fix: SMTPS transport for sender-dependant rules (#201)

Specific smtps_from transport that honors both TLS wrapper-mode and
sender-dependant authentication rules. Fixes a 1.7 regression with Relay
Rules on port 465.

Note: the test suite currently does not provide SMTPS (port
465 with TLS-wrap) mock server for automatic tests.

Refs NethServer/dev#7626

Author: DavidePrincipi

postfix/etc/postfix/relaysender_transport.cf

@@ -1,10 +1,10 @@
 #
-# relaysender_transport -- select special smtp_from transport,
-#     if MAIL FROM matches a sender relay rule
+# relaysender_transport -- select special smtp/smtps_from
+#     transport, if MAIL FROM matches a sender relay rule
 #
 
 dbpath = /srv/pcdb.sqlite
-query = SELECT 'smtp_from'
+query = SELECT transport || '_from'
   FROM relayrules
   WHERE enabled = 1 AND
   rule_type = 'sender' AND

postfix/usr/local/lib/templates/master.cf

@@ -45,3 +45,6 @@ ${tmpl_sasl_commentout}        -o smtpd_sender_restrictions=${tmpl_sender_restri
         -o smtpd_tls_auth_only=no
 smtps     unix  -       -       n       -       -       smtp ${tmpl_debug_relay}
         -o smtp_tls_security_level=encrypt -o smtp_tls_wrappermode=yes
+smtps_from unix  -       -       n       -       -      smtp ${tmpl_debug_relay}
+        -o smtp_sender_dependent_authentication=yes
+        -o smtp_tls_security_level=encrypt -o smtp_tls_wrappermode=yes

tests/50__smtp/00__relay_rules.robot

@@ -21,12 +21,20 @@ Sender address rule has medium priority
     ...                     credentials=u3:Nethesis,1234
     Should be relayed via SMTP  port=10002  smtp_user=usr_u3
 
+Sender address rule honors TLS encryption
+    [Tags]    bug    bug-7626
+    Skip  "Not implemented"
+
 Sender domain rule has less priority than address match
     Send SMTP message to    somebody@wildcard.test
     ...                     from=noreply@inbound.test
     ...                     credentials=u3:Nethesis,1234
     Should be relayed via SMTP  port=10002  smtp_user=${EMPTY}
 
+Sender domain rule honors TLS encryption
+    [Tags]    bug    bug-7626
+    Skip  "Not implemented"
+
 Sender domain rule provides the correct credentials
     [Tags]    bug    bug-7551
     Send SMTP message to    somebody@wildcard.test