| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | set TLS SNI when relaying to host |   semarie | 2020-06-09 | 1 | -1/+22 |
| | | | | | | ok beck@ "looks reasonable" millert@ | ||||
| * | Run lmtp deliveries as SMTPD_USER instead of the recipient user. |   chrisz | 2020-06-01 | 2 | -4/+6 |
| | | | | | ok millert@ | ||||
| * | Correct getsockname(2)/getpeername(2) usage. |   millert | 2020-05-21 | 1 | -7/+11 |
| | | | | | | Fixes an uninitialized variable and a potential stack overflow with IPv6 connections. From Leah Neukirchen; OK eric@ deraadt@ | ||||
| * | Only allow forkmda() to be called from a local action dispatcher. | millert | 2020-05-06 | 1 | -1/+3 |
| | | | | | From gilles@, OK deraadt@ jung@ | ||||
| * | In virtual alias context, do not try to match catchall entries for |   eric | 2020-04-28 | 1 | -1/+5 |
| | | | | | | | | | | | usernames, but only for email addresses. fixes an issue where usernames always expand to the @ wildcard if defined in the virtual alias file. discussed with Gilles Chehade ok millert@ | ||||
| * | update filter documentation after protocol change | eric | 2020-04-25 | 1 | -20/+27 |
| | | | | | from Gilles Chehade | ||||
| * | point out that the "junk" filter decision adds the X-Spam header | eric | 2020-04-25 | 1 | -5/+13 |
| | | | | | from Ryan Kavanagh | ||||
| * | strip trailing CRs at smtp level rather than io level | eric | 2020-04-24 | 6 | -10/+25 |
| | | | | | ok millert@ | ||||
| * | ce examples of "Ar arg Ar arg" with "Ar arg arg" and stop the spread; |   jmc | 2020-04-23 | 2 | -13/+13 |
| | | |||||
| * | Check for the dispatcher name in the envelope validation function. | eric | 2020-04-22 | 2 | -11/+5 |
| | | | | | | | | Fixes a possible crash and caching issue when manually moving an envelope to the queue with smtpctl discover. ok millert@ | ||||
| * | switch email and result fields in mail-from/rcpt-to event reports | eric | 2020-04-17 | 1 | -4/+4 |
| | | | | | | | | | and bump protocol version. discussed with jung@, martijn@ and Gilles. ok jung@ | ||||
| * | When failing to validate a peer TLS certificate in the MTA due to the |   beck | 2020-04-10 | 1 | -2/+6 |
| | | | | | | | | | desired name of the MX not being present in the certificate, log that this is he reason for the failure and the name we couldn't find in the cert. ok millert@ martijn@ | ||||
| * | bump smtpd version | eric | 2020-04-08 | 1 | -2/+2 |
| | | |||||
| * | use CRLF line-ending during the SMTP dialog in the local enqueuer | eric | 2020-03-18 | 1 | -17/+18 |
| | | | | | ok millert@ | ||||
| * | Exit when m_get_string() returns NULL to prevent nullptr dereference in |   tobhe | 2020-03-17 | 1 | -1/+3 |
| | | | | | | | strlen(). ok millert@ | ||||
| * | Initialize session.rcptto to NULL before parsing command line optinos. | millert | 2020-03-16 | 1 | -0/+1 |
| | | | | | | Otherwise, if neither -r nor -u is specified, it will be used uninitialized. Found by tobhe@; OK tobhe@ deraadt@ | ||||
| * | Add missing casts to unsigned char when using ctype(3). | millert | 2020-03-15 | 3 | -6/+6 |
| | | | | | From Hiltjo Posthuma | ||||
| * | Rewrite qp_encoded_write. |   martijn | 2020-03-08 | 1 | -37/+40 |
| | | | | | | | | | | | | | | | | | | Among the fixes are: - Don't count a leading dot, since it's part of smtp and not the message. - Let qp_encoded_write handle line wrappings, since it can do a better job at the bookkeeping than the caller - Make sure a soft linebreak that starts with a dot is escaped for the SMTP-layer - Only encode a space character if it's followed by a hard linebreak, since this is the only case mandated by RFC5321 and it gives a more readable output and saves a few additional bytes. - Fix that we actually limit the encoded linelength to 76 characters as specified in RFC5321. Feedback and OK eric@ | ||||
| * | fsqueue_envelope_dump() returns 0 on temporary failure, not -1. | millert | 2020-02-25 | 1 | -3/+2 |
| | | | | | | | We should only exit the loop that creates the queue file if we successfully created the file or we've exceeded the max number of tries. From gilles@ based on feedback from Qualys. | ||||
| * | Cast argument of ctype(3) macros to unsigned char, not int. | millert | 2020-02-24 | 4 | -20/+20 |
| | | | | | Similar to a diff from Hiltjo Posthum. OK jung@ deraadt@ | ||||
| * | Bump version to 6.6.4 for errata and to match -portable. | millert | 2020-02-24 | 1 | -2/+2 |
| | | |||||
| * | Fix two security vulnerabilities discovered by Qualys. | millert | 2020-02-24 | 6 | -23/+47 |
| | | | | | | | | An out of bounds read in smtpd allows an attacker to inject arbitrary commands into the envelope file which are then executed as root. Separately, missing privilege revocation in smtpctl allows arbitrary commands to be run with the _smtpq group. | ||||
| * | Standardize argument naming for "sourceaddr" and unify the wording a bit, |   schwarze | 2020-02-12 | 1 | -5/+6 |
| | | | | | similar to what deraadt@ recently did in other manual pages. | ||||
| * | ORCPT addresses are prefixed with an address type, the stricter check cause |   gilles | 2020-02-03 | 2 | -3/+7 |
| | | | | | | | the prefix to be rejected as it contains a character not allowed in address reported by Scott Vanderbilt | ||||
| * | now that mail.local(8) relies on lockspool(1) for mailbox locking, have the | gilles | 2020-02-03 | 4 | -8/+41 |
| | | | | | | | | mailbox created by smtpd for mbox before privileges are dropped then we can call mail.local(8) with the recipient privileges. ok millert@ | ||||
| * | add SENDER to mda environment and teach lmtp to use that instead of command | gilles | 2020-02-02 | 3 | -10/+32 |
| | | | | | | | | line parameter. this allows simplifying lmtp command line and it would have prevented the unpriv command exec for LMTP in recent advisory. ok millert@ and jung@ | ||||
| * | be much stricter about ORCPT, it isn't in the code path of local delivery | gilles | 2020-02-01 | 1 | -2/+4 |
| | | | | | | | and doesn't have an associated context variable, but let's be paranoid. ok millert@ | ||||
| * | condition to enter mda_mbox() is too strict, if user have commands in their | gilles | 2020-02-01 | 1 | -2/+4 |
| | | | | | forward file they're not supposed to enter that code path. | ||||
| * | introduce mda_mbox() to handle mbox delivery in its own code path, and make | gilles | 2020-01-31 | 6 | -11/+84 |
| | | | | | | | | it use execle() since we know all parameters and don't need command line to be parsed. ok millert@ and jung@ | ||||
| * | Bump smtpd version after recent changes |   solene | 2020-01-30 | 1 | -2/+2 |
| | | | | | ok gilles@ | ||||
| * | Fix a security vulnerability discovered by Qualys which can lead to a | gilles | 2020-01-28 | 1 | -16/+14 |
| | | | | | | | | | privileges escalation on mbox deliveries and unprivileged code execution on lmtp deliveries, due to a logic issue causing a sanity check to be missed. ok eric@, millert@ | ||||
| * | opportunistic tls downgrade logic is more complex than it should and can in | gilles | 2020-01-20 | 1 | -26/+6 |
| | | | | | | | | some cases lead to a sanity check fatal() being hit. rework the logic so it is simpler and makes the sanity check fatal() unreachable. ok eric@ millert@ | ||||
| * | remove literal tab from a column list; | jmc | 2020-01-08 | 1 | -2/+2 |
| | | |||||
| * | allow using the session username in builtin filters when available | gilles | 2020-01-08 | 4 | -8/+116 |
| | | |||||
| * | enable builtin filtering for commit phase | gilles | 2020-01-08 | 1 | -2/+9 |
| | | |||||
| * | emable builtin filtering for phase DATA, no idea why we didn't earlier as | gilles | 2020-01-08 | 1 | -2/+9 |
| | | | | | the grammar allowed it and the code was already there. | ||||
| * | reorder reporting events so they are triggered _after_ protocol-server | gilles | 2020-01-08 | 2 | -18/+14 |
| | | | | | | events. this ensures that both smtp-in and smtp-out receive the events in the same order. | ||||
| * | generate tx-envelope before tx-rcpt like for smtp-in | gilles | 2020-01-07 | 1 | -3/+3 |
| | | |||||
| * | fix reporting of tx-mail and tx-rcpt for smtp-out | gilles | 2020-01-07 | 3 | -26/+29 |
| | | |||||
| * | generate link-auth reporting event for outgoing sessions | gilles | 2020-01-07 | 1 | -5/+19 |
| | | |||||
| * | make it more explicit that filters are unique processes | gilles | 2020-01-06 | 1 | -3/+3 |
| | | |||||
| * | do not allow passing options to smtpctl encrypt | gilles | 2020-01-06 | 1 | -2/+2 |
| | | |||||
| * | provide a better error message for invalid smtpctl commands | gilles | 2020-01-06 | 1 | -1/+6 |
| | | |||||
| * | upon return of authentication we log the username and generate an smtp-in | gilles | 2020-01-03 | 1 | -2/+2 |
| | | | | | | | | report for the authentication result, however we use a buffer that is too small and usernames from virtual accounts may get truncated in logs. reported by Bjorn Kalkbrenner | ||||
| * | upon connect to remote host extract hostname from banner when possible then | gilles | 2019-12-21 | 1 | -5/+12 |
| | | | | | generate link-greeting smtp-out report event | ||||
| * | if a filter was attached to a relay action in config, notify instance that | gilles | 2019-12-21 | 1 | -1/+3 |
| | | | | | it can register smtp-out events | ||||
| * | start bringing smtp-out reporting code, lacks some events still | gilles | 2019-12-21 | 3 | -7/+366 |
| | | |||||
| * | add FILTER_SUBSYSTEM_SMTP_OUT to filter_subsystem enum and add filter name | gilles | 2019-12-21 | 1 | -2/+5 |
| | | | | | to struct dispatcher_remote, this will reduce the smtp-out reporting diff | ||||
| * | keep track of DATA length in mta_session, will be needed for smtp-out | gilles | 2019-12-21 | 1 | -3/+7 |
| | | | | | reporting | ||||
| * | keep track of the relay action in relays, will be used for smtp-out | gilles | 2019-12-21 | 1 | -1/+2 |
| | | | | | reporting | ||||
 |
index : wireguard-openbsd | |
| WireGuard implementation for the OpenBSD kernel | Matt Dunwoodie |
| summaryrefslogtreecommitdiffstats |