[source] mbedtls: enable secp384r1 elliptic curve support
LEDE Commits
lede-commits at lists.infradead.org
Fri Dec 30 04:07:13 PST 2016
nbd pushed a commit to source.git, branch master:
https://git.lede-project.org/ca963bbf5fc0446c35ea578ec1476b5282c0cd66
commit ca963bbf5fc0446c35ea578ec1476b5282c0cd66
Author: Magnus Kroken <mkroken at gmail.com>
AuthorDate: Fri Dec 30 01:31:28 2016 +0100
mbedtls: enable secp384r1 elliptic curve support
Secp384r1 is the default curve for OpenVPN 2.4+. Enable this to
make OpenVPN-mbedtls clients able to perform ECDHE key exchange
with remote OpenVPN 2.4-openssl servers that use the default
OpenVPN curve.
Signed-off-by: Magnus Kroken <mkroken at gmail.com>
---
package/libs/mbedtls/patches/200-config.patch | 3 +--
1 file changed, 1 insertion(+), 2 deletions(-)
diff --git a/package/libs/mbedtls/patches/200-config.patch b/package/libs/mbedtls/patches/200-config.patch
index be7127c..bb74e61 100644
--- a/package/libs/mbedtls/patches/200-config.patch
+++ b/package/libs/mbedtls/patches/200-config.patch
@@ -27,11 +27,10 @@
+//#define MBEDTLS_ECP_DP_SECP192R1_ENABLED
+//#define MBEDTLS_ECP_DP_SECP224R1_ENABLED
#define MBEDTLS_ECP_DP_SECP256R1_ENABLED
--#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
+ #define MBEDTLS_ECP_DP_SECP384R1_ENABLED
-#define MBEDTLS_ECP_DP_SECP521R1_ENABLED
-#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
-#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
-+//#define MBEDTLS_ECP_DP_SECP384R1_ENABLED
+//#define MBEDTLS_ECP_DP_SECP521R1_ENABLED
+//#define MBEDTLS_ECP_DP_SECP192K1_ENABLED
+//#define MBEDTLS_ECP_DP_SECP224K1_ENABLED
More information about the lede-commits
mailing list