monero
monero copied to clipboard
net_ssl: Switch to elliptic curve SSL certificates
I opened an eariler to PR to make our net_ssl
RSA certificate generation code to comply with OpenSSL 3.0, but @hyc suggested that we switch to elliptic curve SSL certificates since they are smaller and faster. These PR also complies with OpenSSL 3.0.
I suggested we think about it. Haven't seen much other discussion yet.
Both patches exist now, guess we can talk about it in the next dev meeting.
@hyc Yes, sorry should've clarified "suggested". I definitely welcome discussion about why this is a bad idea or not.
@vtnerd probably has an opinion on this too
Can you force push here to rerun CI?
rebased against master
I couldn't find a reliable cross-platform solution that didn't use non-rigid cryptography