| Age | Commit message (Collapse) | Author |
|---|
|
|
|
|
|
|
|
|
|
|
|
reset by ruleset matching and since it was cleared upon entering
lka_session_resolve_node(), it would trigger a fatal().
|
|
|
|
for an alias map.
fixes "accept from all for all alias myaliases deliver to mbox" and makes
thib "super happy"
ok thib@
|
|
|
|
the show sessions handler by implementing it in an asynchronous way.
Closes PR 6509
ok pyr@
|
|
From Lawrence Teo (thanks!)
OK krw@
|
|
|
|
daemon infrastructure. The previous design made it fairly hard to
reload the complex data structures, especially relays and protocols.
One of the reasons was that the privsep'd relayd processes had two
ways of getting their configuration: 1) from memory after forking from
the parent process and 2) and (partially) via imsgs after reload. The
new implementation first forks the privsep'd children before the
parents loads the configuration and sends it via imsgs to them; so it
is only like 2) before. It is based on an approach that I first
implemented for iked(8) and I also fixed many bugs in the code.
Thanks to many testers including dlg@ sthen@ phessler@
ok pyr@ dlg@ sthen@
|
|
deliver mail to. the only backend supported for now is USER_GETPWNAM and
it is not yet possible to switch to an alternate backend.
yes this means that we're very close from smtpd being able to handle fully
virtual accounts for both incoming and outgoing messages.
|
|
to send mail so they do not necessarily need a local system account.
two backends are provided by default, bsd_auth(3) and getpwnam(3), however
smtpd will only select bsd_auth(3) for the moment and not provide a way to
chose any other backend (that's on purpose ;p).
bye bye authenticate() !
|
|
if a ssl_connect() call needs to retry because of SSL_WANT_READ or
SSL_WANT_WRITE, set the proper event flag instead of keeping the default
one which is both read and write.
|
|
|
|
reprocess the envelope. since the original condition we matched is still
C_VDOM, it triggers an expansion loop causing recipient to be rejected.
this *should* fix the issue experienced by armani@, it does on my laptop.
|
|
with/ok gilles@
|
|
bring a shitload of unnecessary information everywhere. this required many
parts of smtpd to be refactored and more specifically envelope expansion.
in the process lots of code got simplified, and the envelope expansion code
has been isolated to lka_session.c with some longstanding bugs fixed.
Diff has been tested by many with no major regression reported.
armani@ spotted a bug in a setup where a domain is listed a both primary
and virtual, I will fix that in-tree as it's becoming painful to maintain
this diff out.
|
|
|
|
committing on behalf of gilles@
|
|
|
|
|
|
|
|
|
|
ok claudio
|
|
|
|
This removes a couple of "use warnings;" error messages.
Whether ' or " is used should mean string is taken literally once parsed.
ok halex@
|
|
by me. Fortunatley no side-effects.
|
|
Suggestion to use install routine (additional user code) as reference
for an answer of "yes" from krw@ (and william@),
Suggestion for regexs and "reads good" from simon@
|
|
|
|
actually valid.
bugfix tested by todd@
|
|
reviewed by jmc@
|
|
Update copyright year while here.
|
|
tested and OK sthen@
|
|
hold about any data you like and is used for things like greaceful
reload. Implement the basic redistribute logic and LSDB handling but
the data sent is currently not looked at.
Tested and OK sthen@
|
|
functions that are based on work for iked and smtpd. This simplifies
the setup of privsep processes and moves some redundant and repeated
code to a single place - which is always good from a quality and
security point of view. The relayd version of proc.c is different to
the current version in iked because it uses 1:N communications between
processes, eg. a single parent process is talking to many forked relay
children while iked only needs 1:1 communications.
ok sthen@ pyr@
|
|
functions that are based on work for iked and smtpd. This simplifies
the setup of privsep processes and moves some redundant and repeated
code to a single place - which is always good from a quality and
security point of view. The relayd version of proc.c is different to
the current version in iked because it uses 1:N communications between
processes, eg. a single parent process is talking to many forked relay
children while iked only needs 1:1 communications.
ok sthen@ pyr@
|
|
spotted by Christopher Zimmermann
ok gilles@
|
|
need to install files or directories with newly added user/group
ownerships.
ok sthen@ (on a slightly different diff)
|
|
ok gilles@
|
|
ok gilles@
|
|
to create, otherwise sysmerge will fail installing it. This can happen
for example when you only installed etcXX but run sysmerge against both
etcXX and xetcXX.
found the hard way by and ok sthen@
|
|
to IF_STA_LOOPBACK in if_act_start() this way they will repsect
IFF_UP on startup. Also remove a now no longer needed workaround
when reloading interfaces.
Initial diff provided by Patrick Coleman. OK dlg@
|
|
to IF_STA_LOOPBACK in if_act_start() this way they will repsect
IFF_UP on startup. Also mark the interfaces as passive.
Initial diff provided by Patrick Coleman. OK dlg@
|
|
|
|
|
|
instead of static function names. __func__ is C99 and perfectly fine
to use. It also avoids printing errors; for example if a statement
log_debug("foo:"..) was moved or copied from function foo() to bar()
and the log message was not updated...
|
|
OK reyk@ claudio@ sthen@
|
