As "-list-curves" is not supposed to work here, what would be a good way to tell if a given installation supports X25519? Sent from my BlackBerry 10 smartphone on the Verizon Wireless 4G LTE network. Original Message From: Dr. Stephen Henson Sent: Monday, November 14, 2016 15:02 To: openssl-users@xxxxxxxxxxx Reply To: openssl-users@xxxxxxxxxxx Subject: Re: X25519 not listed in ecparam -list_curves On Fri, Nov 04, 2016, Viktor J?gersk?pper wrote: > Hi, > > OpenSSL 1.1.0 implemented X25519. "openssl s_client -cipher kEECDH > -curves X25519 -connect google.com:443" works as expected, and I get > "Server Temp Key: X25519, 253 bits". But X25519 is not listed in the > output of "openssl ecparam -list_curves" in version 1.1.0b (I use > 1.1.0b-2 from Debian). Should it be listed there anyway? > The ecparam operation lists curves supported by the EC* API. The X25519 curve (for various reasons defined in the standards) is treated as a distinct algorithm so it is not listed by ecparam. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org -- openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
-- openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
