Question about noreplicate flag

Bernardo Reino reinob at bbmk.org
Mon Feb 17 13:09:34 EET 2020 

On Mon, 17 Feb 2020, Bernardo Reino wrote:

> On Mon, 17 Feb 2020, Aki Tuomi wrote:
>
>> On 17.2.2020 12.48, Bernardo Reino wrote:
>>> Dear all,
>>> 
>>> I've just setup replication between two servers. The e-mail accounts
>>> on both servers intersect but are not the same.
>>> 
>>> In dovecot.conf (both are identical except one user /var/mail and the
>>> other uses /srv/vmail) I have:
>>> 
>>> --<<--
>>> userdb {
>>>   driver = passwd-file
>>>   args = username_format=%Lu /etc/dovecot/virtual_passwd
>>>   default_fields = uid=vmail gid=vmail home=/var/mail/%d/%n
>>> }
>>> 
>>> passdb {
>>>   driver = passwd-file
>>>   args = scheme=SHA512-CRYPT username_format=%Lu
>>> /etc/dovecot/virtual_passwd
>>> }
>>> -->>--
>>> 
>>> i.e. I use a passwd-like database.
>>> 
>>> For the non-overlapping accounts in both servers I want to prevent
>>> replication, as it will otherwise fail with "Error: sync: Unknown user
>>> in remote".
>>> 
>>> I have added "userdb_noreplicate" (also tried "userdb_noreplicate=y")
>>> for those users, but I still see the above error message in the logs.
>>> 
>>> Like:
>>> reinob at bbmk.org:{SHA512-CRYPT}$6$e10...4c::::::userdb_noreplicate=y
>>> 
>>> If I run "doveadm user -u reinob at bbmk.org" I get the following:
>>> 
>>> userdb: reinob at bbmk.org
>>>   user      : reinob at bbmk.org
>>>   uid       : 5000
>>>   gid       : 5000
>>>   home      : /var/mail/bbmk.org/reinob
>>>   noreplicate: y
>>> 
>>> Note that I use "userdb_noreplicate" instead of "noreplicate" (which I
>>> also tried just in case), as from what I understood the "userdb_"
>>> prefix is required when adding the flag to the passwd file.
>>> 
>>> As far as I can tell I'm doing everything right, but for some reason
>>> the replication is ignoring that flag.
>>> 
>>> Thanks in advance for any help with this.
>>> 
>>> (Let me know if you need to see the $(doveconf -n), but I believe the
>>> only relevant parts are the userdb and passdb.
>> 
>> 
>> Hi!
>> 
>> What version of dovecot are you using? The noreplicate field seems to be
>> correctly there. Can you turn on 'mail_debug=yes', and see if the
>> replicator logs anything useful.
>
> It's 2.3.9.3 from repo.dovecot.org (debian buster) on both servers.
>
> I'll try to enable mail_debug and see what it tells me!
>
> Thanks a lot.

Here's a log. I copied a message from one folder to another, which 
triggered the server (the one having reinob at bbmk.org with the noreplicate 
flag) to (attempt to) replicate to the other server not having this 
account.

--<<--
Feb 17 11:56:52 imap(reinob at bbmk.org)<29984><9XU5aMOeLLhXsqcx>: Debug: replication: Replication requested by 'UID copy 21618 "INBOX"', priority=1
Feb 17 11:56:53 doveadm(reinob at bbmk.org): Debug: auth-master: passdb lookup(reinob at bbmk.org): Started passdb lookup
Feb 17 11:56:53 doveadm(reinob at bbmk.org): Debug: auth-master: conn unix:/var/run/dovecot/auth-userdb: Connecting
Feb 17 11:56:53 doveadm(reinob at bbmk.org): Debug: auth-master: conn unix:/var/run/dovecot/auth-userdb (pid=29930,uid=0): Client connected (fd=9)
Feb 17 11:56:53 doveadm(reinob at bbmk.org): Debug: auth-master: passdb lookup(reinob at bbmk.org): auth PASS input: user=reinob at bbmk.org
Feb 17 11:56:53 doveadm(reinob at bbmk.org): Debug: auth-master: passdb lookup(reinob at bbmk.org): Finished passdb lookup (user=reinob at bbmk.org )
Feb 17 11:56:53 doveadm(reinob at bbmk.org)<29989><>: Debug: auth-master: userdb lookup(reinob at bbmk.org): Started userdb lookup
Feb 17 11:56:53 doveadm(reinob at bbmk.org)<29989><>: Debug: auth-master: userdb lookup(reinob at bbmk.org): auth USER input: reinob at bbmk.org uid=5000 gid=5000 home=/var/mail/bbmk.org/reinob noreplicate=y
Feb 17 11:56:53 doveadm(reinob at bbmk.org)<29989><>: Debug: auth-master: userdb lookup(reinob at bbmk.org): Finished userdb lookup 
(username=reinob at bbmk.org uid=5000 gid=5000 home=/var/mail/bbmk.org/reinob noreplicate=y)
Feb 17 11:56:53 doveadm(reinob at bbmk.org)<29989><>: Debug: Added userdb setting: plugin/noreplicate=y

Feb 17 11:56:53 doveadm(reinob at bbmk.org): Debug: remote(vps.kemeny.email:12345): auth-master: passdb lookup(reinob at bbmk.org): Started passdb lookup
Feb 17 11:56:53 doveadm(reinob at bbmk.org): Debug: remote(vps.kemeny.email:12345): auth-master: conn unix:/var/run/dovecot/auth-userdb: Connecting
Feb 17 11:56:53 doveadm(reinob at bbmk.org): Debug: remote(vps.kemeny.email:12345): auth-master: conn unix:/var/run/dovecot/auth-userdb (pid=19084,uid=0): Client connected (fd=9)
Feb 17 11:56:53 doveadm(reinob at bbmk.org): Debug: remote(vps.kemeny.email:12345): auth-master: passdb lookup(reinob at bbmk.org): auth PASS input:
Feb 17 11:56:53 doveadm(reinob at bbmk.org): Debug: remote(vps.kemeny.email:12345): auth-master: passdb lookup(reinob at bbmk.org): Passdb lookup failed
Feb 17 11:56:53 doveadm(reinob at bbmk.org): Debug: remote(vps.kemeny.email:12345): auth-master: userdb lookup(reinob at bbmk.org): Started userdb lookup
Feb 17 11:56:53 doveadm(reinob at bbmk.org): Debug: remote(vps.kemeny.email:12345): auth-master: userdb lookup(reinob at bbmk.org): auth USER input:
Feb 17 11:56:53 doveadm(reinob at bbmk.org): Debug: remote(vps.kemeny.email:12345): auth-master: userdb lookup(reinob at bbmk.org): Userdb lookup failed
Feb 17 11:56:53 doveadm(reinob at bbmk.org): Debug: remote(vps.kemeny.email:12345): auth-master: conn unix:/var/run/dovecot/auth-userdb (pid=19084,uid=0): Disconnected: Connection closed (fd=9)

Feb 17 11:56:53 doveadm(reinob at bbmk.org): Debug: auth-master: conn unix:/var/run/dovecot/auth-userdb (pid=29930,uid=0): Disconnected: Connection closed (fd=9)

Feb 17 11:56:53 imap(reinob at bbmk.org)<29963><kLtIZ8OerKFXsqcx>: Debug: Namespace : Using permissions from /var/mail/bbmk.org/reinob: mode=0700 gid=default
Feb 17 11:56:53 imap(reinob at bbmk.org)<29963><kLtIZ8OerKFXsqcx>: Debug: Mailbox INBOX: UID 26621: Opened mail because: header streamFeb 17 11:56:53 imap(reinob at bbmk.org)<29963><kLtIZ8OerKFXsqcx>: Debug: Mailbox INBOX: UID 26621: Opened mail because: mail body
Feb 17 11:56:53 imap(reinob at bbmk.org)<29963><kLtIZ8OerKFXsqcx>: Debug: Mailbox INBOX: UID 26621: Opened mail because: header stream
-->>--

(The above is also attached as a plain text file, in case alpine does mess 
up the line wrapping..)

Note that the log even says "Added userdb setting: plugin/noreplicate=y",
yet the very next line is the remote having been contacted! :)

Any ideas?

Thanks a lot in advance,
Bernardo.
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: noreplicate_log.txt
URL: <https://dovecot.org/pipermail/dovecot/attachments/20200217/e46a3c7e/attachment.txt>

More information about the dovecot mailing list