Hi,
I’m building a VPN client for iOS using TunnelKit: GitHub - passepartoutvpn/tunnelkit: VPN client library for Apple platforms.
I wanted to modify the cryptographic approach used here, but I’m not able to figure out where the code for the same lies. I want to use elliptic curve.
Any help would be appreciated.
Thanks,
My configuration file looks something like this:
client
auth-user-pass
dev tun
proto udp
remote xxx.xxx.xxx.xx 1194
resolv-retry infinite
nobind
;user nobody
;group nogroup
verb 9
persist-key
persist-tun
ecdh-curve ntru_hps2048509
tls-version-min 1.3
cipher AES-256-CBC
auth SHA384
route-method exe
route-delay 2
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
-----END CERTIFICATE-----
-----BEGIN RSA PRIVATE KEY-----
-----END RSA PRIVATE KEY-----
I’m bothered about “ecdh-curve”: “ntru_hps2048509”, how will I make the TunnelKit code to use this?