RE: Crash in dovecot snippet when using imapc

[John van der Kamp via dovecot]

Hi, sorry for the late reply.
The commit you've pointed at before is the commit introducing code for the
snippets.
Your claim that main is fixed is incorrect: I've bisected through the git
history, and the commit that "fixes" it, is the one flipping imapc features to
negatives: https://github.com/dovecot/core/commit/
7810b38d30b7dbb2155f78873fe760bc9e2e6212 However, the default imapc_features
value stays the same, so all the "negative" features are suddenly enabled.
I've reset the defaults in the frontend config to what it was before:
imapc_features = no-fetch-size no-fetch-headers no-search no-modseq no-delay-
login no-fetch-bodystructure no-acl
and then dovecot starts crashing again in the described scenario. It is the
"no-fetch-size" flag, and if I use "rfc822.size" feature on a 2.3 branch it
stops crashing.
 
Turns out this same feature adds some filter that seems to be meant for some
exchange email side-effect: https://github.com/dovecot/core/blob/main/src/lib-
storage/index/imapc/imapc-mail-fetch.c#L596  where this filter tries to remove
any X-Message-Flag header. This is weird, because it could have been an
normally received header as well as something that was tacked on later by
exchange.
 
The main bug is not fixed by just removing that filter: chaining filters is
probably very broken when using the imapc backend, and it might be broken in
other unknown scenarios.
 
Regards,
 
John
 
 
 -Original message-
 From: Aki Tuomi via dovecot 
 Sent: Friday, 19th January 2024, 8:37
 To: Aki Tuomi via dovecot ; John van der Kamp
 
 Subject: RE: Crash in dovecot snippet when using imapc
  
 CAUTION: This email originated from outside of the organization. Do
 not click links or open attachments unless you can confirm the sender
 and know the content is safe.



 Sorry, the provided patch link was wrong, it's already in 2.3.21, my
 bad. Anyways, it is still fixed in main, since it does not happen
 there.

 Aki

 > On 19/01/2024 09:13 EET Aki Tuomi via dovecot 
 wrote:
 >
 >
 > Hi!
 >
 > I was able to reproduce this issue with 2.3.21, but it seems to
 have been fixed in main. I think https://github.com/dovecot/core/
 commit/1c1b77dbf9a548aac788efb76973ce2d0fa6c732.patch will fix this.
 >
 > Aki
 >
 > > On 18/01/2024 22:51 EET John van der Kamp via dovecot
  wrote:
 > >
 > >
 > > Hello,
 > >
 > >
 > > I've found a crash in a very specific setup. A dovecot server
 with imapc connection needs to receive an email with no body contents
 for the intent of generating a preview/snippet. It crashes somewhere
 deep in the jungle of istream and snapshots. I've included a script
 which sets up the systems to reproduce the crash.
 > >
 > >
 > > I've tested this with several versions. 2.3.16 doesn't seem to be
 affected, but 2.3.20 and 2.3.21 are affect.
 > >
 > >
 > > For me it produces a traceback like this, using the ubuntu
 version from here: https://packages.ubuntu.com/noble/dovecot-core
 > >
 > >
 > > (gdb) bt
 > > #0  __pthread_kill_implementation (no_tid=0, signo=6,
 threadid=140530132887360) at ./nptl/pthread_kill.c:44
 > > #1  __pthread_kill_internal (signo=6, threadid=140530132887360)
 at ./nptl/pthread_kill.c:78
 > > #2  __GI___pthread_kill (threadid=140530132887360,
 signo=signo@entry=6) at ./nptl/pthread_kill.c:89
 > > #3  0x7fcfb8842476 in __GI_raise (sig=sig@entry=6) at ../
 sysdeps/posix/raise.c:26
 > > #4  0x7fcfb88287f3 in __GI_abort () at ./stdlib/abort.c:79
 > > #5  0x7fcfb8b37fe5 in default_fatal_finish (status=0,
 type=LOG_TYPE_PANIC) at ../lib/failures.c:465
 > > #6  fatal_handler_real (ctx=, format=, args=) at ../lib/failures.c:477
 > > #7  0x7fcfb8be50d7 in i_internal_fatal_handler
 (ctx=, format=, args=)
 at ../lib/failures.c:879
 > > #8  0x7fcfb8b37eea in i_panic (format=0x7fcfb8c29020 "file
 %s: line %d (%s): assertion failed: (%s)") at ../lib/failures.c:530
 > > #9  0x7fcfb8b3387b in i_stream_header_filter_snapshot_free
 (_snapshot=) at ../lib-mail/istream-header-filter.c:
 663
 > > #10 i_stream_header_filter_snapshot_free
 (_snapshot=0x55dabe297a60) at ../lib-mail/istream-header-filter.c:655
 > > #11 0x7fcfb8bf25ac in i_stream_snapshot_free
 (_snapshot=_snapshot@entry=0x55dabe29b0d0) at ../lib/istream.c:253
 > > #12 0x7fcfb8bf2654 in i_stream_unref (stream=0x7ffc16cc7fa0)
 at ../lib/istream.c:66
 > > #13 0x7fcfb8d96baa in index_mail_write_body_snippet
 (mail=0x55dabe292058) at index/index-mail.c:1151
 > > #14 0x7fcfb8d97e48 in index_mail_parse_bodystructure
 (mail=0x55dabe292058, field=MAIL_CACHE_BODY_SNIPPET) at index/index-
 mail.c:1551
 > > #15 0x7fcfb8d97fe2 in index_mail_fetch_body_snippet
 (value_r=0x7ffc16cc8050, 

How can I override settings in a dovecot protocol section?

[Christian Rößner via dovecot]

Hi,

I have defined a service and a protocol that shall honor quota, but in an 
non-enforcing mode (required).

Therefr I have done this on a test-server:

```
protocols = lmtp lmtp_noenforcing imap pop3

service lmtp_noenforcing {
  executable = lmtp

  inet_listener lmtp_noenforcing {
port = 24000
  }

  protocol = lmtp_noenforcing
}

protocol lmtp_noenforcing {
  postmaster_address = postmaster@
  mail_plugins = quota sieve fts fts_solr

  # Just for testing, if this works.
  userdb {
driver = ldap
args = /etc/dovecot/dovecot-ldap.conf.ext
override_fields = quota=count:User quota:noenforcing
skip = never
result_success = continue
result_failure = return-fail
  }

  # Just for testing, if this works.
  userdb {
driver = lua
args = file=/etc/dovecot/userdb.lua blocking=yes
override_fields = quota=count:User quota:noenforcing
result_success = return-ok
result_failure = continue
result_internalfail = continue
  }

  # Preferred 
  plugin {
quota = count:User quota:noenforcing
  }
}
```

I tried with and without userdbs. With and without plugin{}. It seems that this 
whole section is never used. I removed "quota" from the mail_plugins parameter, 
but that seems to show me that the section is not used, because it always fails 
in a local swaks-test. The test shows that quota is exceeded. I would expect 
that the quota is ignored. One or the other hand.

So why is the protocol not used for this service?

We currently use Dovecot 2.3.20 from your repos.

Kind regards and thanks in advance

Christian Rößner
-- 
Rößner-Network-Solutions
Zertifizierter ITSiBe / CISO
Karl-Bröger-Str. 10, 36304 Alsfeld
Fax: +49 6631 78823409, Mobil: +49 171 9905345
USt-IdNr.: DE225643613, https://roessner.website
PGP fingerprint: 658D 1342 B762 F484 2DDF 1E88 38A5 4346 D727 94E5 

___
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org