Urban Loesch
2016-Apr-15 13:14 UTC
Randomly SSL Errors since upgrade to 2.2.23-1 (Enterprise Edition)
Hi, first of all, many thanks for a great piece of software. Today I updated one of our 2 IMAP/POP3 proxies from version 2.2.15.17-1 to 2.2.23.1-1 (both are enterprise editions). After the update I now see randomly the following errors in the log file on my first proxy: ... Apr 15 10:28:54 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac Apr 15 10:34:24 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac Apr 15 10:37:11 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown Apr 15 10:39:04 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac Apr 15 10:43:02 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown Apr 15 10:45:14 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac Apr 15 10:50:31 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown Apr 15 10:54:56 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac Apr 15 10:57:44 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown Apr 15 10:59:49 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown Apr 15 11:00:59 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown Apr 15 11:13:43 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:14094438:SSL routines:SSL3_READ_BYTES:tlsv1 alert internal error: SSL alert number 80 Apr 15 11:15:21 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown Apr 15 11:18:33 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown Apr 15 11:20:12 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown Apr 15 11:20:40 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac ... Some more details: OS: Debian wheezy (latest patchlevel) Dovecot: ii dovecot-ee-core 2:2.2.23.1-1 ii dovecot-ee-imapd 2:2.2.23.1-1 ii dovecot-ee-managesieved 2:2.2.23.1-1 ii dovecot-ee-mysql 2:2.2.23.1-1 ii dovecot-ee-pop3d 2:2.2.23.1-1 ii dovecot-ee-sieve 2:2.2.23.1-1 Libssl: ii libssl1.0.0:amd64 1.0.1e-2+deb7u20 One my second proxy there is running also Debian Wheezy with the latest patchlevel but dovecot version 2.2.15.17-1 (not yet updated): ii dovecot-ee-core 1:2.2.15.17-1 ii dovecot-ee-imapd 1:2.2.15.17-1 ii dovecot-ee-managesieved 0.4.6-4 ii dovecot-ee-mysql 1:2.2.15.17-1 ii dovecot-ee-pop3d 1:2.2.15.17-1 ii dovecot-ee-sieve 0.4.6-4 On this box I can't see this strange errors. Until now there was no user that complaints that he can't read his mails. Do you know what could cause this errors (for example: very old clients and so on)? Or are the logging of this errors new in dovecot 2.2.23? Many thanks Urban Loesch
Urban Loesch
2016-Apr-15 14:38 UTC
Randomly SSL Errors since upgrade to 2.2.23-1 (Enterprise Edition)
[UPDATE]: I digged deeper into my logs and I found that before the upgrade I got this errors: ... Apr 15 09:36:09 imap1 dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=x.x.x.x, lip=x.x.x.x, TLS handshaking: SSL_accept() failed: error:1408E0F4:SSL routines:SSL3_GET_MESSAGE:unexpected message Apr 15 09:37:56 imap1 dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=x.x.x.x, lip=x.x.x.x, TLS handshaking: SSL_accept() failed: error:1408E0F4:SSL routines:SSL3_GET_MESSAGE:unexpected message Apr 15 09:45:40 imap1 dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=x.x.x.x, lip=x.x.x.x, TLS handshaking: SSL_accept() failed: error:1408E0F4:SSL routines:SSL3_GET_MESSAGE:unexpected message Apr 15 09:46:15 imap1 dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=x.x.x.x, lip=x.x.x.x, TLS handshaking: SSL_accept() failed: error:1408E0F4:SSL routines:SSL3_GET_MESSAGE:unexpected message ... After the upgrade the errors above stopped and now they look like this: .... Apr 15 13:41:30 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac Apr 15 13:41:30 imap1 dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=x.x.x.x, lip=x.x.x.x, TLS handshaking: SSL_accept() failed: Unknown error .... or .... Apr 15 11:00:59 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown Apr 15 11:00:59 imap1 dovecot: imap-login: proxy(user at domain.com): disconnecting x.x.x.x (Disconnected by client: read(size=1026) failed: Connection reset by peer(0s idle, in=467, out=384881)): user=<user at domain.com>, method=PLAIN, rip=x.x.x.x, lip=x.x.x.x, TLS: SSL_write() failed: Bad file descriptor, TLSv1 with cipher ECDHE-RSA-AES128-SHA (128/128 bits) .... First I didn't see the first errors as they are only written to "mail.log" and not "mail.err" in Debian. So I think this is not really critical as there are no user complaints right now. Thanks Urban Loesch Am 15.04.2016 um 15:14 schrieb Urban Loesch:> Hi, > > first of all, many thanks for a great piece of software. > > Today I updated one of our 2 IMAP/POP3 proxies from version 2.2.15.17-1 to 2.2.23.1-1 (both are enterprise editions). > After the update I now see randomly the following errors in the log file on my first proxy: > > ... > Apr 15 10:28:54 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac > Apr 15 10:34:24 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac > Apr 15 10:37:11 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown > Apr 15 10:39:04 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac > Apr 15 10:43:02 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown > Apr 15 10:45:14 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac > Apr 15 10:50:31 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown > Apr 15 10:54:56 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac > Apr 15 10:57:44 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown > Apr 15 10:59:49 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown > Apr 15 11:00:59 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown > Apr 15 11:13:43 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:14094438:SSL routines:SSL3_READ_BYTES:tlsv1 alert internal error: SSL > alert number 80 > Apr 15 11:15:21 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown > Apr 15 11:18:33 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown > Apr 15 11:20:12 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown > Apr 15 11:20:40 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac > ... > > Some more details: > OS: Debian wheezy (latest patchlevel) > > Dovecot: > ii dovecot-ee-core 2:2.2.23.1-1 > ii dovecot-ee-imapd 2:2.2.23.1-1 > ii dovecot-ee-managesieved 2:2.2.23.1-1 > ii dovecot-ee-mysql 2:2.2.23.1-1 > ii dovecot-ee-pop3d 2:2.2.23.1-1 > ii dovecot-ee-sieve 2:2.2.23.1-1 > > Libssl: > ii libssl1.0.0:amd64 1.0.1e-2+deb7u20 > > > One my second proxy there is running also Debian Wheezy with the latest patchlevel but dovecot version 2.2.15.17-1 (not yet updated): > ii dovecot-ee-core 1:2.2.15.17-1 > ii dovecot-ee-imapd 1:2.2.15.17-1 > ii dovecot-ee-managesieved 0.4.6-4 > ii dovecot-ee-mysql 1:2.2.15.17-1 > ii dovecot-ee-pop3d 1:2.2.15.17-1 > ii dovecot-ee-sieve 0.4.6-4 > > On this box I can't see this strange errors. > > Until now there was no user that complaints that he can't read his mails. > > Do you know what could cause this errors (for example: very old clients and so on)? > Or are the logging of this errors new in dovecot 2.2.23? > > Many thanks > Urban Loesch >
Timo Sirainen
2016-Apr-21 18:49 UTC
Randomly SSL Errors since upgrade to 2.2.23-1 (Enterprise Edition)
Fixed by https://github.com/dovecot/core/commit/b9e1531c80039ee75239d31cdad70d430d255974> On 15 Apr 2016, at 17:38, Urban Loesch <bind at enas.net> wrote: > > [UPDATE]: > > I digged deeper into my logs and I found that before the upgrade I got this errors: > ... > Apr 15 09:36:09 imap1 dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=x.x.x.x, lip=x.x.x.x, TLS handshaking: SSL_accept() failed: error:1408E0F4:SSL routines:SSL3_GET_MESSAGE:unexpected message > Apr 15 09:37:56 imap1 dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=x.x.x.x, lip=x.x.x.x, TLS handshaking: SSL_accept() failed: error:1408E0F4:SSL routines:SSL3_GET_MESSAGE:unexpected message > Apr 15 09:45:40 imap1 dovecot: imap-login: Disconnected (no auth attempts in 1 secs): user=<>, rip=x.x.x.x, lip=x.x.x.x, TLS handshaking: SSL_accept() failed: error:1408E0F4:SSL routines:SSL3_GET_MESSAGE:unexpected message > Apr 15 09:46:15 imap1 dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=x.x.x.x, lip=x.x.x.x, TLS handshaking: SSL_accept() failed: error:1408E0F4:SSL routines:SSL3_GET_MESSAGE:unexpected message > ... > > After the upgrade the errors above stopped and now they look like this: > > .... > Apr 15 13:41:30 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac > Apr 15 13:41:30 imap1 dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=x.x.x.x, lip=x.x.x.x, TLS handshaking: SSL_accept() failed: Unknown error > .... > > or > > .... > Apr 15 11:00:59 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown > Apr 15 11:00:59 imap1 dovecot: imap-login: proxy(user at domain.com): disconnecting x.x.x.x (Disconnected by client: read(size=1026) failed: Connection reset by peer(0s idle, in=467, out=384881)): user=<user at domain.com>, method=PLAIN, rip=x.x.x.x, lip=x.x.x.x, TLS: SSL_write() failed: Bad file descriptor, TLSv1 with cipher ECDHE-RSA-AES128-SHA (128/128 bits) > .... > > First I didn't see the first errors as they are only written to "mail.log" and not "mail.err" in Debian. > > So I think this is not really critical as there are no user complaints right now. > > Thanks > Urban Loesch > > > Am 15.04.2016 um 15:14 schrieb Urban Loesch: >> Hi, >> >> first of all, many thanks for a great piece of software. >> >> Today I updated one of our 2 IMAP/POP3 proxies from version 2.2.15.17-1 to 2.2.23.1-1 (both are enterprise editions). >> After the update I now see randomly the following errors in the log file on my first proxy: >> >> ... >> Apr 15 10:28:54 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac >> Apr 15 10:34:24 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac >> Apr 15 10:37:11 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown >> Apr 15 10:39:04 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac >> Apr 15 10:43:02 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown >> Apr 15 10:45:14 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac >> Apr 15 10:50:31 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown >> Apr 15 10:54:56 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac >> Apr 15 10:57:44 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown >> Apr 15 10:59:49 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown >> Apr 15 11:00:59 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown >> Apr 15 11:13:43 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:14094438:SSL routines:SSL3_READ_BYTES:tlsv1 alert internal error: SSL >> alert number 80 >> Apr 15 11:15:21 imap1 dovecot: imap-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown >> Apr 15 11:18:33 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown >> Apr 15 11:20:12 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:140D00CF:SSL routines:SSL_write:protocol is shutdown >> Apr 15 11:20:40 imap1 dovecot: pop3-login: Error: SSL: Stacked error: error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac >> ... >> >> Some more details: >> OS: Debian wheezy (latest patchlevel) >> >> Dovecot: >> ii dovecot-ee-core 2:2.2.23.1-1 >> ii dovecot-ee-imapd 2:2.2.23.1-1 >> ii dovecot-ee-managesieved 2:2.2.23.1-1 >> ii dovecot-ee-mysql 2:2.2.23.1-1 >> ii dovecot-ee-pop3d 2:2.2.23.1-1 >> ii dovecot-ee-sieve 2:2.2.23.1-1 >> >> Libssl: >> ii libssl1.0.0:amd64 1.0.1e-2+deb7u20 >> >> >> One my second proxy there is running also Debian Wheezy with the latest patchlevel but dovecot version 2.2.15.17-1 (not yet updated): >> ii dovecot-ee-core 1:2.2.15.17-1 >> ii dovecot-ee-imapd 1:2.2.15.17-1 >> ii dovecot-ee-managesieved 0.4.6-4 >> ii dovecot-ee-mysql 1:2.2.15.17-1 >> ii dovecot-ee-pop3d 1:2.2.15.17-1 >> ii dovecot-ee-sieve 0.4.6-4 >> >> On this box I can't see this strange errors. >> >> Until now there was no user that complaints that he can't read his mails. >> >> Do you know what could cause this errors (for example: very old clients and so on)? >> Or are the logging of this errors new in dovecot 2.2.23? >> >> Many thanks >> Urban Loesch >>