After some poking around I was able to reproduce this, we'll look into this.
Aki
> On 04/03/2025 15:53 EET Aki Tuomi via dovecot <dovecot@dovecot.org> wrote:
>
>
> I wasn't able to reproduce this error myself on bookworm with 2.4.
>
> Aki
>
> > On 04/03/2025 15:06 EET Andrea Gabellini via dovecot <dovecot@dovecot.org>
> > wrote:
> >
> >
> > Hi,
> >
> > Here is the configuration of the backend where I have mail-crypt enabled:
> >
> > service lmtp {
> > inet_listener lmtp {
> > port = 24
> > ssl = yes
> > }
> > }
> >
> > As expected, it does not accept non-SSL connections.
> >
> > The proxy that forwards emails has ssl = yes set in the passdb. Running
> > the proxy in debug mode does not show any errors. As I mentioned
> > earlier, without the mail-crypt plugin, no errors appear, and all
> > communications are properly encrypted.
> >
> > It is quite odd that an error is logged, yet messages are processed
> > correctly.
> >
> > Thanks in advance for your support!
> >
> > Best regards,
> > Andrea
> >
> >
> > Il 04/03/25 12:31, Aki Tuomi via dovecot ha scritto:
> > > This looks like SSL error. Are you connecting to LMTP with non-TLS
> > > connection?
> > >
> > > Aki
> > >
> > >> On 04/03/2025 13:11 EET Andrea Gabellini via dovecot
> > >> <dovecot@dovecot.org> wrote:
> > >>
> > >>
> > >> Hi,
> > >>
> > >> Thanks for the suggestion! I installed dovecot-dev, and now the library
> > >> is present, and the previous error has disappeared.
> > >> I then added the following configuration for mail-crypt to an otherwise
> > >> fully functional setup:
> > >>
> > >> mail_plugins {
> > >> mail_crypt = yes
> > >> }
> > >>
> > >> crypt_user_key_curve = prime256v1
> > >>
> > >> crypt_global_public_key_file = /etc/dovecot/ecpubkey.pem
> > >> crypt_global_private_key main {
> > >> crypt_private_key_file = /etc/dovecot/ecprivkey.pem
> > >> }
> > >>
> > >> The keys were generated with the following commands:
> > >>
> > >> openssl ecparam -name prime256v1 -genkey | openssl pkey -out
> > >> ecprivkey.pem
> > >> openssl pkey -in ecprivkey.pem -pubout -out ecpubkey.pem
> > >>
> > >> Messages received via LMTP are correctly stored and read by IMAP, but I
> > >> keep seeing this error in the logs:
> > >>
> > >> lmtp(3809525): Disconnect from x.x.x.x: Connection closed: SSL_read
> > >> failed: error:03000093:digital envelope routines::command not supported,
> > >> error:03000093:digital envelope routines::command not supported
> > >> (state=READY)
> > >>
> > >> Any idea what might be causing this issue?
> > >>
> > >> Thanks in advance for your help!
> > >>
> > >> Best regards,
> > >> Andrea
> > >>
> > >> Il 04/03/25 10:46, Aki Tuomi ha scritto:
> > >>>> On 04/03/2025 11:32 EET Aki Tuomi <aki.tu...@open-xchange.com> wrote:
> > >>>>
> > >>>>
> > >>>>> On 04/03/2025 11:16 EET Andrea Gabellini via dovecot
> > >>>>> <dovecot@dovecot.org> wrote:
> > >>>>>
> > >>>>>
> > >>>>> Hi everyone,
> > >>>>>
> > >>>>> I'm trying to use the mail-crypt plugin on Debian Bookworm with
> > >>>>> Dovecot
> > >>>>> 2.4. This is my first time using it, so please forgive any basic
> > >>>>> questions...
> > >>>>>
> > >>>>> I've added the following configuration:
> > >>>>>
> > >>>>> mail_plugins {
> > >>>>> mail_crypt = yes
> > >>>>> }
> > >>>>>
> > >>>>> crypt_global_public_key_file = /etc/dovecot/xxx_pub.pem
> > >>>>> crypt_global_private_key main {
> > >>>>> crypt_private_key_file = /etc/dovecot/xxx_priv.pem
> > >>>>> }
> > >>>>>
> > >>>>> log_debug = category=debug
> > >>>>>
> > >>>>> However, as soon as I try to use it, I see the following log entry:
> > >>>>>
> > >>>>> Fatal: dcrypt_initialize(): Plugin 'dcrypt_openssl' not found from
> > >>>>> directory /usr/lib/x86_64-linux-gnu/dovecot
> > >>>>>
> > >>>>> I've searched my file system and checked the available dovecot-*
> > >>>>> packages, but I couldn't find any trace of the missing library.
> > >>>>>
> > >>>>> Am I missing something, or is this library indeed absent from the
> > >>>>> official packages?
> > >>>>>
> > >>>>> Thanks in advance for your help!
> > >>>>>
> > >>>>> Best regards,
> > >>>>> Andrea
> > >>>>>
> > >>>> Thanks for letting us know, we'll look into this. Looks like there is
> > >>>> a packaging mistake.
> > >>>>
> > >>>> Aki
> > >>> Seems the library has been accidentically placed into dovecot-dev, so
> > >>> installing that (for now) will fix the problem. We'll fix this for
> > >>> 2.4.1.
> > >>>
> > >>> Aki
> > >>>
> > >> --
> > >> TIM San Marino S.p.A.
> > >> Andrea Gabellini
> > >> Engineering R&D
> > >> TIM San Marino S.p.A. - https://www.telecomitalia.sm
> > >> Via Ventotto Luglio, 212 - Piano -2
> > >> 47893 - Borgo Maggiore - Republic of San Marino
> > >> Tel: (+378) 0549 886237
> > >> Fax: (+378) 0549 886188
> > >>
> > >>
> > >> --
> > >> Informativa Privacy
> > >>
> > >> Questa email ha per destinatari dei contatti presenti negli archivi di
> > >> TIM San Marino S.p.A.. Tutte le informazioni vengono trattate e tutelate
> > >> nel rispetto della normativa vigente sulla protezione dei dati personali
> > >> (Reg. EU 2016/679). Per richiedere informazioni e/o variazioni e/o la
> > >> cancellazione dei vostri dati presenti nei nostri archivi potete inviare
> > >> una email a priv...@telecomitalia.sm.
> > >>
> > >> Avviso di Riservatezza
> > >>
> > >> Il contenuto di questa e-mail e degli eventuali allegati e' strettamente
> > >> confidenziale e destinato alla/e persona/e a cui e' indirizzato. Se
> > >> avete ricevuto per errore questa e-mail, vi preghiamo di segnalarcelo
> > >> immediatamente e di cancellarla dal vostro computer. E' fatto divieto di
> > >> copiare e divulgare il contenuto di questa e-mail. Ogni utilizzo abusivo
> > >> delle informazioni qui contenute da parte di persone terze o comunque
> > >> non indicate nella presente e-mail potra' essere perseguito ai sensi di
> > >> legge.
> > >> _______________________________________________
> > >> dovecot mailing list -- dovecot@dovecot.org
> > >> To unsubscribe send an email to dovecot-le...@dovecot.org
> > > _______________________________________________
> > > dovecot mailing list -- dovecot@dovecot.org
> > > To unsubscribe send an email to dovecot-le...@dovecot.org
> >
> > --
> > TIM San Marino S.p.A.
> > Andrea Gabellini
> > Engineering R&D
> > TIM San Marino S.p.A. - https://www.telecomitalia.sm
> > Via Ventotto Luglio, 212 - Piano -2
> > 47893 - Borgo Maggiore - Republic of San Marino
> > Tel: (+378) 0549 886237
> > Fax: (+378) 0549 886188
> >
> >
> > --
> > Informativa Privacy
> >
> > Questa email ha per destinatari dei contatti presenti negli archivi di TIM
> > San Marino S.p.A.. Tutte le informazioni vengono trattate e tutelate nel
> > rispetto della normativa vigente sulla protezione dei dati personali (Reg.
> > EU 2016/679). Per richiedere informazioni e/o variazioni e/o la
> > cancellazione dei vostri dati presenti nei nostri archivi potete inviare
> > una email a priv...@telecomitalia.sm.
> >
> > Avviso di Riservatezza
> >
> > Il contenuto di questa e-mail e degli eventuali allegati e' strettamente
> > confidenziale e destinato alla/e persona/e a cui e' indirizzato. Se avete
> > ricevuto per errore questa e-mail, vi preghiamo di segnalarcelo
> > immediatamente e di cancellarla dal vostro computer. E' fatto divieto di
> > copiare e divulgare il contenuto di questa e-mail. Ogni utilizzo abusivo
> > delle informazioni qui contenute da parte di persone terze o comunque non
> > indicate nella presente e-mail potra' essere perseguito ai sensi di legge.
> > _______________________________________________
> > dovecot mailing list -- dovecot@dovecot.org
> > To unsubscribe send an email to dovecot-le...@dovecot.org
>
> _______________________________________________
> dovecot mailing list -- dovecot@dovecot.org
> To unsubscribe send an email to dovecot-le...@dovecot.org
_______________________________________________
dovecot mailing list -- dovecot@dovecot.org
To unsubscribe send an email to dovecot-le...@dovecot.org
