aboutsummaryrefslogtreecommitdiffstats
path: root/src
Commit message (Collapse)AuthorAgeFilesLines
* [Rework] Allow more flexible keypair encodingvstakhov-keypair-encodingVsevolod Stakhov2024-09-218-88/+167
|
* Merge branch 'master' into vstakhov-cpu-detectionvstakhov-cpu-detectionVsevolod Stakhov2024-09-201-0/+12
|\
| * [Feature] DMARC: Implement reporting.only_domains settingAndrew Lewis2024-09-181-0/+12
| |
* | [Rework] Use __builtin_cpu_supports where possibleVsevolod Stakhov2024-09-161-0/+55
|/
* [Minor] Sigh, so hard to fix itVsevolod Stakhov2024-09-121-1/+1
|
* [Minor] C varargs suckVsevolod Stakhov2024-09-121-1/+1
|
* [Minor] Slight explanations of the decision madeVsevolod Stakhov2024-09-121-2/+5
|
* [Project] Implement expirationVsevolod Stakhov2024-09-111-0/+25
|
* [Project] Implement per-key ratelimitVsevolod Stakhov2024-09-111-4/+54
|
* [Project] Add parsing of key limits and expire dateVsevolod Stakhov2024-09-111-3/+16
|
* [Project] Add ratelimit parsing for fuzzy keysVsevolod Stakhov2024-09-111-5/+43
|
* [Project] Move ratelimit parsing stuff to a common libraryVsevolod Stakhov2024-09-112-138/+28
|
* [Project] Rework ratelimits checkVsevolod Stakhov2024-09-101-52/+91
|
* [Minor] Fix some unsafe chmodVsevolod Stakhov2024-09-101-6/+12
|
* [Minor] Fix some SSL issuesVsevolod Stakhov2024-09-101-16/+4
|
* [Feature] Allow differen modes for fuzzy rulesVsevolod Stakhov2024-09-091-15/+43
|
* [Fix] Another fix for Redis schemaVsevolod Stakhov2024-09-073-4/+4
| | | | Issue: #5112
* [Rework] Implement new replies logic on the server's sideVsevolod Stakhov2024-09-051-10/+13
|
* [Minor] Add `encryption_required` symbolVsevolod Stakhov2024-09-051-0/+18
|
* [Minor] s/BLOCKED/FORBIDDEN/Vsevolod Stakhov2024-09-051-4/+4
| | | | We want it to be more informative and to distinguish from FUZZY_DENIED
* [Rework] Change fuzzy error symbolsVsevolod Stakhov2024-09-051-1/+33
| | | | | FUZZY_BLOCKED -> FUZZY_RATELIMITED FUZZY_BLOCKED - new symbol for permanent bans
* [Feature] Add tooling to encrypt strings in LuaIvan Stakhov2024-09-051-28/+80
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * [Fix] Provide support for OpenSSL 3.0 * [Feature] Provide function to encode header with configured public key * [Feature] Provide function to decode header with configured public key * [Test] Add tests for maybe encode/decode header * [Minor] Fix tests for encode/decode header * [Minor] Small clean up * [Minor] Small clean up * [Minor] Small fix for OpenSSL 3.0 support * [Minor] Provide logging * [Minor] Small fix * [Fix] Fix typo error * [Fix] Another typo * [Minor] Little clean up * [Minor] Little fix * [Minor] Small fix * [Minor] Small fix * [Minor] Rewrite the arguments of secretbox:encrypt/decrypt functions to a more understandable format * [Fix] Fix problem with nonce was not provided * [Test] Add test for nonce * [Minor] Little clean up * [Minor] Little clean up * [Test] Test * [Test] Test * [Test] Test * [Minor] Little fix * [Minor] Small fix * [Minor] Small fix * [Test] Small fix * [Test] Test * [Test] Test * [Test] Test * [Test] Test * [Minor] Small fix for fips provider * [Minor] Change provider apply logic * [Test] Little fix for provider * [Minor] Provide OpenSSL <3.0 support * [Test] Possible provider fix * [Test] Possible provider fix * [Test] Little fix * [Minor] Fix provider issue * [Minor] Small clean up * [Minor] Change logging errors * Update lualib/lua_util.lua --------- Co-authored-by: Vsevolod Stakhov <vsevolod@rspamd.com>
* [Rework] Change the logic of skipping symbolsVsevolod Stakhov2024-09-043-20/+32
| | | | | We now do not skip pre/post filters even if the task result has reached threshold.
* [Minor] Forgot to handle `parent`Vsevolod Stakhov2024-09-021-3/+27
|
* [Minor] Restore legacy way to register symbols...Vsevolod Stakhov2024-09-021-6/+88
|
* [Doc] Discourage old brain damaged method of symbols registrationVsevolod Stakhov2024-09-021-1/+5
|
* [Fix] Unify lua symbols registrationVsevolod Stakhov2024-09-021-442/+300
| | | | I'm curious why this bug has been not mentioned for such a long time...
* Merge pull request #5118 from rspamd/vstakhov-fix-5089Vsevolod Stakhov2024-08-291-0/+20
|\ | | | | Fix for issue #5089 - learning of the empty tasks
| * [Fix] Another safe-guards for learning/classifying an empty messageVsevolod Stakhov2024-08-281-0/+20
| |
| * [Minor] Fix stripping of the last charactersVsevolod Stakhov2024-08-171-10/+7
| |
| * [Fix] Check message before trying to dereference pointerVsevolod Stakhov2024-08-171-5/+5
| | | | | | | | Issue: #5089
* | Update history_redis.luaDmitriy Alekseev2024-08-241-1/+1
| |
* | Set expiration for history_redis to 5 days by defaultDmitriy Alekseev2024-08-241-1/+1
| |
* | Fix issue with broken HTTP message to learn endpoints (#5106)Vsevolod Stakhov2024-08-172-15/+12
| | | | | | | | | | | | | | * [Fix] Check message before trying to dereference pointer Issue: #5089 * [Minor] Fix stripping of the last characters
* | Provide OpenSSL 3.0 support for lua_rsa (#5101)Ivan Stakhov2024-08-171-76/+88
|/ | | | | | | | | | | | | | | | | | | | | | | | | * [Fix] Provide OSSL 3.0 support for lua_rsa (not working) * [Fix] Provide full OpenSSL 3.0 for lua_rsa * [Minor] Little clean up * [Minor] Clean up code from debug * [Test] Replace for fixed size fstring allocation * [Test] Add rsa padding and signature md for pctx * [Test] Little changes * [Fix] Little fix for rsa_sign_memory work correctly * [Minor] Little clean up * [Minor] Small fix * [Minor] Little clean up * [Test] Add signature verification test for rsa2048
* [Rework] Breaking: Rewrite cfg transform and remove legacyVsevolod Stakhov2024-08-151-6/+2
| | | | | | | | | | | | | What is removed: * SURBL/Email -> rbl conversion * IP reputation -> reputation conversion Reasoning: * Too hard to support forever * Outdated * Want to use transparent UCL instead of modifying the config from Lua
* [Fix] Use proper keys when doing asymmetric encryptionVsevolod Stakhov2024-08-091-4/+4
|
* [Minor] Oops, fix pubkey loadingVsevolod Stakhov2024-08-091-4/+1
|
* [Project] Remove NIST mode from everywhereVsevolod Stakhov2024-08-0919-670/+333
|
* [Project] Remove NIST (OpenSSL) mode from cryptoboxVsevolod Stakhov2024-08-092-1025/+175
| | | | | | | | In fact, this mode increases complexity of the crypto library for no good reason: it is never used in Rspamd and it should not be used in fact. It was a research project in the past that should not be supported any longer.
* [Fix] Apply the same workaround for signing keysVsevolod Stakhov2024-08-081-9/+13
|
* [Fix] Add workaround for the bug in OpenSSL < 3.0.8Vsevolod Stakhov2024-08-081-12/+26
|
* [Minor] Another fight with OpenSSL so called "consistency"Vsevolod Stakhov2024-08-071-1/+1
|
* [Minor] Another try to fix p256 encryptionVsevolod Stakhov2024-08-071-7/+8
|
* [Fix] More bogus sizes fixVsevolod Stakhov2024-08-071-4/+5
|
* [Minor] Some more fixes for old OSSLVsevolod Stakhov2024-08-071-2/+1
|
* [Fix] Sign key != encryption key, omgVsevolod Stakhov2024-08-072-14/+16
|
* [Minor] Some more incompatibilities cleaned upVsevolod Stakhov2024-08-071-2/+2
|
* [Fix] Fix compatibility with OSSL 1.0Vsevolod Stakhov2024-08-072-6/+2
|
* [CritFix] The max size for signing key is actually 65 bytes for p256Vsevolod Stakhov2024-08-071-1/+1
|