espressif/mbedtls
1
0
Fork 0
mirror of https://github.com/espressif/mbedtls.git synced 2025-07-23 10:35:48 +08:00
Code Issues Packages Projects Releases Wiki Activity
mbedtls/library
History
Andrzej Kurek 96ae5cd087 Zeroize local AES variables before exiting the function 
This issue has been reported by Tuba Yavuz, Farhaan Fowze, Ken (Yihang) Bai,
Grant Hernandez, and Kevin Butler (University of Florida) and
Dave Tian (Purdue University).

In AES encrypt and decrypt some variables were left on the stack. The value
of these variables can be used to recover the last round key. To follow best
practice and to limit the impact of buffer overread vulnerabilities (like
Heartbleed) we need to zeroize them before exiting the function.
2019-11-12 03:05:51 -05:00
..
.gitignore
aes.c
Zeroize local AES variables before exiting the function
2019-11-12 03:05:51 -05:00
aesni.c
arc4.c
aria.c
asn1parse.c
asn1write.c
base64.c
bignum.c
blowfish.c
camellia.c
ccm.c
chacha20.c
chachapoly.c
cipher_wrap.c
cipher.c
cmac.c
CMakeLists.txt
ctr_drbg.c
CTR_DRBG: support set_entropy_len() before seed()
2019-10-11 18:04:12 +02:00
des.c
dhm.c
ecdh.c
ecdsa.c
ecjpake.c
ecp_curves.c
ecp.c
entropy_poll.c
entropy.c
error.c
gcm.c
havege.c
hkdf.c
hmac_drbg.c
HMAC_DRBG: support set_entropy_len() before seed()
2019-10-11 18:04:12 +02:00
Makefile
md2.c
md4.c
md5.c
md.c
memory_buffer_alloc.c
nist_kw.c
oid.c
padlock.c
pem.c
pk_wrap.c
pk.c
pkcs5.c
pkcs12.c
pkparse.c
pkwrite.c
platform_util.c
platform.c
poly1305.c
psa_crypto_core.h
psa_crypto_invasive.h
psa_crypto_its.h
psa_crypto_se.c
psa_crypto_se.h
psa_crypto_service_integration.h
psa_crypto_slot_management.c
psa_crypto_slot_management.h
psa_crypto_storage.c
psa_crypto_storage.h
psa_crypto.c
Merge pull request #292 from gilles-peskine-arm/psa-destroy_0
2019-10-14 11:21:54 +02:00
psa_its_file.c
ripemd160.c
rsa_internal.c
rsa.c
sha1.c
sha256.c
sha512.c
threading.c
timing.c
version_features.c
version.c
xtea.c