Hi,
I'm trying to replace dkimproxy with dkim-signer from opensmtpd-extras
(mainly to get rid of perl), however I'm having some trouble.
My dkimproxy setup basically is the same as is described in
smtpd.conf(5), that means all mail from local is sent to port 10027,
signed by dkimproxy, relayed to port 10028, tagged as DKIM, and finally
relayed by smtpd.
My dkimproxy_out.conf:
listen 127.0.0.1:10027
relay 127.0.0.1:10028
domain wilhelm.re
signature dkim(c=relaxed)
keyfile /etc/ssl/private/dkim1.key
selector dkim1
Switching to filter-dkim-signer, here's an excerpt from my smtpd.conf:
filter sign dkim-signer "-dwilhelm.re" "-sdkim1"
"-p/etc/ssl/private/dkim1.key"
listen on ens3 port submission tls-require pki wilhelm.re hostname
wilhelm.re auth mask-source filter sign
The key I'm using is RSA 2048bit and is the same for both setups.
Now, when I'm trying to send mail through opensmtpd using
filter-dkim-signer, the filter exits with:
fatal: dkim_signer: on_eom: RSA_sign
Looking at the source, this message is generated by the following code,
unfortunately, I'm unfamiliar with the OpenSSL API, and I'm not sure why
exactly it fails.
if (RSA_sign(NID_sha256, s->hdr_hash, sizeof(s->hdr_hash),
rsa_sig, &rsa_sig_len, rsa) == 0)
fatalx("dkim_signer: on_eom: RSA_sign");
What could be the problem here?
Cheers, Wilhelm Schuster.
--
You received this mail because you are subscribed to [email protected]
To unsubscribe, send a mail to: [email protected]
