| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2022-01-15 | Set an ALARM timer to kill libcouriertls. | Sam Varshavchik | |
| 2021-05-21 | -Wall and -Werror fixes | Sam Varshavchik | |
| 2021-05-19 | Tolerate -Wall and -Werror | Sam Varshavchik | |
| Fixes to configure scripts and code so that it compiles (hopefully correctly) with -Wall and -Werror. Remove support for ancient BSD stricmp and strnicmp functions. AC_CHECK_FUNC does not work for strcasecmp and strncasecmp under -Wall, it's simpler to remove it. | |||
| 2021-03-28 | couriertcpd: tweak DNSBL lookup logic. | Sam Varshavchik | |
| 2021-02-20 | Add support for ALPN. | Sam Varshavchik | |
| 2021-02-20 | Fix access(NULL) call, and a memory leak. | Sam Varshavchik | |
| Seems to be harmless. The memory leak is in a standalong couriertls process, which is mostly a nothing-burger. | |||
| 2021-02-20 | Fix memory leak. | Sam Varshavchik | |
| couriertls is a separate process anyway, so this seems to be a nothing-burger. | |||
| 2020-12-10 | Fix macros. | Sam Varshavchik | |
| 2020-12-06 | LibreSSL compilation error. | Sam Varshavchik | |
| 2020-12-01 | Adding special TLS protocol names that disable client renegotiation. | Andrej Podzimek | |
| 2020-10-28 | Clean up documentation | Sam Varshavchik | |
| 2020-10-27 | Update documentation | Sam Varshavchik | |
| 2020-05-12 | Fix manual hostname checking. | Sam Varshavchik | |
| 2020-05-09 | Query for both A and TXT records. | Sam Varshavchik | |
| 2020-05-09 | Fix spurious message. | Sam Varshavchik | |
| 2020-04-24 | Remove debugging message. | Sam Varshavchik | |
| 2020-04-21 | Add AC_PROG_CC_C99 | Sam Varshavchik | |
| 2020-04-20 | Fix regression with user parameter | Sam Varshavchik | |
| 2020-04-20 | Fix TLS client connections. | Sam Varshavchik | |
| 2020-02-26 | fix ssl client cert authentication (EXTERNAL) | FlorianMickler | |
| The connect_callback verify_connection does setenv(TLS_SUBJECT_*) by calling dump_to_fp. These Environment variables are needed to do "AUTHENTICATE EXTERNAL" by doing a user lookup with one of the TLS_SUBJECT_* Variables (specified in the config file via TLS_EXTERNAL). If we call startclient() after the ssl connection has established, we actually do the fork()/exec with the updated environment and thus imapdlogin can do authentication. This error was not producing any error messages besides LOGIN FAILED. :( With this change, i was able to connect with openssl s_client, run "AUTHENTICATE EXTERNAL" and have a successfull login. No further testing was done. | |||
| 2019-12-10 | Restore OpenSSL 1.1, and earlier support. | Sam Varshavchik | |
| Restores code that c8115514b4830a668ce726b2fcb8ab4a3d438ec9 removed, but make it conditionally compiled. Have configure.ac autodetect the openssl version. Correctly UTF8-ize SSL_set_tlsext_host_name()'s parameter. | |||
| 2019-12-05 | gnutls: UTF-8 and hostname fixes. | Sam Varshavchik | |
| 2019-12-05 | Use UTF-8 for IDNs. | Sam Varshavchik | |
| 2019-10-08 | Use OpenSSL to verify hostnames. | Sam Varshavchik | |
| 2019-02-03 | Add dumping of alt name to the GnuTLS version. | Sam Varshavchik | |
| 2019-02-03 | Add subject alternative name checking. Implement override_vars option. | Sam Varshavchik | |
| 2019-01-08 | Ignore unreadable cert files. | Sam Varshavchik | |
| 2018-10-10 | Merge branch 'master' of github.com:svarshavchik/courier-libs | Sam Varshavchik | |
| 2018-10-11 | added comment TLS_PRIVATE_KEYFILE does not support Pass-Phrase | Yoshinari Takaoka | |
| 2018-09-26 | Additional fixes. | Sam Varshavchik | |
| 2018-09-12 | [impl] added TLS_PRIVATE_KEYFILE (GnuTLS) | Yoshinari Takaoka | |
| 2018-09-12 | [doc] added TLS_PRIVATE_KEYFILE description | Yoshinari Takaoka | |
| 2018-09-12 | [impl] added TLS_PRIVATE_KEYFILE (OpenSSL) | Yoshinari Takaoka | |
| 2018-08-03 | [GnuTLS] added non ssl error log when cert file does not exist | Yoshinari Takaoka | |
| 2018-07-28 | Fix memory leak, and a compilation warning. | Sam Varshavchik | |
| 2018-07-23 | librfc1035: use UTF8 for DNS queries | Sam Varshavchik | |
| DNS lookups use libidn to convert UTF8 hostname to ACE. DNS replies convert ACE to UTF8 hostnames. | |||
| 2018-07-15 | libgcrypt is required when --with-gnutls specified | Yoshinari Takaoka | |
| 2018-06-28 | couriertls: add -user option | Sam Varshavchik | |
| 2018-06-21 | Add option to drop root when starting couriertls. | Sam Varshavchik | |
| 2018-04-27 | Fedora 28 fixes. | Sam Varshavchik | |
| 2018-02-16 | couriretls: Improve error messages, remove deprecated API usage. | Sam Varshavchik | |
| Make gnutls return the same error message about unexpected connection terminatation as the openssl version does. | |||
| 2017-11-26 | Misc fixes. | Sam Varshavchik | |
| Potential null pointer dereference in pcp.c. Convert waitlib to use libtool. | |||
| 2017-07-25 | Partially revert de2a130974e1a76daa1893e18442154c7fc90321. | Sam Varshavchik | |
| Put back TLS_PROTOCOL, but use only SSLv23_method, replacing deprecated methods with stubs for their + versions. | |||
| 2017-07-24 | Fix man page generation. | Sam Varshavchik | |
| 2017-07-16 | Finalize openssl 1.1.0 by removing TLS_PROTOCOL altogether. | Sam Varshavchik | |
| 2017-07-12 | Another bunch of openssl 1.1.0 fixes. | Sam Varshavchik | |
| 2017-07-07 | Update for OpenSSL 1.1.0. | Sam Varshavchik | |
| 2017-03-15 | Fix TLS verification when DNS lookup comes back with CNAMEs. | Sam Varshavchik | |
| 2017-03-11 | Update documentation, default BLOCK message. | Sam Varshavchik | |
| 2017-03-11 | couriertcpd: do not issue ANY queries for DNSBL lookups. | Sam Varshavchik | |
 |
index : courier-libs | |
| Courier Mail Server - shared libraries |
| summaryrefslogtreecommitdiffstats |