1. 19 Aug, 2013 2 commits
  2. 15 Aug, 2013 3 commits
  3. 14 Aug, 2013 2 commits
  4. 03 Jul, 2013 3 commits
  5. 30 Jun, 2013 1 commit
  6. 29 Jun, 2013 2 commits
  7. 25 Jun, 2013 5 commits
  8. 24 Jun, 2013 1 commit
    • Paul Bakker's avatar
      Disabled the HAVEGE random generator by default · 2a84424a
      Paul Bakker authored
      Rationale: The HAVEGE random generator has too many caveats to be a
      standard generator that people rely on. The HAVEGE random generator is not
      suitable for virtualized environments. In addition the HAVEGE random
      generator is dependent on timing and specific processor traits that
      cannot be guaranteed by default on compile time.
      
      Our advice: only use HAVEGE as an additional random source for your
      entropy pool, never as your primary source.
      (cherry picked from commit 08f06cf4)
      2a84424a
  9. 19 Apr, 2013 3 commits
  10. 18 Apr, 2013 2 commits
  11. 08 Apr, 2013 1 commit
  12. 07 Apr, 2013 1 commit
    • Paul Bakker's avatar
      OID functionality moved to a separate module. · c70b9820
      Paul Bakker authored
      A new OID module has been created that contains the main OID searching
      functionality based on type-dependent arrays. A base type is used to
      contain the basic values (oid_descriptor_t) and that type is extended to
      contain type specific information (like a pk_alg_t).
      
      As a result the rsa sign and verify function prototypes have changed. They
      now expect a md_type_t identifier instead of the removed RSA_SIG_XXX
      defines.
      
      All OID definitions have been moved to oid.h
      All OID matching code is in the OID module.
      
      The RSA PKCS#1 functions cleaned up as a result and adapted to use the
      MD layer.
      
      The SSL layer cleanup up as a result and adapted to use the MD layer.
      
      The X509 parser cleaned up and matches OIDs in certificates with new
      module and adapted to use the MD layer.
      
      The X509 writer cleaned up and adapted to use the MD layer.
      
      Apps and tests modified accordingly
      c70b9820
  13. 20 Mar, 2013 1 commit
    • Paul Bakker's avatar
      Added Ephemeral Elliptic Curve Diffie Hellman ciphersuites to SSL/TLS · 41c83d3f
      Paul Bakker authored
      Made all modifications to include Ephemeral Elliptic Curve Diffie
      Hellman ciphersuites into the existing SSL/TLS modules. All basic
      handling of the ECDHE-ciphersuites (TLS_ECDHE_RSA_WITH_NULL_SHA,
      TLS_ECDHE_RSA_WITH_RC4_128_SHA, TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA,
      TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA)
      has been included.
      41c83d3f
  14. 13 Mar, 2013 1 commit
  15. 06 Mar, 2013 1 commit
  16. 19 Feb, 2013 1 commit
  17. 02 Feb, 2013 3 commits
  18. 26 Jan, 2013 2 commits
  19. 16 Jan, 2013 1 commit
  20. 24 Nov, 2012 1 commit
  21. 14 Nov, 2012 1 commit
  22. 07 Nov, 2012 2 commits