On Fri, 13 May 2022 15:02:38 -0700 "Kevin J. McCarthy" <ke...@8t8.us> wrote: > Thanks for the bug report. Yes, it most definitely is. I'll take a > look to see what I can find. Perhaps I've missed setting up some > callback information that gsasl needs. > > Would you be able to test a patch if/when I create one? If so, please > make sure you are subscribed to this ticket and I'll work on something > this weekend.
Brian and Gábor, I did indeed miss a callback value needed by GSSAPI: hostname. The Mutt IMAP/GSSAPI auth code is using the server hostname for this field, contradicting the gsasl documentation which says to supply the "local host name". I'm trying the server hostname below. If possible could you try either the git branch 'kevin/gsasl-gssapi-fixes' on GitLab <https://gitlab.com/muttmua/mutt/-/commits/kevin/gsasl-gssapi-fixes> or alternatively try recompiling the source Debian package with the below patch applied? Thank you! - - - - - - 8< - - - - - From 9db29e904d1843a61b3a858d16d400af704fdadf Mon Sep 17 00:00:00 2001 From: Kevin McCarthy <ke...@8t8.us> Date: Fri, 13 May 2022 15:37:58 -0700 Subject: [PATCH] Set gsasl hostname callback value. This is needed for GSSAPI, and apparently DIGEST-MD5 too. The documentation is a little vague, saying it "should be the local host name of the machine", however the imap/auth_gss.c code seems to be using the server-name. --- mutt_sasl_gnu.c | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/mutt_sasl_gnu.c b/mutt_sasl_gnu.c index 7ebe4293..37d39657 100644 --- a/mutt_sasl_gnu.c +++ b/mutt_sasl_gnu.c @@ -219,6 +219,11 @@ static int mutt_gsasl_callback (Gsasl *ctx, Gsasl_session *sctx, rc = GSASL_OK; break; + case GSASL_HOSTNAME: + gsasl_property_set (sctx, GSASL_HOSTNAME, conn->account.host); + rc = GSASL_OK; + break; + default: break; } -- GitLab
signature.asc
Description: PGP signature
