From ad9d7326083090f0c2a57ed727b2d82722190264 Mon Sep 17 00:00:00 2001
From: Vasek Sraier <vakabus@users.noreply.github.com>
Date: Sun, 1 Dec 2019 22:24:38 +0100
Subject: [PATCH] OpenDKIM canonicalization changed to relaxed for mail headers
 (#1620)

Because Mailman reformats headers it breaks DKIM signatures. SPF also does
not apply in mailing lists. This together causes DMARC to fail and mark the
email as invalid. This fixes DKIM signatures for Mailman-based mailing lists
and makes sure DMARC test is passed.
---
 setup/dkim.sh | 1 +
 1 file changed, 1 insertion(+)

diff --git a/setup/dkim.sh b/setup/dkim.sh
index dc7e51e2..5bd32370 100755
--- a/setup/dkim.sh
+++ b/setup/dkim.sh
@@ -31,6 +31,7 @@ if grep -q "ExternalIgnoreList" /etc/opendkim.conf; then
 else
 	# Add various configuration options to the end of `opendkim.conf`.
 	cat >> /etc/opendkim.conf << EOF;
+Canonicalization		relaxed/simple
 MinimumKeyBits          1024
 ExternalIgnoreList      refile:/etc/opendkim/TrustedHosts
 InternalHosts           refile:/etc/opendkim/TrustedHosts