EC Curve Not Available - Error

Official client software for OpenVPN Access Server and OpenVPN Cloud.
Post Reply
MisterSurface
OpenVPN User
Posts: 34
Joined: Wed May 10, 2017 10:08 pm

EC Curve Not Available - Error

Post by MisterSurface » Thu Jun 22, 2017 10:11 pm

Hello,

Any reason why I would be getting an error from OpenVPN for Android after importing my ovpn file that explicitly states ecdh_curve secp521r1?

It says PolarSSL error parsing the ca certificate that I imported "ECP - Requested curve not available"

To my knowledge the certificate I created and specified to use secp521r1 should be supported? I did specify param_enc with the curve name as well.

is my problem in the openssl command syntax that I used? I used:

openssl ecparam -name secp521r1 -genkey -noout -out secp521r1-key.pem -param_enc explicit

Wondering if this is the correct way in the link below? I do not understand - are there two pays to specify in the creation of the initial key how to list the curve in use?
https://tls.mbed.org/discussions/generi ... -from-nist

Thanks

Post Reply