TeamHepta/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2026-04-03 19:16:06 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
c112d21076ffa4253124d5bd2f4f071e90b6bffc
mbedtls/library
History
Janos Follath 441d6f9833 Remove MBEDTLS_SSL_AEAD_RANDOM_IV feature 
In a USENIX WOOT '16 paper the authors warn about a security risk
of random Initialisation Vectors (IV) repeating values.

The MBEDTLS_SSL_AEAD_RANDOM_IV feature is affected by this risk and
it isn't compliant with RFC5116. Furthermore, strictly speaking it
is a different cipher suite from the TLS (RFC5246) point of view.

Removing the MBEDTLS_SSL_AEAD_RANDOM_IV feature to resolve the above
problems.

Hanno Böck, Aaron Zauner, Sean Devlin, Juraj Somorovsky and Philipp
Jovanovic, "Nonce-Disrespecting Adversaries: Practical Forgery Attacks
on GCM in TLS", USENIX WOOT '16
2016-10-13 14:14:16 +01:00
..
.gitignore
Minor gitginore fixes
2015-01-28 15:34:01 +00:00
aes.c
Rename website and repository
2015-03-06 13:17:10 +00:00
aesni.c
Rename website and repository
2015-03-06 13:17:10 +00:00
arc4.c
Rename website and repository
2015-03-06 13:17:10 +00:00
asn1parse.c
Fix 1 byte overread in mbedtls_asn1_get_int()
2016-10-13 12:54:32 +01:00
asn1write.c
Merge memory leak fix into branch 'mbedtls-1.3'
2016-01-02 00:28:19 +00:00
base64.c
Fix references to non-standard SIZE_T_MAX
2015-10-05 15:29:48 +01:00
bignum.c
Fix backporting mistakes in previous 5 commits
2016-01-08 15:24:46 +01:00
blowfish.c
Rename website and repository
2015-03-06 13:17:10 +00:00
camellia.c
Rename website and repository
2015-03-06 13:17:10 +00:00
ccm.c
Fix memleak with repeated [gc]cm_setkey()
2015-05-27 17:40:16 +02:00
certs.c
Rename website and repository
2015-03-06 13:17:10 +00:00
cipher_wrap.c
Rename website and repository
2015-03-06 13:17:10 +00:00
cipher.c
Add POLARSSL_DEPRECATED_{WARNING,REMOVED}
2015-03-23 14:11:11 +01:00
CMakeLists.txt
Changed library version number to 1.3.17
2016-06-27 19:37:31 +01:00
ctr_drbg.c
Add missing 'const' on selftest data
2015-03-11 09:13:42 +00:00
debug.c
Revert "Avoid formatting debug message uselessly"
2015-08-10 17:36:47 +02:00
des.c
Rename website and repository
2015-03-06 13:17:10 +00:00
dhm.c
accept PKCS#3 DH parameters with privateValueLength included
2015-04-15 13:27:13 +02:00
ecdh.c
Rename website and repository
2015-03-06 13:17:10 +00:00
ecdsa.c
Rename website and repository
2015-03-06 13:17:10 +00:00
ecp_curves.c
Fix spurious #endif from previous cherry-pick
2015-10-05 14:57:01 +01:00
ecp.c
Fix macroization of inline in C++
2015-10-05 14:28:17 +01:00
entropy_poll.c
Fix -Wshadow warnings
2015-08-31 11:07:51 +02:00
entropy.c
Serious bug fix in entropy.c
2015-06-01 12:28:29 +02:00
error.c
Typos and doc additions
2015-05-11 10:44:11 +01:00
gcm.c
Fix documentation for mbedtls_gcm_finish()
2016-10-13 12:54:32 +01:00
havege.c
Rename website and repository
2015-03-06 13:17:10 +00:00
hmac_drbg.c
Fix use of deprecated function in the library
2015-03-20 18:23:52 +00:00
Makefile
Make ar invocation more portable
2016-01-08 15:28:40 +01:00
md2.c
Fix warning with MD/SHA ALT implementation
2015-08-31 11:22:47 +02:00
md4.c
Fix warning with MD/SHA ALT implementation
2015-08-31 11:22:47 +02:00
md5.c
Fix warning with MD/SHA ALT implementation
2015-08-31 11:22:47 +02:00
md_wrap.c
Rename website and repository
2015-03-06 13:17:10 +00:00
md.c
Add POLARSSL_DEPRECATED_{WARNING,REMOVED}
2015-03-23 14:11:11 +01:00
memory_buffer_alloc.c
Rename website and repository
2015-03-06 13:17:10 +00:00
net.c
Fix for net_usleep() timing selftest on mingw
2016-01-15 14:36:08 +00:00
oid.c
Fix typo in an OID name
2015-10-27 15:12:39 +01:00
padlock.c
Fix bug in Via Padlock support
2015-04-02 10:53:59 +01:00
pbkdf2.c
Add POLARSSL_DEPRECATED_{WARNING,REMOVED}
2015-03-23 14:11:11 +01:00
pem.c
Fix potential random malloc in pem_read()
2015-09-30 17:01:35 +02:00
pk_wrap.c
Rename website and repository
2015-03-06 13:17:10 +00:00
pk.c
Rename website and repository
2015-03-06 13:17:10 +00:00
pkcs5.c
Add missing 'const' on selftest data
2015-03-11 09:13:42 +00:00
pkcs11.c
Rename website and repository
2015-03-06 13:17:10 +00:00
pkcs12.c
Fix stack buffer overflow in pkcs12
2015-09-30 16:46:07 +02:00
pkparse.c
Fix bug in pk_parse_key()
2015-04-15 11:21:24 +02:00
pkwrite.c
Fix other occurrences of same bounds check issue
2015-10-27 11:47:37 +01:00
platform.c
Fix compile errors with NO_STD_FUNCTIONS
2015-06-03 10:20:33 +01:00
ripemd160.c
Rename website and repository
2015-03-06 13:17:10 +00:00
rsa.c
Restore P>Q in RSA key generation (#558)
2016-10-13 12:54:33 +01:00
sha1.c
Fix warning with MD/SHA ALT implementation
2015-08-31 11:22:47 +02:00
sha256.c
Fix warning with MD/SHA ALT implementation
2015-08-31 11:22:47 +02:00
sha512.c
Fix warning with MD/SHA ALT implementation
2015-08-31 11:22:47 +02:00
ssl_cache.c
Rename website and repository
2015-03-06 13:17:10 +00:00
ssl_ciphersuites.c
Rename website and repository
2015-03-06 13:17:10 +00:00
ssl_cli.c
Fix guards in SSL for ECDH key exchanges
2016-10-13 12:44:20 +01:00
ssl_srv.c
Fix guards in SSL for ECDH key exchanges
2016-10-13 12:44:20 +01:00
ssl_tls.c
Remove MBEDTLS_SSL_AEAD_RANDOM_IV feature
2016-10-13 14:14:16 +01:00
threading.c
Rename website and repository
2015-03-06 13:17:10 +00:00
timing.c
Increase tolerance of timing selftest
2015-08-19 14:48:34 +02:00
version_features.c
Remove MBEDTLS_SSL_AEAD_RANDOM_IV feature
2016-10-13 14:14:16 +01:00
version.c
Rename website and repository
2015-03-06 13:17:10 +00:00
x509_create.c
Fix other occurrences of same bounds check issue
2015-10-27 11:47:37 +01:00
x509_crl.c
Fix undefined behaviour in x509
2015-04-30 11:21:18 +02:00
x509_crt.c
X509: Fix bug triggered by future CA among trusted
2016-10-13 12:44:19 +01:00
x509_csr.c
Rename website and repository
2015-03-06 13:17:10 +00:00
x509.c
Add option for relaxed X509 time verification.
2016-09-30 09:04:18 +01:00
x509write_crt.c
Add missing bounds check in X509 DER write funcs
2016-10-13 12:45:07 +01:00
x509write_csr.c
Add missing bounds check in X509 DER write funcs
2016-10-13 12:45:07 +01:00
xtea.c
Rename website and repository
2015-03-06 13:17:10 +00:00