1. Forum
  2. Usenet
  3. LINUX.DEBIAN.BUGS.RC

  • Bug#1104549: dovecot-gssapi: GSSAPI authentication regression breaks so

    From Noah Meyerhans@21:1/5 to All on Thu May 1 22:50:01 2025
    Package: dovecot-gssapi
    Version: 1:2.4.1+dfsg1-2
    Severity: grave
    Tags: upstream
    Justification: Breaks other package's autopkgtests

    Issue was first observed in gsasl's autopkgtest failures. Protocol traces are available in #1104411.

    Some (but not all) IMAP clients are unable to negotiate GSSAPI authentication with Dovecot 2.4.1. Earlier versions worked as expected.

    The issue has been traced to a particular upstream change [1], and has been reported on upstream's mailing list [2].

    While investigating a proper fix, we can potentially revert the implicated change, which will additionally require reverting support for SCRAM-SHA-1-PLUS and SCRAM-SHA-256-PLUS. These mechanisms have never been supported in a Debian release, so this would not be a regression, and we should be able to re-enable them once the correct fix is identified.

    1. https://github.com/dovecot/core/commit/1486c30e191ff079bfa78e7950173bb33d8073d9
    2. https://dovecot.org/mailman3/archives/list/dovecot@dovecot.org/message/LMUX23ZRYPOJ6RRZWBPBUBSBYK4FLI6O/

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Debian Bug Tracking System@21:1/5 to All on Fri May 2 18:00:02 2025
    This is a multi-part message in MIME format...

    Your message dated Fri, 02 May 2025 15:49:45 +0000
    with message-id <E1uAse1-006YMR-S6@fasolo.debian.org>
    and subject line Bug#1104549: fixed in dovecot 1:2.4.1+dfsg1-3
    has caused the Debian Bug report #1104549,
    regarding dovecot-gssapi: GSSAPI authentication regression breaks some clients to be marked as done.

    This means that you claim that the problem has been dealt with.
    If this is not the case it is now your responsibility to reopen the
    Bug report if necessary, and/or fix the problem forthwith.

    (NB: If you are a system administrator and have no idea what this
    message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact owner@bugs.debian.org
    immediately.)


    --
    1104549: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1104549
    Debian Bug Tracking System
    Contact owner@bugs.debian.org with problems

    Received: (at submit) by bugs.debian.org; 1 May 2025 20:40:07 +0000 X-Spam-Checker-Version: SpamAssassin 3.4.6-bugs.debian.org_2005_01_02
    (2021-04-09) on buxtehude.debian.org
    X-Spam-Level:
    X-Spam-Status: No, score=-121.8 required=4.0 tests=BAYES_00,
    BODY_INCLUDES_PACKAGE,DKIMWL_WL_HIGH,DKIM_SIGNED,DKIM_VALID,
    DKIM_VALID_AU,DKIM_VALID_EF,FOURLA,FROMDEVELOPER,HAS_PACKAGE,
    MD5_SHA1_SUM,SPF_HELO_NONE,SPF_NONE,UNPARSEABLE_RELAY,
    USER_IN_DKIM_WELCOMELIST,USER_IN_DKIM_WHITELIST,XMAILER_REPORTBUG
    autolearn=ham autolearn_force=no
    version=3.4.6-bugs.debian.org_2005_01_02
    X-Spam-Bayes: score:0.0000 Tokens: new, 17; hammy, 150; neutral, 54; spammy,
    0. spammytokens:
    hammytokens:0.000-+--Hx-spam-relays-external:sk:stravin,
    0.000-+--H*RT:sk:stravin, 0.000-+--Hx-spam-relays-external:311,
    0.000-+--H*RT:311, 0.000-+--H*RT:108
    Return-path: <noahm@debian.or