct 2019 13:01:18 +0000 (14:01 +0100)]
SRS: add basic documentation

21 months agoPerformance timing measurements
Jeremy Harris [Sat, 12 Oct 2019 11:39:49 +0000 (12:39 +0100)]
Performance timing measurements

21 months agoTestsuite: handle OpenBSD version of ifconfig
Jeremy Harris [Sun, 6 Oct 2019 22:28:25 +0000 (23:28 +0100)]
Testsuite: handle OpenBSD version of ifconfig

21 months agoTestsuite: interface number is optional
Jeremy Harris [Sun, 6 Oct 2019 19:48:28 +0000 (20:48 +0100)]
Testsuite: interface number is optional

21 months agoOpenSSL: explicit add for sha256 digest method no longer needed for recent library...
Jeremy Harris [Sun, 6 Oct 2019 16:25:07 +0000 (17:25 +0100)]
OpenSSL: explicit add for sha256 digest method no longer needed for recent library versions

21 months agoGnuTLS: pkcs11-init no longer needed for recent library versions
Jeremy Harris [Sun, 6 Oct 2019 15:35:26 +0000 (16:35 +0100)]
GnuTLS: pkcs11-init no longer needed for recent library versions

21 months agoGnuTLS: global-init call not needed for recent library versions
Jeremy Harris [Sun, 6 Oct 2019 15:23:23 +0000 (16:23 +0100)]
GnuTLS: global-init call not needed for recent library versions

21 months agoDocs: fix syntax
Jeremy Harris [Sun, 6 Oct 2019 14:55:57 +0000 (15:55 +0100)]
Docs: fix syntax

21 months agoGnuTLS: lose DH-param setup, for recent library versions where no longer needed
Jeremy Harris [Sun, 6 Oct 2019 14:36:25 +0000 (15:36 +0100)]
GnuTLS: lose DH-param setup, for recent library versions where no longer needed

21 months agoTestsuite: output changes resulting
Jeremy Harris [Fri, 4 Oct 2019 11:46:04 +0000 (12:46 +0100)]
Testsuite: output changes resulting

Broken-by: 8e78571a8b
21 months agorelease process: bzip is actually bzip2
Heiko Schlittermann (HS12-RIPE) [Sat, 5 Oct 2019 14:54:09 +0000 (16:54 +0200)]
release process: bzip is actually bzip2

21 months agorelease process: Use --use-compress-program for tar.
Heiko Schlittermann (HS12-RIPE) [Sat, 5 Oct 2019 14:43:36 +0000 (16:43 +0200)]
release process: Use --use-compress-program for tar.

Gzip declares the use of environment variables as deprecated.

21 months agoEvents: Add smtp:ehlo event
Jeremy Harris [Thu, 3 Oct 2019 19:57:40 +0000 (20:57 +0100)]
Events: Add smtp:ehlo event

21 months agoPRDR: add implementation notes in sample configuration
Jeremy Harris [Thu, 3 Oct 2019 18:25:18 +0000 (19:25 +0100)]
PRDR: add implementation notes in sample configuration

21 months agoTestsuite: use a %ifname appended to fe80:: ipv6 address when using such
Jeremy Harris [Thu, 3 Oct 2019 14:44:24 +0000 (15:44 +0100)]
Testsuite: use a %ifname appended to fe80:: ipv6 address when using such

21 months agoDSN: add References: header. Bug 2452
Jeremy Harris [Wed, 2 Oct 2019 13:49:55 +0000 (14:49 +0100)]
DSN: add References: header.  Bug 2452

21 months agoTestsuite: take care with the net-10 zonefile when operating in that area
Jeremy Harris [Tue, 1 Oct 2019 20:36:33 +0000 (21:36 +0100)]
Testsuite: take care with the net-10 zonefile when operating in that area

21 months agoOpenSSL: clearer log message for TCP conn close at SSL_accept
Jeremy Harris [Tue, 1 Oct 2019 13:01:00 +0000 (14:01 +0100)]
OpenSSL: clearer log message for TCP conn close at SSL_accept

21 months agotidying
Jeremy Harris [Sun, 29 Sep 2019 14:55:16 +0000 (15:55 +0100)]
tidying

21 months agoTestsuite: dynamic libraries are usable on Solaris
Martin Preen [Mon, 30 Sep 2019 15:49:44 +0000 (16:49 +0100)]
Testsuite: dynamic libraries are usable on Solaris

22 months agoBuild: linux only needs libnsl for LOOKUP_NIS
Jeremy Harris [Sun, 29 Sep 2019 17:16:12 +0000 (18:16 +0100)]
Build: linux only needs libnsl for LOOKUP_NIS

22 months agoOpenSSL: fix build on earlier library versions
Jeremy Harris [Sun, 29 Sep 2019 14:20:31 +0000 (15:20 +0100)]
OpenSSL: fix build on earlier library versions

22 months agoOpenSSL: support OCSP stapling on multi-cert servers
Jeremy Harris [Sun, 29 Sep 2019 13:16:36 +0000 (14:16 +0100)]
OpenSSL: support OCSP stapling on multi-cert servers

22 months agotidying
Jeremy Harris [Thu, 19 Sep 2019 17:41:42 +0000 (18:41 +0100)]
tidying

22 months agoDKIM: fix errorcheck in signing, lilbgcrypt version. Bug 2450
Jeremy Harris [Sun, 29 Sep 2019 11:49:34 +0000 (12:49 +0100)]
DKIM: fix errorcheck in signing, lilbgcrypt version.  Bug 2450

22 months agoTestsuite: src/client.c: handle long lines read back from the server
Heiko Schlittermann (HS12-RIPE) [Sat, 28 Sep 2019 16:50:26 +0000 (18:50 +0200)]
Testsuite: src/client.c: handle long lines read back from the server

Increase the buffer for reading data back from the server, and read
at least until a '\n' appears in the input.

22 months agoDocs: add dmarc_tld_file link
Heiko Schlittermann (HS12-RIPE) [Sat, 21 Sep 2019 15:31:03 +0000 (17:31 +0200)]
Docs: add dmarc_tld_file link

22 months agoTestsuite: regression-test for bug. Bug 2449
Jeremy Harris [Fri, 27 Sep 2019 11:21:49 +0000 (12:21 +0100)]
Testsuite: regression-test for bug.  Bug 2449

22 months agoTestsuite: disallow :: as a usable ipv6 address
Jeremy Harris [Thu, 26 Sep 2019 21:36:38 +0000 (22:36 +0100)]
Testsuite: disallow :: as a usable ipv6 address

22 months agoTestsuite: output changes resulting
Jeremy Harris [Thu, 26 Sep 2019 19:29:36 +0000 (20:29 +0100)]
Testsuite: output changes resulting

Broken-by: e326959e5e
22 months agoGnuTLS: full-chain OCSP stapling. Bug 1466
Jeremy Harris [Thu, 26 Sep 2019 18:28:53 +0000 (19:28 +0100)]
GnuTLS: full-chain OCSP stapling.  Bug 1466

22 months agoDNS: do not skip initial two components of SRV & TLSA lookups before checking name...
Simon Arlott [Sun, 22 Sep 2019 17:45:18 +0000 (18:45 +0100)]
DNS: do not skip initial two components of SRV & TLSA lookups before checking name syntax.
The introduction of DKIM added _ to the permitted chars, so those components will pass.

22 months agoDMARC: promote the support from Experimental to mainline
Jeremy Harris [Sun, 22 Sep 2019 14:43:37 +0000 (15:43 +0100)]
DMARC: promote the support from Experimental to mainline

22 months agoDocs: expansion items should use &%name%&
Jeremy Harris [Sun, 22 Sep 2019 13:57:16 +0000 (14:57 +0100)]
Docs: expansion items should use &%name%&

22 months agoTestsuite: handle non-exim-writable testcase spoolfiles
Jeremy Harris [Sun, 22 Sep 2019 11:18:54 +0000 (12:18 +0100)]
Testsuite: handle non-exim-writable testcase spoolfiles

22 months agoFix taint-checking on Solaris
Jeremy Harris [Sun, 22 Sep 2019 09:56:31 +0000 (10:56 +0100)]
Fix taint-checking on Solaris

22 months agoTestsuite: strip trailing / from "pwd" output
Jeremy Harris [Sun, 22 Sep 2019 09:46:39 +0000 (10:46 +0100)]
Testsuite: strip trailing / from "pwd" output

22 months agoGnuTLS: fix build on older libraries
Jeremy Harris [Sat, 21 Sep 2019 22:27:03 +0000 (23:27 +0100)]
GnuTLS: fix build on older libraries

22 months agoTestsuite: comment future work
Jeremy Harris [Sat, 21 Sep 2019 22:16:16 +0000 (23:16 +0100)]
Testsuite: comment future work

22 months agoDocs: usability of malware ACL condition
Jeremy Harris [Sat, 21 Sep 2019 21:22:50 +0000 (22:22 +0100)]
Docs: usability of malware ACL condition

22 months agoGnuTLS: fix build on intermediate-age libraries
Jeremy Harris [Sat, 21 Sep 2019 16:52:56 +0000 (17:52 +0100)]
GnuTLS: fix build on intermediate-age libraries

Broken-by: e54893330b
22 months agoGnuTLS: fix non-OCSP bulid
Jeremy Harris [Fri, 20 Sep 2019 14:53:01 +0000 (15:53 +0100)]
GnuTLS: fix non-OCSP bulid

Broken-by: 7613df821d
22 months agoGnuTLS: Move to more-modern stapling API
Jeremy Harris [Tue, 27 Aug 2019 16:24:23 +0000 (17:24 +0100)]
GnuTLS: Move to more-modern stapling API

22 months agoTestsuite: avoid picking 0.0.0.0 as the HOSTIPV4; permit 10.0/8 apart from 10.250...
Jeremy Harris [Fri, 20 Sep 2019 09:23:46 +0000 (10:23 +0100)]
Testsuite: avoid picking 0.0.0.0 as the HOSTIPV4; permit 10.0/8 apart from 10.250.0/16

Solaris leaves 0.0.0.0 lying around (for not-UP interfaces)
The suite only needs testspace under 10.250.0/16 so we can permit the ret,
making testing on many NATted 10.0/8 subnets possible.

22 months agoFix taint-checking on Solaris
Jeremy Harris [Thu, 19 Sep 2019 21:14:03 +0000 (22:14 +0100)]
Fix taint-checking on Solaris

22 months agoBuild: Solaris workarounds
Martin Preen [Thu, 19 Sep 2019 17:45:04 +0000 (18:45 +0100)]
Build: Solaris workarounds

22 months agoDocs: more detail on log_file_path, in the main-config chapter
Jeremy Harris [Thu, 19 Sep 2019 09:10:57 +0000 (10:10 +0100)]
Docs: more detail on log_file_path, in the main-config chapter

22 months agoDocs: Adjust on TLSA, dnssec_request_domains
Heiko Schlittermann (HS12-RIPE) [Tue, 17 Sep 2019 20:35:00 +0000 (22:35 +0200)]
Docs: Adjust on TLSA, dnssec_request_domains

22 months agoConsistent logging, always use DKIM instead of mixed DKIM/PDKIM
Heiko Schlittermann (HS12-RIPE) [Sun, 15 Sep 2019 19:43:06 +0000 (21:43 +0200)]
Consistent logging, always use DKIM instead of mixed DKIM/PDKIM

22 months agoTestsuite: do not use trailing spaces in runtest
Heiko Schlittermann (HS12-RIPE) [Mon, 16 Sep 2019 10:49:31 +0000 (12:49 +0200)]
Testsuite: do not use trailing spaces in runtest

Some editors may swallow it. Encode trailing space as \x20.

22 months agoTestsuite: bump timeouts, for slower platforms
Jeremy Harris [Sun, 15 Sep 2019 21:06:59 +0000 (22:06 +0100)]
Testsuite: bump timeouts, for slower platforms

22 months agoDoc: Improve pointer to DKIM signing options
Heiko Schlittermann (HS12-RIPE) [Sun, 15 Sep 2019 10:31:24 +0000 (12:31 +0200)]
Doc: Improve pointer to DKIM signing options

22 months agoDoc: Typos
Heiko Schlittermann (HS12-RIPE) [Fri, 13 Sep 2019 14:32:25 +0000 (16:32 +0200)]
Doc: Typos

22 months agoRefuse to open a msglog file with .. in the path.
Jeremy Harris [Tue, 10 Sep 2019 11:29:12 +0000 (12:29 +0100)]
Refuse to open a msglog file with .. in the path.

Recent exploits have use this as a step for overwriting system files,
and msglog file should always be under the spooldir, so add this as
a defence-in-depth tactic

22 months agotidying
Jeremy Harris [Tue, 10 Sep 2019 11:28:44 +0000 (12:28 +0100)]
tidying

22 months agoMove the regression test for CVE-2019-15846 to 1100-Basic-TLS/1100
Heiko Schlittermann (HS12-RIPE) [Tue, 10 Sep 2019 10:49:32 +0000 (12:49 +0200)]
Move the regression test for CVE-2019-15846 to 1100-Basic-TLS/1100

22 months agoTestsuite: munge for timing variance
Jeremy Harris [Sun, 8 Sep 2019 17:16:02 +0000 (18:16 +0100)]
Testsuite: munge for timing variance

22 months agoFix unaligned access (more cleanly) in DNS regative-caching
Jeremy Harris [Sun, 8 Sep 2019 13:41:48 +0000 (14:41 +0100)]
Fix unaligned access (more cleanly) in DNS regative-caching

22 months agoFix unaligned access in DNS negative-caching
Jeremy Harris [Sun, 8 Sep 2019 11:11:16 +0000 (12:11 +0100)]
Fix unaligned access in DNS negative-caching