]> git.ipfire.org Git - thirdparty/strongswan.git/commit
projects / thirdparty / strongswan.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: aa3d5bf) | patch
openssl: Use ECDH_compute_key() for 'x-coordinate only' setting
authorMahantesh Salimath <mahantesh@nvidia.com>
Mon, 30 Nov 2020 22:03:03 +0000 (22:03 +0000)
committerTobias Brunner <tobias@strongswan.org>
Wed, 20 Jan 2021 16:53:35 +0000 (17:53 +0100)
commit7733ff7d4e2ccc272aef9ca12e0817fef3721f3b
tree4e24b702125f749bc7e87c8c0ad5fd631b6a08fatree
parentaa3d5bf7916ce8fed0051feadae0b0139d5fbe24commit | diff
openssl: Use ECDH_compute_key() for 'x-coordinate only' setting

ECDH_compute_key() was not used because it only gives x-coordinate of
the result. However, the default setting, as per the errata mentioned,
is to use x-coordinate only.
Use ECDH_compute_key() for this setting as it additionally allows HW
offload of the computation using dynamic engine feature in OpenSSL.
EC_POINT_mul() doesn't allow HW offload.

Signed-off-by: Mahantesh Salimath <mahantesh@nvidia.com>
src/libstrongswan/plugins/openssl/openssl_ec_diffie_hellman.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.