Opened 8 years ago
Closed 7 years ago
#307 closed Feature Wish (fixed)
Enable use of ECDH
Reported by: | wheelz | Owned by: | Steffan Karger |
---|---|---|---|
Priority: | major | Milestone: | release 2.4 |
Component: | Crypto | Version: | OpenVPN 2.2.2 (Community Ed) |
Severity: | Not set (select this one, unless your'e a OpenVPN developer) | Keywords: | |
Cc: |
Description
Allow user to use Elliptic Curve Diffie-Hellman parameters instead of plain DH parameters for key exchange/authorization.
Change History (5)
comment:1 Changed 7 years ago by
comment:2 Changed 7 years ago by
Owner: | set to JJK |
---|---|
Status: | new → assigned |
comment:3 Changed 7 years ago by
Milestone: | → release 2.4 |
---|
Work on EC is going on, but I do not see this happening in the 2.3.x train - too much change. But it would be good to have :-) - so milestone 2.4 it is.
comment:4 Changed 7 years ago by
Owner: | changed from JJK to Steffan Karger |
---|
So, ECDH support has been merged and pushed just now
commit 609e8131427686adca9b4ed2db44db4aaa920a01
Author: Steffan Karger <steffan@…>
Add support for elliptic curve diffie-hellmann key exchange (ECDH)
This patch is based on Jan Just Keijser's patch from Feb 7, 2012.
Is that all that is needed to fulfill the wish to "support EC crypto", or do we need more? Reassigning to syzzer, he's "closer to the code" right now.
this is the forum thread where a prototype was discussed:
https://forums.openvpn.net/topic8404-30.html