Commit Graph

226 Commits

Author SHA1 Message Date
gshapiro
64b18ad7a6 Merge sendmail 8.16.1 to HEAD: See contrib/sendmail/RELEASE_NOTES for details
Includes build infrastructure & config updates required for changes in 8.16.1

MFC after:	5 days
2020-07-15 18:28:54 +00:00
jkim
31dd52e66a Plug possible memory leaks in the previous patch.
Two DH_free() calls were accidentally removed.

Pointyhat to:	jkim
2020-02-27 23:06:12 +00:00
jkim
e8627aa9a4 Do not free p and g parameters after calling DH_set0_pqg(3).
It is specifically mentioned in the manual page.  Note it has no functional
change in reality because DH_set0_pqg() cannot fail when both p and g are
not NULL.
2020-02-27 22:36:16 +00:00
jkim
ab5616572c Fix style inconsistencies near our OpenSSL 1.1.x patch. 2020-02-27 22:02:00 +00:00
jkim
077fdc2be6 Fix a white space. 2020-02-27 20:46:30 +00:00
hrs
2011c76ca2 Fix broken STARTTLS when SharedMemoryKey is enabled.
OpenSSL 1.1 API patch for sendmail had a bug which
prevented sm_RSA_generate_key() function from working.
This function is used to generate a temporary RSA key
for a shared memory region used for TLS processing.
Note that 12.0 and 12.1-RELEASE include this bug.

This affects only if SM_CONF_SHM compile-time
option (enabled by default) and SharedMemoryKey
run-time option (not enabled by default) in a .cf file are
specified.  The latter corresponds to confSHARED_MEMORY_KEY in
a .mc file.

PR:		242861
MFC after:	3 days
Differential Revision:	https://reviews.freebsd.org/D23734
2020-02-27 19:40:29 +00:00
brooks
8c3dda89d6 Fix various -Wpointer-compare warnings
This warning (comparing a pointer against a zero character literal
rather than NULL) has existed since GCC 7.1.0, and was recently added to
Clang trunk.

Almost all of these are harmless, except for fwcontrol's str2node, which
needs to both guard against dereferencing a NULL pointer (though in
practice it appears none of the callers will ever pass one in), as well
as ensure it doesn't parse the empty string as node 0 due to strtol's
awkward interface.

Submitted by:	James Clarke <jtrc27@jrtc27.com>
Obtained from:	CheriBSD
Sponsored by:	DARPA, AFRL
Differential Revision:	https://reviews.freebsd.org/D21914
2019-10-08 21:14:09 +00:00
hrs
6ee3bb8e51 MFV r351553:
Fix a problem which prevented -OServerSSLOptions or -OClientSSLOptions
specified in the command-line option from working.

This patch has been accepted by the upstream.

Reviewed by and discussed with:	gshapiro
2019-08-27 20:11:45 +00:00
jhb
0fd6f98f92 Update sendmail to work with the OpenSSL 1.1 API.
Submitted by:	jkim
Approved by:	re (gjb), gshapiro
Obtained from:	ports/mail/sendmail/files/patch-tls.c
2018-10-09 17:44:25 +00:00
brooks
da9d8a0895 Don't declare union semun in userspace unless _WANT_SEMUN is defined.
POSIX explicitly states that the application must declare union semun.
This makes no sense, but it is what it is.  This brings us into line
with Linux, MacOS/Darwin, and NetBSD.

In a ports exp-run a moderate number of ports fail due to a lack of
approprate autotools-like discovery mechanisms or local patches.  A
commit to address them will follow shortly.

PR:		224300, 224443 (exp-run)
Reviewed by:	emaste, jhb, kib
Exp-run by:	antoine
Sponsored by:	DARPA, AFRL
Differential Revision:	https://reviews.freebsd.org/D14492
2018-03-02 22:32:53 +00:00
imp
7e6cabd06e Renumber copyright clause 4
Renumber cluase 4 to 3, per what everybody else did when BSD granted
them permission to remove clause 3. My insistance on keeping the same
numbering for legal reasons is too pedantic, so give up on that point.

Submitted by:	Jan Schaumann <jschauma@stevens.edu>
Pull Request:	https://github.com/freebsd/freebsd/pull/96
2017-02-28 23:42:47 +00:00
bdrewery
7f4494e3bf Remove unneeded libutil dependency for sendmail.
It included libutil.h for setproctitle(3), which was moved from libutil to libc
in r65353 in 2000.

Reviewed by:	gshapiro [sendmail change]
Sponsored by:	EMC / Isilon Storage Division
Differential Revision:	https://reviews.freebsd.org/D4261
2015-11-24 04:19:55 +00:00
gshapiro
4dcc4b3b42 Reminder to check tools/build/mk/OptionalObsoleteFiles.inc on new
version imports.

Obtained from:	garga@
2015-08-07 04:58:35 +00:00
gshapiro
e1b6d51bdf Update for sendmail 8.15.2 import
MFC after:	3 days
2015-07-07 03:02:07 +00:00
gshapiro
d8d54b21f4 Merge sendmail 8.15.2 to HEAD
MFC after:	3 days
2015-07-07 02:59:02 +00:00
gshapiro
2fe739732c An additional fix for the openssl Weak DH remediation:
The import of openssl to address the FreeBSD-SA-15:10.openssl security
advisory includes a change which rejects handshakes with DH parameters
below 768 bits.  sendmail releases prior to 8.15.2 (not yet released),
defaulted to a 512 bit DH parameter setting for client connections.

The first fix committed last week changed the default to 1024 bits.

This commit fixes the case where the DHParameters option is set to a
file which doesn't exist, which is the case on newer versions of
FreeBSD which enable STARTTLS by default by auto-creating TLS
certificates.

MFC after:	2 days
2015-06-23 04:33:54 +00:00
gshapiro
48056621fb The import of openssl to address the FreeBSD-SA-15:10.openssl security
advisory includes a change which rejects handshakes with DH parameters
below 768 bits.  sendmail releases prior to 8.15.2 (not yet released),
defaulted to a 512 bit DH parameter setting for client connections.
This commit chages that default to 1024 bits.  sendmail 8.15.2, when
released well use a default of 2048 bits.

MFC after:	1 day
2015-06-16 02:58:50 +00:00
gshapiro
8afab6ffc3 Default to turning off OpenSSL SSL_OP_TLSEXT_PADDING as it breaks
compatibility with some sites

This change comes from 8.15 but is being backported to FreeBSD releases
not yet using 8.15.

MFC after:	3 days
Noted by:	julian@
2015-03-16 20:24:37 +00:00
gshapiro
8827f4c641 Remove build specific details from sendmail.cf/submit.cf in support of
https://wiki.freebsd.org/ReproducibleBuilds

The contrib/sendmail change will be made in the upstream source for a
future sendmail release.

Reviewed by:	des
MFC after:	3 days
2015-01-27 04:06:47 +00:00
gshapiro
9e81a47c58 Update for sendmail 8.14.9 import
MFC after:	3 days
2014-05-22 04:41:11 +00:00
gshapiro
48cecd8a58 Merge sendmail 8.14.9 to HEAD
MFC after:	3 days
2014-05-22 04:39:17 +00:00
gshapiro
5d729053c7 Update for sendmail 8.14.8 import
MFC after:	5 days
2014-01-26 23:44:12 +00:00
gshapiro
5287121aad Remove local FreeBSD workaround now that upstream project has a better fix.
MFC after:	5 days
2014-01-26 23:42:40 +00:00
gshapiro
932f20d9d2 Merge sendmail 8.14.8 to HEAD
MFC after:	5 days
2014-01-26 23:39:11 +00:00
gshapiro
51348c881e Update link to vendor import instructions 2014-01-26 20:13:28 +00:00
gshapiro
73b283f080 Temporarily revert sendmail 8.14.7 change to getipnodebyname() flags to
prevent problems between the resolver and Microsoft DNS servers with
AAAA lookups.  The upstream open source project will work on a more
permanent fix for the next release.  Issue noted by Pavel Timofeev.

MFC after:	3 days
2013-08-12 17:22:39 +00:00
gshapiro
c788bbc596 Update for sendmail 8.14.7
MFC after:	4 days
2013-04-21 17:09:51 +00:00
gshapiro
891f1b61da Merge sendmail 8.14.7 to HEAD
MFC after:	4 days
2013-04-21 17:08:44 +00:00
gshapiro
12b6f6bd9d Merge sendmail 8.14.6 errata issue
MFC after:	3 days
2013-02-18 19:33:07 +00:00
gshapiro
ee273df6e8 Update import info based on recent experiences and sendmail 8.14.6 import.
MFC after:	4 days
2012-12-29 20:38:57 +00:00
gshapiro
840d2bbbfc Merge sendmail 8.14.6 to HEAD
MFC after:	4 days
2012-12-29 20:30:46 +00:00
ume
89a7b590a4 cyrus-sasl 2.1.26 was released. In this version, the type of callback
functions was changed from "unsigned long" to "size_t".

Reviewed by:	gshapiro
MFC after:	3 days
2012-11-28 11:47:47 +00:00
gshapiro
584000d59d Properly define true/false when defining __bool_true_false_are_defined
for filters which pull in mfapi.h before stdbool.h.  Issue reported by
Petr Rehor, maintainer of amavisd-milter port.

MFC after:	3 days
2012-09-10 01:15:51 +00:00
ume
68c6f15722 Shut up warnings with Cyrus SASL 2.1.25.
Spotted by:	ache
Tested by:	ache
2011-10-01 18:20:10 +00:00
trasz
20fc1d133e Make Sendmail properly set login class and cpumask. 2011-06-30 20:55:16 +00:00
gshapiro
073dab128b Update notes regarding FreeBSD import 2011-06-14 06:44:42 +00:00
gshapiro
b73afeb2a4 Merge sendmail 8.14.5 to HEAD
MFC after:	4 days
2011-06-14 04:20:18 +00:00
uqs
30d565b637 Remove -mdoc macros from -man page
Neither groff nor mandoc render these when in -man mode.
This was introduced in r38083 as a local change, therefore no commit to
the vendor branch.
2010-06-09 08:53:50 +00:00
gshapiro
d2749dcd63 Update FreeBSD information
MFC after:	4 days
2010-01-26 04:45:26 +00:00
gshapiro
06af294677 Merge sendmail 8.14.4 to HEAD
MFC after:	4 days
2010-01-26 04:41:15 +00:00
cperciva
45e5ee4e4a Remove build timestamps from the following files:
/boot/kernel/hptrr.ko
/etc/mail/*.cf
/lib/libcrypto.so.5
/usr/bin/ntpq
/usr/sbin/amd
/usr/sbin/iasl
/usr/sbin/ntpd
/usr/sbin/ntpdate
/usr/sbin/ntpdc

There does not appear to be any purpose to having these timestamps, and
they have the irritating consequence that the aforementioned files will
be different every time they are rebuilt.

After this commit, the only remaining build timestamps are in the kernel,
the boot loaders, /usr/include/osreldate.h (the year in the copyright
notice), and lib*.a (the timestamps on all of the included .o files).

Reviewed by:	scottl (hptrr), gshapiro (sendmail), simon (openssl),
		roberto (ntp), jkim (acpica)
Approved by:	re (kib)
2009-07-11 22:30:37 +00:00
gshapiro
9ceaef29da Merge from vendor dist: Bring in a change already in the sendmail
repository that will allow sendmail to be built with the c99 compiler.

Submitted by: rdivacky
2008-11-15 04:43:54 +00:00
gshapiro
b9e5455674 Fix an ABI breakage found after the import that will be part of the
next version of sendmail.  Putting it in now for the upcoming 7-BETA
and 6-BETA test releases.

Submitted by:	Mike Tancsa
2008-09-02 04:53:24 +00:00
gshapiro
a2f8dd04c4 Update import/merge instructions for the svn repo 2008-08-28 06:20:43 +00:00
gshapiro
b1e5c9c5e5 Merge sendmail 8.14.3 into HEAD.
Note: As the first merge since the conversion to svn, it includes many
propset changes to get the proper svn:eol-style and svn:mime-type on the
files (as merged from the fixed up vendor/dist area).

MFC after:	3 days
2008-08-28 06:08:29 +00:00
peter
ea50d71feb Stage 1 of sendmail dist tree flattening. contrib/sendmail/contrib
prevents doing this in one pass.
2008-08-28 02:25:51 +00:00
gshapiro
b7e5081cf1 Update for sendmail 8.14.2
MFC after:	1 week
2007-11-05 00:21:32 +00:00
gshapiro
a0436b087f Resolve conflicts from sendmail 8.14.2 import 2007-11-05 00:09:45 +00:00
gshapiro
a2b986fa72 Import sendmail 8.14.2 2007-11-05 00:04:21 +00:00
gshapiro
ea10b54a1a This commit was generated by cvs2svn to compensate for changes in r173340,
which included commits to RCS files with non-trunk default branches.
2007-11-05 00:04:21 +00:00