diff options
| author | Jeremy Harris <jgh146exb@wizmail.org> | 2018-03-17 23:39:54 +0000 |
|---|---|---|
| committer | Jeremy Harris <jgh146exb@wizmail.org> | 2018-03-17 23:39:54 +0000 |
| commit | cb78c1a805d1e86dad86d8eb031eb0517a62ec20 (patch) | |
| tree | dfd233978c34db063e537809d3fb0a4812d1f3d9 /doc | |
| parent | c780096c29793f7b37c2dd5fdd157f40dc12ac44 (diff) | |
DKIM: Ed25519 signatures under OpenSSL (1.1.1 or later)
OpenSSL 1.1.1 is not released yet, but operation has been checked against the current source
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/doc-docbook/spec.xfpt | 6 | ||||
| -rw-r--r-- | doc/doc-txt/NewStuff | 2 | ||||
| -rw-r--r-- | doc/doc-txt/openssl.txt | 3 |
3 files changed, 8 insertions, 3 deletions
diff --git a/doc/doc-docbook/spec.xfpt b/doc/doc-docbook/spec.xfpt index aea31dd66..295cb15c1 100644 --- a/doc/doc-docbook/spec.xfpt +++ b/doc/doc-docbook/spec.xfpt @@ -38903,7 +38903,8 @@ The result can either be a valid RSA private key in ASCII armor (.pem file), including line breaks .new .next -with GnuTLS 3.6.0 or later, be a valid Ed25519 private key (same format as above) +with GnuTLS 3.6.0 or OpenSSL 1.1.1 or later, +be a valid Ed25519 private key (same format as above) .wen .next start with a slash, in which case it is treated as a file that contains @@ -39114,7 +39115,8 @@ The key record selector string. .vitem &%$dkim_algo%& The algorithm used. One of 'rsa-sha1' or 'rsa-sha256'. .new -If running under GnuTLS 3.6.0 or later, may also be 'ed25519-sha256'. +If running under GnuTLS 3.6.0 or OpenSSL 1.1.1 or later, +may also be 'ed25519-sha256'. The "_CRYPTO_SIGN_ED25519" macro will be defined if support is present for EC keys. .wen diff --git a/doc/doc-txt/NewStuff b/doc/doc-txt/NewStuff index e4de435a9..58f3f2054 100644 --- a/doc/doc-txt/NewStuff +++ b/doc/doc-txt/NewStuff @@ -34,7 +34,7 @@ Version 4.91 under OpenSSL version 1.1.1 or later. 9. DKIM operations can now use the Ed25519 algorithm in addition to RSA, under - GnuTLS 3.6.0 or later. + GnuTLS 3.6.0 or OpenSSL 1.1.1 or later. 10. Builtin feature-macros _CRYPTO_HASH_SHA3 and _CRYPTO_SIGN_ED25519, library version dependent. diff --git a/doc/doc-txt/openssl.txt b/doc/doc-txt/openssl.txt index e4f5d854c..93ca701a9 100644 --- a/doc/doc-txt/openssl.txt +++ b/doc/doc-txt/openssl.txt @@ -55,6 +55,8 @@ the relevant directory into the rpath stamped into the binary: USE_OPENSSL_PC=openssl LDFLAGS+=-ldl -Wl,-rpath,/opt/openssl/lib +[jgh: I've see /usr/local/lib used] + The -ldl is needed by OpenSSL 1.0.2+ on Linux and is not needed on most other platforms. The LDFLAGS is needed because `pkg-config` doesn't know how to emit information about RPATH-stamping, but we can still leverage @@ -94,6 +96,7 @@ is to run: readelf -d $(which exim) | grep RPATH +[jgh: I've seen that spelled RUNPATH] Very Advanced ------------- |