diff options
| author | tobhe <tobhe@cvs.openbsd.org> | 2021-05-28 18:01:40 +0000 |
|---|---|---|
| committer | tobhe <tobhe@cvs.openbsd.org> | 2021-05-28 18:01:40 +0000 |
| commit | ae6987ca9e10cd9f60df649186e2729e854fc235 (patch) | |
| tree | 19e899e0f914e084a785ad4c8d4cff13de059008 /sbin/iked/ikev2.h | |
| parent | 549baba0a53aa5934773405ac049259c6148887a (diff) | |
Add experimental post-quantum hybrid key exchange method
based on Streamlined NTRU Prime (coupled with X25519).
The sntrup761 implementation is imported from OpenSSH.
It is public domain code originally distributed as part
of the SUPERCOP cryptography benchmark suite
(https://bench.cr.yp.to/supercop.html).
The method is not part of the default proposal, but can
be enabled with 'ikesa group sntrup761x25519'.
ok markus@ patrick@
Diffstat (limited to 'sbin/iked/ikev2.h')
| -rw-r--r-- | sbin/iked/ikev2.h | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/sbin/iked/ikev2.h b/sbin/iked/ikev2.h index 074928f8699..bb8d17816c1 100644 --- a/sbin/iked/ikev2.h +++ b/sbin/iked/ikev2.h @@ -1,4 +1,4 @@ -/* $OpenBSD: ikev2.h,v 1.33 2020/05/26 20:24:31 tobhe Exp $ */ +/* $OpenBSD: ikev2.h,v 1.34 2021/05/28 18:01:39 tobhe Exp $ */ /* * Copyright (c) 2019 Tobias Heider <tobias.heider@stusta.de> @@ -251,6 +251,7 @@ extern struct iked_constmap ikev2_xformauth_map[]; #define IKEV2_XFORMDH_BRAINPOOL_P384R1 29 /* RFC6954 */ #define IKEV2_XFORMDH_BRAINPOOL_P512R1 30 /* RFC6954 */ #define IKEV2_XFORMDH_CURVE25519 31 /* RFC8031 */ +#define IKEV2_XFORMDH_X_SNTRUP761X25519 1035 /* private */ extern struct iked_constmap ikev2_xformdh_map[]; |