aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
* In-depth fix for to64frombits() BASE64 encoder buffer sizing.Matthias Andree2018-04-147-14/+20
|
* ISO C90 ("C89") compatibility fix.Matthias Andree2018-04-141-1/+1
|
* Abort GSSAPI authentication properly in more situations.Matthias Andree2018-04-141-3/+3
|
* Prevent buffer overruns in do_gssauth() with long user names.Matthias Andree2018-04-142-1/+14
| | | | Reported in private by Greg Hudson.
* GSSAPI: Do not add gratuitious NUL byte to username.Matthias Andree2018-04-142-1/+4
| | | | Greg Hudson reported this broke Exchange 2013 authentication.
* Merge branch 'bluhm/fetchmail-plugin-length' into legacy_64Matthias Andree2017-08-111-1/+3
|\
| * Add a FIXME comment.Matthias Andree2017-08-111-0/+2
| |
| * Do not overrun plugin string when copying it.Alexander Bluhm2017-08-101-1/+1
|/ | | | | | | | parse_plugin() expands the % in plugin string to plugin_copy. It checks that is does not write behind the end of the destination memory, but the source length was not checked. This resulted in reading from a possibly invalid memory location which may cause a segmentation fault. Add a check for the string length of the source.
* Call AM_PROG_AR to simplify LTO use.Matthias Andree2017-04-231-1/+2
|
* Cast argument to quiet -Wformat warning in C89 mode.Matthias Andree2017-04-231-1/+1
|
* Remove last traces of gethostbyname().Matthias Andree2017-04-227-415/+3
|
* Update copyright.Matthias Andree2017-04-224-1040/+1255
|
* Avoid deprecated regexps in manServer.plMatthias Andree2017-04-221-3/+3
|
* Update.Matthias Andree2017-02-201-0/+3
|
* Update.Matthias Andree2017-02-201-1/+2
|
* Reinstate --sslcertfile documentation.Matthias Andree2017-02-201-0/+1
| | | | | | Since the addition of --nosslcertck documentation in Nov. 2015 with commit 6adcb0cc, the --sslcertfile documentation had become part of --nosslcertck. Now --sslcertfile stands in a paragraph of its own.
* Quiet linker warnings around yywrap() fix when using a C++ compiler.Matthias Andree2017-02-111-0/+3
|
* Work around GNU flex madness around yywrap().Matthias Andree2017-02-111-3/+5
|
* Mention tls1.3 and + option in NEWS.Matthias Andree2017-02-111-2/+3
|
* Reformat.Matthias Andree2017-02-111-2/+2
|
* TLS: set hostname for SNI.Matthias Andree2017-02-111-0/+14
|
* Initial TLSv1.3 support code.Matthias Andree2017-02-111-1/+27
|
* Add one comment to pop3_fastuidl().Matthias Andree2017-02-111-0/+2
|
* Bump version to beta3.Matthias Andree2017-02-111-1/+1
|
* Cease creating .tar.bz2 tarballs. (Keep .tar.xz)Matthias Andree2016-12-121-1/+1
|
* Fixup protocol version handling in OpenSSL 1.0.X.Matthias Andree2016-12-121-0/+4
|
* Drop unused variable.Matthias Andree2016-12-121-1/+0
|
* Merge branch 'uidl-speedup-n-log-n-64' into legacy_64Matthias Andree2016-12-1211-144/+967
|\
| * Mention import of P-Tree O(n log n) code for UIDL.Matthias Andree2016-12-111-0/+8
| |
| * Avoid compiling unused function.Matthias Andree2016-12-111-0/+2
| |
| * Fix portability to C90 and C++.Matthias Andree2016-12-115-12/+17
| |
| * Report UIDs from databases one-per-line, with one leading blank space.Matthias Andree2016-12-111-9/+9
| |
| * #define __EXTENSIONS__ to have Solaris expose ffs() from strings.hMatthias Andree2016-12-111-1/+4
| |
| * Fixup last patch from Thomas, return void rather than NULL.Matthias Andree2016-12-111-1/+1
| |
| * Protect against possible NULL pointerThomas Jarosch2016-12-111-0/+2
| | | | | | | | Signed-off-by: Thomas Jarosch <thomas.jarosch@intra2net.com>
| * Fix crash on --flush.Rainer Weikusat2016-12-111-2/+5
| |
| * #include <strings.h> for ffs() prototype.Matthias Andree2016-12-111-0/+1
| |
| * Fix uninitialized variable.Matthias Andree2016-12-111-2/+2
| |
| * C++ compat: cast types explicitly.Matthias Andree2016-12-112-8/+8
| |
| * UIDL database speedup with Patricia trees.Matthias Andree2016-12-117-128/+927
| | | | | | | | | | | | | | Import Rainer Weikusat's code that uses Patricia trees instead of linear lists. Snapshot Rainer's patch 2010-05-24 19:30:42
* | Update German translation.Matthias Andree2016-12-121-331/+376
| |
* | Support for Debian/Ubuntu mutilated SSLv3 support.Matthias Andree2016-12-121-0/+4
| | | | | | | | | | | | | | | | | | | | Ubuntu 16.04 LTS, in a misguided attempt to avoid SSLv3 without breaking the API, does not declare SSLv3 unsupported through the headers, so applications can only detect this situation at run-time. The symptom is that SSL_CTX_new errors out with SSL_R_NULL_SSL_METHOD_PASSED on the error stack, issue an additional note telling the user to select a newer version.
* | OpenSSL 1.1.0 API support.Matthias Andree2016-12-121-4/+76
| | | | | | | | | | | | | | This avoids functions marked deprecated in OpenSSL 1.1.0. At the same time, warn about unsupported use of LibreSSL, and treat LibreSSL the same as OpenSSL 1.0.X WRT protocol version logic.
* | Refactor OpenSSL protocol version selection logic.Matthias Andree2016-12-121-44/+54
| |
* | Fail build early if socket.o cannot be generated.Matthias Andree2016-12-121-1/+4
|/ | | | This is a hack to fail quickly on old OpenSSL versions.
* Bump OpenSSL requirement to v1.0.2.Matthias Andree2016-12-113-4/+4
|
* Fix missing fileno() declaration.Matthias Andree2016-09-242-6/+8
| | | | Add #define _XOPEN_SOURCE 600, the %top{...} flex macro requires flex 2.5.30 or newer.
* Document use of address literals for SMTP.Matthias Andree2016-07-271-5/+15
|
* Accept more options with a running daemon.Matthias Andree2016-07-064-10/+35
| | | | (Cherry-picked from master's 1a92b2909610096a11d26f7a7317d32819354be3.)
* Update Copyright year for Matthias Andree to 2016.Matthias Andree2016-06-252-3/+3
|