Hi, Relaying is working but I see the following in my logs:
warn: unable to load CA file /etc/ssl/cert.pem: No such file or directory
smtp-out: Server certificate verification failed on session [...]
I'm running on Fedora 26 and the CA certs file is located in
/etc/pki/tls/cert.pem. I reconfigured and recompiled with the correct path:
# systemctl stop opensmtpd
# cd /usr/local/src/opensmtpd-201702130941p1/
# ./configure --with-path-CAfile=/etc/pki/tls/cert.pem
# grep -r /etc/pki/tls/cert.pem *
config.log: $ ./configure --with-path-CAfile=/etc/pki/tls/cert.pem
config.log:CA_FILE='/etc/pki/tls/cert.pem'
config.status:ac_cs_config="'--with-path-CAfile=/etc/pki/tls/cert.pem'"
config.status: set X /bin/sh './configure'
'--with-path-CAfile=/etc/pki/tls/cert.pem' $ac_configure_extra_args
--no-create --no-recursion
config.status:S["CA_FILE"]="/etc/pki/tls/cert.pem"
contrib/libexec/encrypt/Makefile:CA_FILE = /etc/pki/tls/cert.pem
contrib/libexec/Makefile:CA_FILE = /etc/pki/tls/cert.pem
contrib/libexec/mail.local/Makefile:CA_FILE = /etc/pki/tls/cert.pem
contrib/Makefile:CA_FILE = /etc/pki/tls/cert.pem
Makefile:CA_FILE = /etc/pki/tls/cert.pem
mk/smtpctl/Makefile:CA_FILE = /etc/pki/tls/cert.pem
mk/smtpd/Makefile:CA_FILE = /etc/pki/tls/cert.pem
mk/Makefile:CA_FILE = /etc/pki/tls/cert.pem
openbsd-compat/Makefile:CA_FILE = /etc/pki/tls/cert.pem
# make
# sudo make install
# systemctl start opensmtpd
However, the problem reoccurs with a new mail.
I can workaround it with a symlink:
# ln -s /etc/pki/tls/cert.pem /etc/ssl/cert.pem
smtp-out: Server certificate verification succeeded on session [...]
But I thought it was worth reporting to check if I'm doing something
wrong or there's a bug.
--
Kevin
--
You received this mail because you are subscribed to [email protected]
To unsubscribe, send a mail to: [email protected]
