summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
-rw-r--r--mail-mta/postfix/ChangeLog5
-rw-r--r--mail-mta/postfix/postfix-2.4.5.ebuild377
2 files changed, 4 insertions, 378 deletions
diff --git a/mail-mta/postfix/ChangeLog b/mail-mta/postfix/ChangeLog
index c86b8086a305..e82719ccd1a1 100644
--- a/mail-mta/postfix/ChangeLog
+++ b/mail-mta/postfix/ChangeLog
@@ -1,6 +1,9 @@
# ChangeLog for mail-mta/postfix
# Copyright 2002-2008 Gentoo Foundation; Distributed under the GPL v2
-# $Header: /var/cvsroot/gentoo-x86/mail-mta/postfix/ChangeLog,v 1.158 2008/04/08 22:02:33 falco Exp $
+# $Header: /var/cvsroot/gentoo-x86/mail-mta/postfix/ChangeLog,v 1.159 2008/04/13 23:06:39 ulm Exp $
+
+ 13 Apr 2008; Ulrich Mueller <ulm@gentoo.org> -postfix-2.4.5.ebuild:
+ Remove last vulnerable ebuild wrt bug 201671.
08 Apr 2008; Raphael Marichez <falco@gentoo.org> files/postfix.rc6.2.5:
Fix bashism in init.d/postfix reported by Peter Alfredsen, bug #216949
diff --git a/mail-mta/postfix/postfix-2.4.5.ebuild b/mail-mta/postfix/postfix-2.4.5.ebuild
deleted file mode 100644
index 3e28f2484be9..000000000000
--- a/mail-mta/postfix/postfix-2.4.5.ebuild
+++ /dev/null
@@ -1,377 +0,0 @@
-# Copyright 1999-2008 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/mail-mta/postfix/postfix-2.4.5.ebuild,v 1.11 2008/03/21 14:41:44 falco Exp $
-
-# NOTE: this ebuild is a regular ebuild without mailer-config support!
-# Comment lines below "regular ebuild" and uncomment lines below "mailer-config support"
-# to turn this ebuild to a mailer-config enabled ebuild.
-
-# regular ebuild
-inherit eutils multilib ssl-cert toolchain-funcs flag-o-matic pam
-# mailer-config support
-#inherit eutils multilib ssl-cert toolchain-funcs flag-o-matic mailer pam
-
-KEYWORDS="alpha amd64 arm hppa ia64 ppc ppc64 s390 sh sparc x86 ~x86-fbsd"
-
-# regular ebuild
-IUSE="cdb dovecot-sasl hardened ipv6 ldap mailwrapper mbox mysql nis pam postgres sasl selinux ssl vda"
-# mailer-config support
-#IUSE="cdb dovecot-sasl hardened ipv6 ldap mbox mysql nis pam postgres sasl selinux ssl vda"
-
-MY_PV="${PV/_rc/-RC}"
-MY_SRC="${PN}-${MY_PV}"
-MY_URI="ftp://ftp.porcupine.org/mirrors/postfix-release/official"
-VDA_P="${P}-vda-ng"
-RC_VER="2.2.9"
-
-DESCRIPTION="A fast and secure drop-in replacement for sendmail."
-HOMEPAGE="http://www.postfix.org/"
-SRC_URI="${MY_URI}/${MY_SRC}.tar.gz
- vda? ( http://vda.sourceforge.net/VDA/${VDA_P}.patch.gz ) "
-
-LICENSE="IPL-1"
-SLOT="0"
-
-# regular ebuild
-PROVIDE="virtual/mta virtual/mda"
-# mailer-config support
-#PROVIDE="${PROVIDE} virtual/mda"
-
-DEPEND=">=sys-libs/db-3.2
- >=dev-libs/libpcre-3.4
- cdb? ( || ( >=dev-db/cdb-0.75-r1 >=dev-db/tinycdb-0.76 ) )
- ldap? ( >=net-nds/openldap-1.2 )
- mysql? ( virtual/mysql )
- pam? ( virtual/pam )
- postgres? ( >=dev-db/postgresql-7.1 )
- sasl? ( >=dev-libs/cyrus-sasl-2 )
- ssl? ( >=dev-libs/openssl-0.9.6g )"
-
-# regular ebuild
-RDEPEND="${DEPEND}
- >=net-mail/mailbase-0.00
- !mailwrapper? ( !virtual/mta )
- mailwrapper? ( >=net-mail/mailwrapper-0.2 )
- selinux? ( sec-policy/selinux-postfix )"
-
-# mailer-config support
-#RDEPEND="${DEPEND}
-# >=net-mail/mailbase-0.00
-# selinux? ( sec-policy/selinux-postfix )"
-
-S="${WORKDIR}/${MY_SRC}"
-
-group_user_check() {
- einfo "Checking for postfix group ..."
- enewgroup postfix 207
- einfo "Checking for postdrop group ..."
- enewgroup postdrop 208
- einfo "Checking for postfix user ..."
- enewuser postfix 207 -1 /var/spool/postfix postfix,mail
-}
-
-pkg_setup() {
- # Do not upgrade live from Postfix <2.4
- if [[ -f /var/lib/init.d/started/postfix ]] ; then
- if has_version '<mail-mta/postfix-2.4.0' ; then
- if [[ "${FORCE_UPGRADE}" ]] ; then
- echo
- ewarn "You are upgrading from an incompatible version and you have"
- ewarn "FORCE_UPGRADE set, will build this package while Postfix is running."
- ewarn "You MUST stop Postfix BEFORE installing this version to your system."
- echo
- else
- echo
- eerror "You are upgrading from an incompatible version."
- eerror "You MUST stop Postfix BEFORE installing this version to your system."
- eerror "If you want minimal downtime, emerge postfix with:"
- eerror " FORCE_UPGRADE=1 emerge --buildpkgonly postfix"
- eerror " /etc/init.d/postfix stop"
- eerror " emerge --usepkgonly postfix"
- eerror "Then run etc-update or dispatch-conf and merge the configuration files."
- eerror "Then restart Postfix with: /etc/init.d/postfix start"
- die "Upgrade from an incompatible version!"
- echo
- fi
- else
- echo
- ewarn "It's safe to upgrade your current version while it's running."
- ewarn "If you don't want to take any chance, please hit Ctrl+C now,"
- ewarn "stop Postfix, then emerge again."
- ewarn "You have been warned!"
- ewarn "Waiting 5 seconds before continuing ..."
- echo
- epause 5
- fi
- fi
-
- echo
- ewarn "Read \"ftp://ftp.porcupine.org/mirrors/postfix-release/official/${MY_SRC}.RELEASE_NOTES\""
- ewarn "for incompatible changes before continueing."
- ewarn "Bugs should be filed at \"http://bugs.gentoo.org/\" and"
- ewarn "assigned to \"net-mail@gentoo.org\"."
- echo
-
- # Warnings to work around bug #45764
- if has_version '<=mail-mta/postfix-2.0.18' ; then
- echo
- ewarn "You are upgrading from postfix-2.0.18 or earlier, some of the empty queue"
- ewarn "directories get deleted while unmerging the older version (see bug #45764)."
- ewarn "Please run '/etc/postfix/post-install upgrade-source' to recreate them."
- echo
- fi
-
- # TLS non-prod warning
- if use ssl ; then
- echo
- ewarn "You have \"ssl\" in your USE flags, TLS will be enabled."
- ewarn "This service is incompatible with the previous TLS patch."
- ewarn "Visit http://www.postfix.org/TLS_README.html for more info."
- echo
- fi
-
- # IPV6 non-prod warn
- if use ipv6 ; then
- echo
- ewarn "You have \"ipv6\" in your USE flags, IPV6 will be enabled."
- ewarn "Visit http://www.postfix.org/IPV6_README.html for more info."
- echo
- fi
-
- # SASL non-prod warning
- if use sasl ; then
- echo
- elog "Postfix 2.3 and newer supports two SASL implementations."
- elog "Cyrus SASL and Dovecot protocol version 1 (server only)"
- elog "Visit http://www.postfix.org/SASL_README.html for more info."
- echo
- fi
-
- # Add postfix, postdrop user/group (bug #77565)
- group_user_check || die "Failed to check/add needed user/group"
-}
-
-src_unpack() {
- unpack ${A}
- cd "${S}"
-
- if use vda ; then
- epatch "${WORKDIR}/${VDA_P}.patch"
- fi
-
- sed -i -e "/^#define ALIAS_DB_MAP/s|hash:/etc/aliases|hash:/etc/mail/aliases|" \
- src/util/sys_defs.h || die "sed failed"
-
- # change default paths to better comply with portage standard paths
- sed -i -e "s:/usr/local/:/usr/:g" conf/master.cf || die "sed failed"
-}
-
-src_compile() {
- # 1) Added -Wl,-z,now wrt bug #62674
- # 2) Remove -ldl as it is not necessary, solves bug #106446
- # 3) -Wl,-z,now replaced by $(bindnow-flags)
- # 4) Then bindnow-flags has been simply dropped according to
- # http://www.mail-archive.com/gentoo-dev@lists.gentoo.org/msg23679.html
- # 5) Make sure LDFLAGS get passed down to the executables.
- local mycc="-DHAS_PCRE" mylibs="${LDFLAGS} -lpcre -lcrypt -lpthread"
-
- use pam && mylibs="${mylibs} -lpam"
-
- if use ldap ; then
- mycc="${mycc} -DHAS_LDAP"
- mylibs="${mylibs} -lldap -llber"
- fi
-
- if use mysql ; then
- mycc="${mycc} -DHAS_MYSQL -I/usr/include/mysql"
- mylibs="${mylibs} -lmysqlclient -lm -lz"
- fi
-
- if use postgres ; then
- if best_version '=dev-db/postgresql-7.3*' ; then
- mycc="${mycc} -DHAS_PGSQL -I/usr/include/postgresql"
- else
- mycc="${mycc} -DHAS_PGSQL -I/usr/include/postgresql/pgsql"
- fi
- mylibs="${mylibs} -lpq"
- fi
-
- if use ssl ; then
- mycc="${mycc} -DUSE_TLS"
- mylibs="${mylibs} -lssl -lcrypto"
- fi
-
- if use sasl ; then
- if use dovecot-sasl ; then
- # Set dovecot as default.
- mycc="${mycc} -DDEF_SASL_SERVER=\\\"dovecot\\\""
- fi
- mycc="${mycc} -DUSE_SASL_AUTH -DUSE_CYRUS_SASL -I/usr/include/sasl"
- mylibs="${mylibs} -lsasl2"
- elif use dovecot-sasl ; then
- mycc="${mycc} -DUSE_SASL_AUTH -DDEF_SERVER_SASL_TYPE=\\\"dovecot\\\""
- fi
-
- if ! use nis ; then
- sed -i -e "s|#define HAS_NIS|//#define HAS_NIS|g" \
- src/util/sys_defs.h || die "sed failed"
- fi
-
- if use cdb ; then
- mycc="${mycc} -DHAS_CDB"
- CDB_LIBS=""
-
- # Tinycdb is preferred.
- if has_version dev-db/tinycdb ; then
- einfo "Building with dev-db/tinycdb"
- CDB_LIBS="-lcdb"
- else
- einfo "Building with dev-db/cdb"
- CDB_PATH="/usr/$(get_libdir)"
- for i in cdb.a alloc.a buffer.a unix.a byte.a ; do
- CDB_LIBS="${CDB_LIBS} ${CDB_PATH}/${i}"
- done
- fi
-
- mylibs="${mylibs} ${CDB_LIBS}"
- fi
-
- mycc="${mycc} -DDEF_DAEMON_DIR=\\\"/usr/$(get_libdir)/postfix\\\""
- mycc="${mycc} -DDEF_MANPAGE_DIR=\\\"/usr/share/man\\\""
- mycc="${mycc} -DDEF_README_DIR=\\\"/usr/share/doc/${PF}/readme\\\""
- mycc="${mycc} -DDEF_HTML_DIR=\\\"/usr/share/doc/${PF}/html\\\""
-
- # Robin H. Johnson <robbat2@gentoo.org> 17/Nov/2006
- # Fix because infra boxes hit 2Gb .db files that fail a 32-bit fstat signed check.
- mycc="${mycc} -D_FILE_OFFSET_BITS=64 -D_LARGEFILE_SOURCE -D_LARGEFILE64_SOURCE"
- filter-lfs-flags
-
- local my_cc=$(tc-getCC)
- einfo "CC=${my_cc:=gcc}"
-
- # Workaround for bug #76512
- [[ "$(gcc-version)" == "3.4" ]] && use hardened && replace-flags -O? -Os
-
- make DEBUG="" CC="${my_cc:=gcc}" OPT="${CFLAGS}" CCARGS="${mycc}" AUXLIBS="${mylibs}" \
- makefiles || die "configure problem"
-
- emake || die "compile problem"
-}
-
-src_install () {
- /bin/sh postfix-install \
- -non-interactive \
- install_root="${D}" \
- config_directory="/usr/share/doc/${PF}/defaults" \
- readme_directory="/usr/share/doc/${PF}/readme" \
- || die "postfix-install failed"
-
- # Fix spool removal on upgrade
- rm -Rf "${D}/var"
- keepdir /var/spool/postfix
-
- # Install rmail for UUCP, closes bug #19127
- dobin auxiliary/rmail/rmail
-
- # mailwrapper stuff
- if use mailwrapper ; then
- mv "${D}/usr/sbin/sendmail" "${D}/usr/sbin/sendmail.postfix"
- mv "${D}/usr/bin/rmail" "${D}/usr/bin/rmail.postfix"
- # mailer-config support
- #rm "${D}/usr/bin/mailq" "${D}/usr/bin/newaliases"
-
- mv "${D}/usr/share/man/man1/sendmail.1" \
- "${D}/usr/share/man/man1/sendmail-postfix.1"
- mv "${D}/usr/share/man/man1/newaliases.1" \
- "${D}/usr/share/man/man1/newaliases-postfix.1"
- mv "${D}/usr/share/man/man1/mailq.1" \
- "${D}/usr/share/man/man1/mailq-postfix.1"
- mv "${D}/usr/share/man/man5/aliases.5" \
- "${D}/usr/share/man/man5/aliases-postfix.5"
-
- # regular ebuild
- insinto /etc/mail
- doins "${FILESDIR}/mailer.conf"
- # mailer-config support
- #mailer_install_conf
- else
- # Provide another link for legacy FSH
- dosym /usr/sbin/sendmail /usr/$(get_libdir)/sendmail
- fi
-
- # Install qshape tool
- dobin auxiliary/qshape/qshape.pl
-
- # Performance tuning tools and their manuals
- dosbin bin/smtp-{source,sink} bin/qmqp-{source,sink}
- doman man/man1/smtp-{source,sink}.1 man/man1/qmqp-{source,sink}.1
-
- # Set proper permissions on required files/directories
- fowners root:postdrop /usr/sbin/post{drop,queue}
- fperms 02711 /usr/sbin/post{drop,queue}
-
- keepdir /etc/postfix
- mv "${D}"/usr/share/doc/${PF}/defaults/{*.cf,post*-*} "${D}"/etc/postfix
- if use mbox ; then
- mypostconf="mail_spool_directory=/var/spool/mail"
- else
- mypostconf="home_mailbox=.maildir/"
- fi
- "${D}/usr/sbin/postconf" -c "${D}/etc/postfix" \
- -e ${mypostconf} || die "postconf failed"
-
- insinto /etc/postfix
- newins "${FILESDIR}/smtp.pass" saslpass
- fperms 600 /etc/postfix/saslpass
-
- newinitd "${FILESDIR}/postfix.rc6.${RC_VER}" postfix || die "newinitd failed"
-
- mv "${S}/examples" "${D}/usr/share/doc/${PF}/"
- dodoc *README COMPATIBILITY HISTORY INSTALL PORTING RELEASE_NOTES*
- dohtml html/*
-
- pamd_mimic_system smtp auth account
-
- # Do not install server.{key,pem) SSL certificates if they already exist
- if use ssl && [[ ! -f /etc/ssl/postfix/server.key && ! -f /etc/ssl/postfix/server.pem ]] ; then
- SSL_ORGANIZATION="${SSL_ORGANIZATION:-Postfix SMTP Server}"
- insinto /etc/ssl/postfix
- docert server
- fowners postfix:mail /etc/ssl/postfix/server.{key,pem}
- fi
-
- if use sasl ; then
- insinto /etc/sasl2
- newins "${FILESDIR}/smtp.sasl" smtpd.conf
- fi
-}
-
-pkg_postinst() {
- # Add postfix, postdrop user/group (bug #77565)
- group_user_check || die "Failed to check/add needed user/group"
-
- ebegin "Fixing queue directories and permissions"
- "${ROOT}/etc/postfix/post-install" upgrade-permissions
- echo
- ewarn "If you upgraded from Postfix-1.x, you must revisit"
- ewarn "your configuration files. See"
- ewarn " /usr/share/doc/${PF}/RELEASE_NOTES"
- ewarn "for a list of changes."
-
- if [[ ! -e /etc/mail/aliases.db ]] ; then
- echo
- ewarn "You must edit /etc/mail/aliases to suit your needs"
- ewarn "and then run /usr/bin/newaliases. Postfix will not"
- ewarn "work correctly without it."
- fi
-
- # regular ebuild
- if ! use mailwrapper && [[ -e /etc/mailer.conf ]] ; then
- einfo
- einfo "Since you emerged Postfix without mailwrapper in USE,"
- einfo "you may want to 'emerge -C mailwrapper' now."
- einfo
- fi
- # mailer-config support
- #mailer_pkg_postinst
-}