diff options
| -rw-r--r-- | src/libstrongswan/plugins/openssl/openssl_ec_diffie_hellman.c | 6 |
1 files changed, 4 insertions, 2 deletions
diff --git a/src/libstrongswan/plugins/openssl/openssl_ec_diffie_hellman.c b/src/libstrongswan/plugins/openssl/openssl_ec_diffie_hellman.c index 4c5d3f294..082aed9ca 100644 --- a/src/libstrongswan/plugins/openssl/openssl_ec_diffie_hellman.c +++ b/src/libstrongswan/plugins/openssl/openssl_ec_diffie_hellman.c @@ -185,10 +185,12 @@ static bool compute_shared_key(private_openssl_ec_diffie_hellman_t *this, chunk_ } /* - * x_coordinate_only = TRUE applies errata for RFC 4753 + * The default setting ecp_x_coordinate_only = TRUE + * applies the following errata for RFC 4753: + * http://www.rfc-editor.org/errata_search.php?eid=9 */ x_coordinate_only = lib->settings->get_bool(lib->settings, - "libstrongswan.ecp_x_coordinate_only", FALSE); + "libstrongswan.ecp_x_coordinate_only", TRUE); if (!ecp2chunk(this->ec_group, secret, shared_secret, x_coordinate_only)) { goto error; |