AuroraMiddleware/mbedtls
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
a7c8903ca6
mbedtls/library
History
Manuel Pégourié-Gonnard fa67ebaebb Fix X.509 keysize check with multiple CAs 
Assume we have two trusted CAs with the same name, the first uses ECDSA 256
bits, the second RSA 2048; cert is signed by the second. If we do the keysize
check before we checked the key types match, we'll raise the badkey flags when
checking the EC-256 CA and it will remain up even when we finally find the
correct CA. So, move the check for the key size after signature verification,
which implicitly checks the key type.
2015-06-27 14:41:38 +02:00
..
.gitignore Split libs with make + general make cleanups 2015-06-25 10:59:56 +02:00
aes.c Rename len to bitlen in function parameters 2015-06-18 14:58:58 +02:00
aesni.c Rename boolean functions to be clearer 2015-06-02 10:38:50 +01:00
arc4.c The Great Renaming 2015-04-08 13:25:31 +02:00
asn1parse.c Rename ERR_xxx_MALLOC_FAILED to ..._ALLOC_FAILED 2015-05-28 16:25:05 +02:00
asn1write.c Remove a few redundant memset after calloc. 2015-05-27 16:58:55 +02:00
base64.c Move from inttypes.h to stdint.h 2015-06-22 23:41:26 +02:00
bignum.c Rename mbedtls_mpi_msb to mbedtls_mpi_bitlen 2015-06-18 16:49:37 +02:00
blowfish.c Rename relevant global symbols from size to bitlen 2015-06-18 16:43:38 +02:00
camellia.c Rename len to bitlen in function parameters 2015-06-18 14:58:58 +02:00
ccm.c Rename len to bitlen in function parameters 2015-06-18 14:58:58 +02:00
certs.c Remove test DHM params from certs.c 2015-06-25 10:59:57 +02:00
cipher_wrap.c Some more init calls 2015-06-23 13:09:11 +02:00
cipher.c Rename key_length in cipher_info 2015-06-18 15:31:10 +02:00
CMakeLists.txt cmake: add shortcut 'lib' for all libraries 2015-06-25 14:53:13 +02:00
ctr_drbg.c Fix bug introduced when splitting init functions 2015-05-11 14:35:42 +02:00
debug.c Change SSL debug API in the library 2015-06-23 18:44:11 +02:00
des.c Create function-level MBETLS_DES_xxx_ALT 2015-05-12 15:17:15 +02:00
dhm.c Remove test DHM params from certs.c 2015-06-25 10:59:57 +02:00
ecdh.c The Great Renaming 2015-04-08 13:25:31 +02:00
ecdsa.c Rename ecp_use_known_dp -> mbedtls_ecp_group_load() 2015-05-11 18:46:47 +02:00
ecp_curves.c Rename M255 to Curve25519 2015-06-23 13:09:10 +02:00
ecp.c Rename M255 to Curve25519 2015-06-23 13:09:10 +02:00
entropy_poll.c Fix issue with MemSan and entropy 2015-06-22 18:25:41 +02:00
entropy.c Add a concept of entropy source strength. 2015-06-22 14:40:56 +02:00
error.c Rationalize other snprintf() uses 2015-06-22 14:42:04 +02:00
gcm.c Rename len to bitlen in function parameters 2015-06-18 14:58:58 +02:00
havege.c The Great Renaming 2015-04-08 13:25:31 +02:00
hmac_drbg.c Fix bug introduced when splitting init functions 2015-05-11 14:35:42 +02:00
Makefile Fix stupid typo that broke make SHARED=1 2015-06-25 14:30:51 +02:00
md2.c Remove individual mdX_file() and shaX_file() 2015-05-28 17:28:38 +02:00
md4.c Remove individual mdX_file() and shaX_file() 2015-05-28 17:28:38 +02:00
md5.c Remove individual mdX_file() and shaX_file() 2015-05-28 17:28:38 +02:00
md_wrap.c Deduplicate SHA-2 wrappers 2015-06-23 13:09:11 +02:00
md.c Avoid fclose( NULL ) 2015-06-24 00:09:29 +02:00
memory_buffer_alloc.c Fix typo in memory_buffer_alloc 2015-05-27 20:18:39 +02:00
net.c Fix potential NULL dereference 2015-06-25 10:59:57 +02:00
oid.c Rationalize other snprintf() uses 2015-06-22 14:42:04 +02:00
padlock.c Rename boolean functions to be clearer 2015-06-02 10:38:50 +01:00
pem.c Avoid in-out length in base64 2015-06-02 16:30:35 +01:00
pk_wrap.c Internal renamings in PK 2015-06-18 16:06:55 +02:00
pk.c Rename relevant global symbols from size to bitlen 2015-06-18 16:43:38 +02:00
pkcs5.c Rename key_length in cipher_info 2015-06-18 15:31:10 +02:00
pkcs11.c Fix compile errors in pkcs11.c 2015-05-27 17:09:21 +02:00
pkcs12.c Rename key_length in cipher_info 2015-06-18 15:31:10 +02:00
pkparse.c Rename mbedtls_mpi_msb to mbedtls_mpi_bitlen 2015-06-18 16:49:37 +02:00
pkwrite.c Replace malloc with calloc 2015-05-26 16:04:06 +02:00
platform.c Tune up Windows snprintf() support 2015-06-26 17:45:00 +02:00
ripemd160.c Remove individual mdX_file() and shaX_file() 2015-05-28 17:28:38 +02:00
rsa.c Rename mbedtls_mpi_msb to mbedtls_mpi_bitlen 2015-06-18 16:49:37 +02:00
sha1.c Remove individual mdX_file() and shaX_file() 2015-05-28 17:28:38 +02:00
sha256.c Remove individual mdX_file() and shaX_file() 2015-05-28 17:28:38 +02:00
sha512.c Remove individual mdX_file() and shaX_file() 2015-05-28 17:28:38 +02:00
ssl_cache.c Rename ssl_session.length to id_len 2015-06-18 15:50:37 +02:00
ssl_ciphersuites.c Fix warnings from -pedantic 2015-05-29 10:52:14 +02:00
ssl_cli.c Add SSL "assertion" to help static analysis 2015-06-25 10:59:57 +02:00
ssl_cookie.c Make ssl_cookie.c thread-safe 2015-05-28 17:28:39 +02:00
ssl_srv.c Add SSL "assertion" to help static analysis 2015-06-25 10:59:57 +02:00
ssl_ticket.c Rename relevant global symbols from size to bitlen 2015-06-18 16:43:38 +02:00
ssl_tls.c Fix potential NULL dereference 2015-06-25 10:59:57 +02:00
threading.c Move from gmtime_r to gmtime + mutexes 2015-05-29 10:18:09 +02:00
timing.c Do no test net_usleep in timing_selftest 2015-06-25 10:59:57 +02:00
version_features.c Rename M255 to Curve25519 2015-06-23 13:09:10 +02:00
version.c The Great Renaming 2015-04-08 13:25:31 +02:00
x509_create.c Avoid non-standard strcasecmp() 2015-05-29 10:18:09 +02:00
x509_crl.c Rationalize snprintf() usage in X.509 modules 2015-06-22 14:42:04 +02:00
x509_crt.c Fix X.509 keysize check with multiple CAs 2015-06-27 14:41:38 +02:00
x509_csr.c Rationalize snprintf() usage in X.509 modules 2015-06-22 14:42:04 +02:00
x509.c Fix and document corner-cases of time checking 2015-06-22 23:41:24 +02:00
x509write_crt.c Update prototype of x509write_set_key_usage() 2015-06-23 13:09:10 +02:00
x509write_csr.c The Great Renaming 2015-04-08 13:25:31 +02:00
xtea.c The Great Renaming 2015-04-08 13:25:31 +02:00