Since replacing our CentOS 7 mail relays with Rocky 9.7 we now continually get warnings about Openssl mismatch;
postfix/smtp: warning: run-time library vs. compile-time header version mismatch: OpenSSL 3.5.0 may not be compatible with OpenSSL 3.2.0
Any idea when a postfix upgrade for Rocky 9 will fix this ? Nothing ive found on google fixes it. Redhat forum says postifx needs a full recompile/upgrade to fix it.
Hi, see this discussion on the forum where this has been asked previously:
some of the info there may help explain the situation. But until Red Hat rebuild it, Rocky won’t be rebuilding either since Rocky aims to be 100% compatible with RHEL. When RHEL rebuild it, then we will have those changes. Otherwise for now, it’s just a warning and nothing more.
yeah saw that. we wait on Redhat. I see Rocky 10 has postfix 3.7 which apparently also fixes this warning but its not avail on Rocky 9, until Redhat release it first. oh well. thanks.
saw this supposed fix; tls_eecdh_auto_curves but it did not stop the warnings im afraid. thats related so some more fatal error people are getting, not the warning im getting.
Yeah that was happening to people when running in FIPS mode from what I gather. They had additional warnings/errors.
We are also getting the occasional “Connection timed out” but postfix retires a few seconds later and it works so nothing to much to worry about. never happened on our old CentOS 7 relays. I think its the same bug as the ssl lib warnings.
we are going to upgrade to Rocky 10 and openssl 3.7 and see if that fixes our postfix mail relay errors. as we have no idea when redhat will fix/upgrade openssl 3.5 on rocky 9.