FIXED: Fedora 36 pypolicyd-spf-2.9.3-1 Breaks Postfix SPF

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Good morning,

TL;DR

If your Fedora 36 Postfix SPF configuration is broken due to the latest pypolicyd-spf update, install python3-authres and restart postfix to get it working again.


I noticed when I updated my system this past weekend that SPF was no longer working after receiving a bounce message from another email address I use:

Nov 13 14:20:47 impact-crater postfix/smtpd[203195]: connect from m474.em.secureserver.net[198.71.246.105]
Nov 13 14:20:48 impact-crater postfix/smtpd[203195]: Anonymous TLS connection established from m474.em.secureserver.net[198.71.246.105]: TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256
Nov 13 14:20:48 impact-crater postfix/smtpd[203195]: warning: premature end-of-input on private/policyd-spf while reading input attribute name
Nov 13 14:20:49 impact-crater postfix/smtpd[203195]: warning: premature end-of-input on private/policyd-spf while reading input attribute name
Nov 13 14:20:49 impact-crater postfix/smtpd[203195]: warning: problem talking to server private/policyd-spf: Connection reset by peer
Nov 13 14:20:49 impact-crater postfix/smtpd[203195]: NOQUEUE: reject: RCPT from m474.em.secureserver.net[198.71.246.105]: 451 4.3.5 <tom@xxxxxxxxxxxxxxxxx>: Recipient address rejected: Server configuration problem; from=<sp_31346.182956.1.27afaa92b3a8a24889fe74c219575e84@xxxxxxxxxxxxxxxxxxxxxxxxxxx> to=<tom@xxxxxxxxxxxxxxxxx> proto=ESMTP helo=<m474.em.secureserver.net>
Nov 13 14:20:49 impact-crater postfix/smtpd[203195]: using backwards-compatible default setting smtpd_relay_before_recipient_restrictions=no to reject recipient "tom@xxxxxxxxxxxxxxxxx" from client "m474.em.secureserver.net[198.71.246.105]"
Nov 13 14:20:49 impact-crater postfix/smtpd[203195]: disconnect from m474.em.secureserver.net[198.71.246.105] ehlo=2 starttls=1 mail=1 rcpt=0/1 quit=1 commands=5/6

Running policyd-spf manually gave me the following output:

[root@impact-crater ~]# /usr/libexec/postfix/policyd-spf
Traceback (most recent call last):
  File "/usr/libexec/postfix/policyd-spf", line 33, in <module>
    sys.exit(load_entry_point('spf-engine==2.9.3', 'console_scripts', 'policyd-spf')())
  File "/usr/libexec/postfix/policyd-spf", line 25, in importlib_load_entry_point
    return next(matches).load()
  File "/usr/lib64/python3.10/importlib/metadata/__init__.py", line 171, in load
    module = import_module(match.group('module'))
  File "/usr/lib64/python3.10/importlib/__init__.py", line 126, in import_module
    return _bootstrap._gcd_import(name[level:], package, level)
  File "<frozen importlib._bootstrap>", line 1050, in _gcd_import
  File "<frozen importlib._bootstrap>", line 1027, in _find_and_load
  File "<frozen importlib._bootstrap>", line 992, in _find_and_load_unlocked
  File "<frozen importlib._bootstrap>", line 241, in _call_with_frames_removed
  File "<frozen importlib._bootstrap>", line 1050, in _gcd_import
  File "<frozen importlib._bootstrap>", line 1027, in _find_and_load
  File "<frozen importlib._bootstrap>", line 1006, in _find_and_load_unlocked
  File "<frozen importlib._bootstrap>", line 688, in _load_unlocked
  File "<frozen importlib._bootstrap_external>", line 883, in exec_module
  File "<frozen importlib._bootstrap>", line 241, in _call_with_frames_removed
  File "/usr/lib/python3.10/site-packages/spf_engine/__init__.py", line 54, in <module>
    import authres
ModuleNotFoundError: No module named 'authres'

I discovered that installing python3-authres-1.2.0-12.fc36.noarch and restarting postfix seems to have fixed things:

dnf install python3-authres
postfix reload

I hope this helps anyone else who ran into this.


Tom

_______________________________________________
users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
[Index of Archives]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [EPEL Devel]     [Fedora Magazine]     [Fedora Summer Coding]     [Fedora Laptop]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Desktop]     [Fedora Fonts]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Yosemite News]     [Gnome Users]     [KDE Users]     [Fedora Art]     [Fedora Docs]     [Fedora Sparc]     [Libvirt Users]     [Fedora ARM]

  Powered by Linux