~ubuntu-branches/debian/sid/postfix/sid

Viewing changes to src/tlsproxy/tlsproxy.c

Committer: Package Import Robot
Author(s): LaMont Jones, LaMont Jones, localization folks
Date: 2014-02-11 07:44:30 UTC
mfrom: (1.1.41)
Revision ID: package-import@ubuntu.com-20140211074430-91tdwgjriazawdz4

Tags: 2.11.0-1

http://bugs.debian.org/734893

[LaMont Jones]

* New upstream release: 2.11.0

[localization folks]

* l10n: Updated German translations. Closes: #734893 (Helge Kreutzmann)

files added:
README_FILES/FORWARD_SECRECY_README

README_FILES/LMDB_README

RELEASE_NOTES-2.10

html/FORWARD_SECRECY_README.html

html/LMDB_README.html

html/lmdb_table.5.html

html/posttls-finger.1.html

html/socketmap_table.5.html

man/man1/posttls-finger.1

man/man5/lmdb_table.5

man/man5/socketmap_table.5

proto/FORWARD_SECRECY_README.html

proto/LMDB_README.html

proto/lmdb_table

proto/socketmap_table

src/global/mkmap_lmdb.c

src/global/safe_ultostr.in

src/global/safe_ultostr.ref

src/postconf/postconf_match.c

src/postconf/postconf_print.c

src/postconf/test41.ref

src/postconf/test42.ref

src/postconf/test43.ref

src/postconf/test44.ref

src/postconf/test45.ref

src/postconf/test46.ref

src/postconf/test47.ref

src/postconf/test48.ref

src/postconf/test49.ref

src/postconf/test50.ref

src/postconf/test51.ref

src/postconf/test52.ref

src/postconf/test53.ref

src/postconf/test54.ref

src/postconf/test55.ref

src/postconf/test56.ref

src/posttls-finger

src/posttls-finger/.indent.pro

src/posttls-finger/Makefile.in

src/posttls-finger/posttls-finger.c

src/posttls-finger/tlsmgrmem.c

src/posttls-finger/tlsmgrmem.h

src/smtp/smtp_key.c

src/smtp/smtp_tls_policy.c

src/tls/tls_dane.c

src/tls/tls_dane.sh

src/tls/tls_fprint.c

src/util/compat_va_copy.h

src/util/dict_lmdb.c

src/util/dict_lmdb.h

src/util/lmdb_cache_test_1.sh

src/util/lmdb_cache_test_2.sh

src/util/poll_fd.c

src/util/slmdb.c

src/util/slmdb.h

src/util/timecmp.c

src/util/timecmp.h

files removed:
src/util/read_wait.c

src/util/readable.c

src/util/writable.c

src/util/write_wait.c

files modified:
.indent.pro

AAAREADME

HISTORY

Makefile.in

README_FILES/AAAREADME

README_FILES/ADDRESS_REWRITING_README

README_FILES/ADDRESS_VERIFICATION_README

README_FILES/BACKSCATTER_README

README_FILES/CONNECTION_CACHE_README

README_FILES/DATABASE_README

README_FILES/INSTALL

README_FILES/MULTI_INSTANCE_README

README_FILES/POSTSCREEN_README

README_FILES/RESTRICTION_CLASS_README

README_FILES/SASL_README

README_FILES/SCHEDULER_README

README_FILES/SMTPD_ACCESS_README

README_FILES/STRESS_README

README_FILES/TLS_README

RELEASE_NOTES

conf/access

conf/canonical

conf/main.cf

conf/master.cf

conf/post-install

conf/postfix-files

conf/virtual

debian/changelog

debian/po/de.po

html/ADDRESS_REWRITING_README.html

html/ADDRESS_VERIFICATION_README.html

html/BACKSCATTER_README.html

html/BASIC_CONFIGURATION_README.html

html/BUILTIN_FILTER_README.html

html/CONNECTION_CACHE_README.html

html/DATABASE_README.html

html/ETRN_README.html

html/INSTALL.html

html/LDAP_README.html

html/MAILDROP_README.html

html/MULTI_INSTANCE_README.html

html/Makefile.in

html/POSTSCREEN_README.html

html/QSHAPE_README.html

html/RESTRICTION_CLASS_README.html

html/SASL_README.html

html/SCHEDULER_README.html

html/SMTPD_ACCESS_README.html

html/SMTPD_POLICY_README.html

html/SOHO_README.html

html/STANDARD_CONFIGURATION_README.html

html/STRESS_README.html

html/TLS_LEGACY_README.html

html/TLS_README.html

html/UUCP_README.html

html/VIRTUAL_README.html

html/access.5.html

html/aliases.5.html

html/anvil.8.html

html/bounce.5.html

html/bounce.8.html

html/canonical.5.html

html/cidr_table.5.html

html/cleanup.8.html

html/defer.8.html

html/discard.8.html

html/dnsblog.8.html

html/error.8.html

html/flush.8.html

html/generic.5.html

html/header_checks.5.html

html/index.html

html/ldap_table.5.html

html/lmtp.8.html

html/local.8.html

html/mailq.1.html

html/master.5.html

html/master.8.html

html/memcache_table.5.html

html/mysql_table.5.html

html/newaliases.1.html

html/nisplus_table.5.html

html/oqmgr.8.html

html/pcre_table.5.html

html/pgsql_table.5.html

html/pickup.8.html

html/pipe.8.html

html/postalias.1.html

html/postcat.1.html

html/postconf.1.html

html/postconf.5.html

html/postdrop.1.html

html/postfix-manuals.html

html/postfix-wrapper.5.html

html/postfix.1.html

html/postkick.1.html

html/postlock.1.html

html/postlog.1.html

html/postmap.1.html

html/postmulti.1.html

html/postqueue.1.html

html/postscreen.8.html

html/postsuper.1.html

html/proxymap.8.html

html/qmgr.8.html

html/qmqp-sink.1.html

html/qmqp-source.1.html

html/qmqpd.8.html

html/qshape.1.html

html/regexp_table.5.html

html/relocated.5.html

html/scache.8.html

html/sendmail.1.html

html/showq.8.html

html/smtp-sink.1.html

html/smtp-source.1.html

html/smtp.8.html

html/smtpd.8.html

html/spawn.8.html

html/sqlite_table.5.html

html/tcp_table.5.html

html/tlsmgr.8.html

html/tlsproxy.8.html

html/trace.8.html

html/transport.5.html

html/trivial-rewrite.8.html

html/verify.8.html

html/virtual.5.html

html/virtual.8.html

makedefs

man/Makefile.in

man/man1/postconf.1

man/man1/postfix.1

man/man1/postmulti.1

man/man5/access.5

man/man5/canonical.5

man/man5/cidr_table.5

man/man5/header_checks.5

man/man5/ldap_table.5

man/man5/master.5

man/man5/memcache_table.5

man/man5/mysql_table.5

man/man5/nisplus_table.5

man/man5/pcre_table.5

man/man5/pgsql_table.5

man/man5/postconf.5

man/man5/regexp_table.5

man/man5/sqlite_table.5

man/man5/tcp_table.5

man/man5/virtual.5

man/man8/discard.8

man/man8/local.8

man/man8/oqmgr.8

man/man8/pipe.8

man/man8/postscreen.8

man/man8/qmgr.8

man/man8/smtp.8

man/man8/smtpd.8

man/man8/tlsmgr.8

man/man8/tlsproxy.8

man/man8/trivial-rewrite.8

mantools/ccformat

mantools/man2html

mantools/postconf2man

mantools/postlink

proto/ADDRESS_VERIFICATION_README.html

proto/CONNECTION_CACHE_README.html

proto/DATABASE_README.html

proto/INSTALL.html

proto/MULTI_INSTANCE_README.html

proto/Makefile.in

proto/POSTSCREEN_README.html

proto/SASL_README.html

proto/SCHEDULER_README.html

proto/STRESS_README.html

proto/TLS_README.html

proto/access

proto/canonical

proto/cidr_table

proto/header_checks

proto/ldap_table

proto/master

proto/memcache_table

proto/mysql_table

proto/nisplus_table

proto/pcre_table

proto/pgsql_table

proto/postconf.man.prolog

proto/postconf.proto

proto/regexp_table

proto/sqlite_table

proto/stop

proto/tcp_table

proto/virtual

src/cleanup/Makefile.in

src/cleanup/cleanup.h

src/cleanup/cleanup_addr.c

src/cleanup/cleanup_map11.c

src/cleanup/cleanup_map1n.c

src/cleanup/cleanup_masquerade.c

src/cleanup/cleanup_message.c

src/cleanup/cleanup_milter.c

src/cleanup/cleanup_state.c

src/discard/discard.c

src/dns/dns.h

src/dns/dns_lookup.c

src/dns/dns_rr.c

src/dns/dns_rr_eq_sa.in

src/dns/dns_rr_eq_sa.ref

src/dns/dns_sa_to_rr.c

src/dns/dns_strtype.c

src/dns/test_dns_lookup.c

src/global/Makefile.in

src/global/data_redirect.c

src/global/dict_ldap.c

src/global/dict_ldap.h

src/global/dict_memcache.c

src/global/dict_mysql.c

src/global/dsn_buf.c

src/global/dsn_buf.h

src/global/mail_addr_find.c

src/global/mail_params.c

src/global/mail_params.h

src/global/mail_proto.h

src/global/mail_version.h

src/global/match_service.c

src/global/mbox_open.c

src/global/memcache_proto.c

src/global/mkmap.h

src/global/mkmap_open.c

src/global/resolve_clnt.c

src/global/safe_ultostr.c

src/global/split_addr.c

src/global/split_addr.h

src/global/strip_addr.c

src/global/strip_addr.h

src/global/strip_addr.ref

src/global/xtext.c

src/global/xtext.h

src/local/bounce_workaround.c

src/local/local.c

src/local/local_expand.c

src/local/recipient.c

src/local/resolve.c

src/master/master_ent.c

src/master/master_vars.c

src/milter/Makefile.in

src/milter/milter8.c

src/milter/test-milter.c

src/oqmgr/qmgr.c

src/oqmgr/qmgr_message.c

src/pipe/pipe.c

src/postalias/postalias.c

src/postconf/Makefile.in

src/postconf/extract.awk

src/postconf/install_table.h

src/postconf/postconf.c

src/postconf/postconf.h

src/postconf/postconf_builtin.c

src/postconf/postconf_dbms.c

src/postconf/postconf_edit.c

src/postconf/postconf_lookup.c

src/postconf/postconf_main.c

src/postconf/postconf_master.c

src/postconf/postconf_misc.c

src/postconf/postconf_node.c

src/postconf/postconf_other.c

src/postconf/postconf_service.c

src/postconf/postconf_unused.c

src/postconf/postconf_user.c

src/postconf/test10.ref

src/postconf/test37.ref

src/postconf/test40.ref

src/postfix/postfix.c

src/postmap/postmap.c

src/postmulti/postmulti.c

src/postscreen/Makefile.in

src/postscreen/postscreen.c

src/postscreen/postscreen.h

src/postscreen/postscreen_early.c

src/postscreen/postscreen_endpt.c

src/postscreen/postscreen_state.c

src/postscreen/postscreen_tests.c

src/qmgr/qmgr.c

src/qmgr/qmgr_job.c

src/qmgr/qmgr_message.c

src/smtp/Makefile.in

src/smtp/lmtp_params.c

src/smtp/smtp.c

src/smtp/smtp.h

src/smtp/smtp_addr.c

src/smtp/smtp_addr.h

src/smtp/smtp_chat.c

src/smtp/smtp_connect.c

src/smtp/smtp_params.c

src/smtp/smtp_proto.c

src/smtp/smtp_rcpt.c

src/smtp/smtp_reuse.c

src/smtp/smtp_reuse.h

src/smtp/smtp_sasl_auth_cache.c

src/smtp/smtp_sasl_glue.c

src/smtp/smtp_sasl_proto.c

src/smtp/smtp_session.c

src/smtp/smtp_state.c

src/smtpd/Makefile.in

src/smtpd/smtpd.c

src/smtpd/smtpd_check.c

src/smtpd/smtpd_check.in

src/smtpd/smtpd_check.in2

src/smtpd/smtpd_check.ref

src/smtpd/smtpd_check.ref2

src/smtpd/smtpd_dsn_fix.h

src/smtpd/smtpd_proxy.c

src/smtpd/smtpd_proxy.h

src/smtpd/smtpd_sasl_glue.c

src/smtpstone/Makefile.in

src/smtpstone/smtp-sink.c

src/smtpstone/smtp-source.c

src/tls/Makefile.in

src/tls/tls.h

src/tls/tls_bio_ops.c

src/tls/tls_client.c

src/tls/tls_level.c

src/tls/tls_mgr.c

src/tls/tls_mgr.h

src/tls/tls_misc.c

src/tls/tls_proxy_clnt.c

src/tls/tls_proxy_print.c

src/tls/tls_proxy_scan.c

src/tls/tls_rsa.c

src/tls/tls_scache.c

src/tls/tls_scache.h

src/tls/tls_server.c

src/tls/tls_verify.c

src/tlsmgr/Makefile.in

src/tlsmgr/tlsmgr.c

src/tlsproxy/Makefile.in

src/tlsproxy/tlsproxy.c

src/trivial-rewrite/transport.c

src/trivial-rewrite/trivial-rewrite.c

src/util/Makefile.in

src/util/argv.c

src/util/argv.h

src/util/argv_split.c

src/util/attr_clnt.c

src/util/attr_clnt.h

src/util/attr_print0.c

src/util/attr_print64.c

src/util/attr_print_plain.c

src/util/base64_code.c

src/util/base64_code.h

src/util/concatenate.c

src/util/ctable.c

src/util/ctable.h

src/util/dict.c

src/util/dict.h

src/util/dict_alloc.c

src/util/dict_cache.c

src/util/dict_cdb.c

src/util/dict_cidr.c

src/util/dict_dbm.c

src/util/dict_ni.c

src/util/dict_open.c

src/util/dict_pcre.c

src/util/dict_regexp.c

src/util/dict_sockmap.c

src/util/dict_surrogate.c

src/util/dict_test.c

src/util/dict_thash.c

src/util/host_port.c

src/util/iostuff.h

src/util/mac_parse.c

src/util/name_mask.c

src/util/netstring.c

src/util/open_limit.c

src/util/split_nameval.c

src/util/sys_defs.h

src/util/vbuf_print.c

src/util/vstring_vstream.c

Show diffs side-by-side

added added

removed removed

src/tlsproxy/tlsproxy.c

/* format.

/* .IP "\fBtlsproxy_tls_dh1024_param_file ($smtpd_tls_dh1024_param_file)\fR"

/* File with DH parameters that the Postfix \fBtlsproxy\fR(8) server

/* should use with EDH ciphers.

/* should use with non-export EDH ciphers.

/* .IP "\fBtlsproxy_tls_dh512_param_file ($smtpd_tls_dh512_param_file)\fR"

/* File with DH parameters that the Postfix \fBtlsproxy\fR(8) server

/* should use with EDH ciphers.

/* should use with export-grade EDH ciphers.

/* .IP "\fBtlsproxy_tls_dkey_file ($smtpd_tls_dkey_file)\fR"

/* File with the Postfix \fBtlsproxy\fR(8) server DSA private key in PEM

/* format.

132

/* The SMTP TLS security level for the Postfix \fBtlsproxy\fR(8) server;

133

/* when a non-empty value is specified, this overrides the obsolete

134

/* parameters smtpd_use_tls and smtpd_enforce_tls.

135

/* .IP "\fBtlsproxy_tls_session_cache_timeout ($smtpd_tls_session_cache_timeout)\fR"

136

/* The expiration time of Postfix \fBtlsproxy\fR(8) server TLS session

137

/* cache information.

135

/* .PP

136

/* Available in Postfix version 2.11 and later:

137

/* .IP "\fBtlsmgr_service_name (tlsmgr)\fR"

138

/* The name of the \fBtlsmgr\fR(8) service entry in master.cf.

138

139

/* OBSOLETE STARTTLS SUPPORT CONTROLS

139

140

/* .ad

140

141

/* .fi

233

234

235

int var_smtpd_tls_ccert_vd;

235

236

char *var_smtpd_tls_loglevel;

236

int var_smtpd_tls_scache_timeout;

237

bool var_smtpd_use_tls;

238

bool var_smtpd_enforce_tls;

239

bool var_smtpd_tls_ask_ccert;

262

263

int var_tlsp_tls_ccert_vd;

264

char *var_tlsp_tls_loglevel;

265

int var_tlsp_tls_scache_timeout;

266

265

bool var_tlsp_use_tls;

267

266

bool var_tlsp_enforce_tls;

268

267

bool var_tlsp_tls_ask_ccert;

698

697

namaddr = state->remote_endpt,

699

698

cipher_grade = cipher_grade,

700

699

cipher_exclusions = STR(cipher_exclusions),

701

fpt_dgst = var_tlsp_tls_fpt_dgst);

700

mdalg = var_tlsp_tls_fpt_dgst);

702

701

703

702

if (state->tls_context == 0) {

704

703

tlsp_state_free(state);

974

973

log_level = var_tlsp_tls_loglevel,

975

974

verifydepth = var_tlsp_tls_ccert_vd,

976

975

cache_type = TLS_MGR_SCACHE_SMTPD,

977

scache_timeout = var_tlsp_tls_scache_timeout,

978

976

set_sessid = var_tlsp_tls_set_sessid,

979

977

cert_file = cert_file,

980

978

key_file = var_tlsp_tls_key_file,

993

991

var_tlsp_tls_mand_proto :

994

992

var_tlsp_tls_proto,

995

993

ask_ccert = ask_client_cert,

996

fpt_dgst = var_tlsp_tls_fpt_dgst);

994

mdalg = var_tlsp_tls_fpt_dgst);

997

995

else

998

996

msg_warn("No server certs available. TLS can't be enabled");

999

997

1032

1030

1033

1031

};

1034

1032

static const CONFIG_TIME_TABLE time_table[] = {

1035

VAR_SMTPD_TLS_SCACHTIME, DEF_SMTPD_TLS_SCACHTIME, &var_smtpd_tls_scache_timeout, 0, 0,

1036

1033

VAR_TLSP_WATCHDOG, DEF_TLSP_WATCHDOG, &var_tlsp_watchdog, 10, 0,

1037

VAR_TLSP_TLS_SCACHTIME, DEF_TLSP_TLS_SCACHTIME, &var_tlsp_tls_scache_timeout, 0, 0,

1038

1034

1039

1035

};

1040

1036

static const CONFIG_BOOL_TABLE bool_table[] = {

Older »