documentation that has been obsolete since Postfix 2.11.
Files: proto/postconf.proto, proto/DEPRECATION_README.html,
postconf/postconf_unused.c.
+
+ Cleanup: Postfix version info for postqueue JSON output
+ features. File: postqueue/postqueue.c.
+
+ Cleanup: add missing unit tests for newly deprecated parameters.
+ Files: postconf/Makefile.in, postconf/test79.ref
+
+ Postpone the deprecation of the tls_eecdh_auto_curves and
+ tls_ffdhe_auto_groups parameters because doing this now
+ would make migration noisy. Files: proto/DEPRECATION_README.html,
+ proto/postconf.proto, postconf/postconf_unused.c.
|_\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b|_\b _\b _\b _\b _\b _\b _\b _\b|_\b _\b _\b _\b _\b _\b _\b _\b|_\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b |
|virtual_maps | 3.11 | - |virtual_alias_maps |
|_\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b|_\b _\b _\b _\b _\b _\b _\b _\b|_\b _\b _\b _\b _\b _\b _\b _\b|_\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b |
- |tls_eecdh_auto_curves | 3.11 | - |do not specify with OpenSSL 3.5 or |
- | | | |later |
- |_\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b|_\b _\b _\b _\b _\b _\b _\b _\b|_\b _\b _\b _\b _\b _\b _\b _\b|_\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b |
- |tls_ffdhe_auto_groups | 3.11 | - |do not specify with OpenSSL 3.5 or |
- | | | |later |
- |_\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b|_\b _\b _\b _\b _\b _\b _\b _\b|_\b _\b _\b _\b _\b _\b _\b _\b|_\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b |
|smtp_cname_overrides_servername | 3.11 | - |do not specify (leave at default) |
|_\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b|_\b _\b _\b _\b _\b _\b _\b _\b|_\b _\b _\b _\b _\b _\b _\b _\b|_\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b _\b |
|lmtp_cname_overrides_servername | 3.11 | - |do not specify (leave at default) |
To silence these warning messages, edit main.cf or master.cf, and replace each
obsolete parameter name with its replacement.
-O\bOb\bbs\bso\bol\ble\bet\bte\be a\bau\but\bto\bo g\bgr\bro\bou\bup\bp/\b/c\bcu\bur\brv\bve\be c\bco\bon\bnf\bfi\big\bgu\bur\bra\bat\bti\bio\bon\bn
-
-The postconf(1) command logs one of the following:
-
- * support for parameter "tls_eecdh_auto_curves" will be removed; instead, do
- not specify with OpenSSL 3.5 or later
- * support for parameter "tls_ffdhe_auto_groups" will be removed; instead, do
- not specify with OpenSSL 3.5 or later
-
-The empty value is the default setting for both as of Postfix 3.11, when
-compiled with OpenSSL 3.5 or later. See tls_config_file for a configuration
-example
-
O\bOb\bbs\bso\bol\ble\bet\bte\be C\bCN\bNA\bAM\bME\bE o\bov\bve\ber\brr\bri\bid\bde\be f\bfo\bor\br p\bpe\bee\ber\br n\bna\bam\bme\be c\bco\bon\bnf\bfi\big\bgu\bur\bra\bat\bti\bio\bon\bn
The postconf(1) command logs one of the following:
3.11 </td> <td align="center"> - </td> <td> <a href="postconf.5.html#virtual_alias_maps">virtual_alias_maps</a> </td>
</tr>
+<!--
+
<tr> <td> <a href="#tls_xdhx_auto">
tls_eecdh_auto_curves </a> </td> <td align="center"> 3.11
</td> <td align="center"> - </td> <td> do not specify with OpenSSL 3.5 or later
</td> <td align="center"> - </td> <td> do not specify with OpenSSL 3.5 or later
</td> </tr>
+-->
+
<tr> <td> <a href="#cname_overrides_servername">
smtp_cname_overrides_servername </a> </td> <td align="center"> 3.11
</td> <td align="center"> - </td> <td> do not specify (leave at default)
<p> To silence these warning messages, edit <a href="postconf.5.html">main.cf</a> or <a href="master.5.html">master.cf</a>,
and replace each obsolete parameter name with its replacement. </p>
+<!--
+
<h3> <a name="tls_xdhx_auto"> Obsolete auto group/curve configuration
</a> </h3>
3.11, when compiled with OpenSSL 3.5 or later. See <a href="postconf.5.html#tls_config_file">tls_config_file</a>
for a configuration example </p>
+-->
+
<h3> <a name="cname_overrides_servername"> Obsolete CNAME override
for peer name configuration </a> </h3>
<a href="postconf.5.html#tls_config_name">tls_config_name</a> = postfix
# Clear Postfix curve/group settings to let OpenSSL settings take
# effect.
- # Uncomment only with Postfix < 3.11 or OpenSSL < 3.5.
- # <a href="postconf.5.html#tls_eecdh_auto_curves">tls_eecdh_auto_curves</a> =
- # <a href="postconf.5.html#tls_ffdhe_auto_groups">tls_ffdhe_auto_groups</a> =
+ <a href="postconf.5.html#tls_eecdh_auto_curves">tls_eecdh_auto_curves</a> =
+ <a href="postconf.5.html#tls_ffdhe_auto_groups">tls_ffdhe_auto_groups</a> =
</pre>
<pre>
mately equal to the number of bytes that would be transmitted
via SMTP including the <CR><LF> line endings.
- <b>forced_expire</b>
+ <b>forced_expire</b> (Postfix >= 3.5)
The message is forced to expire (<b>true</b> or <b>false</b>). See the <a href="postsuper.1.html"><b>post-</b></a>
<a href="postsuper.1.html"><b>super</b>(1)</a> options <b>-e</b> or <b>-f</b>.
- This feature is available in Postfix 3.5 and later.
-
<b>sender</b> The envelope sender address.
<b>recipients</b>
<b>address</b>
One recipient address.
- <b>orig_address</b>
+ <b>orig_address</b> (Postfix >= 3.11)
One original recipient address.
<b>delay_reason</b>
number does not include message envelope information. It
is approximately equal to the number of bytes that would
be transmitted via SMTP including the <CR><LF> line endings.
-.IP \fBforced_expire\fR
+.IP "\fBforced_expire\fR (Postfix >= 3.5)
The message is forced to expire (\fBtrue\fR or \fBfalse\fR).
See the \fBpostsuper\fR(1) options \fB\-e\fR or \fB\-f\fR.
-.sp
-This feature is available in Postfix 3.5 and later.
.IP \fBsender\fR
The envelope sender address.
.IP \fBrecipients\fR
.RS
.IP \fBaddress\fR
One recipient address.
-.IP \fBorig_address\fR
+.IP "\fBorig_address\fR (Postfix >= 3.11)
One original recipient address.
.IP \fBdelay_reason\fR
If present, the reason for delayed delivery. Delayed
tls_config_name = postfix
# Clear Postfix curve/group settings to let OpenSSL settings take
# effect.
- # Uncomment only with Postfix < 3.11 or OpenSSL < 3.5.
- # tls_eecdh_auto_curves =
- # tls_ffdhe_auto_groups =
+ tls_eecdh_auto_curves =
+ tls_ffdhe_auto_groups =
.fi
.ad
.PP
3.11 </td> <td align="center"> - </td> <td> virtual_alias_maps </td>
</tr>
+<!--
+
<tr> <td> <a href="#tls_xdhx_auto">
tls_eecdh_auto_curves </a> </td> <td align="center"> 3.11
</td> <td align="center"> - </td> <td> do not specify with OpenSSL 3.5 or later
</td> <td align="center"> - </td> <td> do not specify with OpenSSL 3.5 or later
</td> </tr>
+-->
+
<tr> <td> <a href="#cname_overrides_servername">
smtp_cname_overrides_servername </a> </td> <td align="center"> 3.11
</td> <td align="center"> - </td> <td> do not specify (leave at default)
<p> To silence these warning messages, edit main.cf or master.cf,
and replace each obsolete parameter name with its replacement. </p>
+<!--
+
<h3> <a name="tls_xdhx_auto"> Obsolete auto group/curve configuration
</a> </h3>
3.11, when compiled with OpenSSL 3.5 or later. See tls_config_file
for a configuration example </p>
+-->
+
<h3> <a name="cname_overrides_servername"> Obsolete CNAME override
for peer name configuration </a> </h3>
tls_config_name = postfix
# Clear Postfix curve/group settings to let OpenSSL settings take
# effect.
- # Uncomment only with Postfix < 3.11 or OpenSSL < 3.5.
- # tls_eecdh_auto_curves =
- # tls_ffdhe_auto_groups =
+ tls_eecdh_auto_curves =
+ tls_ffdhe_auto_groups =
</pre>
<pre>
postqueue showq_compat c postqueue showq_json c showq showq c
role is received File tlsproxy tlsproxy c
Files proto postconf proto proto DEPRECATION_README html
+ features File postqueue postqueue c
* Patches change both the patchlevel and the release date. Snapshots have no
* patchlevel; they change the release date only.
*/
-#define MAIL_RELEASE_DATE "20251028"
+#define MAIL_RELEASE_DATE "20251029"
#define MAIL_VERSION_NUMBER "3.11"
#ifdef SNAPSHOT
test42 test43 test44 test45 test46 test47 test48 test49 test50 test51 \
test52 test53 test54 test55 test56 test57 test58 test59 test60 test61 \
test62 test63 test64 test65 test66 test67 test68 test69 test70 test71 \
- test72 test73 test74 test75 test76 test78
+ test72 test73 test74 test75 test76 test78 test79
root_tests:
diff /dev/null test78.tmp
rm -f main.cf master.cf test78.tmp
+# Warn about unused, deprecated, or deleted parameters.
+test79: $(PROG) test79.ref
+ rm -f main.cf master.cf
+ touch main.cf master.cf
+ $(HTABLE_FIX) $(SHLIB_ENV) $(VALGRIND) ./$(PROG) -c. \
+ config_directory=. \
+ authorized_verp_clients=x \
+ fallback_relay=x \
+ lmtp_per_request_deadline=x \
+ postscreen_blacklist_action=x \
+ postscreen_dnsbl_ttl=x \
+ postscreen_dnsbl_whitelist_threshold=x \
+ postscreen_whitelist_interfaces=x \
+ smtpd_client_connection_limit_exceptions=x \
+ smtp_per_request_deadline=x \
+ tlsproxy_client_level=x \
+ tlsproxy_client_policy=x \
+ virtual_maps=x \
+ lmtp_cname_overrides_servername=x \
+ smtp_cname_overrides_servername=x \
+ >test79.tmp 2>&1
+ touch -t 197601010000 main.cf
+ echo foo unix - n n - 0 other >> master.cf
+ echo ' -o lmtp_tls_enforce_peername=no' >> master.cf
+ echo ' -o smtp_tls_enforce_peername=no' >> master.cf
+ touch -t 197601010000 master.cf
+ $(HTABLE_FIX) $(SHLIB_ENV) $(VALGRIND) ./$(PROG) -nc. >>test79.tmp 2>&1
+ diff test79.ref test79.tmp
+ $(HTABLE_FIX) $(SHLIB_ENV) $(VALGRIND) ./$(PROG) -qnc. >/dev/null 2>test79.tmp
+ diff /dev/null test79.tmp
+ rm -f main.cf master.cf test79.tmp
+
clean:
rm -f *.o *core $(PROG) $(TESTPROG) junk $(MAKES) $(AUTOS) $(DUMMIES) \
$(TEST_TMP) $(DB_MAKES)
"tlsproxy_client_level", "specify \"tlsproxy_client_security_level\"",
"tlsproxy_client_policy", "specify \"tlsproxy_client_policy_maps\"",
"virtual_maps", "specify \"virtual_alias_maps\"",
-#if OPENSSL_VERSION_PREREQ(3,5)
+#if 0 && OPENSSL_VERSION_PREREQ(3,5)
"tls_eecdh_auto_curves", "do not specify with OpenSSL 3.5 or later",
"tls_ffdhe_auto_groups", "do not specify with OpenSSL 3.5 or later",
#endif
--- /dev/null
+authorized_verp_clients = x
+config_directory = .
+fallback_relay = x
+lmtp_cname_overrides_servername = x
+lmtp_per_request_deadline = x
+postscreen_blacklist_action = x
+postscreen_dnsbl_ttl = x
+postscreen_dnsbl_whitelist_threshold = x
+postscreen_whitelist_interfaces = x
+smtp_cname_overrides_servername = x
+smtp_per_request_deadline = x
+smtpd_client_connection_limit_exceptions = x
+tlsproxy_client_level = x
+tlsproxy_client_policy = x
+virtual_maps = x
+./postconf: warning: ./main.cf: support for parameter "lmtp_per_request_deadline" will be removed; instead, specify "lmtp_per_request_deadline"
+./postconf: warning: ./main.cf: support for parameter "tlsproxy_client_policy" will be removed; instead, specify "tlsproxy_client_policy_maps"
+./postconf: warning: ./main.cf: support for parameter "virtual_maps" will be removed; instead, specify "virtual_alias_maps"
+./postconf: warning: ./main.cf: support for parameter "authorized_verp_clients" will be removed; instead, specify "smtpd_authorized_verp_clients"
+./postconf: warning: ./main.cf: support for parameter "tlsproxy_client_level" will be removed; instead, specify "tlsproxy_client_security_level"
+./postconf: warning: ./main.cf: support for parameter "smtpd_client_connection_limit_exceptions" will be removed; instead, specify "smtpd_client_event_limit_exceptions"
+./postconf: warning: ./main.cf: support for parameter "postscreen_whitelist_interfaces" will be removed; instead, specify "postscreen_allowlist_interfaces"
+./postconf: warning: ./main.cf: support for parameter "fallback_relay" will be removed; instead, specify "smtp_fallback_relay"
+./postconf: warning: ./main.cf: support for parameter "postscreen_dnsbl_ttl" will be removed; instead, specify "postscreen_dnsbl_max_ttl"
+./postconf: warning: ./main.cf: support for parameter "lmtp_cname_overrides_servername" will be removed; instead, do not specify
+./postconf: warning: ./main.cf: support for parameter "smtp_cname_overrides_servername" will be removed; instead, do not specify
+./postconf: warning: ./main.cf: support for parameter "postscreen_dnsbl_whitelist_threshold" will be removed; instead, specify "postscreen_dnsbl_allowlist_threshold"
+./postconf: warning: ./main.cf: support for parameter "postscreen_blacklist_action" will be removed; instead, specify "postscreen_denylist_action"
+./postconf: warning: ./main.cf: support for parameter "smtp_per_request_deadline" will be removed; instead, specify "smtp_per_request_deadline"
+./postconf: warning: ./master.cf: support for parameter "smtp_tls_enforce_peername" will be removed; instead, specify "smtp_tls_security_level"
+./postconf: warning: ./master.cf: support for parameter "lmtp_tls_enforce_peername" will be removed; instead, specify "lmtp_tls_security_level"
+./postconf: warning: See https://www.postfix.org/DEPRECATION_README.html for details
/* number does not include message envelope information. It
/* is approximately equal to the number of bytes that would
/* be transmitted via SMTP including the <CR><LF> line endings.
-/* .IP \fBforced_expire\fR
+/* .IP "\fBforced_expire\fR (Postfix >= 3.5)
/* The message is forced to expire (\fBtrue\fR or \fBfalse\fR).
/* See the \fBpostsuper\fR(1) options \fB-e\fR or \fB-f\fR.
-/* .sp
-/* This feature is available in Postfix 3.5 and later.
/* .IP \fBsender\fR
/* The envelope sender address.
/* .IP \fBrecipients\fR
/* .RS
/* .IP \fBaddress\fR
/* One recipient address.
-/* .IP \fBorig_address\fR
+/* .IP "\fBorig_address\fR (Postfix >= 3.11)
/* One original recipient address.
/* .IP \fBdelay_reason\fR
/* If present, the reason for delayed delivery. Delayed
projects / thirdparty / postfix.git / commitdiff
