<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<p>I found and tried this work around on the man page:
<a class="moz-txt-link-freetext" href="https://www.unix.com/man-page/all/5/ngroups_max/">https://www.unix.com/man-page/all/5/ngroups_max/</a> but I still get
the same "Too many extra groups" error even when I start dovecot
with the above program to limit the # of groups. I suspect that
dovecot is adding a number of groups when it starts up.</p>
<p>I've hacked a work around to get it working for me on my laptop:</p>
<p><font size="-1">diff --git a/src/lib/restrict-access.c
b/src/lib/restrict-access.c<br>
<br>
@@ -224,7 +224,12 @@ static void fix_groups_list(const struct
restrict_access_settings *set,<br>
<br>
- if (setgroups(gid_count, gid_list) < 0) {<br>
<br>
+ if (setgroups(gid_count > NGROUPS_MAX ? 16 : gid_count,
gid_list) < 0) {<br>
if (errno == EINVAL) {<br>
i_fatal("setgroups(%s) failed: Too many extra
groups",<br>
set->extra_groups == NULL ? "" :<br>
</font><br>
</p>
<p>and this works.<br>
</p>
<p>I'm not sure what the right solution is for a PR. Any
suggestions?</p>
<p>Thanks</p>
<p>Mike</p>
<p><br>
</p>
<br>
<div class="moz-cite-prefix">On 8/10/18 11:04, Aki Tuomi wrote:<br>
</div>
<blockquote type="cite"
cite="mid:20180810160429.3CF2122177E@talvi.dovecot.org">
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<div>Is the user member of mail group?</div>
<div><br>
</div>
<div><br>
</div>
<div><br>
</div>
<div id="composer_signature">
<meta http-equiv="Content-Type" content="text/html;
charset=utf-8">
---
<div>Aki Tuomi</div>
<div>Dovecot oy</div>
</div>
<div><br>
</div>
<div style="font-size:100%;color:#000000"><!-- originalMessage -->
<div>-------- Original message --------</div>
<div>From: Mike Makuch <a class="moz-txt-link-rfc2396E" href="mailto:1mikemakuch@gmail.com"><1mikemakuch@gmail.com></a> </div>
<div>Date: 10/08/2018 19:02 (GMT+02:00) </div>
<div>To: Aki Tuomi <a class="moz-txt-link-rfc2396E" href="mailto:aki.tuomi@dovecot.fi"><aki.tuomi@dovecot.fi></a> </div>
<div>Cc: <a class="moz-txt-link-abbreviated" href="mailto:dovecot@dovecot.org">dovecot@dovecot.org</a> </div>
<div>Subject: Re: dying on osx </div>
<div><br>
</div>
</div>
<p>Maybe an old problem that has resurfaced???</p>
<p><a class="moz-txt-link-freetext"
href="https://bugzilla.samba.org/show_bug.cgi?id=8773"
moz-do-not-send="true">https://bugzilla.samba.org/show_bug.cgi?id=8773</a></p>
<p>Mike</p>
<p><br>
</p>
<br>
<div class="moz-cite-prefix">On 8/10/18 10:54, Aki Tuomi wrote:<br>
</div>
<blockquote type="cite"
cite="mid:5b6db561.1c69fb81.9e0fe.0ca6SMTPIN_ADDED_MISSING@mx.google.com">
<meta http-equiv="Content-Type" content="text/html;
charset=utf-8">
<div>I have to see if this is reproducible outside mac. </div>
<div><br>
</div>
<div><br>
</div>
<div><br>
</div>
<div id="composer_signature">
<meta http-equiv="Content-Type" content="text/html;
charset=utf-8">
---
<div>Aki Tuomi</div>
<div>Dovecot oy</div>
</div>
<div><br>
</div>
<div style="font-size:100%;color:#000000"><!-- originalMessage -->
<div>-------- Original message --------</div>
<div>From: Mike Makuch <a class="moz-txt-link-rfc2396E"
href="mailto:1mikemakuch@gmail.com" moz-do-not-send="true"><1mikemakuch@gmail.com></a>
</div>
<div>Date: 10/08/2018 18:46 (GMT+02:00) </div>
<div>To: Aki Tuomi <a class="moz-txt-link-rfc2396E"
href="mailto:aki.tuomi@dovecot.fi" moz-do-not-send="true"><aki.tuomi@dovecot.fi></a>
</div>
<div>Subject: Re: dying on osx </div>
<div><br>
</div>
</div>
I did find that page and tried a few things there. My config has
all of <br>
the settings there except 3:<br>
<br>
mail_access_groups = mail<br>
mbox_read_locks = fcntl<br>
mbox_write_locks = fcntl<br>
<br>
I add them to my config, restart and get the same abort<br>
<br>
20180810-103849 imap(mkm)<79213><MkA5ihZzmdh/AAAB>:
Fatal: <br>
setgroups(mail,505) failed: Too many extra groups<br>
<br>
I've tried numerous other settings as well.<br>
<br>
Thanks for any further advice<br>
<br>
Mike<br>
<br>
<br>
On 8/10/18 08:45, Aki Tuomi wrote:<br>
> Can you try this config and report back?<br>
><br>
>
<a class="moz-txt-link-freetext"
href="https://superuser.com/questions/957272/dotlock-permissions-problems-with-dovecot-and-os-x-10-10-3"
moz-do-not-send="true">https://superuser.com/questions/957272/dotlock-permissions-problems-with-dovecot-and-os-x-10-10-3</a><br>
><br>
> Aki<br>
><br>
>> On 10 August 2018 at 16:39 Mike Makuch <a
class="moz-txt-link-rfc2396E"
href="mailto:1mikemakuch@gmail.com" moz-do-not-send="true"><1mikemakuch@gmail.com></a>
wrote:<br>
>><br>
>><br>
>> OSX 10.13.6 High Sierra, dovecot 2.3.2.1<br>
>><br>
>> dovecot starts up and runs but dies as soon as my mail
client makes a<br>
>> request with log and config below.<br>
>><br>
>> And advice appreciated.<br>
>><br>
>> Thanks<br>
>><br>
>> Mike<br>
>><br>
>><br>
>><br>
>> 20180810-083730 auth: Debug: auth client connected
(pid=77432)<br>
>><br>
>> 20180810-083730 auth: Debug: client in: AUTH 1
PLAIN<br>
>> service=imap secured session=xo1p2BRzZNd/AAAB
lip=127.0.0.1<br>
>> rip=127.0.0.1 lport=143 rport=55140<br>
>> 20180810-083730 auth: Debug: client passdb out: CONT
1<br>
>> 20180810-083730 auth: Debug: client in: CONT 1
AG1rbQBta20xMjM=<br>
>> (previous base64 data may contain sensitive data)<br>
>> 20180810-083730 auth: Debug:
static(mkm,127.0.0.1,<xo1p2BRzZNd/AAAB>):<br>
>> lookup<br>
>> 20180810-083730 auth: Debug: client passdb out: OK 1
user=mkm<br>
>> host=localhost nopasswd=y<br>
>> 20180810-083730 auth: Debug: master in: REQUEST
4201906177 77432<br>
>> 1 b8126b4b71be2959fc7716888eccc566 session_pid=77433<br>
>> request_auth_token<br>
>> 20180810-083730 auth-worker(77426): Debug:<br>
>> passwd(mkm,127.0.0.1,<xo1p2BRzZNd/AAAB>): lookup<br>
>> 20180810-083730 auth: Debug: master userdb out: USER
4201906177<br>
>> mkm system_groups_user=mkm uid=503 gid=20
home=/Users/mkm<br>
>> auth_token=4d2bb44168df3d63e4e1bb352e59de632bc7da49<br>
>> 20180810-083730 imap-login: Info: Login:
user=<mkm>, method=PLAIN,<br>
>> rip=127.0.0.1, lip=127.0.0.1, mpid=77433, secured,<br>
>> session=<xo1p2BRzZNd/AAAB><br>
>> 20180810-083730
imap(mkm)<77433><xo1p2BRzZNd/AAAB>: Fatal:<br>
>> setgroups(505) failed: Too many extra groups<br>
>><br>
>> # doveconf -n<br>
>> # 2.3.2.1 (0719df592):
/usr/local/etc/dovecot/dovecot.conf<br>
>> # OS: Darwin 17.7.0 x86_64<br>
>> # Hostname: pine<br>
>> auth_debug = yes<br>
>> auth_debug_passwords = yes<br>
>> default_internal_user = _dovecot<br>
>> default_login_user = _dovenull<br>
>> disable_plaintext_auth = no<br>
>> listen = 127.0.0.1<br>
>> log_path = /var/log/dovecot<br>
>> log_timestamp = "%Y%m%d-%H%M%S "<br>
>> mail_debug = yes<br>
>> mail_gid = staff<br>
>> mail_location = mbox:~/Mail:INBOX=/var/mail/%u<br>
>> mail_privileged_group = mail<br>
>> mail_uid = _dovecot<br>
>> passdb {<br>
>> args = password=*** host=localhost nopasswd=y<br>
>> driver = static<br>
>> }<br>
>> passdb {<br>
>> args = login<br>
>> driver = pam<br>
>> }<br>
>> protocols = imap<br>
>> service auth {<br>
>> user = root<br>
>> }<br>
>> service imap-login {<br>
>> inet_listener imap {<br>
>> address = *<br>
>> port = 143<br>
>> }<br>
>> }<br>
>> ssl = no<br>
>> userdb {<br>
>> driver = passwd<br>
>> }<br>
>><br>
>><br>
<br>
</blockquote>
<br>
</blockquote>
<br>
</body>
</html>