Is ED25519 on DTLS supported?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

It's DTLS-OK according to IANA.
https://www.iana.org/assignments/tls-parameters/tls-parameters.xhtml#tls-parameters-16


I tested ED25519 certificates on TLS 1.2 and it worked fine.

openssl s_server -port 4321 -cert server-cert.pem -key server-key.pem -CAfile client-cert.pem -tls1_2 -sigalgs ed25519
openssl s_client -bind localhost:1234 -connect localhost:4321 -cert client-cert.pem -key client-key.pem -CAfile server-cert.pem -tls1_2 -sigalgs ed25519

But I get a "no shared cipher" error (on the server) if I just replace -tls1_2 with -dtls1_2 on those two commands.


The certs and keys are self-signed for both the server and client and where generated by this command.

openssl req -x509 -newkey ed25519 -subj "/CN=localhost" -nodes -addext keyUsage=digitalSignature -keyout key.pem -out cert.pem

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux