From 5540d3d6b7d5809ad50f7e690f3c3b2f5d69934d Mon Sep 17 00:00:00 2001
From: Jonas Smedegaard <dr@jones.dk>
Date: Sat, 20 Oct 2018 11:57:21 +0200
Subject: Fix resolve mailhost when mailname is set to domain. Support
 mailalthosts.

---
 dehydrated/cron.weekly/local-dehydrated | 28 ++++++++++++++++++++++++++--
 1 file changed, 26 insertions(+), 2 deletions(-)

(limited to 'dehydrated')

diff --git a/dehydrated/cron.weekly/local-dehydrated b/dehydrated/cron.weekly/local-dehydrated
index 9ec2acd..6c2a4cc 100755
--- a/dehydrated/cron.weekly/local-dehydrated
+++ b/dehydrated/cron.weekly/local-dehydrated
@@ -6,11 +6,35 @@ set -eu
 
 REALM=$(cat /etc/local-ORG/realm) || true
 
-mailhost=$(cat "/etc/local-REDPILL/$REALM/mailhost") || true
+# resolve hostnames of service installed and registered with Redpill
+servicehosts() {
+	SERVICE=$1; shift
+	for binary in "$@"; do
+		> /dev/null which -- "$binary" || exit
+	done
+	cat "/etc/local-REDPILL/$REALM/${SERVICE}host" \
+	  "/etc/local-REDPILL/$REALM/${SERVICE}althosts" \
+	  2> /dev/null \
+	  | perl -0777 -pe 's/\s*\#.*//gm;s/^\s+//;s/\s+$//;s/\s+/|/g'
+}
+MAILHOSTS=$(servicehosts mail postconf) || true
+
 mailname=$(cat /etc/mailname) || true
 fqdn=$(hostname --fqdn)
 domain=$(hostname --domain)
 
+# mailhost is either mailname listed as a Redpill mailhost,
+# or default Redpill mailhost if mailname equals domain
+mailhost=''
+case "$mailname" in
+  "$MAILHOSTS")
+	mailhost=$mailname
+	;;
+  "$domain")
+	mailhost=$(cat "/etc/local-REDPILL/$REALM/mailhost") || true
+	;;
+esac
+
 # update non-EC mailhost cert if resolvable and not a certdomain
 if [ -n "$mailhost" ]; then
 	if [ -n "$fqdn" ] && [ "$mailhost" != "$fqdn" ]; then
@@ -19,7 +43,7 @@ if [ -n "$mailhost" ]; then
 	if [ -n "$domain" ] && [ "$mailhost" != "$domain" ] && [ "$fqdn" != "$domain" ]; then
 		extradomains=${extradomains:+$extradomains }$domain
 	fi
-	if [ "$mailhost" = "$mailname" ] && ! grep ^"$mailhost" /etc/dehydrated/domains.txt; then
+	if ! grep ^"$mailhost" /etc/dehydrated/domains.txt; then
 		dehydrated --cron --domain "$mailhost $extradomains" --algo rsa
 	fi
 fi
-- 
cgit v1.2.3