From mboxrd@z Thu Jan  1 00:00:00 1970
From: Jonathan Brielmaier <jonathan.brielmaier@web.de>
Subject: bug#36468: Exim fails with permission denied
Date: Mon, 1 Jul 2019 19:02:19 +0200
Message-ID: <8e47662d-df1f-ab87-00b7-2e4b987cd8d3@web.de>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
Return-path: <bug-guix-bounces+gcggb-bug-guix=m.gmane.org@gnu.org>
Received: from eggs.gnu.org ([2001:470:142:3::10]:47149)
 by lists.gnu.org with esmtp (Exim 4.86_2)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1hi5rI-0000S6-En
 for bug-guix@gnu.org; Mon, 01 Jul 2019 19:37:17 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1hi5r8-0002dO-MD
 for bug-guix@gnu.org; Mon, 01 Jul 2019 19:37:09 -0400
Received: from debbugs.gnu.org ([209.51.188.43]:37469)
 by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16)
 (Exim 4.71) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
 id 1hi5r4-0002cI-Bl
 for bug-guix@gnu.org; Mon, 01 Jul 2019 19:37:04 -0400
Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
 (envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1hi5r4-0003ts-6Z
 for bug-guix@gnu.org; Mon, 01 Jul 2019 19:37:02 -0400
Sender: "Debbugs-submit" <debbugs-submit-bounces@debbugs.gnu.org>
Resent-Message-ID: <handler.36468.B.156202421714979@debbugs.gnu.org>
Received: from eggs.gnu.org ([2001:470:142:3::10]:47094)
 by lists.gnu.org with esmtp (Exim 4.86_2)
 (envelope-from <jonathan.brielmaier@web.de>) id 1hi5qt-0000O3-U4
 for bug-guix@gnu.org; Mon, 01 Jul 2019 19:36:54 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
 (envelope-from <jonathan.brielmaier@web.de>) id 1hi5qp-0002Yq-RG
 for bug-guix@gnu.org; Mon, 01 Jul 2019 19:36:49 -0400
Received: from mout.web.de ([212.227.17.12]:48769)
 by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_128_CBC_SHA1:16)
 (Exim 4.71) (envelope-from <jonathan.brielmaier@web.de>)
 id 1hi5qm-0002V7-2E
 for bug-guix@gnu.org; Mon, 01 Jul 2019 19:36:44 -0400
Content-Language: en-US
List-Id: Bug reports for GNU Guix <bug-guix.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/bug-guix>,
 <mailto:bug-guix-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/bug-guix>
List-Post: <mailto:bug-guix@gnu.org>
List-Help: <mailto:bug-guix-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/bug-guix>,
 <mailto:bug-guix-request@gnu.org?subject=subscribe>
Errors-To: bug-guix-bounces+gcggb-bug-guix=m.gmane.org@gnu.org
Sender: "bug-Guix" <bug-guix-bounces+gcggb-bug-guix=m.gmane.org@gnu.org>
To: 36468@debbugs.gnu.org

Hi,

I try to setup a SMTP server on a Guix system. I just choose exim and
followed the manual and added this part to my config.scm. It's not
production or anything, just to see if it works.

(service exim-service-type
         (exim-configuration
           (config-file (local-file "/etc/exim.conf"))))
(service mail-aliases-service-type
         '(("jonathan" "jonathan.brielmaier@web.de")))

After reconfiguring exim starts fine with `herd start`. Then I tried to
test if exim works:

root@guixone /home/jonathan# echo "Subject: test" | exim -v
jonathan.brielmaier@web.de
LOG: MAIN
  Warning: purging the environment.
 Suggested action: use keep_environment.
LOG: MAIN PANIC DIE
  Failed to create spool file
/var/spool/exim//input//1hhzWj-00007i-Mb-D: Permission denied
LOG: PANIC DIE
  Cannot open main log file "/var/spool/exim/log/mainlog": Permission
denied: euid=65534 egid=65534
2019-07-01 18:51:37 1hhzWj-00007i-Mb Failed to create spool file
/var/spool/exim//input//1hhzWj-00007i-Mb-D: Permission denied
2019-07-01 18:51:37 1hhzWj-00007i-Mb Cannot open main log file
"/var/spool/exim/log/mainlog": Permission denied: euid=65534 egid=65534
exim: could not open panic log - aborting: see message(s) above

Maybe it's not intended to work with root, so I changed /etc/passwd:
exim:x...:/var/empty:/gnu/store.../bin/bash

echo "Subject: test" | sudo su exim -c "exim -v jonathan.brielmaier@web.de"
LOG: MAIN
  Warning: purging the environment.
 Suggested action: use keep_environment.
2019-07-01 18:55:19 Warning: purging the environment.
 Suggested action: use keep_environment.
LOG: MAIN PANIC DIE
  Failed to create spool file
/var/spool/exim//input//1hhzaJ-000084-D9-D: Permission denied

ls -al /var/spool/exim/input/
total 8
drwxr-x--- 2 exim exim 4096 Jul  1 18:58 ./
drwxr-xr-x 4 exim exim 4096 Jul  1 18:58 ../
-rw-r----- 1 exim exim    0 Jun 29 22:49 1hhKHP-0001D3-6P-D
-rw-r----- 1 exim exim    0 Jun 29 22:53 1hhKLb-00005D-RV-D
-rw-r----- 1 exim exim    0 Jun 29 22:53 1hhKLl-00005E-Ut-D
-rw-r----- 1 exim exim    0 Jul  1 17:37 1hhyN4-0002pn-IN-D
-rw-r----- 1 exim exim    0 Jul  1 18:57 1hhzcT-00008t-JD-D
-rw-r----- 1 exim exim    0 Jul  1 18:58 1hhzdp-0000A9-Oi-D

Do I miss some point here? Do I need to set something in the exim.conf?
I tried to use the exim.conf from openSUSE, with the same effect.

@Carlo: I CCed you, because you have written the original patch to add
exim to Guix :)

~Jonathan