trusteddomainproject / OpenDKIM

Other
97 stars 52 forks source link

libopendkim: verify ed25519-sha256 signatures with GnuTLS #33

Open dilyanpalauzov opened 6 years ago

dilyanpalauzov commented 6 years ago

gnutls-verify-ed25519-sha256-signatures.patch.txt

AliceWonderMiscreations commented 5 years ago

I have a question I hope can be answered. I am building beta2 with this patch applied.

GnUTLS 3.6.5 with Nettle 3.4.1

Configure sees it and all looks swell:

checking for GNUTLS... yes
checking your GnuTLS version... ok
checking whether your GnuTLS supports ED25519... yes
checking whether your GnuTLS supports SHA256... yes
checking for OpenSSL includes... no

Before I deploy, can I assume this patch allows verification of ed25519 early adopters?

Secondly, is there by chance a website out there where I can submit an e-mail address to have it send me a test signed with ed25519 so I can verify that validation works?

dilyanpalauzov commented 5 years ago

This patch is supposed to verify ed25519-sha256 signatures.

I am not aware of such site. You can contact the authors of dkimpy or exim/pdkim to send you a test message. If the checks fail, things don’t get worse, than they are now.