OpenSMTPd not working with OpenSSL 3

Bug #1969988 reported by Alex Conrad
12
This bug affects 2 people
Affects Status Importance Assigned to Milestone
opensmtpd (Ubuntu)
Confirmed
Undecided
Unassigned

Bug Description

So, I upgraded to Ubuntu 22.04 earlier today, and just noticed all mail is dismissed with this cryptic error:

smtp disconnected reason="io-error: error:0A080006:SSL routines::EVP lib"

Running smtpd -dv -Tall gives these errors:

debug: SSL library error: io_dispatch_accept_tls:SSL_accept: error:020000B3:rsa routines::missing private key
debug: SSL library error: io_dispatch_accept_tls:SSL_accept: error:1C880004:Provider routines::RSA libdebug: SSL library error: io_dispatch_accept_tls:SSL_accept: error:0A080006:SSL routines::EVP lib
smtp: 0x623af4b1f100: IO_ERROR <io:0x623af4be2400 fd=21 to=300000 fl=R tls=TLSv1.3:TLS_AES_256_GCM_SHA384:256 ib=0 ob=0>
6dd245e51e9972cc smtp disconnected reason="io-error: error:0A080006:SSL routines::EVP lib"

Some googling led me to this:

https://gitlab.alpinelinux.org/alpine/aports/-/merge_requests/25393

I'd say this is pretty severe, as opensmtpd doesn't seem to work at all on the latest stable Ubuntu. My mailserver is down. I had to create a temporary mail just to create this account to report this ticket.

So, this is on Ubuntu 22.04, with opensmtpd 6.8.0p2-4build1. I expect mail to be delivered, instead it is dismissed.
This only affects mail delivered through smtp. Local mail works fine. But just local mail is kinda pointless (:

Revision history for this message
Alex Conrad (alexco22) wrote :
Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in opensmtpd (Ubuntu):
status: New → Confirmed
Revision history for this message
StephanBeal (sgbeal) wrote :

Like the OP, this is affecting my server as well since the update to 22.04, but not _all_ inbound traffic is affected. Most is. There is one family of servers from whom i can receive mail just fine and spammers somehow manage to get through, but mail sent via gmail or my own local Thunderbird client both fail with the same errors as reported by the OP.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.