Rivoreo Source Code Repositories
src.rivoreo.one
/
security
/
mbedtls
/
1a2640c0250848737fdb5a371cf71b1e6424b939
/
library
1a2640c
Merge branch 'iotssl-1368-unsafe-bounds-check-psk-identity-merge' into development-restricted
by Gilles Peskine
· 7 years ago
bfa8df4
Merge remote-tracking branch 'restricted/pr/416' into development-restricted
by Manuel Pégourié-Gonnard
· 7 years ago
888fede
Merge branch 'development' into development-restricted
by Manuel Pégourié-Gonnard
· 7 years ago
91048a3
RSA PSS: remove redundant check; changelog
by Gilles Peskine
· 7 years ago
b00b0da
RSA PSS: fix first byte check for keys of size 8N+1
by Gilles Peskine
· 7 years ago
139108a
RSA PSS: fix minimum length check for keys of size 8N+1
by Gilles Peskine
· 7 years ago
6a54b02
RSA: Fix another buffer overflow in PSS signature verification
by Gilles Peskine
· 7 years ago
28a0c72
RSA: Fix buffer overflow in PSS signature verification
by Gilles Peskine
· 7 years ago
735b37e
Correctly handle leap year in x509_date_is_valid()
by Andres Amaya Garcia
· 8 years ago
73a3817
Parse Signature Algorithm ext when renegotiating
by Ron Eldor
· 7 years ago
bd9d42c
Fix typo and bracketing in macro args
by Andres Amaya Garcia
· 7 years ago
106637f
Correctly handle leap year in x509_date_is_valid()
by Andres Amaya Garcia
· 8 years ago
8dd73e6
Parse Signature Algorithm ext when renegotiating
by Ron Eldor
· 7 years ago
86968c6
Fix typo and bracketing in macro args
by Andres Amaya Garcia
· 7 years ago
6bce9cb
Always print gmt_unix_time in TLS client
by Andres Amaya Garcia
· 7 years ago
1a9a51c
Enhance documentation of ssl_write_hostname_ext, adapt ChangeLog.
by Hanno Becker
· 8 years ago
947194e
Make mbedtls_ssl_set_hostname safe to be called multiple times
by Hanno Becker
· 8 years ago
074c58f
Always print gmt_unix_time in TLS client
by Andres Amaya Garcia
· 7 years ago
2f38a43
Enhance documentation of ssl_write_hostname_ext, adapt ChangeLog.
by Hanno Becker
· 8 years ago
39f5d35
Make mbedtls_ssl_set_hostname safe to be called multiple times
by Hanno Becker
· 8 years ago
0169253
Document code silently discarding invalid records
by Andres Amaya Garcia
· 7 years ago
2fad94b
Dont send alert on invalid DTLS record type
by Andres Amaya Garcia
· 7 years ago
72ea31b
Update version number to 2.6.0
by Simon Butcher
· 7 years ago
mbedtls-2.6.0
a55e084
Fix naked call to time() with platform call
by Simon Butcher
· 7 years ago
61937d4
Rename time and index parameter to avoid name conflict.
by Hanno Becker
· 8 years ago
2e3ddfa
Prevent signed integer overflow in CSR parsing
by Andres AG
· 8 years ago
8016474
Fix potential integer overflow parsing DER CRT
by Andres AG
· 8 years ago
4f753c1
Fix potential integer overflow parsing DER CRL
by Andres AG
· 8 years ago
683ac27
Checked names
by Gilles Peskine
· 7 years ago
a95d630
Fix platform setup/teardown feature and comments
by Simon Butcher
· 7 years ago
d91f99f
Rename macro SETUP_ALT to SETUP_TEARDOWN_ALT
by Andres Amaya Garcia
· 7 years ago
3c8a39d
Remove internal functions from setup API
by Andres Amaya Garcia
· 7 years ago
2a6f39c
Add library setup and teardown APIs
by Andres Amaya Garcia
· 7 years ago
bedc205
Export mbedtls_aes_(en/de)crypt to retain for API compatibility
by Hanno Becker
· 7 years ago
639ce56
Undo API change from SHA1 deprecation
by Hanno Becker
· 7 years ago
d300a57
Undo API change
by Hanno Becker
· 7 years ago
7269fee
Check return code of mbedtls_mpi_fill_random
by Ron Eldor
· 8 years ago
3e19df5
Resource leak fix on windows platform
by Ron Eldor
· 8 years ago
8ab0595
Wrong preproccessor condition fix
by Ron Eldor
· 8 years ago
5a21fd6
fix for issue 1118: check if iv is zero in gcm.
by Ron Eldor
· 8 years ago
bfea4a7
Remove mutexes from ECP hardware acceleration
by Janos Follath
· 7 years ago
9107b5f
Improve comments
by Manuel Pégourié-Gonnard
· 7 years ago
31458a1
Only return VERIFY_FAILED from a single point
by Manuel Pégourié-Gonnard
· 7 years ago
d15795a
Improve behaviour on fatal errors
by Manuel Pégourié-Gonnard
· 7 years ago
83c9f49
Prevent bounds check bypass through overflow in PSK identity parsing
by Hanno Becker
· 7 years ago
f2a597f
Update the version number to 2.5.1
by Simon Butcher
· 7 years ago
mbedtls-2.5.1
4a42f3c
Merge remote-tracking branch 'restricted/iotssl-1398' into development-restricted
by Manuel Pégourié-Gonnard
· 7 years ago
bdf3905
Ensure application data records are not kept when fully processed
by Hanno Becker
· 7 years ago
b86b143
Merge remote-tracking branch 'restricted/iotssl-1138-rsa-padding-check-restricted' into development-restricted
by Manuel Pégourié-Gonnard
· 7 years ago
a0bf6ec
Merge remote-tracking branch 'restricted/IOTSSL-1366/development-restricted' into development-restricted
by Manuel Pégourié-Gonnard
· 7 years ago
db108ac
Merge remote-tracking branch 'hanno/mpi_read_file_underflow' into development
by Manuel Pégourié-Gonnard
· 7 years ago
1178ac5
Merge remote-tracking branch 'hanno/sliding_exponentiation' into development
by Manuel Pégourié-Gonnard
· 7 years ago
bb9dd0c
Add hard assertion to mbedtls_ssl_read_record_layer
by Hanno Becker
· 7 years ago
4a810fb
Fix mbedtls_ssl_read
by Hanno Becker
· 8 years ago
af0665d
Simplify retaining of messages for future processing
by Hanno Becker
· 8 years ago
e6706e6
Add tests for missing CA chains and bad curves.
by Hanno Becker
· 8 years ago
39ae8cd
Fix implementation of VERIFY_OPTIONAL verification mode
by Hanno Becker
· 8 years ago
ddc6e52
Merge remote-tracking branch 'gilles/iotssl-1223/development' into development
by Manuel Pégourié-Gonnard
· 7 years ago
383a118
Merge remote-tracking branch 'gilles/IOTSSL-1330/development' into development
by Manuel Pégourié-Gonnard
· 7 years ago
5d2511c
SHA-1 deprecation: allow it in key exchange
by Gilles Peskine
· 8 years ago
cd3c845
Allow SHA-1 in SSL renegotiation tests
by Gilles Peskine
· 8 years ago
750c353
X.509 self-tests: replaced SHA-1 certificates by SHA-256
by Gilles Peskine
· 8 years ago
5e79cb3
Remove SHA-1 in TLS by default
by Gilles Peskine
· 8 years ago
23b33f8
Merge remote-tracking branch 'hanno/sig_hash_compatibility' into development
by Manuel Pégourié-Gonnard
· 7 years ago
d50177f
Fix FALLBACK_SCSV parsing
by Gilles Peskine
· 8 years ago
9f77017
Updated version number to 2.5.0
by Simon Butcher
· 8 years ago
mbedtls-2.5.0
f5bf718
Change return type of AES decrypt and encrypt
by Andres AG
· 8 years ago
18ac716
RSA: wipe more stack buffers
by Gilles Peskine
· 8 years ago
4a7f6a0
RSA: wipe stack buffers
by Gilles Peskine
· 8 years ago
6e87698
Fix bug in threading sample implementation #667
by Janos Follath
· 8 years ago
f9203b4
Add exponent blinding to RSA with CRT
by Janos Follath
· 8 years ago
e81102e
Add exponent blinding to RSA without CRT
by Janos Follath
· 8 years ago
088ce43
Implement optional CA list suppression in Certificate Request
by Janos Follath
· 8 years ago
cf7ae7e
Improve documentation
by Hanno Becker
· 8 years ago
0d0cd4b
Split long lines
by Hanno Becker
· 8 years ago
7e5437a
Remember suitable hash function for any signature algorithm.
by Hanno Becker
· 8 years ago
1aa267c
Introduce macros and functions to characterize certain ciphersuites.
by Hanno Becker
· 8 years ago
af610a0
Fix check-doxy-blocks.pl errors (cmac.c ecjpake.h)
by Andres Amaya Garcia
· 8 years ago
6c8ccd5
Fix cleanup label alignment
by Janos Follath
· 8 years ago
69b2051
Update version features with ECP macros
by Janos Follath
· 8 years ago
c44ab97
Apply review feedback on ECP interface
by Janos Follath
· 8 years ago
b8a90fb
Update ECP hardware abstraction interface
by Janos Follath
· 8 years ago
430d337
Add thread safety to ECP hardware acceleration
by Janos Follath
· 8 years ago
552f6b6
Add global mutex for asymmetric crypto accelerator
by Janos Follath
· 8 years ago
16e63ea
Fix alternative ECP function names
by Janos Follath
· 8 years ago
4d9c69d
Fix ECP alternative macro names
by Janos Follath
· 8 years ago
47d28f0
Remove alt_internal directory
by Janos Follath
· 8 years ago
372697b
Clean up ECP abstraction layer code
by Janos Follath
· 8 years ago
b069753
ECP: Add module and function level replacement options.
by Janos Follath
· 8 years ago
7284987
Fix data loss in unsigned int cast in PK
by Andres AG
· 8 years ago
c1380de
RSA PKCS1v1.5 verification: check padding length
by Manuel Pégourié-Gonnard
· 8 years ago
92e4426
SSLv3: when refusing renegotiation, stop processing
by Gilles Peskine
· 8 years ago
c94f735
Ignore failures when sending fatal alerts
by Gilles Peskine
· 8 years ago
8498cb3
Cleaned up double variable declaration
by Gilles Peskine
· 8 years ago
064a85c
Code portability fix
by Gilles Peskine
· 8 years ago
b2034b7
Fix potential stack underflow in mpi_read_file.
by Hanno Becker
· 8 years ago
4bcb491
Abort modular inversion when modulus is one.
by Hanno Becker
· 8 years ago
e7e7650
More length checks in RSA PKCS1v15 verify
by Gilles Peskine
· 8 years ago
0e17eb0
More length checks in RSA PKCS1v15 verify
by Gilles Peskine
· 8 years ago
1cc8e34
Send TLS alerts in many more cases
by Gilles Peskine
· 8 years ago
Next »