mbedtls/library
Janos Follath dca667ac80 Add a safer deterministic ECDSA function
`mbedtls_ecdsa_sign_det` reuses the internal HMAC-DRBG instance to
implement blinding. The advantage of this is that the algorithm is
deterministic too, not just the resulting signature. The drawback is
that the blinding is always the same for the same key and message.
This diminishes the efficiency of blinding and leaks information about
the private key.

A function that takes external randomness fixes this weakness.
2019-09-05 11:18:58 +01:00
..
.gitignore
aes.c
aesni.c
arc4.c
aria.c
asn1parse.c
asn1write.c
base64.c
bignum.c Merge remote-tracking branch 'tls/pr/2363' into development 2019-09-03 19:32:45 +01:00
blowfish.c
camellia.c
ccm.c Merge remote-tracking branch 'origin/pr/2092' into development 2019-04-24 11:17:21 +01:00
chacha20.c
chachapoly.c
cipher.c Convert cipher and pk to PSA attribute-based key creation 2019-06-05 11:34:54 +02:00
cipher_wrap.c Wrap lines at 80 columns 2019-04-02 10:07:28 -07:00
cmac.c
CMakeLists.txt 3rdparty: Add additional build facilities for 3rd-party code 2019-08-19 13:37:46 +01:00
ctr_drbg.c
des.c des: Reduce number of self-test iterations 2019-09-04 10:11:45 +01:00
dhm.c Allow DHM self test to run without MBEDTLS_PEM_PARSE_C 2019-06-03 17:46:56 +01:00
ecdh.c Fix code style 2019-08-19 13:37:46 +01:00
ecdsa.c Add a safer deterministic ECDSA function 2019-09-05 11:18:58 +01:00
ecjpake.c Fix handling of md failure 2019-07-08 14:32:38 +02:00
ecp.c 3rdparty: Adjust use of Everest in ecp_supported_curves 2019-08-19 13:37:46 +01:00
ecp_curves.c
entropy.c
entropy_poll.c
error.c Add specific SSL error code for unexpected CIDs 2019-06-03 16:07:50 +01:00
gcm.c
havege.c Fix minor type choice inconsistency 2019-06-24 15:45:09 +02:00
hkdf.c
hmac_drbg.c HMAC DRBG: Split entropy-gathering requests to reduce request sizes 2019-08-30 11:16:24 +01:00
Makefile 3rdparty: Rename THIRDPARTY_OBJECTS 2019-08-19 13:37:46 +01:00
md.c md: Remove dependency on X.509 2019-03-11 16:46:20 +00:00
md2.c
md4.c
md5.c
md_wrap.c
memory_buffer_alloc.c
nist_kw.c
oid.c Add support for RSA PKCSv1.5 signatures using RIPEMD-160 2019-05-06 12:15:17 -04:00
padlock.c
pem.c
pk.c Convert cipher and pk to PSA attribute-based key creation 2019-06-05 11:34:54 +02:00
pk_wrap.c Convert cipher and pk to PSA attribute-based key creation 2019-06-05 11:34:54 +02:00
pkcs5.c
pkcs12.c
pkparse.c
pkwrite.c Convert cipher and pk to PSA attribute-based key creation 2019-06-05 11:34:54 +02:00
platform.c
platform_util.c
poly1305.c
psa_crypto.c Merge pull request #229 from k-stachowiak/IOTCRYPT-791-remove-legacy-psa-key-derivation 2019-08-29 11:31:23 +01:00
psa_crypto_core.h Rename internal macro to pass check-names.sh 2019-08-08 10:58:09 +02:00
psa_crypto_invasive.h
psa_crypto_its.h Add psa_trusted_storage_linux persistent storage support for v1.0.0 APIs 2019-07-23 17:30:37 +01:00
psa_crypto_se.c Pass the key creation method to drivers 2019-08-09 14:59:31 +02:00
psa_crypto_se.h Pass the key creation method to drivers 2019-08-09 14:59:31 +02:00
psa_crypto_service_integration.h
psa_crypto_slot_management.c psa: Use application key ID where necessary 2019-08-28 17:24:27 +01:00
psa_crypto_slot_management.h Rename psa_internal_allocate_key_slot to psa_get_empty_key_slot 2019-08-08 10:58:09 +02:00
psa_crypto_storage.c Merge pull request #198 from gilles-peskine-arm/psa-api-1.0-beta-merge_development_20190801 2019-08-08 10:24:53 +02:00
psa_crypto_storage.h Switch storage functions over to psa_core_key_attributes_t 2019-07-31 14:15:27 +02:00
psa_its_file.c Add psa_trusted_storage_linux persistent storage support for v1.0.0 APIs 2019-07-23 17:30:37 +01:00
ripemd160.c
rsa.c
rsa_internal.c
sha1.c
sha256.c
sha512.c Re-roll main loop with SHA512_SMALLER 2019-07-17 13:16:54 +02:00
threading.c
timing.c timing: Remove redundant include file 2019-06-20 10:51:21 +01:00
version.c
version_features.c Merge pull request #178 from mpg/sha512-smaller 2019-09-04 10:19:28 +01:00
xtea.c