Mailinglist Archive: opensuse-commit (689 mails)

< Previous Next >
commit postfix
  • From: root@xxxxxxxxxxxxxxx (h_root)
  • Date: Thu, 06 Dec 2007 16:30:38 +0100
  • Message-id: <20071206153039.2CDFA6780DE@xxxxxxxxxxxxxxx>

Hello community,

here is the log from the commit of package postfix
checked in at Thu Dec 6 16:30:38 CET 2007.

--------
--- postfix/postfix.changes 2007-10-22 17:38:19.000000000 +0200
+++ /mounts/work_src_done/STABLE/postfix/postfix.changes 2007-12-04
09:23:12.000000000 +0100
@@ -1,0 +2,22 @@
+Tue Dec 4 09:02:19 CET 2007 - varkoly@xxxxxxx
+
+- Update to Version 2.4 patchlevel 6
+ Bugfix (introduced Postfix 2.2.11): TLS client certificate
+ with unparsable canonical name caused the SMTP server's
+ policy client to allocate zero-length memory, triggering
+ an assertion that it shouldn't do such things. File:
+ smtpd/smtpd_check.c.
+
+ Bugfix (introduced Postfix 2.4) missing initialization of
+ event mask in the event_mask_drain() routine (used by the
+ obsolete postkick(1) command). Found by Coverity. File:
+ util/events.c.
+
+ Workaround: the flush daemon forces an access time update
+ for the per-destination logfile, to prevent an excessive
+ rate of delivery attempts when the queue file system is
+ mounted with "noatime". File: flush/flush.c.
+
+- #330276 – /sbin/conf.d/SuSEconfig.postfix could copy certs into
smtpd_tls_CApath
+
+-------------------------------------------------------------------

Old:
----
postfix-2.4.5.tar.gz

New:
----
postfix-2.4.6.tar.gz

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ postfix.spec ++++++
--- /var/tmp/diff_new_pack.p23758/_old 2007-12-06 16:29:59.000000000 +0100
+++ /var/tmp/diff_new_pack.p23758/_new 2007-12-06 16:29:59.000000000 +0100
@@ -1,5 +1,5 @@
#
-# spec file for package postfix (Version 2.4.5)
+# spec file for package postfix (Version 2.4.6)
#
# Copyright (c) 2007 SUSE LINUX Products GmbH, Nuernberg, Germany.
# This file and all modifications and additions to the pristine
@@ -23,8 +23,8 @@
Conflicts: sendmail exim
AutoReqProv: on
Summary: A fast, secure, and flexible mailer
-Version: 2.4.5
-Release: 29
+Version: 2.4.6
+Release: 1
Source: postfix-%{version}.tar.gz
Source1: postfix-SuSE.tar.gz
Patch: dynamic_maps.patch
@@ -578,6 +578,22 @@
Wietse Venema <wietse@xxxxxxxxxxxxx>

%changelog
+* Tue Dec 04 2007 - varkoly@xxxxxxx
+- Update to Version 2.4 patchlevel 6
+ Bugfix (introduced Postfix 2.2.11): TLS client certificate
+ with unparsable canonical name caused the SMTP server's
+ policy client to allocate zero-length memory, triggering
+ an assertion that it shouldn't do such things. File:
+ smtpd/smtpd_check.c.
+ Bugfix (introduced Postfix 2.4) missing initialization of
+ event mask in the event_mask_drain() routine (used by the
+ obsolete postkick(1) command). Found by Coverity. File:
+ util/events.c.
+ Workaround: the flush daemon forces an access time update
+ for the per-destination logfile, to prevent an excessive
+ rate of delivery attempts when the queue file system is
+ mounted with "noatime". File: flush/flush.c.
+- #330276 – /sbin/conf.d/SuSEconfig.postfix could copy certs into
smtpd_tls_CApath
* Mon Oct 22 2007 - sbrabec@xxxxxxx
- Use correct SuSEfirewall2 rule directory.
* Wed Oct 17 2007 - varkoly@xxxxxxx

++++++ postfix-2.4.5.tar.gz -> postfix-2.4.6.tar.gz ++++++
diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn
--exclude=.svnignore old/postfix-2.4.5/HISTORY new/postfix-2.4.6/HISTORY
--- old/postfix-2.4.5/HISTORY 2007-08-01 01:37:26.000000000 +0200
+++ new/postfix-2.4.6/HISTORY 2007-10-17 17:47:16.000000000 +0200
@@ -13540,3 +13540,25 @@
Bugfix: the loopback TCP performance workaround was ineffective
due to a wetware bit-flip during code cleanup. File:
util/vstream_tweak.c.
+
+20070911
+
+ Bugfix (introduced Postfix 2.2.11): TLS client certificate
+ with unparsable canonical name caused the SMTP server's
+ policy client to allocate zero-length memory, triggering
+ an assertion that it shouldn't do such things. File:
+ smtpd/smtpd_check.c.
+
+20070912
+
+ Bugfix (introduced Postfix 2.4) missing initialization of
+ event mask in the event_mask_drain() routine (used by the
+ obsolete postkick(1) command). Found by Coverity. File:
+ util/events.c.
+
+20070917
+
+ Workaround: the flush daemon forces an access time update
+ for the per-destination logfile, to prevent an excessive
+ rate of delivery attempts when the queue file system is
+ mounted with "noatime". File: flush/flush.c.
diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn
--exclude=.svnignore old/postfix-2.4.5/src/flush/flush.c
new/postfix-2.4.6/src/flush/flush.c
--- old/postfix-2.4.5/src/flush/flush.c 2007-03-17 18:59:38.000000000 +0100
+++ new/postfix-2.4.6/src/flush/flush.c 2007-09-18 02:26:09.000000000 +0200
@@ -149,6 +149,7 @@

#include <sys_defs.h>
#include <sys/stat.h>
+#include <sys/time.h>
#include <unistd.h>
#include <stdlib.h>
#include <utime.h>
@@ -577,6 +578,11 @@
msg_fatal("%s: truncate fast flush logfile %s: %m", myname, path);

/*
+ * Workaround for noatime mounts. Use futimes() if available.
+ */
+ (void) utimes(VSTREAM_PATH(log), (struct timeval *) 0);
+
+ /*
* Request delivery and clean up.
*/
if (myflock(vstream_fileno(log), INTERNAL_LOCK, MYFLOCK_OP_NONE) < 0)
diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn
--exclude=.svnignore old/postfix-2.4.5/src/global/mail_version.h
new/postfix-2.4.6/src/global/mail_version.h
--- old/postfix-2.4.5/src/global/mail_version.h 2007-08-01 02:04:41.000000000
+0200
+++ new/postfix-2.4.6/src/global/mail_version.h 2007-10-17 17:46:14.000000000
+0200
@@ -20,8 +20,8 @@
* Patches change both the patchlevel and the release date. Snapshots have no
* patchlevel; they change the release date only.
*/
-#define MAIL_RELEASE_DATE "20070731"
-#define MAIL_VERSION_NUMBER "2.4.5"
+#define MAIL_RELEASE_DATE "20071017"
+#define MAIL_VERSION_NUMBER "2.4.6"

#ifdef SNAPSHOT
# define MAIL_VERSION_DATE "-" MAIL_RELEASE_DATE
diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn
--exclude=.svnignore old/postfix-2.4.5/src/smtpd/smtpd_check.c
new/postfix-2.4.6/src/smtpd/smtpd_check.c
--- old/postfix-2.4.5/src/smtpd/smtpd_check.c 2007-01-12 15:45:18.000000000
+0100
+++ new/postfix-2.4.6/src/smtpd/smtpd_check.c 2007-09-11 16:17:20.000000000
+0200
@@ -3302,7 +3302,7 @@
coded_CN_buf = 0; \
coded_CN = ""; \
} else { \
- coded_CN_buf = vstring_alloc(strlen(CN)); \
+ coded_CN_buf = vstring_alloc(strlen(CN) + 1); \
xtext_quote(coded_CN_buf, CN, ""); \
coded_CN = STR(coded_CN_buf); \
} \
diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn
--exclude=.svnignore old/postfix-2.4.5/src/util/events.c
new/postfix-2.4.6/src/util/events.c
--- old/postfix-2.4.5/src/util/events.c 2007-02-19 01:38:23.000000000 +0100
+++ new/postfix-2.4.6/src/util/events.c 2007-10-17 17:28:52.000000000 +0200
@@ -108,7 +108,8 @@
/* event_drain() repeatedly calls event_loop() until no more timer
/* events or I/O events are pending or until the time limit is reached.
/* This routine must not be called from an event_whatever() callback
-/* routine.
+/* routine. Note: this function ignores pending timer events, and
+/* assumes that no new I/O events will be registered.
/* DIAGNOSTICS
/* Panics: interface violations. Fatal errors: out of memory,
/* system call failure. Warnings: the number of available
@@ -622,7 +623,11 @@
if (EVENT_INIT_NEEDED())
return;

+#if (EVENTS_STYLE == EVENTS_STYLE_SELECT)
EVENT_MASK_ZERO(&zero_mask);
+#else
+ EVENT_MASK_ALLOC(&zero_mask, event_fdslots);
+#endif
(void) time(&event_present);
max_time = event_present + time_limit;
while (event_present < max_time
@@ -630,6 +635,9 @@
|| memcmp(&zero_mask, &event_xmask,
EVENT_MASK_BYTE_COUNT(&zero_mask)) != 0))
event_loop(1);
+#if (EVENTS_STYLE != EVENTS_STYLE_SELECT)
+ EVENT_MASK_FREE(&zero_mask);
+#endif
}

/* event_enable_read - enable read events */

++++++ postfix-SuSE.tar.gz ++++++
diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn
--exclude=.svnignore old/postfix-SuSE/SuSEconfig.postfix
new/postfix-SuSE/SuSEconfig.postfix
--- old/postfix-SuSE/SuSEconfig.postfix 2007-10-17 11:51:44.000000000 +0200
+++ new/postfix-SuSE/SuSEconfig.postfix 2007-12-06 13:50:25.000000000 +0100
@@ -107,6 +107,7 @@

# SASL
cpifnewer /etc/sasldb2 etc
+ cpifnewer "/etc/sasl2/*" etc/sasl2
cpifnewer "/usr/@lib@/sasl2/*" usr/@lib@/sasl2
cpifnewer "/usr/@lib@/libsasl2*" usr/@lib@
mkdir -p var/run/sasl2
@@ -124,6 +125,12 @@
cpifnewer /etc/hosts etc
cpifnewer /etc/passwd etc

+ # CA Files
+ CAPATH=`postconf -h smtpd_tls_CApath`
+ if [ "$CAPATH" ]; then
+ cpifnewer $CAPATH/* ./$CAPATH
+ fi
+
if [ -L /etc/localtime ]; then
if [ -z "$TIMEZONE" -o "$TIMEZONE" == "YAST_ASK" ]; then
warn_user "\tUnable to setup your timezone!\n\
@@ -359,7 +366,14 @@
fi

if test "$POSTFIX_SMTP_AUTH_SERVER" == "yes"; then
- if [ -f /usr/@lib@/sasl2/smtpd.conf ]; then
+ if [ -f /etc/sasl2/smtpd.conf ]; then
+ grep saslauthd /etc/sasl2/smtpd.conf >/dev/null && {
+ checkproc -p /var/run/sasl2/saslauthd.pid /usr/sbin/saslauthd
|| {
+ warn_user 1>&2 "You are using saslauthd as pwcheck_method
in /etc/sasl2/smtpd.conf,\n\
+but saslauthd is not running."
+ }
+ }
+ elif [ -f /usr/@lib@/sasl2/smtpd.conf ]; then
grep saslauthd /usr/@lib@/sasl2/smtpd.conf >/dev/null && {
checkproc -p /var/run/sasl2/saslauthd.pid /usr/sbin/saslauthd
|| {
warn_user 1>&2 "You are using saslauthd as pwcheck_method
in /usr/@lib@/sasl2/smtpd.conf,\n\
@@ -367,7 +381,7 @@
}
}
else
- warn_user 1>&2 "You have activated POSTFIX_SMTP_AUTH_SERVER, but
you don't have /usr/@lib@/sasl2/smtpd.conf"
+ warn_user 1>&2 "You have activated POSTFIX_SMTP_AUTH_SERVER, but
you don't have /etc/sasl2/smtpd.conf (nor /usr/@lib@/sasl2/smtpd.conf)"
fi
$PCONF -e "smtpd_sasl_auth_enable= yes"
touch -m -d "1 minute ago" $TMPDIR/main.cf
diff -urN --exclude=CVS --exclude=.cvsignore --exclude=.svn
--exclude=.svnignore old/postfix-SuSE/sysconfig.postfix
new/postfix-SuSE/sysconfig.postfix
--- old/postfix-SuSE/sysconfig.postfix 2007-01-16 09:04:46.000000000 +0100
+++ new/postfix-SuSE/sysconfig.postfix 2007-12-06 13:49:07.000000000 +0100
@@ -169,7 +169,7 @@
# Configure postfix to enable users to auth against postfix
# to be able to relay mail independent of being within
# the local network/domain.
-# You may want to edit /usr/@lib@/sasl2/smtpd.conf to fit
+# You may want to edit /etc/sasl2/smtpd.conf to fit
# your needs.
# See /usr/share/doc/packages/postfix/README_FILES/SASL_README
# for more details.


++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++



Remember to have fun...

---------------------------------------------------------------------
To unsubscribe, e-mail: opensuse-commit+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-commit+help@xxxxxxxxxxxx

< Previous Next >
This Thread