Hello; anyone interested in this? Works fine. (The last test runs a bit slow on OpenBSD, it finishes in the fraction of a second everywhere else. But its malloc has other priorities than speed, one should look.)
--- Forwarded from Steffen Nurpmeso <stef...@sdaoden.eu> --- Hello ports@! "Something Gray on Bicycle-Day" was unfortunately necessary, so i spent some time and implemented sandboxing. I expect no "real" further releases. postfix(1) graylisting policy daemon. See its README + manual for more. [.] * Many, many thanks to Jens Schleusener, and his cron job! + Add --status to query server status. + Server PID is now stored in the lock file (renamed to VAL_NAME.pid), and --startup now waits for server response (like --shutdown does). + Add sandboxing: generic setrlimit(2) based, plus an OS-dependent strict sandboxing that can be disabled via --untamed. (Because it may require an additional, internally managed, logger process, and may be incompatible to (future) C library changes (see makefile).) (On OpenBSD configured file paths are now even fixed byte-by-byte.) ^ pledge/unveil: SIGHUP configuration reload requires that actually used file paths have not changed (byte-wise). - FIX memory map return check. - FIX possible error path crash during program startup (missing fmt arg). - fix: add missing su_log_set_level() and make --verbose work for users! [^ "That was the thing"; only in development code did logging work. Such a mess.] - fix: --startup was missing short -@ equivalent. - fix: --test-mode did not include "focus-sender", "once" and "verbose". - fix: VAL_MSG_* could not be overwritten on make(1) command line. - Typos: treshold->threshold. (Jens Schleusener) - (Source code style change spaces/80 -> tab/120+, saves ~12KB; etc.) Ciao! Index: Makefile =================================================================== RCS file: /cvs/ports/mail/s-postgray/Makefile,v retrieving revision 1.4 diff -u -p -a -p -u -r1.4 Makefile --- Makefile 31 Oct 2022 23:14:54 -0000 1.4 +++ Makefile 20 Apr 2023 20:09:55 -0000 @@ -1,11 +1,10 @@ COMMENT= fast and secure postfix graylisting policy server -DISTNAME= s-postgray-0.8.0 +DISTNAME= s-postgray-0.8.1 CATEGORIES= mail HOMEPAGE= https://www.sdaoden.eu/code.html\#s-postgray MASTER_SITES= https://ftp.sdaoden.eu/ -FIX_EXTRACT_PERMISSIONS=Yes MAINTAINER= Steffen Nurpmeso <stef...@sdaoden.eu> @@ -19,7 +18,7 @@ MAKE_FLAGS= MANDIR="${DESTDIR}${PREFIX} VAL_STORE_PATH=/tmp # get rid of hardcoded -O2 -MAKE_FLAGS+= SUFOPT=-I./include +MAKE_FLAGS+= SUFOPT="-DNDEBUG -I./include" do-test: cd ${WRKBUILD} && ./s-postgray-test.sh Index: distinfo =================================================================== RCS file: /cvs/ports/mail/s-postgray/distinfo,v retrieving revision 1.3 diff -u -p -a -p -u -r1.3 distinfo --- distinfo 19 Sep 2022 15:02:29 -0000 1.3 +++ distinfo 20 Apr 2023 20:09:55 -0000 @@ -1,2 +1,2 @@ -SHA256 (s-postgray-0.8.0.tar.gz) = TR44Q3hUfAx+6KV6u8ZktUmlH7Zo1E4zqZTQJj+V1TI= -SIZE (s-postgray-0.8.0.tar.gz) = 142362 +SHA256 (s-postgray-0.8.1.tar.gz) = pFwBgDsPo/HUWwj7XjC0uLkkShuMcEwqrvp+SFrLTMg= +SIZE (s-postgray-0.8.1.tar.gz) = 156386 --steffen | |Der Kragenbaer, The moon bear, |der holt sich munter he cheerfully and one by one |einen nach dem anderen runter wa.ks himself off |(By Robert Gernhardt) |~~ |..and in spring, hear David Leonard sing.. | |The black bear, The black bear, |blithely holds his own holds himself at leisure |beating it, up and down tossing over his ups and downs with pleasure |~~ |Farewell, dear collar bear