AuroraMiddleware/mbedtls
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
e47b34bdc8
mbedtls/library
History
Paul Bakker e47b34bdc8 Removed further timing differences during SSL message decryption in ssl_decrypt_buf() 
New padding checking is unbiased on correct or incorrect padding and
has no branch prediction timing differences.

The additional MAC checks further straighten out the timing differences.
2013-02-27 14:48:00 +01:00
..
.gitignore Added proper gitignores for linux compilation 2012-11-17 00:04:49 +01:00
aes.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00
arc4.c - Major type rewrite of int to size_t for most variables and arguments used for buffer lengths and loops 2011-04-24 08:57:21 +00:00
asn1parse.c - Changed the behaviour of x509parse_parse_crt for permissive parsing. Now returns the number of 'failed certificates' instead of having a switch to enable it. 2011-12-10 21:55:01 +00:00
asn1write.c - Certificate Requests written now have the Email address written in IA5String 2012-02-16 10:26:57 +00:00
base64.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00
bignum.c Fixed segfault in mpi_shift_r() 2012-11-18 23:15:02 +01:00
blowfish.c - Moved definition to top to prevent MS VC compiler warning 2012-10-01 20:58:19 +00:00
camellia.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00
certs.c - Re-added removed dhm test values 2011-03-08 13:58:16 +00:00
cipher_wrap.c - Added Blowfish to generic cipher layer 2012-07-04 17:10:40 +00:00
cipher.c - Added Blowfish to generic cipher layer 2012-07-04 17:10:40 +00:00
CMakeLists.txt Updated for PolarSSL 1.2.5 2013-02-02 19:23:57 +01:00
ctr_drbg.c - Fixed off-by-one loop 2012-11-09 15:30:07 +00:00
debug.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00
des.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00
dhm.c - Extra sanity check for input added 2012-09-16 15:07:49 +00:00
entropy_poll.c - Fixes for MSVC6 2012-11-02 10:59:36 +00:00
entropy.c - Added option to prevent default entropy sources from loading (POLARSSL_NO_DEFAULT_ENTROPY_SOURCES) 2011-12-15 20:11:16 +00:00
error.c Allow enabling of dummy error_strerror() to support some use-cases 2013-02-02 12:43:08 +01:00
gcm.c - Fixes for MSVC6 2012-11-02 10:59:36 +00:00
havege.c - Changed the used random function pointer to more flexible format. Renamed havege_rand() to havege_random() to prevent mistakes. Lots of changes as a consequence in library code and programs 2011-11-27 21:07:34 +00:00
Makefile - Proper building of shared lib when SHARED defined 2012-11-13 10:37:52 +00:00
md2.c - Changed the behaviour of x509parse_parse_crt for permissive parsing. Now returns the number of 'failed certificates' instead of having a switch to enable it. 2011-12-10 21:55:01 +00:00
md4.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00
md5.c Removed further timing differences during SSL message decryption in ssl_decrypt_buf() 2013-02-27 14:48:00 +01:00
md_wrap.c - Only include dependencies when required 2012-03-05 14:01:29 +00:00
md.c - Fixed size of clean 2012-04-26 10:09:35 +00:00
net.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00
padlock.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00
pbkdf2.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00
pem.c - Added permissive certificate parsing to x509parse_crt() and x509parse_crtfile(). With permissive parsing the parsing does not stop on encountering a parse-error 2011-12-04 12:24:18 +00:00
pkcs11.c - Fixed argument types 2012-11-14 12:14:19 +00:00
rsa.c Moved md_init_ctx() calls around to minimize exit points 2013-01-03 11:08:31 +01:00
sha1.c Removed further timing differences during SSL message decryption in ssl_decrypt_buf() 2013-02-27 14:48:00 +01:00
sha2.c Removed further timing differences during SSL message decryption in ssl_decrypt_buf() 2013-02-27 14:48:00 +01:00
sha4.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00
ssl_cache.c - Cache now only allows a maximum of entries in cache for preventing memory overrun 2012-10-23 22:18:28 +00:00
ssl_cli.c Added ssl_handshake_step() to allow single stepping the handshake 2013-01-25 14:49:24 +01:00
ssl_srv.c Added ssl_handshake_step() to allow single stepping the handshake 2013-01-25 14:49:24 +01:00
ssl_tls.c Removed further timing differences during SSL message decryption in ssl_decrypt_buf() 2013-02-27 14:48:00 +01:00
timing.c - Moved to more flexible define structure 2012-10-31 09:53:08 +00:00
version.c - Fixed copyright message 2010-07-18 20:36:00 +00:00
x509parse.c Made x509parse.c also work with missing hash header files 2013-02-19 13:17:38 +01:00
x509write.c - Fixed comments / typos 2012-11-07 20:05:38 +00:00
xtea.c - Moved from unsigned long to uint32_t throughout code 2012-10-01 14:41:15 +00:00