mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-04-10 15:45:34 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
mbedtls/library
History
Manuel Pégourié-Gonnard 4b20c0ee53 Fix potential stack buffer overflow in ecjpake 
Two causes:
- the buffer is too short (missing 4 bytes for encoding id_len)
- the test was wrong

Would only happen when MBEDTLS_ECP_MAX_BITS == the bitsize of the curve
actually used (does not happen in the default config).

Could not be triggered remotely.
2015-10-20 16:20:56 +02:00
..
.gitignore
Split libs with make + general make cleanups
2015-06-25 10:59:56 +02:00
aes.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
aesni.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
arc4.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
asn1parse.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
asn1write.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
base64.c
Fix references to non-standard SIZE_T_MAX
2015-10-05 15:23:11 +01:00
bignum.c
Corrected URL/reference to MPI library
2015-10-14 22:56:44 +01:00
blowfish.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
camellia.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
ccm.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
certs.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
cipher_wrap.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
cipher.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
CMakeLists.txt
Merge branch 'development' into iotssl-461-ecjpake-finalization
2015-10-20 15:00:29 +02:00
ctr_drbg.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
debug.c
Fix macroization of inline in C++
2015-10-05 11:41:36 +01:00
des.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
dhm.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
ecdh.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
ecdsa.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
ecjpake.c
Fix potential stack buffer overflow in ecjpake
2015-10-20 16:20:56 +02:00
ecp_curves.c
Fix macroization of inline in C++
2015-10-05 11:41:36 +01:00
ecp.c
Merge branch 'development' into iotssl-461-ecjpake-finalization
2015-10-20 15:00:29 +02:00
entropy_poll.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
entropy.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
error.c
Clean up error codes
2015-09-08 11:21:21 +02:00
gcm.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
havege.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
hmac_drbg.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
Makefile
Add skeleton for EC J-PAKE module
2015-09-07 12:43:09 +02:00
md2.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
md4.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
md5.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
md_wrap.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
md.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
memory_buffer_alloc.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
net.c
Fix compile error in net.c with musl libc
2015-10-05 12:17:49 +01:00
oid.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
padlock.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
pem.c
Merge of IOTSSL-476 - Random malloc in pem_read()
2015-10-05 00:26:36 +01:00
pk_wrap.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
pk.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
pkcs5.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
pkcs11.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
pkcs12.c
Fix stack buffer overflow in pkcs12
2015-09-28 19:47:50 +02:00
pkparse.c
Clean up compilation warnings
2015-10-02 13:32:17 +01:00
pkwrite.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
platform.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
ripemd160.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
rsa.c
Add counter-measure against RSA-CRT attack
2015-09-08 13:39:29 +02:00
sha1.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
sha256.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
sha512.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
ssl_cache.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
ssl_ciphersuites.c
Add the ECJPAKE ciphersuite
2015-09-16 22:58:29 +02:00
ssl_cli.c
Merge branch 'development' into iotssl-461-ecjpake-finalization
2015-10-20 15:00:29 +02:00
ssl_cookie.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
ssl_srv.c
Merge branch 'development' into iotssl-461-ecjpake-finalization
2015-10-20 15:00:29 +02:00
ssl_ticket.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
ssl_tls.c
Merge branch 'development' into iotssl-461-ecjpake-finalization
2015-10-20 15:00:29 +02:00
threading.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
timing.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
version_features.c
Merge branch 'development' into iotssl-461-ecjpake-finalization
2015-10-20 15:00:29 +02:00
version.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
x509_create.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
x509_crl.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
x509_crt.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
x509_csr.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
x509.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
x509write_crt.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
x509write_csr.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00
xtea.c
Change main license to Apache 2.0
2015-09-04 14:21:07 +02:00