On 2022-09-16 05:44:50 (+0800), Dan Mahoney (Gushi) via mailop wrote:
I'm attempting to get a point release of OpenDKIM out that should
include ecc key support (it's been in our develop branch for a while).
In doing the cleanup, I also have had to modernize it to play nice
with modern versions of autoconf, and the code to detect openssl
versions also allows for gnutls.
Thus the questions:
* Does anyone know of an OS packager that's choosing to build with
gnutls instead of openssl. (It would simplify autoconf a lot to
remove the gnutls support, as there are AC macros for openssl, but not
for gtls).
The FreeBSD port has an option to build with gnutls instead of OpenSSL.
This option is off by default. It is not exercised by our package
builders so it's anyone's guess how well it works. Given that the
option exists, I would expect the port MAINTAINER to have tried it ...
at least once. :)
* Does anyone have an OS using openssl 3.0 as the default rather than
the 1.1 branch, that we can test the mainline branch on? (We don't
want access to your OS, just...to know which it is).
Again, not by default, but you can set OPENSSL_VERSION=openssl-devel on
FreeBSD to build with security/openssl-devel (which is currently 3.0.5)
instead of the base system OpenSSL. This is known to break a lot of
things. OpenDKIM may be simple enough that it works for you though.
Philip
--
Philip Paeps
Senior Reality Engineer
Alternative Enterprises
_______________________________________________
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
