I am not an expert on how to run dovecot. I was able to reproduce your steps to get to the error so that I could find the correct fix.
Running in non-FIPS mode is required so that old passwords (with the shorter 8 byte salt) will still work. Once all passwords have been changed (to the new longer 16 byte salt), then FIPS mode can be enabled. Once the patch is in place, it may require some experimentation to document the proper steps to give to a customer. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2107773 Title: Enabling FIPS causes SALT to be 8 bytes, but OpenSSL 3.0.2 checks if SALT is < 16 bytes, breaking Dovecot and possibly other packages. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/2107773/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
