FS#59254 : [exim] DANE support missing

FS#59254 - [exim] DANE support missing

Attached to Project: Community Packages
Opened by ipp (n8V8r) - Friday, 06 July 2018, 19:56 GMT
Last edited by Andreas Radke (AndyRTR) - Tuesday, 04 May 2021, 06:09 GMT

Task Type	Feature Request
Category	Packages
Status	Closed
Assigned To	Felix Yan (felixonmars)
Architecture	x86_64
Severity	Low
Priority	Normal
Reported Version
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	0
Private	No

Details

Description: upstream provides DANE support https://www.exim.org/exim-html-current/doc/html/spec_html/ch-the_smtp_transport.html however downstream is lacking it, probably not built with DANE support

Additional info:
* package version(s) 4.91 #1 built 27-Jun-2018 13:27:46
* config and/or log files etc.

Exim configuration error in line 733 of /etc/mail/exim.conf:
option "hosts_try_dane" unknown

Steps to reproduce:

adding [hosts_try_dane = *] to [remote_smtp:]

This task depends upon

Closed by Andreas Radke (AndyRTR)
Tuesday, 04 May 2021, 06:09 GMT
Reason for closing: Implemented
Additional comments about closing: Implemented exim 4.93-1

Comment by loqs (loqs) - Friday, 06 July 2018, 21:08 GMT

https://github.com/Exim/exim/blob/c1b32ab6ef9300e2ecab6736139e3e50874cd3a6/src/src/EDITME#L370
missing from exim.Makefile

Comment by ipp (n8V8r) - Saturday, 07 July 2018, 07:06 GMT

It appears to be present there

# Uncomment the following line to add DANE support
# Note: Enabling this unconditionally overrides DISABLE_DNSSEC
# For DANE under GnuTLS we need an additional library. See TLS_LIBS below.
# SUPPORT_DANE=yes

Comment by loqs (loqs) - Saturday, 07 July 2018, 09:15 GMT

@n8V8r that is upstream where it is present (although commented so disabled) it is missing from exim.Makefile https://git.archlinux.org/svntogit/community.git/tree/trunk/exim.Makefile?h=packages/exim&id=12e0e667311600a87f662471fb2b085edef28f2a

Comment by loqs (loqs) - Saturday, 07 July 2018, 11:46 GMT

Please try this exim.Makefile which is updated for 4.91 with DANE enabled

exim.Makefile (64.2 KiB)

Comment by ipp (n8V8r) - Saturday, 07 July 2018, 15:10 GMT

No dev-tools installed, I am not so much into compiling, I am afraid. Hope that the downstream maintainer would kindly fix it in the repo.

Noticed though that [AUTH_TLS=yes] is also absent at downstream, respectively disabled in that updated exim.Makefile.

Comment by loqs (loqs) - Saturday, 07 July 2018, 16:14 GMT

AUTH_TLS is not needed for authentication over a TLS connection but successfully negotiating such a connection is the authentication in AUTH_TLS.
You want that anabled as well as DANE?

Comment by ipp (n8V8r) - Saturday, 07 July 2018, 16:19 GMT

It would make sense to have it enabled too and suppose it does not have an inclement impact to enable it, or does it?

Comment by Chris (cimnine) - Monday, 10 June 2019, 16:17 GMT

Since 4.91 DANE is considered stable. Is there any reason not to enable it?

Comment by Caleb Maclennan (alerque) - Saturday, 01 May 2021, 18:22 GMT

This bug report appears to be obsolete. My Arch `exim --version` reports DANE support.

Comment by loqs (loqs) - Saturday, 01 May 2021, 20:41 GMT

It was enabled by default in [1] 4.93+ and merged into Arch's exim.Makefile in [2] exim 4.93-1.

[1] https://github.com/Exim/exim/commit/59c0959a36649c4554bd0f18f2c2e74571ed41eb
[2] https://github.com/archlinux/svntogit-community/commit/04aa880cbb59ca87bc4cc39ae3bfaa7398b57197

	Tasks related to this task (0)

Duplicate tasks of this task (0)

Arch Linux

FS#59254 - [exim] DANE support missing

Details

Loading...