Opened 13 months ago

#1197 new Bug / Defect

iOS: [feature request] store tls-auth PSK in keychain

Reported by: whorfin Owned by: yuriy
Priority: major Milestone:
Component: OpenVPN Connect Version:
Severity: Not set (select this one, unless your'e a OpenVPN developer) Keywords:
Cc:

Description

The PKCS#12 import via .ovpn12 files to the device keychain is an important security feature, and wonderful.
I could not, however, find a way to have the tls-auth PSK secret also stored in the keychain. PKCS#12 only supports a single private key, and I could not find a way to use it for tls-auth, but if there is one, I'd be glad to have it explained.

In any event, some way should be found, perhaps just straight-up extraction and stashing in the keystore, to keep the PSK secret, secret.

Change History (0)

Note: See TracTickets for help on using tickets.