mbedtls/programs
Janos Follath 0a5154b8a1 Clarify the use of ECDSA API
In the ecdsa.c sample application we don't use hashing, we use ecdsa
directly on a buffer containing plain text. Although the text explains
that it should be the message hash it still can be confusing.

Any misunderstandings here are potentially very dangerous, because ECDSA
truncates the message hash if necessary and this can lead to trivial
signature forgeries if the API is misused and the message is passed
directly to the function without hashing.

This commit adds a hash computation step to the ecdsa.c sample
application and clarification to the doxygen documentation of the
ECDSA functions involved.
2017-03-10 11:31:41 +00:00
..
aes Fix for #441 - crypt and hash gcm (#546) 2016-09-02 23:44:09 +03:00
hash Put clang analyzer fix inside __clang_analyzer__ guard 2016-05-23 14:29:31 +01:00
pkey Clarify the use of ECDSA API 2017-03-10 11:31:41 +00:00
random
ssl Remove use of inttypes.h in MSVC from ssl_server2 2017-03-01 23:24:35 +00:00
test Clean up of formatting, and potential integer overflow fix 2016-10-13 13:51:13 +01:00
util
x509 Add extra compilation conditions to X.509 samples 2016-10-13 13:52:00 +01:00
.gitignore
CMakeLists.txt
Makefile
wince_main.c