config: Error: Conflict in setting ssl_cert found from filter - dovecot - dovecot.org

newer
Dovecot v2.3.21 released

config: Error: Conflict in setting ssl_cert found from filter

older
ACL management from SQL

Ján Ondrušek

13 Sep 2023 13 Sep '23

5:01 a.m.

Hi!

I see this intermittent error with my dovecot setup.

The most puzzling part is that it sometimes works and sometimes rejects connections, spitting out the log I attached in systeport (DNS).

I am binding both ipv4 (TLS+SNI) and ipv6 (dedicated addresses). TLS certificates for corresponding DNS are shared across ipv4 / ipv6.

Thank you, Best regards, Jan

Attachments:

dovecot-sysreport-mail.tar.gz (application/gzip — 5.5 KB)

Reply

Sign in to reply online Use email software

Show replies by date

Aki Tuomi

13 Sep 13 Sep

8:54 a.m.

Any chance you could send set of config files that reproduce this issue, or your original config files?

Aki

Reply

Sign in to reply online Use email software

Ján Ondrušek

6:37 p.m.

The only modification in the configs I sent is to shorten the domain names and IPv6 prefixes. Is there anything else I should’ve attached?

A full repro would require TLS certificates and keys too.

Thanks, Jan

On Tue, Sep 12, 2023 at 10:54 PM Aki Tuomi <aki.tuomi@open-xchange.com> wrote:

Reply

Sign in to reply online Use email software

Aki Tuomi

15 Sep 15 Sep

8:19 a.m.

Can you do some experimenting with openssl s_client?

openssl s_client -connect ipv6 -servername dnsname server:993

see if this triggers it?

Aki

Reply

Sign in to reply online Use email software

664

Age (days ago)

666

Last active (days ago)

3 comments

2 participants

tags

participants (2)

Aki Tuomi
Ján Ondrušek