Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | [Rework] Allow more flexible keypair encodingvstakhov-keypair-encoding | Vsevolod Stakhov | 2024-09-21 | 8 | -88/+167 |
| | |||||
* | Merge branch 'master' into vstakhov-cpu-detectionvstakhov-cpu-detection | Vsevolod Stakhov | 2024-09-20 | 1 | -0/+12 |
|\ | |||||
| * | [Feature] DMARC: Implement reporting.only_domains setting | Andrew Lewis | 2024-09-18 | 1 | -0/+12 |
| | | |||||
* | | [Rework] Use __builtin_cpu_supports where possible | Vsevolod Stakhov | 2024-09-16 | 1 | -0/+55 |
|/ | |||||
* | [Minor] Sigh, so hard to fix it | Vsevolod Stakhov | 2024-09-12 | 1 | -1/+1 |
| | |||||
* | [Minor] C varargs suck | Vsevolod Stakhov | 2024-09-12 | 1 | -1/+1 |
| | |||||
* | [Minor] Slight explanations of the decision made | Vsevolod Stakhov | 2024-09-12 | 1 | -2/+5 |
| | |||||
* | [Project] Implement expiration | Vsevolod Stakhov | 2024-09-11 | 1 | -0/+25 |
| | |||||
* | [Project] Implement per-key ratelimit | Vsevolod Stakhov | 2024-09-11 | 1 | -4/+54 |
| | |||||
* | [Project] Add parsing of key limits and expire date | Vsevolod Stakhov | 2024-09-11 | 1 | -3/+16 |
| | |||||
* | [Project] Add ratelimit parsing for fuzzy keys | Vsevolod Stakhov | 2024-09-11 | 1 | -5/+43 |
| | |||||
* | [Project] Move ratelimit parsing stuff to a common library | Vsevolod Stakhov | 2024-09-11 | 2 | -138/+28 |
| | |||||
* | [Project] Rework ratelimits check | Vsevolod Stakhov | 2024-09-10 | 1 | -52/+91 |
| | |||||
* | [Minor] Fix some unsafe chmod | Vsevolod Stakhov | 2024-09-10 | 1 | -6/+12 |
| | |||||
* | [Minor] Fix some SSL issues | Vsevolod Stakhov | 2024-09-10 | 1 | -16/+4 |
| | |||||
* | [Feature] Allow differen modes for fuzzy rules | Vsevolod Stakhov | 2024-09-09 | 1 | -15/+43 |
| | |||||
* | [Fix] Another fix for Redis schema | Vsevolod Stakhov | 2024-09-07 | 3 | -4/+4 |
| | | | | Issue: #5112 | ||||
* | [Rework] Implement new replies logic on the server's side | Vsevolod Stakhov | 2024-09-05 | 1 | -10/+13 |
| | |||||
* | [Minor] Add `encryption_required` symbol | Vsevolod Stakhov | 2024-09-05 | 1 | -0/+18 |
| | |||||
* | [Minor] s/BLOCKED/FORBIDDEN/ | Vsevolod Stakhov | 2024-09-05 | 1 | -4/+4 |
| | | | | We want it to be more informative and to distinguish from FUZZY_DENIED | ||||
* | [Rework] Change fuzzy error symbols | Vsevolod Stakhov | 2024-09-05 | 1 | -1/+33 |
| | | | | | FUZZY_BLOCKED -> FUZZY_RATELIMITED FUZZY_BLOCKED - new symbol for permanent bans | ||||
* | [Feature] Add tooling to encrypt strings in Lua | Ivan Stakhov | 2024-09-05 | 1 | -28/+80 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * [Fix] Provide support for OpenSSL 3.0 * [Feature] Provide function to encode header with configured public key * [Feature] Provide function to decode header with configured public key * [Test] Add tests for maybe encode/decode header * [Minor] Fix tests for encode/decode header * [Minor] Small clean up * [Minor] Small clean up * [Minor] Small fix for OpenSSL 3.0 support * [Minor] Provide logging * [Minor] Small fix * [Fix] Fix typo error * [Fix] Another typo * [Minor] Little clean up * [Minor] Little fix * [Minor] Small fix * [Minor] Small fix * [Minor] Rewrite the arguments of secretbox:encrypt/decrypt functions to a more understandable format * [Fix] Fix problem with nonce was not provided * [Test] Add test for nonce * [Minor] Little clean up * [Minor] Little clean up * [Test] Test * [Test] Test * [Test] Test * [Minor] Little fix * [Minor] Small fix * [Minor] Small fix * [Test] Small fix * [Test] Test * [Test] Test * [Test] Test * [Test] Test * [Minor] Small fix for fips provider * [Minor] Change provider apply logic * [Test] Little fix for provider * [Minor] Provide OpenSSL <3.0 support * [Test] Possible provider fix * [Test] Possible provider fix * [Test] Little fix * [Minor] Fix provider issue * [Minor] Small clean up * [Minor] Change logging errors * Update lualib/lua_util.lua --------- Co-authored-by: Vsevolod Stakhov <vsevolod@rspamd.com> | ||||
* | [Rework] Change the logic of skipping symbols | Vsevolod Stakhov | 2024-09-04 | 3 | -20/+32 |
| | | | | | We now do not skip pre/post filters even if the task result has reached threshold. | ||||
* | [Minor] Forgot to handle `parent` | Vsevolod Stakhov | 2024-09-02 | 1 | -3/+27 |
| | |||||
* | [Minor] Restore legacy way to register symbols... | Vsevolod Stakhov | 2024-09-02 | 1 | -6/+88 |
| | |||||
* | [Doc] Discourage old brain damaged method of symbols registration | Vsevolod Stakhov | 2024-09-02 | 1 | -1/+5 |
| | |||||
* | [Fix] Unify lua symbols registration | Vsevolod Stakhov | 2024-09-02 | 1 | -442/+300 |
| | | | | I'm curious why this bug has been not mentioned for such a long time... | ||||
* | Merge pull request #5118 from rspamd/vstakhov-fix-5089 | Vsevolod Stakhov | 2024-08-29 | 1 | -0/+20 |
|\ | | | | | Fix for issue #5089 - learning of the empty tasks | ||||
| * | [Fix] Another safe-guards for learning/classifying an empty message | Vsevolod Stakhov | 2024-08-28 | 1 | -0/+20 |
| | | |||||
| * | [Minor] Fix stripping of the last characters | Vsevolod Stakhov | 2024-08-17 | 1 | -10/+7 |
| | | |||||
| * | [Fix] Check message before trying to dereference pointer | Vsevolod Stakhov | 2024-08-17 | 1 | -5/+5 |
| | | | | | | | | Issue: #5089 | ||||
* | | Update history_redis.lua | Dmitriy Alekseev | 2024-08-24 | 1 | -1/+1 |
| | | |||||
* | | Set expiration for history_redis to 5 days by default | Dmitriy Alekseev | 2024-08-24 | 1 | -1/+1 |
| | | |||||
* | | Fix issue with broken HTTP message to learn endpoints (#5106) | Vsevolod Stakhov | 2024-08-17 | 2 | -15/+12 |
| | | | | | | | | | | | | | | * [Fix] Check message before trying to dereference pointer Issue: #5089 * [Minor] Fix stripping of the last characters | ||||
* | | Provide OpenSSL 3.0 support for lua_rsa (#5101) | Ivan Stakhov | 2024-08-17 | 1 | -76/+88 |
|/ | | | | | | | | | | | | | | | | | | | | | | | | | * [Fix] Provide OSSL 3.0 support for lua_rsa (not working) * [Fix] Provide full OpenSSL 3.0 for lua_rsa * [Minor] Little clean up * [Minor] Clean up code from debug * [Test] Replace for fixed size fstring allocation * [Test] Add rsa padding and signature md for pctx * [Test] Little changes * [Fix] Little fix for rsa_sign_memory work correctly * [Minor] Little clean up * [Minor] Small fix * [Minor] Little clean up * [Test] Add signature verification test for rsa2048 | ||||
* | [Rework] Breaking: Rewrite cfg transform and remove legacy | Vsevolod Stakhov | 2024-08-15 | 1 | -6/+2 |
| | | | | | | | | | | | | | What is removed: * SURBL/Email -> rbl conversion * IP reputation -> reputation conversion Reasoning: * Too hard to support forever * Outdated * Want to use transparent UCL instead of modifying the config from Lua | ||||
* | [Fix] Use proper keys when doing asymmetric encryption | Vsevolod Stakhov | 2024-08-09 | 1 | -4/+4 |
| | |||||
* | [Minor] Oops, fix pubkey loading | Vsevolod Stakhov | 2024-08-09 | 1 | -4/+1 |
| | |||||
* | [Project] Remove NIST mode from everywhere | Vsevolod Stakhov | 2024-08-09 | 19 | -670/+333 |
| | |||||
* | [Project] Remove NIST (OpenSSL) mode from cryptobox | Vsevolod Stakhov | 2024-08-09 | 2 | -1025/+175 |
| | | | | | | | | In fact, this mode increases complexity of the crypto library for no good reason: it is never used in Rspamd and it should not be used in fact. It was a research project in the past that should not be supported any longer. | ||||
* | [Fix] Apply the same workaround for signing keys | Vsevolod Stakhov | 2024-08-08 | 1 | -9/+13 |
| | |||||
* | [Fix] Add workaround for the bug in OpenSSL < 3.0.8 | Vsevolod Stakhov | 2024-08-08 | 1 | -12/+26 |
| | |||||
* | [Minor] Another fight with OpenSSL so called "consistency" | Vsevolod Stakhov | 2024-08-07 | 1 | -1/+1 |
| | |||||
* | [Minor] Another try to fix p256 encryption | Vsevolod Stakhov | 2024-08-07 | 1 | -7/+8 |
| | |||||
* | [Fix] More bogus sizes fix | Vsevolod Stakhov | 2024-08-07 | 1 | -4/+5 |
| | |||||
* | [Minor] Some more fixes for old OSSL | Vsevolod Stakhov | 2024-08-07 | 1 | -2/+1 |
| | |||||
* | [Fix] Sign key != encryption key, omg | Vsevolod Stakhov | 2024-08-07 | 2 | -14/+16 |
| | |||||
* | [Minor] Some more incompatibilities cleaned up | Vsevolod Stakhov | 2024-08-07 | 1 | -2/+2 |
| | |||||
* | [Fix] Fix compatibility with OSSL 1.0 | Vsevolod Stakhov | 2024-08-07 | 2 | -6/+2 |
| | |||||
* | [CritFix] The max size for signing key is actually 65 bytes for p256 | Vsevolod Stakhov | 2024-08-07 | 1 | -1/+1 |
| |