From: Stephan Bosch <stephan.bosch@open-xchange.com>
Date: Thu, 23 Oct 2025 23:19:57 +0000 (+0200)
Subject: lib-sasl: fuzz-sasl-authentication - Forgot to ignore token-based mechanisms for... 
X-Git-Tag: 2.4.2~9
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=c8c811914f91f23ee7f63a4c3746a5058ce22467;p=thirdparty%2Fdovecot%2Fcore.git

lib-sasl: fuzz-sasl-authentication - Forgot to ignore token-based mechanisms for password validity check

OSS-Fuzz report: 454518406
---

diff --git a/src/lib-sasl/fuzz-sasl-authentication.c b/src/lib-sasl/fuzz-sasl-authentication.c
index 3c9c2027b7..604e35e84e 100644
--- a/src/lib-sasl/fuzz-sasl-authentication.c
+++ b/src/lib-sasl/fuzz-sasl-authentication.c
@@ -390,7 +390,9 @@ static void fuzz_assert_success_validity(struct fuzz_sasl_context *fctx)
 		SASL_MECH_NAME_ANONYMOUS,
 		SASL_MECH_NAME_LOGIN,
 		SASL_MECH_NAME_NTLM,
+		SASL_MECH_NAME_OAUTHBEARER,
 		SASL_MECH_NAME_PLAIN,
+		SASL_MECH_NAME_XOAUTH2,
 		NULL
 	};