Log message:
rspamd: update to 3.11.0.

3.11.0: 16 Dec 2024
  * [Conf] Add lua.local.d folder
  * [Conf] Add more ways to extend Rspamd configuration
  * [Conf] Allow to install examples conditionally
  * [Conf] Fix comments in elastic.conf
  * [Conf] Install examples
  * [Conf] Use full hostnames for SURBL
  * [CritFix] Allow to reupload scripts when Redis is restarted
  * [CritFix] Fix ARC-Seal signing
  * [CritFix] Properly check dynamic keys in fuzzy storage
  * [Feature] Add LRU cache for last filled ratelimit buckets
  * [Feature] Add include/exclude logic for headers
  * [Feature] Add ratelimit util to manage last filled ratelimit buckets
  * [Feature] Dump current ratelimits for fuzzy keys
  * [Feature] GPT: Try harder to find JSON in NN reply
  * [Feature] Improve address rotation algorithm
  * [Feature] Show stats in rspamadm
  * [Feature] Unify displayed part selection
  * [Fix] Avoid null-bytes in Log-Tag header value.
  * [Fix] Another story about char sign
  * [Fix] Check DNS limits when resolving MX/PTR records
  * [Fix] Dmarc: Properly encode structured headers
  * [Fix] Do not abort when OpenSSL is broken, report that to a user
  * [Fix] Fix dealing with happy eyeballs in SPF
  * [Fix] Fix memory leak in `lua_new_text` invocations
  * [Fix] Fix usage of the logging function
  * [Fix] Load "default" provider as well as "legacy"
  * [Fix] Milter headers: fold before encoding
  * [Fix] More fixes to rfc2047 encoding
  * [Fix] More things to fix
  * [Fix] Phishing: Fix many cases of FP for the same domains
  * [Fix] Remove USPOOF_SINGLE_SCRIPT_CONFUSABLE from the checks
  * [Fix] Restore propagation of spam/ham learns
  * [Fix] Sigh, another fix
  * [Fix] Some fixes to `rspamadm ratelimit`
  * [Fix] Some more fixes
  * [Fix] Use `dkim_signing` for `sign_headers` option
  * [Fix] Use correct type for keylen in lua_ucl_newindex
  * [Fix] Use cumulative timeout when dealing with TCP connections
  * [Fix] Use unsigned char for ragel machines
  * [Project] Add routine to strip attachments
  * [Project] Add tool to rspamadm
  * [Project] Initial stuff to implement messages anonymization
  * [Project] Keep Changelog updated
  * [Project] Various fixes and `rspamadm mime strip` command
  * [Rework] Allow `Content-Encoding` standard header for zstd compression
  * [Rework] Breaking: Actualize elastic module, support Elastic 8 & \ 
OpenSearch 2, add index policy with logs retention and many more
  * [Rework] Multimap should use only distinct text parts for content matching
  * [Rework] Replace fastutf with simdutf
  * [Rework] Rewrite rfc2047 encoding as it was totally broken
  * [Rework] Update hiredis to 1.2.0

Log message:
*: recursive bump for icu 76 shlib major version bump

Log message:
*: revbump for icu downgrade

Log message:
*: recursive bump for icu 76.1 shlib bump

Log message:
mail/rspamd: prevent DKIM verification problem with sendmail.

Prevent DKIM verification problem with sendmail.
This fix provided from Yoshitaka Tokugawa.

Bump PKGREVISION.

Log message:
mail/rspamd: update to 3.10.2

3.10.2 (2024-10-21)

* [CritFix] Fix ARC-Seal signing
* [Fix] add EOF to openmetrics response in proxy and server

3.10.1 (2024-10-16)

What's Changed

* [Fix] Use correct type for keylen in lua_ucl_newindex by @arkamar in #5169
* Update hiredis library removing all hacks by @vstakhov in #5167
* Remove proxy from url_redirector.conf as it not the option by @dragoangel
  in #5164
* chore(publicsuffix): update effective_tld_names.dat by @wdhdev in #5176
* [Fix] Avoid null-bytes in Log-Tag header value by @smarsching in #5179
* [Fix] Do not abort when OpenSSL is broken, report that to a user by
  @vstakhov in #5188
* Some build fixes by @vstakhov in #5189
* Some more fixes by @vstakhov in #5190

New Contributors

* @wdhdev made their first contribution in #5176
* @smarsching made their first contribution in #5179

Log message:
rspamd: update to 3.10.0.

3.10.0: 30 Sep 2024
  * [Conf] Add SenderScore RPBL return codes
  * [Conf] Add SenderScore Reputationlist RBL
  * [Conf] Increase scores for strange things in the archives
  * [CritFix] The max size for signing key is actually 65 bytes for p256
  * [Feature] Add rspamadm secretbox command
  * [Feature] Add rspamd_cxx_unit_cryptobox for unit testing
  * [Feature] Add support for OpenSSL 3.0
  * [Feature] Add support for OpenSSL 3.0 for DKIM
  * [Feature] Add tests for rspamd_cryptobox
  * [Feature] Add tooling to encrypt strings in Lua
  * [Feature] Allow differen modes for fuzzy rules
  * [Feature] Allow to set negative group score limit via `min_score`
  * [Feature] DMARC: Implement reporting.only_domains setting
  * [Fix] Add workaround for the bug in OpenSSL < 3.0.8
  * [Fix] Another fix for Redis schema
  * [Fix] Another safe-guards for learning/classifying an empty message
  * [Fix] Apply the same workaround for signing keys
  * [Fix] Check message before trying to dereference pointer
  * [Fix] Do not install doctest stuff
  * [Fix] Encode headers that we send to milter add header
  * [Fix] Fix DCC `rep` handling
  * [Fix] Fix Redis scripts uploading when Redis is not ready
  * [Fix] Fix and rework various parts
  * [Fix] Fix compatibility with OSSL 1.0
  * [Fix] Fix glib internals by setting locale in `rspamc`
  * [Fix] GPT: Fix bug in condition check
  * [Fix] Get rid of EVP_PKEY_CTX_set1_rsa_keygen_pubexp
  * [Fix] Iterate over dynamic keys in fuzzy storage
  * [Fix] Make tostring in UCL a bit less brain-damaged
  * [Fix] More bogus sizes fix
  * [Fix] Preserve the previous behaviour of RDNS_* checks
  * [Fix] Rework DMARC to correctly handle spaces in DMARC records Issue: #4906
  * [Fix] Sign key != encryption key, omg
  * [Fix] Unify lua symbols registration
  * [Fix] Use proper keys when doing asymmetric encryption
  * [Project] Add API method to push unwrapped UCL object
  * [Project] Add more stuff to transparent UCL
  * [Project] Add parsing of key limits and expire date
  * [Project] Add ratelimit parsing for fuzzy keys
  * [Project] Allow manipulations with opaque UCL objects
  * [Project] Allow to change log tag from HTTP request
  * [Project] Implement expiration
  * [Project] Implement per-key ratelimit
  * [Project] Move ratelimit parsing stuff to a common library
  * [Project] Remove NIST (OpenSSL) mode from cryptobox
  * [Project] Remove NIST mode from everywhere
  * [Project] Rework ratelimits check
  * [Project] Some more fixes
  * [Project] Start support of MIME UTF8
  * [Project] Try to allow more transparent access of ucl elements
  * [Rework] Allow more flexible keypair encoding
  * [Rework] Breaking: Rewrite cfg transform and remove legacy
  * [Rework] Change fuzzy error symbols
  * [Rework] Change the logic of skipping symbols
  * [Rework] Clean up legacy code
  * [Rework] Implement new replies logic on the server's side
  * [Rework] Remove control block support
  * [Rework] Resolve rdns in a separate function
  * [Rework] Use __builtin_cpu_supports where possible
  * [Rework] Use a more straight structure for DKIM keys
  * [Rules] Fix some old rules

Log message:
rspamd: fix list of cfgfiles, and add reminder comment