Hi, I’ve created a patch for ecdsa support in iked. Also found a bug in handling auth_eap, because that value is never initialised to 0. I also updated the dsa sign functions with the newer EVP_Digest so it’s aligned with the rest of the code, but it’s not required for ecdsa support.
The ecdsa signature should contain only plain r and s, so the signature is converted to that format. I’ve tested compatibility with OSX and IOS and both seem to be working fine. Regards, René
iked_ecdsa.diff
Description: Binary data
