Patch for LibreSSL 2.8.2

[AliceWonderMiscreations]

The attached patch allows the OpenDKIM-rel-opendkim-2-11-0-Beta2.tar.gz release to build against LibreSSL 2.8.2 (portable) on CentOS 7.

What I suspect is there is a better way, to check for OPENSSL_thread_stop() support via autoconf - so that if future versions of LibreSSL add it, it will just be picked up. But this works for now if you are interested in it. OpenDKIM-rel-opendkim-2-11-0-Beta2-thread_stop.patch.txt

[AliceWonderMiscreations]

Okay I've had some opportunity to do some testing. With a 2048-bit RSA key - it seems to work fine as long as I have (in /etc/opendkim.conf):

SignatureAlgorithm      rsa-sha256

However if I have it set to

SignatureAlgorithm      ed25519-sha256

then the daemon starts just fine but as soon as Postfix tries to get a message signed, opendkim daemon crashes.

[AliceWonderMiscreations]

Okay, I had a bit of confusion. ed25519-sha256 obviously isn't going to work with RSA key. Went to generate Ed25519 key and that's not supported (yet) by LibreSSL (or the openssl that CentOS ships) so I need to wait I suppose.

[thegushi]

It's been a few years -- does this work for you now? Modern openssl on modern centos should work at this point, especially against the "develop" branch.

-Dan