mirror/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-04-18 05:42:35 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
mbedtls/library
History
Gilles Peskine 3e819b7d69 psa_key_agreement_ecdh: zeroize output on failure 
If psa_key_agreement_ecdh fails, there may be output that leaks
sensitive information in the output buffer. Zeroize it.

If this is due to an underlying failure in the ECDH implementation, it
is currently not an issue since both the traditional Mbed TLS/Crypto
implementation and Everest only write to the output buffer once every
intermediate step has succeeded, but zeroizing is more robust. If this
is because the recently added key size check fails, a leak could be a
serious issue.
2020-01-31 10:24:21 +01:00
..
.gitignore
Split libs with make + general make cleanups
2015-06-25 10:59:56 +02:00
aes.c
Merge branch 'development' into development-restricted
2020-01-15 15:55:11 +00:00
aesni.c
Remove crypto C files
2019-08-15 15:44:50 +01:00
arc4.c
Remove crypto C files
2019-08-15 15:44:50 +01:00
aria.c
Remove crypto C files
2019-08-15 15:44:50 +01:00
asn1parse.c
Merge pull request #323 from yanesca/iotcrypt-942-initialise-return-values
2019-12-19 10:24:22 +00:00
asn1write.c
Merge pull request #323 from yanesca/iotcrypt-942-initialise-return-values
2019-12-19 10:24:22 +00:00
base64.c
Remove crypto C files
2019-08-15 15:44:50 +01:00
bignum.c
Merge branch 'development' into development-restricted
2020-01-15 15:55:11 +00:00
blowfish.c
Remove crypto C files
2019-08-15 15:44:50 +01:00
camellia.c
Remove crypto C files
2019-08-15 15:44:50 +01:00
ccm.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
chacha20.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
chachapoly.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
cipher_wrap.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
cipher.c
Remove redundant block_size validity check
2020-01-21 15:02:14 +01:00
cmac.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
CMakeLists.txt
Bump version to Mbed TLS 2.20.0
2020-01-21 14:08:26 +00:00
ctr_drbg.c
Merge branch 'development' into development-restricted
2020-01-15 15:55:11 +00:00
des.c
des: Reduce number of self-test iterations
2019-09-04 10:11:45 +01:00
dhm.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
ecdh.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
ecdsa.c
Fix incrementing pointer instead of value
2020-01-24 12:11:56 +01:00
ecjpake.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
ecp_curves.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
ecp.c
Merge branch 'development' into development-restricted
2020-01-15 15:55:11 +00:00
entropy_poll.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
entropy.c
Merge pull request #323 from yanesca/iotcrypt-942-initialise-return-values
2019-12-19 10:24:22 +00:00
error.c
Add two error codes to the Error module
2019-12-03 16:01:06 +00:00
gcm.c
Merge branch 'development' into development-restricted
2020-01-15 15:55:11 +00:00
havege.c
Remove crypto C files
2019-08-15 15:44:50 +01:00
hkdf.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
hmac_drbg.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
Makefile
Bump version to Mbed TLS 2.20.0
2020-01-21 14:08:26 +00:00
md2.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
md4.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
md5.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
md.c
Implement NO_SHA384 in MD layer and PSA
2020-01-06 11:40:23 +01:00
memory_buffer_alloc.c
Remove crypto C files
2019-08-15 15:44:50 +01:00
nist_kw.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
oid.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
padlock.c
Remove crypto C files
2019-08-15 15:44:50 +01:00
pem.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
pk_wrap.c
Remove mbedtls_psa_translate_ecc_group
2020-01-31 10:15:32 +01:00
pk.c
pk: USE_PSA_CRYPTO: don't translate via the TLS ID
2020-01-31 10:15:32 +01:00
pkcs5.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
pkcs12.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
pkparse.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
pkwrite.c
Change key types to a 16-bit encoding
2020-01-31 10:24:21 +01:00
platform_util.c
Check for zero length and NULL buffer pointer.
2019-09-04 11:31:35 +01:00
platform.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
poly1305.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
psa_crypto_core.h
Rename internal macro to pass check-names.sh
2019-08-08 10:58:09 +02:00
psa_crypto_invasive.h
Add a facility to configure entropy sources
2018-11-23 22:58:38 +01:00
psa_crypto_its.h
Add psa_trusted_storage_linux persistent storage support for v1.0.0 APIs
2019-07-23 17:30:37 +01:00
psa_crypto_se.c
SE driver: Fix loading of persistent data
2019-10-01 16:55:29 +02:00
psa_crypto_se.h
SE driver: call the p_init method during psa_crypto_init()
2019-10-01 15:22:29 +02:00
psa_crypto_service_integration.h
Add common header for crypto service integration
2019-02-19 15:09:14 +02:00
psa_crypto_slot_management.c
Make psa_close_key(0) and psa_destroy_key(0) succeed
2019-10-08 15:57:27 +02:00
psa_crypto_slot_management.h
Rename psa_internal_allocate_key_slot to psa_get_empty_key_slot
2019-08-08 10:58:09 +02:00
psa_crypto_storage.c
Change key types to a 16-bit encoding
2020-01-31 10:24:21 +01:00
psa_crypto_storage.h
Switch storage functions over to psa_core_key_attributes_t
2019-07-31 14:15:27 +02:00
psa_crypto.c
psa_key_agreement_ecdh: zeroize output on failure
2020-01-31 10:24:21 +01:00
psa_its_file.c
Add an input check in psa_its_set
2019-09-05 09:34:34 -04:00
ripemd160.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
rsa_internal.c
Remove crypto C files
2019-08-15 15:44:50 +01:00
rsa.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
sha1.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
sha256.c
Initialise return values to an error
2019-12-03 16:07:18 +00:00
sha512.c
Fix some whitespace issues
2020-01-29 09:46:49 +01:00
threading.c
Remove crypto C files
2019-08-15 15:44:50 +01:00
timing.c
Remove crypto C files
2019-08-15 15:44:50 +01:00
version_features.c
Declare new config.h option MBEDTLS_SHA512_NO_SHA384
2020-01-06 11:40:23 +01:00
version.c
Fix missing void argument declarations #678
2016-11-04 23:05:56 +01:00
xtea.c
Remove crypto C files
2019-08-15 15:44:50 +01:00