diff options
| author | Jeremy Harris <jgh146exb@wizmail.org> | 2018-04-13 11:51:50 +0100 |
|---|---|---|
| committer | Jeremy Harris <jgh146exb@wizmail.org> | 2018-04-13 11:51:50 +0100 |
| commit | 321ef002e23ff171922075988bcd8e77bae884b7 (patch) | |
| tree | e175340e36494ba62043d8b6493214215b4b9d1f /doc | |
| parent | 0f9d3f8ba8cf8b559b74ba9166d8a436498651b4 (diff) | |
DKIM: add support for the SubjectPublicKeyInfo wrapped form of pubkey
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/doc-docbook/spec.xfpt | 5 | ||||
| -rw-r--r-- | doc/doc-txt/ChangeLog | 4 |
2 files changed, 9 insertions, 0 deletions
diff --git a/doc/doc-docbook/spec.xfpt b/doc/doc-docbook/spec.xfpt index d8f1573c9..a35a8bf26 100644 --- a/doc/doc-docbook/spec.xfpt +++ b/doc/doc-docbook/spec.xfpt @@ -39067,6 +39067,11 @@ To produce the required public key value for a DNS record: openssl pkey -outform DER -pubout -in dkim_ed25519.private | tail -c +13 | base64 certtool --load_privkey=dkim_ed25519.private --pubkey_info --outder | tail -c +13 | base64 .endd + +Note that the format +of Ed25519 keys in DNS has not yet been decided; this release supports +both of the leading candidates at this time, a future release will +probably drop support for whichever proposal loses .wen .option dkim_hash smtp string&!! sha256 diff --git a/doc/doc-txt/ChangeLog b/doc/doc-txt/ChangeLog index 9fc466365..83a37d515 100644 --- a/doc/doc-txt/ChangeLog +++ b/doc/doc-txt/ChangeLog @@ -206,6 +206,10 @@ JH/37 Bug 2255: Revert the disable of the OpenSSL session caching. This PP/03 Add util/renew-opendmarc-tlds.sh script for safe renewal of public suffix list. +JH/38 DKIM: accept Ed25519 pubkeys in SubjectPublicKeyInfo-wrapped form, + since the IETF WG has not yet settled on that versus the original + "bare" representation. + Exim version 4.90 ----------------- |