Ubuntu
dovecot package

FTBFS with LTO

Bug #1951325 reported by Bryce Harrington
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
dovecot (Debian)
Fix Released
Unknown
dovecot (Ubuntu)
Fix Released
High
Bryce Harrington

Bug Description

Dovecot 2.3.13 failed to build with LTO, so was configured in Ubuntu with 'optimize=-lto' to disable it.

Debian found that Dovecot 2.3.16 built ok with LTO and gcc 10, so implemented support in debian/rules for it.

Unfortunately, with gcc 11, building with LTO once again fails to build due to some test failures. See https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=997513

Since we're shipping gcc 11 in jammy, when we merge Dovecot 2.3.16 we should disable this change from Debian to avoid FTBFS.

Related branches

~bryce/ubuntu/+source/dovecot:merge-v1e2.3.19.1adfsg1-2-kinetic
git-ubuntu bot: Approve
Sergio Durigan Junior (community): Approve
Canonical Server Reporter: Pending requested
Diff: 172 lines (+118/-3)
3 files modified
debian/changelog (+114/-0)
debian/control (+3/-2)
debian/rules (+1/-1)
~bryce/ubuntu/+source/dovecot:merge-v1e2.3.16adfsg1-3-jammy
Christian Ehrhardt  (community): Approve
Canonical Server: Pending requested
git-ubuntu import: Pending requested
Diff: 183 lines (+119/-5)
5 files modified
debian/changelog (+63/-0)
debian/control (+2/-1)
debian/patches/OpenSSL3.patch (+46/-0)
debian/patches/series (+3/-0)
debian/rules (+5/-4)

CVE References

Bryce Harrington (bryce)
Changed in dovecot (Ubuntu):
status: New → Triaged
importance: Undecided → High
assignee: nobody → Bryce Harrington (bryce)
Bug Watch Updater (bug-watch-updater)
Changed in dovecot (Debian):
status: Unknown → New
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package dovecot - 1:2.3.16+dfsg1-3ubuntu1

---------------
dovecot (1:2.3.16+dfsg1-3ubuntu1) jammy; urgency=medium

  [ Bryce Harrington ]
  * Merge with Debian unstable. (LP: #1946855)
    Remaining changes:
    - Package references hidden symbols during an LTO link. This needs further
      investigation. Until then, disable LTO.
  * Dropped:
    - SECURITY UPDATE: incorrectly escapes kid and azp fields in JWT tokens
      + debian/patches/CVE-2021-29157.patch: improve escaping in
        src/lib-dict-extra/dict-fs.c, src/lib-oauth2/oauth2-jwt.c,
        src/lib-oauth2/test-oauth2-jwt.c.
      [Included in Debian 1:2.3.13+dfsg1-2]
    - SECURITY UPDATE: plaintext command injection before STARTTLS
      + debian/patches/CVE-2021-33515.patch: properly handle command queue in
        src/lib-smtp/smtp-server-cmd-starttls.c,
        src/lib-smtp/smtp-server-connection.c.
      [Included in Debian 1:2.3.13+dfsg1-2]
  * d/rules: Disable Debian's recent enablement of LTO as well, as it
    FTBFS when building with gcc 11.
    (LP: #1951325)

  [ Simon Chopin ]
  * d/p/OpenSSL3.patch: Workaround to fix EC key handling when building
    with OpenSSL 3.0.
    (LP: #1945763)

 -- Bryce Harrington <email address hidden> Wed, 17 Nov 2021 13:46:08 -0800

Changed in dovecot (Ubuntu):
status: Triaged → Fix Released
Bug Watch Updater (bug-watch-updater)
Changed in dovecot (Debian):
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.