openssl: Verify that a peer's ECDH public value is a point on the elliptic curve
authorTobias Brunner <tobias@strongswan.org>
Tue, 19 Nov 2013 14:00:28 +0000 (15:00 +0100)
committerTobias Brunner <tobias@strongswan.org>
Tue, 19 Nov 2013 14:00:28 +0000 (15:00 +0100)
commit3bff80aee3d7d9198a889ab0f7b7caf15791ca21
treeb865bb45b1e08ed6984c71de8641aa36eab42805
parent38a4f1964e98ec9e4e4396c4b3c62855ced6c26a
openssl: Verify that a peer's ECDH public value is a point on the elliptic curve

This check is mandated by RFC 6989.  Since we don't reuse DH secrets,
it is mostly a sanity check.
src/libstrongswan/plugins/openssl/openssl_ec_diffie_hellman.c