TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / refs/heads/mbedtls-2.7 / library / rsa.c
  1. fc2c796 Fix an incorrect error code if RSA private operation glitched by Gilles Peskine · 4 years, 8 months ago
  2. 22dc2e7 Fix mutex leak in RSA by Gilles Peskine · 4 years, 6 months ago
  3. d7e82ad Fix mutex double-free in RSA by Gilles Peskine · 4 years, 6 months ago
  4. e634564 Restore retry in rsa_prepare_blinding() by Peter Kolbus · 4 years, 10 months ago
  5. d863a67 Merge branch 'mbedtls-2.7' into mbedtls-2.7-restricted by Manuel Pégourié-Gonnard · 5 years ago
  6. 44bfbe3 Update copyright notices to use Linux Foundation guidance by Bence Szépkúti · 5 years ago
  7. 206cb39 Use arc4random_buf instead of rand on NetBSD by gufe44 · 5 years ago
  8. b2b1d8e Clarify some comments by Manuel Pégourié-Gonnard · 5 years ago
  9. ab601d6 Fix memory leak on error path by Manuel Pégourié-Gonnard · 5 years ago
  10. 406c7ae RSA: blind call to mpi_inv_mod() on secret value by Manuel Pégourié-Gonnard · 5 years ago
  11. 6ab924d RSA: remove redundant GCD call in prepare_blinding() by Manuel Pégourié-Gonnard · 5 years ago
  12. 4e9f712 Update license headers to Apache-2.0 OR GPL-2.0-or-later by Bence Szépkúti · 5 years ago
  13. 100e147 Parse RSA parameters DP, DQ and QP from PKCS1 private keys by Jack Lloyd · 6 years ago
  14. 84a21d5 Fix undefined behavior in unsigned-to-signed conversion by Gilles Peskine · 7 years ago
  15. 66a28e9 Fix likely-harmless undefined behavior surrounding volatile by Gilles Peskine · 7 years ago
  16. 23d7cea PKCS#1 v1.5 decoding: fix empty payload case by Gilles Peskine · 7 years ago
  17. 0b330f7 Remove a remaining sensitive memory access in PKCS#1 v1.5 decryption by Gilles Peskine · 7 years ago
  18. 03fb3e3 mbedtls_rsa_rsaes_pkcs1_v15_decrypt: remove the variable p by Gilles Peskine · 7 years ago
  19. 087544b Minor optimization in the PKCS#1v1.5 unpadding step by Gilles Peskine · 7 years ago
  20. cf1253e Use branch-free size comparison for the padding size by Gilles Peskine · 7 years ago
  21. a04f8bb Bleichenbacher fix: don't leak the plaintext length (step 2) by Gilles Peskine · 7 years ago
  22. f9dd29e Bleichenbacher fix: don't leak the plaintext length (step 1) by Gilles Peskine · 7 years ago
  23. b473916 Evolve choose_int_from_mask to if_int by Gilles Peskine · 7 years ago
  24. dabe87c Fix a timing-based Bleichenbacher attack on PKCS#1v1.5 decryption by Gilles Peskine · 7 years ago
  25. cd500f3 Minor readability improvement by Gilles Peskine · 7 years ago
  26. 2cfeb88 Merge tag 'mbedtls-2.7.2' into iotssl-1381-x509-verify-refactor-2.7-restricted by Gilles Peskine · 7 years ago
  27. b0ba5bc Yet another dependency issue (PKCS1_V15) by Manuel Pégourié-Gonnard · 7 years ago
  28. a5fa079 Verify the result of RSA private key operations by Hanno Becker · 7 years ago
  29. 66954e1 Merge branch 'development' into development-restricted by Jaeden Amero · 8 years ago
  30. 9e4f77c New MD API: rename functions from _ext to _ret by Gilles Peskine · 8 years ago
  31. d91f2a2 Merge branch 'development' into iotssl-1251-2.7 by Gilles Peskine · 8 years ago
  32. d40c22b Merge branch 'development' into development-restricted by Gilles Peskine · 8 years ago
  33. 87ae197 Add explicit uint truncation casts by Hanno Becker · 8 years ago
  34. 71b0060 Merge branch 'development' into iotssl-247 by Hanno Becker · 8 years ago
  35. 31f3f0b Merge branch 'development' into development-restricted by Jaeden Amero · 8 years ago
  36. d4d6057 Address issues found by coverity by Hanno Becker · 8 years ago
  37. f342cb7 Merge branch 'development' into development-restricted by Jaeden Amero · 8 years ago
  38. 3a760a1 Add size check for RSA modulus to `mbedtls_rsa_complete` by Hanno Becker · 8 years ago
  39. 91048a3 RSA PSS: remove redundant check; changelog by Gilles Peskine · 8 years ago
  40. b00b0da RSA PSS: fix first byte check for keys of size 8N+1 by Gilles Peskine · 8 years ago
  41. 139108a RSA PSS: fix minimum length check for keys of size 8N+1 by Gilles Peskine · 8 years ago
  42. 6a54b02 RSA: Fix another buffer overflow in PSS signature verification by Gilles Peskine · 8 years ago
  43. 28a0c72 RSA: Fix buffer overflow in PSS signature verification by Gilles Peskine · 8 years ago
  44. f8c028a Minor corrections by Hanno Becker · 8 years ago
  45. c36aab6 Swap D,E parameters in mbedtls_rsa_deduce_primes by Hanno Becker · 8 years ago
  46. ebd2c02 Don't require P,Q in `rsa_private` if neither CRT nor blinding used by Hanno Becker · 8 years ago
  47. b82a5b5 Fix typos and mixup related to RSA_NO_CRT by Hanno Becker · 8 years ago
  48. a565f54 Introduce new files rsa_internal.[ch] for RSA helper functions by Hanno Becker · 8 years ago
  49. 705fc68 Unify sanity checks for RSA private and public keys by Hanno Becker · 8 years ago
  50. e867489 Remove outdated comments from `mbedtls_rsa_complete` by Hanno Becker · 8 years ago
  51. 7f25f85 Adapt uses of `mbedtls_rsa_complete` to removed PRNG argument by Hanno Becker · 8 years ago
  52. f9e184b Remove PRNG argument from `mbedtls_rsa_complete` by Hanno Becker · 8 years ago
  53. 68b4d58 Remove PRNG argument from `mbedtls_rsa_deduce_moduli` by Hanno Becker · 8 years ago
  54. 0f65e0c Rename `rsa_deduce_moduli` to `rsa_deduce_primes` by Hanno Becker · 8 years ago
  55. 8ba6ce4 Rename `rsa_deduce_private` to `rsa_deduce_private_exponent` by Hanno Becker · 8 years ago
  56. 45a0ef3 Correct memory leak in `mbedtls_rsa_validate_crt` by Hanno Becker · 8 years ago
  57. e58d38c Minor improvements by Hanno Becker · 8 years ago
  58. 2b2f898 Streamline code-path in rsa_rsassa_pkcs1_v15_encode by Hanno Becker · 8 years ago
  59. 64a8c0a Verify PKCS1 v1.5 signature without parsing by Hanno Becker · 8 years ago
  60. fdf3803 Outsource code for generating PKCS1 v1.5 encoding by Hanno Becker · 8 years ago
  61. 171a8f1 Move constant time memcmp for signature verification by Hanno Becker · 8 years ago
  62. b5beaa8 Check that 1 < D, E < N in `mbedtls_rsa_validate_params` by Hanno Becker · 8 years ago
  63. c6fc878 Remove `mbedtls_rsa_check_crt` by Hanno Becker · 8 years ago
  64. 98838b0 Minor improvements by Hanno Becker · 8 years ago
  65. 7471631 Make input arguments to `mbedtls_rsa_import_raw` constant by Hanno Becker · 8 years ago
  66. bdefff1 Change signature of `mbedtls_rsa_deduce_private` by Hanno Becker · 8 years ago
  67. ba5b755 Change signature and semantics of `mbedtls_rsa_deduce_moduli` by Hanno Becker · 8 years ago
  68. 56bae95 Improve style and documentation, fix typo by Hanno Becker · 8 years ago
  69. bead717 Correct typo in rsa.c by Hanno Becker · 8 years ago
  70. ba1ba11 Check that length is properly set in `mbedtls_rsa_check_pubkey` by Hanno Becker · 8 years ago
  71. 2f8f06a Don't always recompute context length in mbedtls_rsa_get_len by Hanno Becker · 8 years ago
  72. 2cca6f3 Always deduce N from P, Q in mbedtls_rsa_complete by Hanno Becker · 8 years ago
  73. 45037ce Add check for presence of relevant parameters in mbedtls_rsa_private by Hanno Becker · 8 years ago
  74. b269a85 Change mbedtls_rsa_check_privkey to use new helper functions by Hanno Becker · 8 years ago
  75. d9431a7 Minor comments improvement by Hanno Becker · 8 years ago
  76. d363799 Add mbedtls_rsa_validate_crt by Hanno Becker · 8 years ago
  77. d56d83a Remove double-checking code from rsa_deduce_moduli and rsa_complete by Hanno Becker · 8 years ago
  78. 750e8b4 Rename rsa_check_params->rsa_validate_params and change error codes by Hanno Becker · 8 years ago
  79. fb81c0e Guard primality checks in RSA module by MBEDTLS_GENPRIME by Hanno Becker · 8 years ago
  80. ab37731 Add support for alternative RSA implementations by Hanno Becker · 8 years ago
  81. 6345dd3 Adapt rsa_check_privkey to deal with NO_CRT option by Hanno Becker · 8 years ago
  82. bee3aae Adapt rsa_gen_key to deal with RSA_NO_CRT option by Hanno Becker · 8 years ago
  83. dc95c89 Adapt rsa_deduce_crt to deal with RSA_NO_CRT option by Hanno Becker · 8 years ago
  84. 33c30a0 Adapt rsa_copy and rsa_free to deal with RSA_NO_CRT option by Hanno Becker · 8 years ago
  85. 23344b5 Adapt rsa_complete to deal with RSA_NO_CRT option by Hanno Becker · 8 years ago
  86. 83aad1f Adapt gen_key example program to new RSA interface by Hanno Becker · 8 years ago
  87. 3a70116 Adapt RSA selftest to new RSA interface by Hanno Becker · 8 years ago
  88. 617c1ae Implement new RSA interface functions by Hanno Becker · 8 years ago
  89. e2e8b8d Implement RSA helper functions by Hanno Becker · 8 years ago
  90. c5c7d76 Add goto exit; stmt in rsa.c for consistency by Andres Amaya Garcia · 8 years ago
  91. 94682d1 Fix use of unitialized ret in rsa.c by Andres Amaya Garcia · 8 years ago
  92. 698089e Change RSA to use new MD API and check return code by Andres Amaya Garcia · 8 years ago
  93. b86b143 Merge remote-tracking branch 'restricted/iotssl-1138-rsa-padding-check-restricted' into development-restricted by Manuel Pégourié-Gonnard · 8 years ago
  94. a0bf6ec Merge remote-tracking branch 'restricted/IOTSSL-1366/development-restricted' into development-restricted by Manuel Pégourié-Gonnard · 8 years ago
  95. 18ac716 RSA: wipe more stack buffers by Gilles Peskine · 8 years ago
  96. 4a7f6a0 RSA: wipe stack buffers by Gilles Peskine · 8 years ago
  97. f9203b4 Add exponent blinding to RSA with CRT by Janos Follath · 8 years ago
  98. e81102e Add exponent blinding to RSA without CRT by Janos Follath · 8 years ago
  99. c1380de RSA PKCS1v1.5 verification: check padding length by Manuel Pégourié-Gonnard · 8 years ago
  100. e7e7650 More length checks in RSA PKCS1v15 verify by Gilles Peskine · 8 years ago