ed25519 signing does not work
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
opendkim (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
Using Ubuntu 20.04 LTS.
# apt-cache policy opendkim
opendkim:
Installed: 2.11.0~beta2-1
Candidate: 2.11.0~beta2-1
Version table:
*** 2.11.0~beta2-1 500
500 http://
100 /var/lib/
# opendkim -V
opendkim: OpenDKIM Filter v2.11.0
Compiled with OpenSSL 1.1.1f 31 Mar 2020
SMFI_VERSION 0x1000001
libmilter version 1.0.1
Supported signing algorithms:
rsa-sha1
rsa-sha256
ed25519-sha256
Supported canonicalization algorithms:
relaxed
simple
Active code options:
QUERY_CACHE
USE_DB
USE_LDAP
USE_LUA
USE_ODBX
USE_UNBOUND
_FFR_ATPS
_FFR_RBL
_FFR_
_FFR_SENDER_MACRO
_FFR_STATS
_FFR_VBR
libopendkim 2.11.0: atps query_cache
However, when configured to use "MultipleSignatures yes" and two Selectors:
opendkim[113250]: 6307460C4C: SSL error:0607907F:
opendkim[113250]: 6307460C4C: dkim_eom(): resource unavailable: EVP_PKEY_get1_RSA() failed
Unfortunately this is not supported by OpenDKIM today, see: /github. com/trusteddoma inproject/ OpenDKIM/ issues/ 6
https:/
OpenDKIM in this version only supports a single signature (parameter thm), eg *either* ‘rsa-sha256’ *or* ‘ed25519-sha256’.
SignatureAlgori