mbedtls/library
Gilles Peskine 2484ffeb81 get_timer: don't use uninitialized memory
get_timer with reset=1 is called both to initialize a
timer object and to reset an already-initialized object. In an
initial call, the content of the data structure is indeterminate, so
the code should not read from it. This could crash if signed overflows
trap, for example.

As a consequence, on reset, we can't return the previously elapsed
time as was previously done on Windows. Return 0 as was done on Unix.
2017-12-20 22:12:19 +01:00
..
.gitignore Minor gitginore fixes 2015-01-28 15:34:01 +00:00
aes.c Rename website and repository 2015-03-06 13:17:10 +00:00
aesni.c Rename website and repository 2015-03-06 13:17:10 +00:00
arc4.c Rename website and repository 2015-03-06 13:17:10 +00:00
asn1parse.c Fix 1 byte overread in mbedtls_asn1_get_int() 2016-10-13 12:54:32 +01:00
asn1write.c Merge memory leak fix into branch 'mbedtls-1.3' 2016-01-02 00:28:19 +00:00
base64.c Add comment to integer overflow fix in base64.c 2017-02-25 21:27:17 +00:00
bignum.c Merge remote-tracking branch 'hanno/mpi_read_file_underflow_backport-1.3' into mbedtls-1.3 2017-06-08 19:54:29 +02:00
blowfish.c Rename website and repository 2015-03-06 13:17:10 +00:00
camellia.c Rename website and repository 2015-03-06 13:17:10 +00:00
ccm.c Fix for MSVC Compiler warnings 2016-11-10 15:40:53 +00:00
certs.c Rename website and repository 2015-03-06 13:17:10 +00:00
cipher_wrap.c Rename website and repository 2015-03-06 13:17:10 +00:00
cipher.c Fix integer overflows in buffer bound checks 2017-02-25 21:25:44 +00:00
CMakeLists.txt Update version to 1.3.21 2017-08-10 11:52:14 +01:00
ctr_drbg.c Fix integer overflows in buffer bound checks 2017-02-25 21:25:44 +00:00
debug.c Revert "Avoid formatting debug message uselessly" 2015-08-10 17:36:47 +02:00
des.c Rename website and repository 2015-03-06 13:17:10 +00:00
dhm.c Backport 1.3: Check rc of mbedtls_mpi_fill_random 2017-07-20 01:26:53 +02:00
ecdh.c Rename website and repository 2015-03-06 13:17:10 +00:00
ecdsa.c Add checks for private parameter in ecdsa_sign() 2017-11-20 15:53:43 +00:00
ecp_curves.c ECP: Prevent freeing a buffer on stack 2017-02-28 20:24:52 +00:00
ecp.c Backport 1.3: Check rc of mbedtls_mpi_fill_random 2017-07-20 01:26:53 +02:00
entropy_poll.c Fix -Wshadow warnings 2015-08-31 11:07:51 +02:00
entropy.c Add internal macro ENTROPY_HAVE_DEFAULT indicating default entropy 2017-09-08 10:53:30 +01:00
error.c Only return VERIFY_FAILED from a single point 2017-07-28 13:15:57 +01:00
gcm.c Backport 1.3: check if iv is zero in gcm. 2017-07-20 00:33:27 +02:00
havege.c Rename website and repository 2015-03-06 13:17:10 +00:00
hmac_drbg.c Fix use of deprecated function in the library 2015-03-20 18:23:52 +00:00
Makefile Make ar invocation more portable 2016-01-08 15:28:40 +01:00
md2.c Fix integer overflows in buffer bound checks 2017-02-25 21:25:44 +00:00
md4.c Fix warning with MD/SHA ALT implementation 2015-08-31 11:22:47 +02:00
md5.c Fix warning with MD/SHA ALT implementation 2015-08-31 11:22:47 +02:00
md_wrap.c Rename website and repository 2015-03-06 13:17:10 +00:00
md.c Add POLARSSL_DEPRECATED_{WARNING,REMOVED} 2015-03-23 14:11:11 +01:00
memory_buffer_alloc.c Rename website and repository 2015-03-06 13:17:10 +00:00
net.c Merge remote-tracking branch 'upstream-public/pr/917' into mbedtls-1.3 2017-11-29 20:55:03 +01:00
oid.c Fix typo in an OID name 2015-10-27 15:12:39 +01:00
padlock.c Fix bug in Via Padlock support 2015-04-02 10:53:59 +01:00
pbkdf2.c Add POLARSSL_DEPRECATED_{WARNING,REMOVED} 2015-03-23 14:11:11 +01:00
pem.c Add missing ret code checks in PEM module 2017-05-30 17:18:06 +01:00
pk_wrap.c Change PK module preprocessor check on word size 2017-08-04 13:49:29 +01:00
pk.c Change PK module preprocessor check on word size 2017-08-04 13:49:29 +01:00
pkcs5.c Add missing 'const' on selftest data 2015-03-11 09:13:42 +00:00
pkcs11.c Rename website and repository 2015-03-06 13:17:10 +00:00
pkcs12.c Fix stack buffer overflow in pkcs12 2015-09-30 16:46:07 +02:00
pkparse.c Fix build without MBEDTLS_FS_IO 2017-11-30 12:14:59 +01:00
pkwrite.c Fix other occurrences of same bounds check issue 2015-10-27 11:47:37 +01:00
platform.c Fix compile errors with NO_STD_FUNCTIONS 2015-06-03 10:20:33 +01:00
ripemd160.c Rename website and repository 2015-03-06 13:17:10 +00:00
rsa.c Merge remote-tracking branch 'restricted/iotssl-1138-rsa-padding-check-1.3-restricted' into mbedtls-1.3-restricted 2017-06-08 20:34:40 +02:00
sha1.c Fix warning with MD/SHA ALT implementation 2015-08-31 11:22:47 +02:00
sha256.c Fix warning with MD/SHA ALT implementation 2015-08-31 11:22:47 +02:00
sha512.c Fix warning with MD/SHA ALT implementation 2015-08-31 11:22:47 +02:00
ssl_cache.c Address PR review comments 2017-10-30 18:18:09 +02:00
ssl_ciphersuites.c Remember suitable hash function for any signature algorithm. 2017-05-24 10:47:54 +01:00
ssl_cli.c Fix mbedtls_ssl_read 2017-06-08 15:59:38 +01:00
ssl_srv.c Parse Signature Algorithm ext when renegotiating 2017-10-11 14:06:26 +01:00
ssl_tls.c Fix handling of HS msgs in ssl_read if renegotiation unused 2017-10-25 09:34:48 +01:00
threading.c Rename website and repository 2015-03-06 13:17:10 +00:00
timing.c get_timer: don't use uninitialized memory 2017-12-20 22:12:19 +01:00
version_features.c Update features list 2016-10-13 22:11:15 +01:00
version.c Rename website and repository 2015-03-06 13:17:10 +00:00
x509_create.c Fix other occurrences of same bounds check issue 2015-10-27 11:47:37 +01:00
x509_crl.c Fix potential integer overflow parsing DER CRL 2017-07-27 11:49:08 +01:00
x509_crt.c Fix implementation-defined integer conversion 2017-07-28 13:15:57 +01:00
x509_csr.c Prevent signed integer overflow in CSR parsing 2017-07-27 11:50:58 +01:00
x509.c Correctly handle leap year in x509_date_is_valid() 2017-10-12 21:08:46 +01:00
x509write_crt.c Minor style and typo corrections 2017-10-05 08:37:56 +01:00
x509write_csr.c Minor style and typo corrections 2017-10-05 08:37:56 +01:00
xtea.c Rename website and repository 2015-03-06 13:17:10 +00:00