]> git.ipfire.org Git - thirdparty/freeswitch.git/commit
projects / thirdparty / freeswitch.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9c589b7) | patch
[core] Allow other (D)TLS Curves/Groups beside P-256 905/head
authorAlexander Traud <pabstraud@compuserve.com>
Tue, 13 Oct 2020 12:33:19 +0000 (14:33 +0200)
committerAndrey Volk <andywolk@gmail.com>
Thu, 18 Mar 2021 22:00:56 +0000 (01:00 +0300)
commit48c4db71c229444bc12a53550d7fd12f51131956
tree1f1fb8daf42017d567a6f562a822ba454edc2b9atree
parent9c589b7750f277a52e82c7c773cd093af40c4e6acommit | diff
[core] Allow other (D)TLS Curves/Groups beside P-256

Five years ago, commit 8e1b2ea enabled ECDHE for the DTLS server by hard-coding P-256. Released before that, OpenSSL 1.0.2, allows auto selection of the curve (P-256, P-384, and P-512). OpenSSL 1.1.x has this enabled on default, which adds groups/curves like X25519 and X448 automatically. This change here allows DTLS clients with a demand for Security Level 4 (192 bit) and 5 (256 bit) connecting to the DTLS server.
src/switch_rtp.c diff | blob | blame | history
Mirror of https://github.com/signalwire/freeswitch.git