diff options
author | Eray Aslan <eras@gentoo.org> | 2012-03-07 10:27:37 +0000 |
---|---|---|
committer | Eray Aslan <eras@gentoo.org> | 2012-03-07 10:27:37 +0000 |
commit | 4e36f8fbe7c09a320ba275bd12ff4c41fe3e9594 (patch) | |
tree | 71bfe21f6731571eb25968952fb49fdb88f236f7 /mail-mta/postfix | |
parent | version bump (diff) | |
download | gentoo-2-4e36f8fbe7c09a320ba275bd12ff4c41fe3e9594.tar.gz gentoo-2-4e36f8fbe7c09a320ba275bd12ff4c41fe3e9594.tar.bz2 gentoo-2-4e36f8fbe7c09a320ba275bd12ff4c41fe3e9594.zip |
Do not return success in init script with a broken configuration.
(Portage version: 2.1.10.49/cvs/Linux x86_64)
Diffstat (limited to 'mail-mta/postfix')
-rw-r--r-- | mail-mta/postfix/ChangeLog | 9 | ||||
-rw-r--r-- | mail-mta/postfix/files/postfix.rc6.2.7 | 41 | ||||
-rw-r--r-- | mail-mta/postfix/files/postfix_master-monitor.patch | 328 | ||||
-rw-r--r-- | mail-mta/postfix/postfix-2.10_pre20120305-r1.ebuild | 317 |
4 files changed, 676 insertions, 19 deletions
diff --git a/mail-mta/postfix/ChangeLog b/mail-mta/postfix/ChangeLog index f3e9e5bfe0db..7cc45c5577bc 100644 --- a/mail-mta/postfix/ChangeLog +++ b/mail-mta/postfix/ChangeLog @@ -1,6 +1,13 @@ # ChangeLog for mail-mta/postfix # Copyright 1999-2012 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/mail-mta/postfix/ChangeLog,v 1.342 2012/03/06 15:03:53 eras Exp $ +# $Header: /var/cvsroot/gentoo-x86/mail-mta/postfix/ChangeLog,v 1.343 2012/03/07 10:27:37 eras Exp $ + +*postfix-2.10_pre20120305-r1 (07 Mar 2012) + + 07 Mar 2012; Eray Aslan <eras@gentoo.org> + +postfix-2.10_pre20120305-r1.ebuild, +files/postfix_master-monitor.patch, + files/postfix.rc6.2.7: + Do not return success in init script with a broken configuration. 06 Mar 2012; Eray Aslan <eras@gentoo.org> +files/postfix.rc6.2.7: add checking to start() in init script diff --git a/mail-mta/postfix/files/postfix.rc6.2.7 b/mail-mta/postfix/files/postfix.rc6.2.7 index 151617360e6b..aecd8e71f9d8 100644 --- a/mail-mta/postfix/files/postfix.rc6.2.7 +++ b/mail-mta/postfix/files/postfix.rc6.2.7 @@ -1,10 +1,15 @@ #!/sbin/runscript # Copyright 1999-2012 Gentoo Foundation # Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/mail-mta/postfix/files/postfix.rc6.2.7,v 1.1 2012/03/06 15:03:53 eras Exp $ +# $Header: /var/cvsroot/gentoo-x86/mail-mta/postfix/files/postfix.rc6.2.7,v 1.2 2012/03/07 10:27:37 eras Exp $ -# Please read http://www.postfix.org/MULTI_INSTANCE_README.html for multi instance support +extra_started_commands="reload abort flush" + +description_reload="Re-read configuration files. Running processes terminate at their earliest convenience." +description_abort="Stop the Postfix mail system abruptly. Running processes are signaled to stop immediately." +description_flush="Force delivery: attempt to deliver every message in the deferred mail queue." +# Please read http://www.postfix.org/MULTI_INSTANCE_README.html for multi instance support CONF_DIR="/etc/postfix" CONF_OPT="${SVCNAME##*.}" if [ -n ${CONF_OPT} -a ${SVCNAME} != "postfix" ]; then @@ -18,12 +23,6 @@ else CONF_MESSAGE="(${CONF_DIR})" fi -extra_started_commands="reload abort flush" - -description_reload="Re-read configuration files. Running processes terminate at their earliest convenience." -description_abort="Stop the Postfix mail system abruptly. Running processes are signaled to stop immediately." -description_flush="Force delivery: attempt to deliver every message in the deferred mail queue." - depend() { use logger dns ypbind amavisd antivirus postfix_greylist net saslauthd if [ "${SVCNAME}" = "postfix" ]; then @@ -32,7 +31,6 @@ depend() { } start() { - local _retval if [ ! -z "${CONF_PARAM}" ]; then einfo "Please consider updating your config for postmulti support." fi @@ -42,20 +40,27 @@ start() { return 1 fi /usr/sbin/postfix ${CONF_PARAM} start >/dev/null 2>&1 - _retval=$? - # check that master started correctly - if [ "${_retval}" ]; then - sleep 1 - /usr/sbin/postfix ${CONF_PARAM} status >/dev/null 2>&1 - _retval=$? - fi - eend "${_retval}" + eend $? } stop() { ebegin "Stopping postfix ${CONF_MESSAGE}" /usr/sbin/postfix ${CONF_PARAM} stop >/dev/null 2>&1 - eend $? + eend +} + +status() { + local _retval + einfon "" + /usr/sbin/postfix ${CONF_PARAM} status + _retval=$? + if [ x${_retval} = 'x0' ]; then + mark_service_started "${SVCNAME}" + eend 0 + else + mark_service_stopped "${SVCNAME}" + eend 3 + fi } reload() { diff --git a/mail-mta/postfix/files/postfix_master-monitor.patch b/mail-mta/postfix/files/postfix_master-monitor.patch new file mode 100644 index 000000000000..539e3f0e6156 --- /dev/null +++ b/mail-mta/postfix/files/postfix_master-monitor.patch @@ -0,0 +1,328 @@ +diff --exclude=man --exclude=html --exclude=README_FILES --exclude=INSTALL --exclude=.indent.pro --exclude=Makefile.in -r -cr --new-file /var/tmp/postfix-2.10-20120305/HISTORY ./HISTORY +*** /var/tmp/postfix-2.10-20120305/HISTORY Mon Mar 5 10:35:50 2012 +--- ./HISTORY Tue Mar 6 19:40:04 2012 +*************** +*** 17668,17670 **** +--- 17668,17685 ---- + of specific permit-like actions in Postfix SMTP server + access lists. Files: mantools/postlink, proto/postconf.proto, + global/mail_params.h, smtpd/smtpd.c, smtpd/smtpd_check.c. ++ ++ 20120206 ++ ++ Workaround: some Linux systems don't use "postfix status" ++ to find out if the mail system still runs. Instead they ++ claim that Postfix runs even when the master has aborted. ++ Even worse, they refuse to start Postfix when the problem ++ is fixed, claiming that Postfix is still running! As a ++ workaround, "postfix start" now waits until *after* master ++ daemon process initialization and returns a non-zero exit ++ status if daemon initialization did not complete in time. ++ Of course the real fix is that Linux systems stop reporting ++ bogus information and use "postfix status" properly. Files: ++ conf/postfix-script, master/master.c, master/master.h. ++ master/master_monitor.c. +diff --exclude=man --exclude=html --exclude=README_FILES --exclude=INSTALL --exclude=.indent.pro --exclude=Makefile.in -r -cr --new-file /var/tmp/postfix-2.10-20120305/conf/postfix-script ./conf/postfix-script +*** /var/tmp/postfix-2.10-20120305/conf/postfix-script Fri Jan 15 20:07:52 2010 +--- ./conf/postfix-script Tue Mar 6 17:19:38 2012 +*************** +*** 124,130 **** + $daemon_directory/postfix-script check-warn + fi + $INFO starting the Postfix mail system +! $daemon_directory/master & + ;; + + drain) +--- 124,134 ---- + $daemon_directory/postfix-script check-warn + fi + $INFO starting the Postfix mail system +! # NOTE: start as foreground process to get the initialization status. +! $daemon_directory/master || { +! $FATAL "mail system startup failed" +! exit 1 +! } + ;; + + drain) +diff --exclude=man --exclude=html --exclude=README_FILES --exclude=INSTALL --exclude=.indent.pro --exclude=Makefile.in -r -cr --new-file /var/tmp/postfix-2.10-20120305/src/master/master.c ./src/master/master.c +*** /var/tmp/postfix-2.10-20120305/src/master/master.c Fri Dec 9 20:10:00 2011 +--- ./src/master/master.c Tue Mar 6 19:41:15 2012 +*************** +*** 4,10 **** + /* SUMMARY + /* Postfix master process + /* SYNOPSIS +! /* \fBmaster\fR [\fB-Ddtv\fR] [\fB-c \fIconfig_dir\fR] [\fB-e \fIexit_time\fR] + /* DESCRIPTION + /* The \fBmaster\fR(8) daemon is the resident process that runs Postfix + /* daemons on demand: daemons to send or receive messages via the +--- 4,10 ---- + /* SUMMARY + /* Postfix master process + /* SYNOPSIS +! /* \fBmaster\fR [\fB-Ddftv\fR] [\fB-c \fIconfig_dir\fR] [\fB-e \fIexit_time\fR] + /* DESCRIPTION + /* The \fBmaster\fR(8) daemon is the resident process that runs Postfix + /* daemons on demand: daemons to send or receive messages via the +*************** +*** 37,42 **** +--- 37,46 ---- + /* .IP "\fB-e \fIexit_time\fR" + /* Terminate the master process after \fIexit_time\fR seconds. Child + /* processes terminate at their convenience. ++ /* .IP \fB-f\fR ++ /* Run as a foreground process. By default, the master daemon ++ /* disappears into the background after successful initialization ++ /* (Postfix 2.10 and later). + /* .IP \fB-t\fR + /* Test mode. Return a zero exit status when the \fBmaster.pid\fR lock + /* file does not exist or when that file is not locked. This is evidence +*************** +*** 63,69 **** + /* terminate only the master ("\fBpostfix stop\fR") and allow running + /* processes to finish what they are doing. + /* DIAGNOSTICS +! /* Problems are reported to \fBsyslogd\fR(8). + /* ENVIRONMENT + /* .ad + /* .fi +--- 67,75 ---- + /* terminate only the master ("\fBpostfix stop\fR") and allow running + /* processes to finish what they are doing. + /* DIAGNOSTICS +! /* Problems are reported to \fBsyslogd\fR(8). The exit status +! /* is non-zero in case of problems, including problems while +! /* initializing as a master daemon process in the background. + /* ENVIRONMENT + /* .ad + /* .fi +*************** +*** 243,248 **** +--- 249,256 ---- + VSTRING *why; + WATCHDOG *watchdog; + ARGV *import_env; ++ int dont_fork = 0; ++ int monitor_fd = -1; + + /* + * Fingerprint executables and core dumps. +*************** +*** 311,317 **** + /* + * Process JCL. + */ +! while ((ch = GETOPT(argc, argv, "c:Dde:tv")) > 0) { + switch (ch) { + case 'c': + if (setenv(CONF_ENV_PATH, optarg, 1) < 0) +--- 319,325 ---- + /* + * Process JCL. + */ +! while ((ch = GETOPT(argc, argv, "c:Dde:ftv")) > 0) { + switch (ch) { + case 'c': + if (setenv(CONF_ENV_PATH, optarg, 1) < 0) +*************** +*** 319,333 **** +--- 327,346 ---- + break; + case 'd': + master_detach = 0; ++ dont_fork = 1; + break; + case 'e': + event_request_timer(master_exit_event, (char *) 0, atoi(optarg)); + break; ++ case 'f': ++ dont_fork = 1; ++ break; + case 'D': + debug_me = 1; + break; + case 't': + test_lock = 1; ++ dont_fork = 1; + break; + case 'v': + msg_verbose++; +*************** +*** 345,350 **** +--- 358,374 ---- + usage(argv[0]); + + /* ++ * Run a foreground monitor process that returns an exit status of 0 when ++ * the child background process reports successful initialization as a ++ * daemon process. We use a generous limit in case main/master.cf specify ++ * symbolic hosts/ports and the naming service is slow. ++ */ ++ #define MASTER_INIT_TIMEOUT 100 /* keep this limit generous */ ++ ++ if (dont_fork == 0) ++ monitor_fd = master_monitor(MASTER_INIT_TIMEOUT); ++ ++ /* + * If started from a terminal, get rid of any tty association. This also + * means that all errors and warnings must go to the syslog daemon. + */ +*************** +*** 471,476 **** +--- 495,508 ---- + var_mail_version, var_config_dir); + + /* ++ * Report successful initialization to the foreground monitor process. ++ */ ++ if (monitor_fd >= 0) { ++ write(monitor_fd, "", 1); ++ (void) close(monitor_fd); ++ } ++ ++ /* + * Process events. The event handler will execute the read/write/timer + * action routines. Whenever something has happened, see if we received + * any signal in the mean time. Although the master process appears to do +diff --exclude=man --exclude=html --exclude=README_FILES --exclude=INSTALL --exclude=.indent.pro --exclude=Makefile.in -r -cr --new-file /var/tmp/postfix-2.10-20120305/src/master/master.h ./src/master/master.h +*** /var/tmp/postfix-2.10-20120305/src/master/master.h Wed Sep 7 13:18:25 2011 +--- ./src/master/master.h Tue Mar 6 17:06:35 2012 +*************** +*** 219,224 **** +--- 219,229 ---- + extern void master_str_watch(const MASTER_STR_WATCH *); + extern void master_int_watch(MASTER_INT_WATCH *); + ++ /* ++ * master_monitor.c ++ */ ++ extern int master_monitor(int); ++ + /* DIAGNOSTICS + /* BUGS + /* SEE ALSO +diff --exclude=man --exclude=html --exclude=README_FILES --exclude=INSTALL --exclude=.indent.pro --exclude=Makefile.in -r -cr --new-file /var/tmp/postfix-2.10-20120305/src/master/master_monitor.c ./src/master/master_monitor.c +*** /var/tmp/postfix-2.10-20120305/src/master/master_monitor.c Wed Dec 31 19:00:00 1969 +--- ./src/master/master_monitor.c Tue Mar 6 17:32:19 2012 +*************** +*** 0 **** +--- 1,100 ---- ++ /*++ ++ /* NAME ++ /* master_monitor 3 ++ /* SUMMARY ++ /* Postfix master - start-up monitoring ++ /* SYNOPSIS ++ /* #include "master.h" ++ /* ++ /* int master_monitor(time_limit) ++ /* int time_limit; ++ /* DESCRIPTION ++ /* master_monitor() forks off a background child process, and ++ /* returns in the child. The result value is the file descriptor ++ /* on which the child process must write one byte after it ++ /* completes successful initialization as a daemon process. ++ /* ++ /* The foreground process waits for the child's completion for ++ /* a limited amount of time. It terminates with exit status 0 ++ /* in case of success, non-zero otherwise. ++ /* DIAGNOSTICS ++ /* Fatal errors: system call failure. ++ /* BUGS ++ /* SEE ALSO ++ /* LICENSE ++ /* .ad ++ /* .fi ++ /* The Secure Mailer license must be distributed with this software. ++ /* AUTHOR(S) ++ /* Wietse Venema ++ /* IBM T.J. Watson Research ++ /* P.O. Box 704 ++ /* Yorktown Heights, NY 10598, USA ++ /*--*/ ++ ++ /* System library. */ ++ ++ #include <sys_defs.h> ++ #include <signal.h> ++ #include <unistd.h> ++ #include <stdlib.h> ++ ++ /* Utility library. */ ++ ++ #include <msg.h> ++ #include <iostuff.h> ++ ++ /* Application-specific. */ ++ ++ #include <master.h> ++ ++ /* master_monitor - fork off a foreground monitor process */ ++ ++ int master_monitor(int time_limit) ++ { ++ pid_t pid; ++ int pipes[2]; ++ char buf[1]; ++ ++ /* ++ * Sanity check. ++ */ ++ if (time_limit <= 0) ++ msg_panic("master_monitor: bad time limit: %d", time_limit); ++ ++ /* ++ * Set up the plumbing for child-to-parent communication. ++ */ ++ if (pipe(pipes) < 0) ++ msg_fatal("pipe: %m"); ++ close_on_exec(pipes[0], CLOSE_ON_EXEC); ++ close_on_exec(pipes[1], CLOSE_ON_EXEC); ++ ++ /* ++ * Fork the child, and wait for it to report successful initialization. ++ */ ++ switch (pid = fork()) { ++ case -1: ++ /* Error. */ ++ msg_fatal("fork: %m"); ++ case 0: ++ /* Child. Initialize as daemon in the background. */ ++ close(pipes[0]); ++ return (pipes[1]); ++ default: ++ /* Parent. Monitor the child in the foreground. */ ++ close(pipes[1]); ++ switch (timed_read(pipes[0], buf, 1, time_limit, (char *) 0)) { ++ default: ++ /* The child process still runs, but something is wrong. */ ++ (void) kill(pid, SIGKILL); ++ /* FALLTHROUGH */ ++ case 0: ++ /* The child process exited prematurely. */ ++ msg_fatal("daemon initialization failure"); ++ case 1: ++ /* The child process initialized successfully. */ ++ exit(0); ++ } ++ } ++ } +--- src/master/Makefile.in 2012-01-22 17:55:16.000000000 +0200 ++++ src/master/Makefile.in 2012-03-07 11:10:55.255442235 +0200 +@@ -2,10 +2,12 @@ + SRCS = master.c master_conf.c master_ent.c master_sig.c master_avail.c \ + master_spawn.c master_service.c master_status.c master_listen.c \ + master_proto.c single_server.c multi_server.c master_vars.c \ +- master_wakeup.c master_flow.c master_watch.c mail_flow.c ++ master_wakeup.c master_flow.c master_watch.c mail_flow.c \ ++ master_monitor.c + OBJS = master.o master_conf.o master_ent.o master_sig.o master_avail.o \ + master_spawn.o master_service.o master_status.o master_listen.o \ +- master_vars.o master_wakeup.o master_watch.o master_flow.o ++ master_vars.o master_wakeup.o master_watch.o master_flow.o \ ++ master_monitor.o + LIB_OBJ = single_server.o multi_server.o trigger_server.o master_proto.o \ + mail_flow.o event_server.o + HDRS = mail_server.h master_proto.h mail_flow.h diff --git a/mail-mta/postfix/postfix-2.10_pre20120305-r1.ebuild b/mail-mta/postfix/postfix-2.10_pre20120305-r1.ebuild new file mode 100644 index 000000000000..6bf005083316 --- /dev/null +++ b/mail-mta/postfix/postfix-2.10_pre20120305-r1.ebuild @@ -0,0 +1,317 @@ +# Copyright 1999-2012 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/mail-mta/postfix/postfix-2.10_pre20120305-r1.ebuild,v 1.1 2012/03/07 10:27:37 eras Exp $ + +EAPI=4 + +inherit eutils multilib ssl-cert toolchain-funcs flag-o-matic pam versionator + +MY_PV="${PV/_pre/-}" +MY_SRC="${PN}-${MY_PV}" +MY_URI="ftp://ftp.porcupine.org/mirrors/postfix-release/experimental" +VDA_PV="2.8.8" +VDA_P="${PN}-vda-v10-${VDA_PV}" +RC_VER="2.7" + +DESCRIPTION="A fast and secure drop-in replacement for sendmail." +HOMEPAGE="http://www.postfix.org/" +SRC_URI="${MY_URI}/${MY_SRC}.tar.gz + vda? ( http://vda.sourceforge.net/VDA/${VDA_P}.patch ) " + +LICENSE="IBM" +SLOT="0" +KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~ppc ~ppc64 ~sh ~sparc ~x86 ~x86-fbsd" +IUSE="+berkdb cdb doc dovecot-sasl hardened ldap ldap-bind memcached mbox mysql nis pam postgres sasl selinux sqlite ssl vda" + +DEPEND=">=dev-libs/libpcre-3.4 + dev-lang/perl + berkdb? ( >=sys-libs/db-3.2 ) + cdb? ( || ( >=dev-db/tinycdb-0.76 >=dev-db/cdb-0.75-r1 ) ) + ldap? ( net-nds/openldap ) + ldap-bind? ( net-nds/openldap[sasl] ) + mysql? ( virtual/mysql ) + pam? ( virtual/pam ) + postgres? ( dev-db/postgresql-base ) + sasl? ( >=dev-libs/cyrus-sasl-2 ) + sqlite? ( dev-db/sqlite:3 ) + ssl? ( >=dev-libs/openssl-0.9.6g )" + +RDEPEND="${DEPEND} + dovecot-sasl? ( net-mail/dovecot ) + memcached? ( net-misc/memcached ) + net-mail/mailbase + selinux? ( sec-policy/selinux-postfix ) + !mail-mta/courier + !mail-mta/esmtp + !mail-mta/exim + !mail-mta/mini-qmail + !mail-mta/msmtp[mta] + !mail-mta/nbsmtp + !mail-mta/netqmail + !mail-mta/nullmailer + !mail-mta/qmail-ldap + !mail-mta/sendmail + !<mail-mta/ssmtp-2.64-r2 + !>=mail-mta/ssmtp-2.64-r2[mta] + !net-mail/fastforward" + +# vda patch is broken for 2.10 +REQUIRED_USE="ldap-bind? ( ldap sasl ) + !vda" + +S="${WORKDIR}/${MY_SRC}" + +pkg_setup() { + # Add postfix, postdrop user/group (bug #77565) + enewgroup postfix 207 + enewgroup postdrop 208 + enewuser postfix 207 -1 /var/spool/postfix postfix,mail +} + +src_prepare() { + if use vda; then + epatch "${DISTDIR}"/${VDA_P}.patch + fi + + if ! use berkdb; then + epatch "${FILESDIR}/${PN}_no-berkdb.patch" + fi + + # wait for master to initialize properly for postfix start + epatch "${FILESDIR}/${PN}_master-monitor.patch" + + sed -i -e "/^#define ALIAS_DB_MAP/s|:/etc/aliases|:/etc/mail/aliases|" \ + src/util/sys_defs.h || die "sed failed" + + # change default paths to better comply with portage standard paths + sed -i -e "s:/usr/local/:/usr/:g" conf/master.cf || die "sed failed" +} + +src_configure() { + # Make sure LDFLAGS get passed down to the executables. + local mycc="-DHAS_PCRE" mylibs="${LDFLAGS} -lpcre -lcrypt -lpthread" + + use pam && mylibs="${mylibs} -lpam" + + if use ldap; then + mycc="${mycc} -DHAS_LDAP" + mylibs="${mylibs} -lldap -llber" + fi + + if use mysql; then + mycc="${mycc} -DHAS_MYSQL $(mysql_config --include)" + mylibs="${mylibs} $(mysql_config --libs)" + fi + + if use postgres; then + mycc="${mycc} -DHAS_PGSQL -I$(pg_config --includedir)" + mylibs="${mylibs} -lpq -L$(pg_config --libdir)" + fi + + if use sqlite; then + mycc="${mycc} -DHAS_SQLITE" + mylibs="${mylibs} -lsqlite3" + fi + + if use ssl; then + mycc="${mycc} -DUSE_TLS" + mylibs="${mylibs} -lssl -lcrypto" + fi + + # broken. and "in other words, not supported" by upstream. + # Use inet_protocols setting in main.cf + #if ! use ipv6; then + # mycc="${mycc} -DNO_IPV6" + #fi + + if use sasl; then + if use dovecot-sasl; then + # Set dovecot as default. + mycc="${mycc} -DDEF_SASL_SERVER=\\\"dovecot\\\"" + fi + if use ldap-bind; then + mycc="${mycc} -DUSE_LDAP_SASL" + fi + mycc="${mycc} -DUSE_SASL_AUTH -DUSE_CYRUS_SASL -I/usr/include/sasl" + mylibs="${mylibs} -lsasl2" + elif use dovecot-sasl; then + mycc="${mycc} -DUSE_SASL_AUTH -DDEF_SERVER_SASL_TYPE=\\\"dovecot\\\"" + fi + + if ! use nis; then + sed -i -e "s|#define HAS_NIS|//#define HAS_NIS|g" \ + src/util/sys_defs.h || die "sed failed" + fi + + if ! use berkdb; then + mycc="${mycc} -DNO_DB" + if use cdb; then + # change default hash format from Berkeley DB to cdb + sed -i -e "s/hash/cdb/" src/util/sys_defs.h || die + fi + fi + + if use cdb; then + mycc="${mycc} -DHAS_CDB -I/usr/include/cdb" + CDB_LIBS="" + # Tinycdb is preferred. + if has_version dev-db/tinycdb ; then + einfo "Building with dev-db/tinycdb" + CDB_LIBS="-lcdb" + else + einfo "Building with dev-db/cdb" + CDB_PATH="/usr/$(get_libdir)" + for i in cdb.a alloc.a buffer.a unix.a byte.a ; do + CDB_LIBS="${CDB_LIBS} ${CDB_PATH}/${i}" + done + fi + mylibs="${mylibs} ${CDB_LIBS}" + fi + + # Robin H. Johnson <robbat2@gentoo.org> 17/Nov/2006 + # Fix because infra boxes hit 2Gb .db files that fail a 32-bit fstat signed check. + mycc="${mycc} -D_FILE_OFFSET_BITS=64 -D_LARGEFILE_SOURCE -D_LARGEFILE64_SOURCE" + filter-lfs-flags + + # Workaround for bug #76512 + if use hardened; then + [[ "$(gcc-version)" == "3.4" ]] && replace-flags -O? -Os + fi + + # Remove annoying C++ comment style warnings - bug #378099 + append-flags -Wno-comment + + emake DEBUG="" CC="$(tc-getCC)" OPT="${CFLAGS}" CCARGS="${mycc}" AUXLIBS="${mylibs}" makefiles +} + +src_install () { + /bin/sh postfix-install \ + -non-interactive \ + install_root="${D}" \ + config_directory="/etc/postfix" \ + manpage_directory="/usr/share/man" \ + readme_directory="/usr/share/doc/${PF}/readme" \ + html_directory="/usr/share/doc/${PF}/html" \ + command_directory="/usr/sbin" \ + mailq_path="/usr/bin/mailq" \ + newaliases_path="/usr/bin/newaliases" \ + sendmail_path="/usr/sbin/sendmail" \ + || die "postfix-install failed" + + # Fix spool removal on upgrade + rm -Rf "${D}"/var + keepdir /var/spool/postfix + + # Install rmail for UUCP, closes bug #19127 + dobin auxiliary/rmail/rmail + + # Provide another link for legacy FSH + dosym /usr/sbin/sendmail /usr/$(get_libdir)/sendmail + + # Install qshape tool + dobin auxiliary/qshape/qshape.pl + doman man/man1/qshape.1 + + # Performance tuning tools and their manuals + dosbin bin/smtp-{source,sink} bin/qmqp-{source,sink} + doman man/man1/smtp-{source,sink}.1 man/man1/qmqp-{source,sink}.1 + + # Set proper permissions on required files/directories + dodir /var/lib/postfix + keepdir /var/lib/postfix + fowners -R postfix:postfix /var/lib/postfix + fperms 0750 /var/lib/postfix + fowners root:postdrop /usr/sbin/post{drop,queue} + fperms 02711 /usr/sbin/post{drop,queue} + + keepdir /etc/postfix + if use mbox; then + mypostconf="mail_spool_directory=/var/spool/mail" + else + mypostconf="home_mailbox=.maildir/" + fi + "${D}"/usr/sbin/postconf -c "${D}"/etc/postfix \ + -e ${mypostconf} || die "postconf failed" + + insinto /etc/postfix + newins "${FILESDIR}"/smtp.pass saslpass + fperms 600 /etc/postfix/saslpass + + newinitd "${FILESDIR}"/postfix.rc6.${RC_VER} postfix + # do not start mysql/postgres unnecessarily - bug #359913 + use mysql || sed -i -e "s/mysql //" "${D}/etc/init.d/postfix" + use postgres || sed -i -e "s/postgresql //" "${D}/etc/init.d/postfix" + + mv "${S}"/examples "${D}"/usr/share/doc/${PF}/ + mv "${D}"/etc/postfix/{*.default,makedefs.out} "${D}"/usr/share/doc/${PF}/ + + dodoc *README COMPATIBILITY HISTORY INSTALL PORTING RELEASE_NOTES* + + pamd_mimic_system smtp auth account + + if use sasl; then + insinto /etc/sasl2 + newins "${FILESDIR}"/smtp.sasl smtpd.conf + fi + + # header files + insinto /usr/include/postfix + doins include/*.h + + # Remove unnecessary files + rm -f "${D}"/etc/postfix/{*LICENSE,access,aliases,canonical,generic} + rm -f "${D}"/etc/postfix/{header_checks,relocated,transport,virtual} +} + +pkg_preinst() { + # default for inet_protocols changed from ipv4 to all in postfix-2.9. + # check inet_protocols setting in main.cf and modify if necessary to prevent + # performance loss with useless DNS lookups and useless connection attempts. + [[ -d ${ROOT}/etc/postfix ]] && { + if [[ "$(${D}/usr/sbin/postconf -dh inet_protocols)" != "ipv4" ]]; then + if [[ ! -n "$(${D}/usr/sbin/postconf -c ${ROOT}/etc/postfix -nh inet_protocols)" ]]; + then + ewarn "\nCOMPATIBILITY: adding inet_protocols=ipv4 to main.cf." + ewarn "That will keep the same behaviour as previous postfix versions." + ewarn "Specify inet_protocols explicitly if you want to enable IPv6.\n" + else + # delete inet_protocols setting. there is already one in /etc/postfix + sed -i -e /inet_protocols/d "${D}"/etc/postfix/main.cf || die + fi + fi + } +} + +pkg_postinst() { + # Do not install server.{key,pem) SSL certificates if they already exist + if use ssl && [[ ! -f "${ROOT}"/etc/ssl/postfix/server.key \ + && ! -f "${ROOT}"/etc/ssl/postfix/server.pem ]] ; then + SSL_ORGANIZATION="${SSL_ORGANIZATION:-Postfix SMTP Server}" + install_cert /etc/ssl/postfix/server + chown postfix:mail "${ROOT}"/etc/ssl/postfix/server.{key,pem} + fi + + if [[ ! -e /etc/mail/aliases.db ]] ; then + ewarn + ewarn "You must edit /etc/mail/aliases to suit your needs" + ewarn "and then run /usr/bin/newaliases. Postfix will not" + ewarn "work correctly without it." + ewarn + fi + + if [[ $(get_version_component_range 2 ${REPLACING_VERSIONS}) -lt 9 ]]; then + elog "If you are using old style postfix instances by symlinking" + elog "startup scripts in ${ROOT}etc/init.d, please consider" + elog "upgrading your config for postmulti support. For more info:" + elog "http://www.postfix.org/MULTI_INSTANCE_README.html" + if ! use berkdb; then + ewarn "\nPostfix is installed without BerkeleyDB support." + ewarn "Please turn on berkdb USE flag for hash or btree table" + ewarn "lookup support.\n" + fi + ewarn "Postfix daemons now live under /usr/libexec/postfix" + ewarn "Please adjust your main.cf accordingly by running" + ewarn "etc-update/dispatch-conf or similar and accepting the new" + ewarn "daemon_directory setting." + fi +} |