dovecot - Aug 2017 - Corrupted SSL parameters file in state_dir: ssl-parameters.dat

> But if I enable SSL, the doveadm backup on the remote machine hangs.
> And the destination machine prints the following two massages in the
> logs :
>
> Aug  4 17:10:31 bbb dovecot: doveadm: Error: Corrupted SSL parameters
> file in state_dir: ssl-parameters.dat - disabling SSL 360
> Aug  4 17:10:31 bbb dovecot: doveadm: Error: Couldn't initialize SSL
> parameters, disabling SSL
>
>
> BUT :
>
> (1) /var/lib/dovecot/ssl-parameters.dat  *DOES* exist.
> and
> (2) If I delete it and restart dovecot, it successully re-creates it, as
per
> Aug  4 17:02:32 bbb dovecot: ssl-params: Generating SSL parameters
> Aug  4 17:06:58 bbb dovecot: ssl-params: SSL parameters regeneration
completed
Your timestamps suggest you did this the other way around.

Aki mentioned that issue is/will be fixed, but DH parameters can take a
*very* long time to generate if you're unlucky, so maybe it's a timing
issue (using the service before the DH parameters was ready.)

Joseph Tam <jtam.home at gmail.com>

>
>
> Your timestamps suggest you did this the other way around.
>
> Aki mentioned that issue is/will be fixed, but DH parameters can take a
> *very* long time to generate if you're unlucky, so maybe it's a
timing
> issue (using the service before the DH parameters was ready.)
>

I think I would ask you to ignore the timestamps in this instance.  I
can tell you from fact that I deleted the old .dat file, restarted
dovecot, and waited for it to regenerate the file (i.e. there was
nothing there, and then there was ...).   So I can guarantee you that
the file there at the moment very much is a new file, and that I
waited for that new file before testing again.