password protected ssl key seems unsupported after update to

admin at admin at
Sun Feb 24 21:30:59 EET 2019


On a debian server after an update to dovecot to imaps mail client stop working.
I’ve applied necessary migration for ssl_dh (cf <> ) but that was not enough. The workaround I’ve setup was to remove password protection from the ssl_key file. All tests with ssl_key_password parameter failled (direct password, <path-file-with-password)

searching I’ve found a message reporting a problem with that parameter and Stephan said it was tracked internally as DOP-851

Hope this will help.


debian updade from dovecot-core:amd64 (1:2.2.34-2~bpo9+1, 1:

# dovecot -n
# (f79e8e7e4): /etc/dovecot/dovecot.conf
# Pigeonhole version 0.5.4 ()
# OS: Linux 4.19.0-0.bpo.2-amd64 x86_64 Debian 9.8 xfs

The error message in the log prior to the workaround was : "dovecot: imap-login: Error: Failed to initialize SSL server context: Couldn't parse private SSL key: error:06065064:digital envelope routines:EVP_DecryptFinal_ex:bad decrypt, error:23077074:PKCS12 routines:PKCS12_pbe_crypt:pkcs12 cipherfinal error, error:2306A075:PKCS12 routines:PKCS12_item_decrypt_d2i:pkcs12 pbe crypt error, error:0907B00D:PEM routines:PEM_read_bio_PrivateKey:ASN1 lib: user=<>, rip=, lip=, session=<thtmP6iCc9jAqAD+> »

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the dovecot mailing list