Opened 3 years ago

Last modified 20 months ago

#1197 assigned Bug / Defect

iOS: [feature request] store tls-auth PSK in keychain

Reported by: whorfin Owned by: OpenVPN Inc.
Priority: major Milestone:
Component: OpenVPN Connect Version:
Severity: Not set (select this one, unless your'e a OpenVPN developer) Keywords:


The PKCS#12 import via .ovpn12 files to the device keychain is an important security feature, and wonderful.
I could not, however, find a way to have the tls-auth PSK secret also stored in the keychain. PKCS#12 only supports a single private key, and I could not find a way to use it for tls-auth, but if there is one, I'd be glad to have it explained.

In any event, some way should be found, perhaps just straight-up extraction and stashing in the keystore, to keep the PSK secret, secret.

Change History (2)

comment:1 Changed 2 years ago by Gert Döring

Owner: changed from yuriy to denys
Status: newassigned

comment:2 Changed 20 months ago by Antonio Quartulli

Owner: changed from denys to OpenVPN Inc.
Note: See TracTickets for help on using tickets.