Manuel Pégourié-Gonnard a701d2f5e9 Fix bug in server parsing point formats extension ... There is only one length byte but for some reason we skipped two, resulting in reading one byte past the end of the extension. Fortunately, even if that extension is at the very end of the ClientHello, it can't be at the end of the buffer since the ClientHello length is at most SSL_MAX_CONTENT_LEN and the buffer has some more room after that for MAC and so on. So there is no buffer overread. Possible consequences are: - nothing, if the next byte is 0x00, which is a comment first byte for other extensions, which is why the bug remained unnoticed - using a point format that was not offered by the peer if next byte is 0x01. In that case the peer will reject our ServerKeyExchange message and the handshake will fail. - thinking that we don't have a common point format even if we do, which will cause us to immediately abort the handshake. None of these are a security issue. The same bug was fixed client-side in fd35af15 Backport of f7022d1		2015-09-17 11:46:56 +02:00
..
.gitignore	Minor gitginore fixes	2015-01-28 15:34:01 +00:00
aes.c	Rename website and repository	2015-03-06 13:17:10 +00:00
aesni.c	Rename website and repository	2015-03-06 13:17:10 +00:00
arc4.c	Rename website and repository	2015-03-06 13:17:10 +00:00
asn1parse.c	Rename website and repository	2015-03-06 13:17:10 +00:00
asn1write.c	Rename website and repository	2015-03-06 13:17:10 +00:00
base64.c	Rename website and repository	2015-03-06 13:17:10 +00:00
bignum.c	Fix missing NULL check in MPI	2015-04-29 17:02:01 +02:00
blowfish.c	Rename website and repository	2015-03-06 13:17:10 +00:00
camellia.c	Rename website and repository	2015-03-06 13:17:10 +00:00
ccm.c	Fix memleak with repeated [gc]cm_setkey()	2015-05-27 17:40:16 +02:00
certs.c	Rename website and repository	2015-03-06 13:17:10 +00:00
cipher.c	Add POLARSSL_DEPRECATED_{WARNING,REMOVED}	2015-03-23 14:11:11 +01:00
cipher_wrap.c	Rename website and repository	2015-03-06 13:17:10 +00:00
CMakeLists.txt	Prepare for 1.3.12 release	2015-08-11 13:22:10 +01:00
ctr_drbg.c	Add missing 'const' on selftest data	2015-03-11 09:13:42 +00:00
debug.c	Revert "Avoid formatting debug message uselessly"	2015-08-10 17:36:47 +02:00
des.c	Rename website and repository	2015-03-06 13:17:10 +00:00
dhm.c	accept PKCS#3 DH parameters with privateValueLength included	2015-04-15 13:27:13 +02:00
ecdh.c	Rename website and repository	2015-03-06 13:17:10 +00:00
ecdsa.c	Rename website and repository	2015-03-06 13:17:10 +00:00
ecp.c	Merge remote-tracking branch 'peterdettman/perf-ecp-double-jac' into mbedtls-1.3	2015-05-11 20:26:47 +02:00
ecp_curves.c	Rename website and repository	2015-03-06 13:17:10 +00:00
entropy.c	Serious bug fix in entropy.c	2015-06-01 12:28:29 +02:00
entropy_poll.c	Fix -Wshadow warnings	2015-08-31 11:07:51 +02:00
error.c	Typos and doc additions	2015-05-11 10:44:11 +01:00
gcm.c	Fix memleak with repeated [gc]cm_setkey()	2015-05-27 17:40:16 +02:00
havege.c	Rename website and repository	2015-03-06 13:17:10 +00:00
hmac_drbg.c	Fix use of deprecated function in the library	2015-03-20 18:23:52 +00:00
Makefile	Fix missing -static-libgcc when building dlls	2015-08-10 11:56:54 +02:00
md.c	Add POLARSSL_DEPRECATED_{WARNING,REMOVED}	2015-03-23 14:11:11 +01:00
md2.c	Fix warning with MD/SHA ALT implementation	2015-08-31 11:22:47 +02:00
md4.c	Fix warning with MD/SHA ALT implementation	2015-08-31 11:22:47 +02:00
md5.c	Fix warning with MD/SHA ALT implementation	2015-08-31 11:22:47 +02:00
md_wrap.c	Rename website and repository	2015-03-06 13:17:10 +00:00
memory_buffer_alloc.c	Rename website and repository	2015-03-06 13:17:10 +00:00
net.c	Rename website and repository	2015-03-06 13:17:10 +00:00
oid.c	Add support for X.520 uniqueIdentifier	2015-03-27 13:03:54 +01:00
padlock.c	Fix bug in Via Padlock support	2015-04-02 10:53:59 +01:00
pbkdf2.c	Add POLARSSL_DEPRECATED_{WARNING,REMOVED}	2015-03-23 14:11:11 +01:00
pem.c	Accept a trailing space at end of PEM lines	2015-08-10 12:01:50 +02:00
pk.c	Rename website and repository	2015-03-06 13:17:10 +00:00
pk_wrap.c	Rename website and repository	2015-03-06 13:17:10 +00:00
pkcs5.c	Add missing 'const' on selftest data	2015-03-11 09:13:42 +00:00
pkcs11.c	Rename website and repository	2015-03-06 13:17:10 +00:00
pkcs12.c	Rename website and repository	2015-03-06 13:17:10 +00:00
pkparse.c	Fix bug in pk_parse_key()	2015-04-15 11:21:24 +02:00
pkwrite.c	Rename website and repository	2015-03-06 13:17:10 +00:00
platform.c	Fix compile errors with NO_STD_FUNCTIONS	2015-06-03 10:20:33 +01:00
ripemd160.c	Rename website and repository	2015-03-06 13:17:10 +00:00
rsa.c	Add counter-measure against RSA-CRT attack	2015-09-09 12:23:47 +02:00
sha1.c	Fix warning with MD/SHA ALT implementation	2015-08-31 11:22:47 +02:00
sha256.c	Fix warning with MD/SHA ALT implementation	2015-08-31 11:22:47 +02:00
sha512.c	Fix warning with MD/SHA ALT implementation	2015-08-31 11:22:47 +02:00
ssl_cache.c	Rename website and repository	2015-03-06 13:17:10 +00:00
ssl_ciphersuites.c	Rename website and repository	2015-03-06 13:17:10 +00:00
ssl_cli.c	Fix possible client crash on API misuse	2015-09-03 10:44:32 +02:00
ssl_srv.c	Fix bug in server parsing point formats extension	2015-09-17 11:46:56 +02:00
ssl_tls.c	Fix handling of long PSK identities	2015-08-31 11:43:47 +02:00
threading.c	Rename website and repository	2015-03-06 13:17:10 +00:00
timing.c	Increase tolerance of timing selftest	2015-08-19 14:48:34 +02:00
version.c	Rename website and repository	2015-03-06 13:17:10 +00:00
version_features.c	Update generated file	2015-04-09 16:35:54 +02:00
x509.c	Typos and doc additions	2015-05-11 10:44:11 +01:00
x509_create.c	Rename website and repository	2015-03-06 13:17:10 +00:00
x509_crl.c	Fix undefined behaviour in x509	2015-04-30 11:21:18 +02:00
x509_crt.c	Skip to trusted certs early in the chain	2015-09-01 18:34:15 +02:00
x509_csr.c	Rename website and repository	2015-03-06 13:17:10 +00:00
x509write_crt.c	Rename website and repository	2015-03-06 13:17:10 +00:00
x509write_csr.c	Rename website and repository	2015-03-06 13:17:10 +00:00
xtea.c	Rename website and repository	2015-03-06 13:17:10 +00:00