[OmniOS-discuss] Issue with dovecot under OmniOS and permissions or ACLs

Olaf Marzocchi lists at marzocchi.net
Sun Sep 20 14:15:42 UTC 2015 

Hello,
I am running dovecot 2.2.18 (compiled from source) on OmniOS r151014. 
The Maildir folder is located in my home folder and I assigned it 
recursively the following permissions:

drwxrwx---+348 olaf olaf 359 Sep 20 14:31 Maildir
     owner@:rwxpdDaARWcCos:fd-----:allow
     group@:rwxpdDaARWcCos:fd-----:allow
group:mail:rwxpdDaARWcCos:fd-----:allow
  everyone@:------a-R-c--s:fd-----:allow

I verified that newly created files inside Maildir correctly retain 
these ACLs.

I still get this kind of errors:

[ID 583609 mail.error] imap(olaf): Error: 
rename(/tank/home/olaf/Maildir/.Amici, conoscenti/dovecot.index.cache) 
failed: Permission denied (euid=501(olaf) egid=501(olaf) UNIX perms 
appear ok (ACL/MAC wrong?))

[ID 583609 mail.error] imap(olaf): Error: 
rename(/tank/home/olaf/Maildir/.Amici, conoscenti/dovecot.index.tmp, 
/tank/home/olaf/Maildir/.Amici, conoscenti/dovecot.index) failed: 
Permission denied

I checked and the files mentioned have the same permissions as the 
folder Maildir. Since (from what I understand) dovecot works on the mail 
with my username, there's no reason for these errors.

Other errors after I tried to rename a folder:

Debug: Namespace : Using permissions from /tank/home/olaf/Maildir: 
mode=0770 gid=default
Error: unlink(/tank/home/olaf/Maildir/subscriptions.lock) failed: 
Permission denied
Error: file_dotlock_replace() failed with subscription file 
/tank/home/olaf/Maildir/subscriptions: Permission denied
Error: rename(/tank/home/olaf/Maildir/subscriptions.lock, 
/tank/home/olaf/Maildir/subscriptions) failed: Permission denied

At this point I don't know if it is an issue with my system, or some 
sort of incompatibility between dovecot and illumos or ZFS.

I am not able to read and understand the source file, but this is where 
the "ACL/MAC wrong" error is coded:
http://hg.dovecot.org/dovecot-2.0/file/tip/src/lib/eacces-error.c

Has anyone a clue about possible way to solve the issue? It appears I 
can still put mail on the IMAP folders, but I fear this issue will cause 
problems later on.

Thanks
Olaf Marzocchi

More information about the OmniOS-discuss mailing list