https://bugs.exim.org/show_bug.cgi?id=1895
Git Commit <git@???> changed:
What |Removed |Added
----------------------------------------------------------------------------
Resolution|--- |FIXED
Status|NEW |RESOLVED
CC| |git@???
--- Comment #5 from Git Commit <git@???> ---
Git commit:
http://git.exim.org/exim.git/commitdiff/317e40ac8b1b816f4a22620a5647c6258de61598
commit 317e40ac8b1b816f4a22620a5647c6258de61598
Author: Phil Pennock <pdp@???>
AuthorDate: Sun May 29 02:31:18 2016 -0400
Commit: Phil Pennock <pdp@???>
CommitDate: Sat Oct 8 19:23:37 2016 -0400
dh parameters update, new values & default
* add three new exim-specific dh parameter constants; state provenance,
but no way for others to verify; this is a signed commit, which is
about as much as we can do for the truly paranoid: provide an audit
trail.
* add the rfc 7919 dh primes
+ no tls feature negotiation, per 7919, but the dh primes can be used
if folks so choose
* fixed broken format string in util/gen_pkcs3.c
* tried to make gen_pkcs3.c support q values.
+ turns out, q doesn't affect the pem and that's not a mistake in my
initialisation; i've checked with a cryptographer, we're losing some
server-side optimizations but not any security properties for our
scenario.
fixes: 1895
----
doc/doc-docbook/spec.xfpt | 38 +++-
doc/doc-txt/ChangeLog | 3 +
doc/doc-txt/NewStuff | 2 +
src/scripts/source_checks | 1 +
src/src/std-crypto.c | 503 +++++++++++++++++++++++++++++++++++++++++++++-
src/util/.gitignore | 2 +
src/util/gen_pkcs3.c | 41 +++-
7 files changed, 574 insertions(+), 16 deletions(-)
--
You are receiving this mail because:
You are on the CC list for the bug.
