Skip to content

Commit

Permalink
wolfssl: add config flag for Curve448
Browse files Browse the repository at this point in the history 
This enables building WolfSSL with Curve448, which can be used by
Strongswan. This has been tested on a Linksys E8450, running OpenWrt
22.03-rc4.

This allows parity with OpenSSL, which already supports Curve448 in
OpenWrt 21.02.

Fixes openwrt/packages#18812.

Signed-off-by: Joel Low <joel@joelsplace.sg>
  • Loading branch information
@lowjoel @hauke
lowjoel authored and hauke committed Jul 3, 2022
1 parent 3dbdfed commit 925c73a
Show file tree
Hide file tree
Showing 2 changed files with 5 additions and 0 deletions.
3 changes: 3 additions & 0 deletions package/libs/wolfssl/Config.in
View file
Original file line number Diff line number Diff line change
Expand Up @@ -51,6 +51,9 @@ config WOLFSSL_HAS_ECC25519
bool "Include ECC Curve 25519 support"
default y

config WOLFSSL_HAS_ECC448
bool "Include ECC Curve 448 support"

config WOLFSSL_HAS_OPENVPN
bool "Include OpenVPN support"
default y
Expand Down
2 changes: 2 additions & 0 deletions package/libs/wolfssl/Makefile
View file
Original file line number Diff line number Diff line change
Expand Up @@ -32,6 +32,7 @@ PKG_CONFIG_DEPENDS:=\
CONFIG_WOLFSSL_HAS_DH \
CONFIG_WOLFSSL_HAS_DTLS \
CONFIG_WOLFSSL_HAS_ECC25519 \
CONFIG_WOLFSSL_HAS_ECC448 \
CONFIG_WOLFSSL_HAS_OCSP \
CONFIG_WOLFSSL_HAS_OPENVPN CONFIG_WOLFSSL_ALT_NAMES \
CONFIG_WOLFSSL_HAS_SESSION_TICKET \
Expand Down Expand Up @@ -119,6 +120,7 @@ CONFIGURE_ARGS += \
--$(if $(CONFIG_WOLFSSL_HAS_SESSION_TICKET),enable,disable)-session-ticket \
--$(if $(CONFIG_WOLFSSL_HAS_DTLS),enable,disable)-dtls \
--$(if $(CONFIG_WOLFSSL_HAS_ECC25519),enable,disable)-curve25519 \
--$(if $(CONFIG_WOLFSSL_HAS_ECC448),enable,disable)-curve448 \
--$(if $(CONFIG_WOLFSSL_HAS_AFALG),enable,disable)-afalg \
--$(if $(CONFIG_WOLFSSL_HAS_OPENVPN),enable,disable)-openvpn \
--enable-devcrypto=$(if $(CONFIG_WOLFSSL_HAS_DEVCRYPTO_CBC),cbc\
Expand Down

0 comments on commit 925c73a

Please sign in to comment.