postfix-2.3-20051221

2025-09-01 14:45:32 +00:00 · 2005-12-21 00:00:00 -05:00
parent 8216a9e465
commit 6c5d182a4c
13 changed files with 46 additions and 25 deletions
--- a/postfix/HISTORY
+++ b/postfix/HISTORY
@@ -11616,9 +11616,15 @@ Apologies for any names omitted.
 	client.  Files: postconf.c, xsasl_{client,server}.c.
 	Feature: new SMTPD policy attributes "encryption_protocol",
-	"encryption_cypher" and "encryption_keysize", to distinguish
+	"encryption_cipher" and "encryption_keysize", to distinguish
 	plaintext from encrypted connections.
 20051221
 	Privacy: the new Cyrus SASL server plug-in replaces "no
 	user" errors by "authentication failed" errors.  File:
 	xsasl/xsasl_cyrus_server.c.
 Open problems:
 	Reject numeric domains only when strict envelope syntax is
--- a/postfix/README_FILES/SMTPD_POLICY_README
+++ b/postfix/README_FILES/SMTPD_POLICY_README
@@ -107,7 +107,7 @@ Notes:
  * The "encryption_*" attributes (Postfix 2.3 and later) specify information
    about how the connection is encrypted. With plaintext connections the
-    protocol and cypher attributes are empty and the keysize is zero.
+    protocol and cipher attributes are empty and the keysize is zero.
 The following is specific to SMTPD delegated policy requests:
--- a/postfix/html/SMTPD_POLICY_README.html
+++ b/postfix/html/SMTPD_POLICY_README.html
@@ -152,7 +152,7 @@ encryption_keysize=256
    <li> <p> The "encryption_*" attributes (Postfix 2.3 and later)
    specify information about how the connection is encrypted. With
-    plaintext connections the protocol and cypher attributes are
+    plaintext connections the protocol and cipher attributes are
    empty and the keysize is zero.  </p>
 </ul>
--- a/postfix/html/smtpd.8.html
+++ b/postfix/html/smtpd.8.html
@@ -20,11 +20,15 @@ SMTPD(8)                                                              SMTPD(8)
       queue  file.   For  this  mode  of  operation, the program
       expects to be run from the <a href="master.8.html"><b>master</b>(8)</a> process manager.
-       Alternatively, the SMTP server takes an  established  con-
+       Alternatively, the SMTP server be can run  in  stand-alone
-       nection  on  standard input and deposits messages directly
+       mode;  this is traditionally obtained with "<b>sendmail -bs</b>".
-       into the <b>maildrop</b> queue.  In  this  so-called  stand-alone
+       When the SMTP server runs stand-alone with non $<b><a href="postconf.5.html#mail_owner">mail_owner</a></b>
-       mode,  the SMTP server can accept mail even while the mail
+       privileges, it receives mail even while the mail system is
-       system is not running.
+       not running, deposits messages directly into the  <b>maildrop</b>
       queue,  and disables the SMTP server's access policies. As
       of Postfix version 2.3, the SMTP server refuses to receive
       mail  from  the  network when it runs with non $<b><a href="postconf.5.html#mail_owner">mail_owner</a></b>
       privileges.
       The SMTP server implements a variety of policies for  con-
       nection  requests, and for parameters given to <b>HELO, ETRN,</b>
@@ -232,7 +236,7 @@ SMTPD(8)                                                              SMTPD(8)
              Report the SASL  authenticated  user  name  in  the
              <a href="smtpd.8.html"><b>smtpd</b>(8)</a> Received message header.
-       <b>smtpd_sasl_path (smtpd)</b>
+       <b><a href="postconf.5.html#smtpd_sasl_path">smtpd_sasl_path</a> (smtpd)</b>
              Implementation-specific  information that is passed
              through to the SASL plug-in implementation that  is
              selected with <b><a href="postconf.5.html#smtpd_sasl_type">smtpd_sasl_type</a></b>.
--- a/postfix/man/man8/smtpd.8
+++ b/postfix/man/man8/smtpd.8
@@ -19,11 +19,15 @@ daemon, and is placed into the \fBincoming\fR queue as one
 single queue file.  For this mode of operation, the program
 expects to be run from the \fBmaster\fR(8) process manager.
-Alternatively, the SMTP server takes an established
+Alternatively, the SMTP server be can run in stand-alone
-connection on standard input and deposits messages directly
+mode; this is traditionally obtained with "\fBsendmail
-into the \fBmaildrop\fR queue. In this so-called stand-alone
+-bs\fR".  When the SMTP server runs stand-alone with non
-mode, the SMTP server can accept mail even while the mail
+$\fBmail_owner\fR privileges, it receives mail even while
-system is not running.
+the mail system is not running, deposits messages directly
 into the \fBmaildrop\fR queue, and disables the SMTP server's
 access policies. As of Postfix version 2.3, the SMTP server
 refuses to receive mail from the network when it runs with
 non $\fBmail_owner\fR privileges.
 The SMTP server implements a variety of policies for connection
 requests, and for parameters given to \fBHELO, ETRN, MAIL FROM, VRFY\fR
--- a/postfix/proto/SMTPD_POLICY_README.html
+++ b/postfix/proto/SMTPD_POLICY_README.html
@@ -152,7 +152,7 @@ encryption_keysize=256
    <li> <p> The "encryption_*" attributes (Postfix 2.3 and later)
    specify information about how the connection is encrypted. With
-    plaintext connections the protocol and cypher attributes are
+    plaintext connections the protocol and cipher attributes are
    empty and the keysize is zero.  </p>
 </ul>
--- a/postfix/src/global/mail_proto.h
+++ b/postfix/src/global/mail_proto.h
@@ -135,7 +135,7 @@ extern char *mail_pathname(const char *, const char *);
 #define MAIL_ATTR_CCERT_ISSSUER	"ccert_issuer"
 #define MAIL_ATTR_CCERT_FINGERPRINT "ccert_fingerprint"
 #define MAIL_ATTR_CRYPTO_PROTOCOL "encryption_protocol"
-#define MAIL_ATTR_CRYPTO_CYPHER	"encryption_cipher"
+#define MAIL_ATTR_CRYPTO_CIPHER	"encryption_cipher"
 #define MAIL_ATTR_CRYPTO_KEYSIZE "encryption_keysize"
 /*
--- a/postfix/src/global/mail_version.h
+++ b/postfix/src/global/mail_version.h
@@ -20,7 +20,7 @@
  * Patches change both the patchlevel and the release date. Snapshots have no
  * patchlevel; they change the release date only.
  */
-#define MAIL_RELEASE_DATE	"20051220"
+#define MAIL_RELEASE_DATE	"20051221"
 #define MAIL_VERSION_NUMBER	"2.3"
 #ifdef SNAPSHOT
--- a/postfix/src/smtpd/smtpd.c
+++ b/postfix/src/smtpd/smtpd.c
@@ -13,11 +13,15 @@
 /*	single queue file.  For this mode of operation, the program
 /*	expects to be run from the \fBmaster\fR(8) process manager.
 /*
-/*	Alternatively, the SMTP server takes an established
+/*	Alternatively, the SMTP server be can run in stand-alone
-/*	connection on standard input and deposits messages directly
+/*	mode; this is traditionally obtained with "\fBsendmail
-/*	into the \fBmaildrop\fR queue. In this so-called stand-alone
+/*	-bs\fR".  When the SMTP server runs stand-alone with non
-/*	mode, the SMTP server can accept mail even while the mail
+/*	$\fBmail_owner\fR privileges, it receives mail even while
-/*	system is not running.
+/*	the mail system is not running, deposits messages directly
 /*	into the \fBmaildrop\fR queue, and disables the SMTP server's
 /*	access policies. As of Postfix version 2.3, the SMTP server
 /*	refuses to receive mail from the network when it runs with
 /*	non $\fBmail_owner\fR privileges.
 /*
 /*	The SMTP server implements a variety of policies for connection
 /*	requests, and for parameters given to \fBHELO, ETRN, MAIL FROM, VRFY\fR
--- a/postfix/src/smtpd/smtpd_check.c
+++ b/postfix/src/smtpd/smtpd_check.c
@@ -3304,7 +3304,7 @@ static int check_policy_service(SMTPD_STATE *state, const char *server,
 #define IF_ENCRYPTED(x) ((state->tls_context && ((x) != 0)) ? (x) : "")
 			  ATTR_TYPE_STR, MAIL_ATTR_CRYPTO_PROTOCOL,
 			  IF_ENCRYPTED(state->tls_context->protocol),
-			  ATTR_TYPE_STR, MAIL_ATTR_CRYPTO_CYPHER,
+			  ATTR_TYPE_STR, MAIL_ATTR_CRYPTO_CIPHER,
 			  IF_ENCRYPTED(state->tls_context->cipher_name),
 			  ATTR_TYPE_NUM, MAIL_ATTR_CRYPTO_KEYSIZE,
 			  state->tls_context->cipher_usebits,
--- a/postfix/src/util/inet_addr_local.c
+++ b/postfix/src/util/inet_addr_local.c
@@ -488,7 +488,8 @@ static int ial_procnet_ifinet6(INET_ADDR_LIST *addr_list,
 	    inet_addr_list_append(addr_list, SOCK_ADDR_PTR(&addr));
 	    memset((char *) &mask.sin6_addr, ~0, sizeof(mask.sin6_addr));
-	    mask_addr((char *) &mask.sin6_addr, sizeof(mask.sin6_addr), plen);
+	    mask_addr((unsigned char *) &mask.sin6_addr,
 		      sizeof(mask.sin6_addr), plen);
 	    inet_addr_list_append(mask_list, SOCK_ADDR_PTR(&mask));
 	}
 	vstring_free(addrbuf);
--- a/postfix/src/xsasl/README
+++ b/postfix/src/xsasl/README
@@ -90,7 +90,7 @@ To add your own SASL implementation, say, FOOBAR:
 - Create the Postfix makefiles from the top-level directory:
  % make makefiles CCARGS='-DUSE_SASL_AUTH -DUSE_FOOBAR_SASL \
-      -DDEF_CLIENT_SASL_TYPE=\"foobar\" -DDEF_SERVER_TYPE=\"foobar\" \
+      -DDEF_CLIENT_SASL_TYPE=\"foobar\" -DDEF_SERVER_SASL_TYPE=\"foobar\" \
      -I/some/where/include' AUXLIBS='-L/some/where/lib -lfoobar'
  Yes, you can have different default SASL implementation types for
--- a/postfix/src/xsasl/xsasl_cyrus_server.c
+++ b/postfix/src/xsasl/xsasl_cyrus_server.c
@@ -462,6 +462,8 @@ static int xsasl_cyrus_server_auth_response(int sasl_status,
 		      myname, xsasl_cyrus_strerror(sasl_status));
 	return (XSASL_AUTH_MORE);
    } else {
 	if (sasl_status == SASL_NOUSER)		/* privacy */
 	    sasl_status = SASL_BADAUTH;
 	vstring_strcpy(reply, xsasl_cyrus_strerror(sasl_status));
 	return (XSASL_AUTH_FAIL);
    }