OpenSSL 3.0.1 incompatibility: EVP_DigestSignFinal needs the buffer length passed in
Currently the buffer length is whatever is on the stack. 0 does not work for all versions of openssl
Judicious sizeof(digest) needed. 4 instances.
This leads to TSIG and rndc failures
% bin/rndc/rndc -k rndc.key status rndc: render message: crypto failure %