| 2014-04-09 18:39:16 |
Matthias Andree |
bug |
|
|
added bug |
| 2014-04-10 09:33:49 |
Robie Basak |
bug |
|
|
added subscriber Robie Basak |
| 2014-07-28 07:55:52 |
Launchpad Janitor |
postfix (Ubuntu): status |
New |
Confirmed |
|
| 2014-07-28 08:18:47 |
Philipp Wendler |
bug |
|
|
added subscriber Philipp Wendler |
| 2015-02-26 15:01:00 |
Robie Basak |
bug |
|
|
added subscriber Ubuntu Server Team |
| 2015-03-23 07:41:39 |
Bruno LE GOFF |
bug |
|
|
added subscriber Bruno LE GOFF |
| 2016-12-27 17:43:40 |
Scott Kitterman |
postfix (Ubuntu): importance |
Undecided |
Medium |
|
| 2016-12-27 17:43:40 |
Scott Kitterman |
postfix (Ubuntu): status |
Confirmed |
Fix Committed |
|
| 2017-01-03 03:52:45 |
Robie Basak |
nominated for series |
|
Ubuntu Trusty |
|
| 2017-01-03 03:52:45 |
Robie Basak |
bug task added |
|
postfix (Ubuntu Trusty) |
|
| 2017-01-03 03:52:45 |
Robie Basak |
nominated for series |
|
Ubuntu Xenial |
|
| 2017-01-03 03:52:45 |
Robie Basak |
bug task added |
|
postfix (Ubuntu Xenial) |
|
| 2017-01-03 03:52:58 |
Robie Basak |
postfix (Ubuntu Trusty): status |
New |
Triaged |
|
| 2017-01-03 03:53:01 |
Robie Basak |
postfix (Ubuntu Xenial): status |
New |
Triaged |
|
| 2017-01-03 03:55:31 |
Robie Basak |
tags |
apport-bug i386 precise |
apport-bug bitesize i386 precise |
|
| 2017-01-09 17:13:34 |
Launchpad Janitor |
postfix (Ubuntu): status |
Fix Committed |
Fix Released |
|
| 2017-07-19 19:12:39 |
Joshua Powers |
postfix (Ubuntu Xenial): assignee |
|
Joshua Powers (powersj) |
|
| 2017-07-19 19:12:41 |
Joshua Powers |
postfix (Ubuntu Trusty): assignee |
|
Joshua Powers (powersj) |
|
| 2017-07-19 21:10:08 |
Joshua Powers |
description |
Postfix frequently fails to start after security updates to the ca-certificates package because upgrading the latter sometimes leaves dangling symlinks behind. If that happens, the /etc/init.d/postfix script aborts.
# handle files in subdirectories
(cd "$ca_path" && find . -name '*.pem' -print0 | cpio -0pdL --quiet "$dest_dir") 2>/dev/null ||
(log_failure_msg failure copying certificates; exit 1)
The usual fix on a high level is "dpkg-reconfigure --priority=high ca-certificates"; however, I would propose to change the find command as follows:
# handle files in subdirectories
(cd "$ca_path" && find . -name '*.pem' -not -xtype l -print0 | cpio -0pdL --quiet "$dest_dir") 2>/dev/null ||
(log_failure_msg failure copying certificates; exit 1)
This would then skip printing broken symbolic links, and prevent cpio from choking on them.
ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: postfix 2.9.6-1~12.04.1
ProcVersionSignature: Ubuntu 3.11.0-19.33~precise1-generic 3.11.10.5
Uname: Linux 3.11.0-19-generic i686
NonfreeKernelModules: nvidia
ApportVersion: 2.0.1-0ubuntu17.6
Architecture: i386
Date: Wed Apr 9 20:20:17 2014
EcryptfsInUse: Yes
MarkForUpload: True
ProcEnviron:
LANGUAGE=de_DE:de:en_GB:en
TERM=xterm
PATH=(custom, no user)
LANG=de_DE.utf8
SHELL=/bin/bash
SourcePackage: postfix
UpgradeStatus: Upgraded to precise on 2012-11-01 (523 days ago) |
== Begin SRU Template ==
[Impact]
* It is possible for the postfix to fail to start whenever there are broken symlinks in directories it scans, like certificates when the ca-certificates package is upgraded.
[Test Case]
* lxc launch ubuntu-daily:xenial xenial
* lxc exec xenial bash
* sudo apt install postfix -y
* Edit /etc/postfix/main.cf and add the following line
smtp_tls_CApath=/usr/share/ca-certificates
* ln -s fakefile /usr/share/ca-certificates/foobar.pem
* /etc/init.d/postfix stop
* /etc/init.d/postfix start
* Failure message " * failure copying certificates" should print
Postfix will fail to start as a result of the bad symlink.
[Regression Potential]
* Users currently experiencing this issue would be expecting an SRU fix to come from us as the application is broken.
* The only work around it would require editing the init script with the workaround as described in this bug or by removing the bad symlinks. In either case, these things should be fixed.
[Other Info]
Postfix frequently fails to start after security updates to the ca-certificates package because upgrading the latter sometimes leaves dangling symlinks behind. If that happens, the /etc/init.d/postfix script aborts.
# handle files in subdirectories
(cd "$ca_path" && find . -name '*.pem' -print0 | cpio -0pdL --quiet "$dest_dir") 2>/dev/null ||
(log_failure_msg failure copying certificates; exit 1)
The usual fix on a high level is "dpkg-reconfigure --priority=high ca-certificates"; however, I would propose to change the find command as follows:
# handle files in subdirectories
(cd "$ca_path" && find . -name '*.pem' -not -xtype l -print0 | cpio -0pdL --quiet "$dest_dir") 2>/dev/null ||
(log_failure_msg failure copying certificates; exit 1)
This would then skip printing broken symbolic links, and prevent cpio from choking on them.
ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: postfix 2.9.6-1~12.04.1
ProcVersionSignature: Ubuntu 3.11.0-19.33~precise1-generic 3.11.10.5
Uname: Linux 3.11.0-19-generic i686
NonfreeKernelModules: nvidia
ApportVersion: 2.0.1-0ubuntu17.6
Architecture: i386
Date: Wed Apr 9 20:20:17 2014
EcryptfsInUse: Yes
MarkForUpload: True
ProcEnviron:
LANGUAGE=de_DE:de:en_GB:en
TERM=xterm
PATH=(custom, no user)
LANG=de_DE.utf8
SHELL=/bin/bash
SourcePackage: postfix
UpgradeStatus: Upgraded to precise on 2012-11-01 (523 days ago) |
|
| 2017-07-19 21:18:56 |
Joshua Powers |
description |
== Begin SRU Template ==
[Impact]
* It is possible for the postfix to fail to start whenever there are broken symlinks in directories it scans, like certificates when the ca-certificates package is upgraded.
[Test Case]
* lxc launch ubuntu-daily:xenial xenial
* lxc exec xenial bash
* sudo apt install postfix -y
* Edit /etc/postfix/main.cf and add the following line
smtp_tls_CApath=/usr/share/ca-certificates
* ln -s fakefile /usr/share/ca-certificates/foobar.pem
* /etc/init.d/postfix stop
* /etc/init.d/postfix start
* Failure message " * failure copying certificates" should print
Postfix will fail to start as a result of the bad symlink.
[Regression Potential]
* Users currently experiencing this issue would be expecting an SRU fix to come from us as the application is broken.
* The only work around it would require editing the init script with the workaround as described in this bug or by removing the bad symlinks. In either case, these things should be fixed.
[Other Info]
Postfix frequently fails to start after security updates to the ca-certificates package because upgrading the latter sometimes leaves dangling symlinks behind. If that happens, the /etc/init.d/postfix script aborts.
# handle files in subdirectories
(cd "$ca_path" && find . -name '*.pem' -print0 | cpio -0pdL --quiet "$dest_dir") 2>/dev/null ||
(log_failure_msg failure copying certificates; exit 1)
The usual fix on a high level is "dpkg-reconfigure --priority=high ca-certificates"; however, I would propose to change the find command as follows:
# handle files in subdirectories
(cd "$ca_path" && find . -name '*.pem' -not -xtype l -print0 | cpio -0pdL --quiet "$dest_dir") 2>/dev/null ||
(log_failure_msg failure copying certificates; exit 1)
This would then skip printing broken symbolic links, and prevent cpio from choking on them.
ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: postfix 2.9.6-1~12.04.1
ProcVersionSignature: Ubuntu 3.11.0-19.33~precise1-generic 3.11.10.5
Uname: Linux 3.11.0-19-generic i686
NonfreeKernelModules: nvidia
ApportVersion: 2.0.1-0ubuntu17.6
Architecture: i386
Date: Wed Apr 9 20:20:17 2014
EcryptfsInUse: Yes
MarkForUpload: True
ProcEnviron:
LANGUAGE=de_DE:de:en_GB:en
TERM=xterm
PATH=(custom, no user)
LANG=de_DE.utf8
SHELL=/bin/bash
SourcePackage: postfix
UpgradeStatus: Upgraded to precise on 2012-11-01 (523 days ago) |
== Begin SRU Template ==
[Impact]
* It is possible for the postfix to fail to start whenever there are broken symlinks in directories it scans, like certificates when the ca-certificates package is upgraded.
[Test Case]
* lxc launch ubuntu-daily:xenial xenial
* lxc exec xenial bash
* sudo apt install postfix -y
* Edit /etc/postfix/main.cf and add the following line
smtp_tls_CApath=/usr/share/ca-certificates
* ln -s fakefile /usr/share/ca-certificates/foobar.pem
* /etc/init.d/postfix stop
* /etc/init.d/postfix start
* If broken, the failure message " * failure copying certificates" should print;
Postfix will fail to start as a result of the bad symlink.
[Regression Potential]
* Users currently experiencing this issue would be expecting an SRU fix to come from us as the application is broken.
* The only work around it would require editing the init script with the workaround as described in this bug or by removing the bad symlinks. In either case, these things should be fixed.
[Other Info]
Postfix frequently fails to start after security updates to the ca-certificates package because upgrading the latter sometimes leaves dangling symlinks behind. If that happens, the /etc/init.d/postfix script aborts.
# handle files in subdirectories
(cd "$ca_path" && find . -name '*.pem' -print0 | cpio -0pdL --quiet "$dest_dir") 2>/dev/null ||
(log_failure_msg failure copying certificates; exit 1)
The usual fix on a high level is "dpkg-reconfigure --priority=high ca-certificates"; however, I would propose to change the find command as follows:
# handle files in subdirectories
(cd "$ca_path" && find . -name '*.pem' -not -xtype l -print0 | cpio -0pdL --quiet "$dest_dir") 2>/dev/null ||
(log_failure_msg failure copying certificates; exit 1)
This would then skip printing broken symbolic links, and prevent cpio from choking on them.
ProblemType: Bug
DistroRelease: Ubuntu 12.04
Package: postfix 2.9.6-1~12.04.1
ProcVersionSignature: Ubuntu 3.11.0-19.33~precise1-generic 3.11.10.5
Uname: Linux 3.11.0-19-generic i686
NonfreeKernelModules: nvidia
ApportVersion: 2.0.1-0ubuntu17.6
Architecture: i386
Date: Wed Apr 9 20:20:17 2014
EcryptfsInUse: Yes
MarkForUpload: True
ProcEnviron:
LANGUAGE=de_DE:de:en_GB:en
TERM=xterm
PATH=(custom, no user)
LANG=de_DE.utf8
SHELL=/bin/bash
SourcePackage: postfix
UpgradeStatus: Upgraded to precise on 2012-11-01 (523 days ago) |
|
| 2017-07-19 22:04:06 |
Joshua Powers |
merge proposal linked |
|
https://code.launchpad.net/~powersj/ubuntu/+source/postfix/+git/postfix/+merge/327752 |
|
| 2017-07-19 22:04:10 |
Joshua Powers |
merge proposal linked |
|
https://code.launchpad.net/~powersj/ubuntu/+source/postfix/+git/postfix/+merge/327751 |
|
| 2017-07-20 16:04:33 |
Launchpad Janitor |
merge proposal linked |
|
https://code.launchpad.net/~powersj/ubuntu/+source/postfix/+git/postfix/+merge/327811 |
|
| 2017-07-20 16:04:45 |
Launchpad Janitor |
merge proposal linked |
|
https://code.launchpad.net/~powersj/ubuntu/+source/postfix/+git/postfix/+merge/327812 |
|
| 2017-08-17 23:41:05 |
Brian Murray |
postfix (Ubuntu Trusty): status |
Triaged |
Fix Committed |
|
| 2017-08-17 23:41:07 |
Brian Murray |
bug |
|
|
added subscriber Ubuntu Stable Release Updates Team |
| 2017-08-17 23:41:10 |
Brian Murray |
bug |
|
|
added subscriber SRU Verification |
| 2017-08-17 23:41:16 |
Brian Murray |
tags |
apport-bug bitesize i386 precise |
apport-bug bitesize i386 precise verification-needed verification-needed-trusty |
|
| 2017-09-09 04:53:30 |
Mathew Hodson |
postfix (Ubuntu Trusty): importance |
Undecided |
Medium |
|
| 2017-09-09 04:53:33 |
Mathew Hodson |
postfix (Ubuntu Xenial): importance |
Undecided |
Medium |
|
| 2017-10-25 12:48:50 |
Chris J Arges |
postfix (Ubuntu Xenial): status |
Triaged |
Fix Committed |
|
| 2017-10-25 12:48:58 |
Chris J Arges |
tags |
apport-bug bitesize i386 precise verification-needed verification-needed-trusty |
apport-bug bitesize i386 precise verification-needed verification-needed-trusty verification-needed-xenial |
|
| 2017-10-25 16:58:58 |
Joshua Powers |
attachment added |
|
postfix_t.txt https://bugs.launchpad.net/ubuntu/+source/postfix/+bug/1305232/+attachment/4994933/+files/postfix_t.txt |
|
| 2017-10-25 16:59:37 |
Joshua Powers |
attachment added |
|
postfix_x.txt https://bugs.launchpad.net/ubuntu/+source/postfix/+bug/1305232/+attachment/4994940/+files/postfix_x.txt |
|
| 2017-10-25 17:00:20 |
Joshua Powers |
tags |
apport-bug bitesize i386 precise verification-needed verification-needed-trusty verification-needed-xenial |
apport-bug bitesize i386 precise verification-done-trusty verification-done-xenial |
|
| 2017-11-02 15:44:29 |
Launchpad Janitor |
postfix (Ubuntu Trusty): status |
Fix Committed |
Fix Released |
|
| 2017-11-02 15:45:48 |
Launchpad Janitor |
postfix (Ubuntu Xenial): status |
Fix Committed |
Fix Released |
|
| 2017-11-02 15:45:53 |
Brian Murray |
removed subscriber Ubuntu Stable Release Updates Team |
|
|
|
