cuberite/polarssl
1
0
Fork 0
mirror of https://github.com/cuberite/polarssl.git synced 2025-09-07 22:27:01 -04:00
Code Issues Packages Projects Releases Wiki Activity
polarssl/library
History
Gilles Peskine 326ba3c0bb mbedtls_ssl_decrypt_buf(): fix buffer overread with stream cipher 
With stream ciphers, add a check that there's enough room to read a MAC in
the record. Without this check, subtracting the MAC length from the data
length resulted in an integer underflow, causing the MAC calculation to try
reading (SIZE_MAX + 1 - maclen) bytes of input, which is a buffer overread.

Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2023-09-21 18:25:05 +02:00
..
.gitignore
Ignore *.o everywhere
2023-05-12 13:57:39 +02:00
aes.c
Update links to Rijndael paper and NIST SP 800-90 DRBGs
2023-08-04 15:08:48 +01:00
aesni.c
Support compilation using CLang on Windows
2023-06-26 19:19:56 +03:00
arc4.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
aria.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
asn1parse.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
asn1write.c
Fixed AlgorithmIdentifier parameters when used with ECDSA signature algorithm in x509 certificate
2023-07-31 17:33:23 +02:00
base64.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
bignum.c
Merge pull request #8085 from gilles-peskine-arm/mpi_exp_mod-remove_initial_copy-2.28
2023-08-21 15:50:30 +00:00
blowfish.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
camellia.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
ccm.c
Fix use of sizeof without brackets
2023-02-02 12:46:39 +00:00
certs.c
Update TEST_CA_CRT_EC_PEM and TEST_CA_CRT_EC_DER
2023-06-15 15:41:30 +08:00
chacha20.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
chachapoly.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
check_crypto_config.h
Switch to the new code style
2023-01-11 14:52:35 +01:00
cipher_wrap.c
Update spelling "mbed TLS" to "Mbed TLS"
2023-09-12 19:21:54 +02:00
cipher.c
Update spelling "mbed TLS" to "Mbed TLS"
2023-09-12 19:21:54 +02:00
cmac.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
CMakeLists.txt
Update spelling "mbed TLS" to "Mbed TLS"
2023-09-12 19:21:54 +02:00
common.h
Have MBEDTLS_STATIC_ASSERT() match current development more closely
2023-03-20 15:10:11 +00:00
constant_time_internal.h
Switch to the new code style
2023-01-11 14:52:35 +01:00
constant_time_invasive.h
Switch to the new code style
2023-01-11 14:52:35 +01:00
constant_time.c
Backport 2.28: Use mbedtls_ct_uint_if() rather than mbedtls_ct_cond_select_sign()
2023-05-03 09:50:10 +01:00
ctr_drbg.c
Update links to Rijndael paper and NIST SP 800-90 DRBGs
2023-08-04 15:08:48 +01:00
debug.c
Make use of MBEDTLS_STATIC_ASSERT
2023-05-16 16:47:09 +01:00
des.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
dhm.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
ecdh.c
Update links of references in bignum code
2023-04-21 09:58:07 +00:00
ecdsa.c
Fix a few unchecked return values
2023-08-17 22:13:11 +08:00
ecjpake.c
Update spelling "mbed TLS" to "Mbed TLS"
2023-09-12 19:21:54 +02:00
ecp_curves.c
Address missed instances of sizeof
2023-02-02 15:34:23 +00:00
ecp_invasive.h
Update gen_prvkey_mx paras to align with comments and c code
2023-04-21 10:29:17 +00:00
ecp.c
Merge pull request #8015 from AgathiyanB/fix-unnecessary-type-quantifier
2023-08-03 15:57:01 +00:00
entropy_poll.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
entropy.c
Add missing sha header includes to entropy.c
2023-06-28 11:54:53 +01:00
error.c
Update generated files
2023-01-11 14:52:37 +01:00
gcm.c
Print out AESNI mechanism used by GCM in self-test
2023-03-19 15:07:06 +00:00
havege.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
hkdf.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
hmac_drbg.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
Makefile
Add a selftest run for the TIMING_ALT test
2023-01-26 04:33:59 -05:00
md2.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
md4.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
md5.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
md.c
Update spelling "mbed TLS" to "Mbed TLS"
2023-09-12 19:21:54 +02:00
memory_buffer_alloc.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
mps_common.h
Update spelling "mbed TLS" to "Mbed TLS"
2023-09-12 19:21:54 +02:00
mps_error.h
Update spelling "mbed TLS" to "Mbed TLS"
2023-09-12 19:21:54 +02:00
mps_reader.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
mps_reader.h
Update spelling "mbed TLS" to "Mbed TLS"
2023-09-12 19:21:54 +02:00
mps_trace.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
mps_trace.h
Update spelling "mbed TLS" to "Mbed TLS"
2023-09-12 19:21:54 +02:00
net_sockets.c
Fix error: comparison of integers of different signs: 'SOCKET' and 'int'
2023-06-09 09:25:28 -07:00
nist_kw.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
oid.c
Fix segfault in mbedtls_oid_get_numeric_string
2023-03-16 01:07:35 -04:00
padlock.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
pem.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
pk_wrap.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
pk.c
pk: fixing backport issues
2023-05-02 16:38:57 +02:00
pkcs5.c
Fix typo in pkcs5.c
2023-09-04 18:02:14 +01:00
pkcs11.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
pkcs12.c
Return back to modifying input parameters in pkcs12_parse_pbe_params
2023-09-15 15:34:25 +01:00
pkparse.c
Compile fixes
2023-06-28 14:08:07 +01:00
pkwrite.c
Compile fixes
2023-06-28 14:08:07 +01:00
platform_util.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
platform.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
poly1305.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
psa_crypto_aead.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
psa_crypto_aead.h
Make \retval commands non-empty
2023-02-24 11:41:45 +01:00
psa_crypto_cipher.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
psa_crypto_cipher.h
Make \retval commands non-empty
2023-02-24 11:41:45 +01:00
psa_crypto_client.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
psa_crypto_core.h
Update spelling "mbed TLS" to "Mbed TLS"
2023-09-12 19:21:54 +02:00
psa_crypto_driver_wrappers.c
Fix compiler warning: unreachable code
2023-02-11 18:20:20 -07:00
psa_crypto_driver_wrappers.h
Switch to the new code style
2023-01-11 14:52:35 +01:00
psa_crypto_ecp.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
psa_crypto_ecp.h
Make \retval commands non-empty
2023-02-24 11:41:45 +01:00
psa_crypto_hash.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
psa_crypto_hash.h
Make \retval commands non-empty
2023-02-24 11:41:45 +01:00
psa_crypto_invasive.h
Switch to the new code style
2023-01-11 14:52:35 +01:00
psa_crypto_its.h
Switch to the new code style
2023-01-11 14:52:35 +01:00
psa_crypto_mac.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
psa_crypto_mac.h
Make \retval commands non-empty
2023-02-24 11:41:45 +01:00
psa_crypto_random_impl.h
Switch to the new code style
2023-01-11 14:52:35 +01:00
psa_crypto_rsa.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
psa_crypto_rsa.h
Make \retval commands non-empty
2023-02-24 11:41:45 +01:00
psa_crypto_se.c
Implement and use MBEDTLS_STATIC_ASSERT()
2023-03-20 15:08:21 +00:00
psa_crypto_se.h
Switch to the new code style
2023-01-11 14:52:35 +01:00
psa_crypto_slot_management.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
psa_crypto_slot_management.h
Make \retval commands non-empty
2023-02-24 11:41:45 +01:00
psa_crypto_storage.c
Make \retval commands non-empty
2023-02-24 11:41:45 +01:00
psa_crypto_storage.h
Define all PSA_xxx macros to 1 rather than have them empty, for consistency
2023-09-01 13:07:39 +01:00
psa_crypto.c
Merge pull request #7211 from sergio-nsk/patch-3
2023-09-13 16:39:08 +02:00
psa_its_file.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
ripemd160.c
Fix use of sizeof without brackets
2023-02-02 12:46:39 +00:00
rsa_internal.c
Fix a few unchecked return values
2023-08-17 22:13:11 +08:00
rsa.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
sha1.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
sha256.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
sha512.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
ssl_cache.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
ssl_ciphersuites.c
Update spelling "mbed TLS" to "Mbed TLS"
2023-09-12 19:21:54 +02:00
ssl_cli.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
ssl_cookie.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
ssl_msg.c
mbedtls_ssl_decrypt_buf(): fix buffer overread with stream cipher
2023-09-21 18:25:05 +02:00
ssl_srv.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
ssl_ticket.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
ssl_tls13_keys.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
ssl_tls13_keys.h
Switch to the new code style
2023-01-11 14:52:35 +01:00
ssl_tls.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
threading.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
timing.c
Fix trailing whitespace
2023-03-31 17:24:10 +01:00
version_features.c
Update generated files
2023-09-07 19:20:34 +02:00
version.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
x509_create.c
Fixed AlgorithmIdentifier parameters when used with ECDSA signature algorithm in x509 certificate
2023-07-31 17:33:23 +02:00
x509_crl.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
x509_crt.c
Fix incorrect detection of HardwareModuleName
2023-08-18 19:51:06 +01:00
x509_csr.c
Switch to the new code style
2023-01-11 14:52:35 +01:00
x509.c
Add a do-while loop around macros
2023-06-20 11:45:26 -04:00
x509write_crt.c
Fixed AlgorithmIdentifier parameters when used with ECDSA signature algorithm in x509 certificate
2023-07-31 17:33:23 +02:00
x509write_csr.c
Fixed AlgorithmIdentifier parameters when used with ECDSA signature algorithm in x509 certificate
2023-07-31 17:33:23 +02:00
xtea.c
Switch to the new code style
2023-01-11 14:52:35 +01:00