From: Clinton Ebadi <clinton@unknownlamer.org>
Date: Fri, 6 Sep 2019 18:23:36 +0000 (-0400)
Subject: Merge branch 'debian'
X-Git-Tag: debian/4.92-8+deb10u3_hcoop1~3
X-Git-Url: https://git.hcoop.net/hcoop/debian/exim4.git/commitdiff_plain/7375d27e3d0ff85d8836e30742725b1e8e923ddc?hp=d1e9e98adb057fac01d3b4db6c75347e05e88263

Merge branch 'debian'
---

diff --git a/debian/changelog b/debian/changelog
index 02a8d87..0b7ede0 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,9 @@
+exim4 (4.89-2+deb9u6~hcoop11) unstable; urgency=medium
+
+  * New upstream security release
+
+ -- Clinton Ebadi <clinton@unknownlamer.org>  Fri, 06 Sep 2019 14:23:08 -0400
+
 exim4 (4.89-2+deb9u6) stretch-security; urgency=high
 
   * 85_01-string.c-do-not-interpret-before-0-CVE-2019-15846.patch Fix SNI
@@ -12,6 +18,12 @@ exim4 (4.89-2+deb9u5) stretch-security; urgency=high
 
  -- Andreas Metzler <ametzler@debian.org>  Sat, 20 Jul 2019 13:32:35 +0200
 
+exim4 (4.89-2+deb9u4~hcoop10) unstable; urgency=medium
+
+  * Rebuild on 4.89-2+deb9u4
+
+ -- Clinton Ebadi <clinton@unknownlamer.org>  Thu, 06 Jun 2019 19:35:28 -0400
+
 exim4 (4.89-2+deb9u4) stretch-security; urgency=high
 
   * Non-maintainer upload by the Security Team.
@@ -733,6 +745,30 @@ exim4 (4.85~RC1+dfsg-1) experimental; urgency=medium
 
  -- Andreas Metzler <ametzler@debian.org>  Tue, 18 Nov 2014 19:28:20 +0100
 
+exim4 (4.84-8+hcoop4) unstable; urgency=medium
+
+  * Missed another chown that needs skipping
+
+ -- Clinton Ebadi <clinton@unknownlamer.org>  Thu, 14 May 2015 01:35:09 -0400
+
+exim4 (4.84-8+hcoop3) unstable; urgency=medium
+
+  * Patch the right thing.
+
+ -- Clinton Ebadi <clinton@unknownlamer.org>  Thu, 14 May 2015 00:34:14 -0400
+
+exim4 (4.84-8+hcoop2) unstable; urgency=medium
+
+  * Change message in chown failure for sanity check
+
+ -- Clinton Ebadi <clinton@unknownlamer.org>  Wed, 13 May 2015 23:47:18 -0400
+
+exim4 (4.84-8+hcoop1) unstable; urgency=medium
+
+  * Relax chown requirement for delivery into afs
+
+ -- Clinton Ebadi <clinton@unknownlamer.org>  Wed, 13 May 2015 23:26:54 -0400
+
 exim4 (4.84-8) unstable; urgency=medium
 
   * Pull 83_Remove-limit-on-remove_headers-item-size.-Bug-1533.patch and
diff --git a/debian/patches/50-relax-appendfile-chown-openafs.patch b/debian/patches/50-relax-appendfile-chown-openafs.patch
new file mode 100644
index 0000000..951a93d
--- /dev/null
+++ b/debian/patches/50-relax-appendfile-chown-openafs.patch
@@ -0,0 +1,61 @@
+--- a/src/transports/appendfile.c
++++ b/src/transports/appendfile.c
+@@ -2580,13 +2580,24 @@
+     /* Why are these here? Put in because they are present in the non-maildir
+     directory case above. */
+ 
+-    if(Uchown(filename, uid, gid) || Uchmod(filename, mode))
+-      {
+-      addr->basic_errno = errno;
+-      addr->message = string_sprintf("while setting perms on maildir %s",
+-        filename);
+-      return FALSE;
+-      }
++    /* Ignore failed chown if check_owner is disabled. */
++      if(Uchown(filename, uid, gid) && ob->check_owner)
++        {
++        addr->basic_errno = errno;
++        addr->message = string_sprintf("while setting owner on maildir %s",
++          filename);
++        addr->transport_return = FAIL;
++        goto RETURN;
++        }
++
++      if(Uchmod(filename, mode))
++	{
++        addr->basic_errno = errno;
++        addr->message = string_sprintf("while setting chmod on maildir %s",
++          filename);
++        addr->transport_return = FAIL;
++        goto RETURN;
++	}
+     }
+ 
+   #endif  /* SUPPORT_MAILDIR */
+@@ -2739,12 +2750,21 @@
+   /* In all cases of writing to a new file, ensure that the file which is
+   going to be renamed has the correct ownership and mode. */
+ 
+-  if(Uchown(filename, uid, gid) || Uchmod(filename, mode))
++  /* Ignore failed chown if check_owner is disabled. */
++  if(Uchown(filename, uid, gid) && ob->check_owner)
+     {
+-    addr->basic_errno = errno;
+-    addr->message = string_sprintf("while setting perms on file %s",
+-      filename);
+-    return FALSE;
++      addr->basic_errno = errno;
++      addr->message = string_sprintf("while setting owner on file before write %s",
++				     filename);
++      return FALSE;
++    }
++  
++  if(Uchmod(filename, mode))
++    {
++      addr->basic_errno = errno;
++      addr->message = string_sprintf("while setting chmod on file before write %s",
++				     filename);
++      return FALSE;
+     }
+   }
+ 
diff --git a/debian/patches/series b/debian/patches/series
index e4829bd..c0a3fe3 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -5,6 +5,7 @@
 35_install.dpatch
 40_reproducible_build.diff
 50_localscan_dlopen.dpatch
+50-relax-appendfile-chown-openafs.patch
 60_convert4r4.dpatch
 67_unnecessaryCopt.diff
 70_remove_exim-users_references.dpatch