Never reuse Diffie-Hellman key pairs
Created by: EinMByte
By submitting this issue, I confirm the following:
- I have read and understood the contributor guide.
- I have checked that the issue I am reporting can be replicated or that the feature I am suggesting is not present.
- I have checked opened or recently closed pull requests for existing solutions/implementations to my issue/suggestion.
Place an X inside the bracket to confirm
-
I confirm.
The current implementation inherited an "optimization" that sometimes reuses the Diffie-Hellman key pairs, which are supposed to be ephemeral. There are several reasons why we shouldn't do this (not only because it could compromise forward secrecy).