ChangeLog - OpenGrok cross reference for /optee_os/lib/libmbedtls/mbedtls/ChangeLog

25      the adversary to conduct timing attacks and potentially recover the
60    * Fix a timing side channel in the implementation of PKCS#7 padding
62      ciphertexts to recover the plaintext through a timing oracle attack.
654    * Fix a timing side channel in private key RSA operations. This side channel
657      might have precise enough timing measurements to exploit this. It requires
841      has access to precise timing measurements.
844      timing. (Clang has been seen to do this.) Also introduce assembly
1071      Arm, so that these systems are no longer vulnerable to timing side-channel
1077      timing side-channel attacks. There is now an intrinsics-based AES-NI
1832      containing various functions meant to resist timing side channel attacks.
2127    * Alternative implementations of the AES, DHM, ECJPAKE, ECP, RSA and timing
2147      An adversary who is capable of very precise timing measurements could
2157    * Fix an issue where an adversary with access to precise enough timing
2219      timing module on Mbed OS. Fixes #4633.
2641      Diffie-Hellman. An adversary with precise enough timing and memory access
2738      f_rng argument. An attacker with access to precise enough timing and
2746      plaintext after repeated timing measurements under some conditions.
2838      precise enough timing and memory access information (typically an
3090    * Remove redundant include file in timing.c. Fixes #2640 reported by irwir.
3305    * Reduce the complexity of the timing tests. They were assuming more than the
3392    * Fix timing variations and memory access variations in RSA PKCS#1 v1.5
3403      a plaintext for RSA PKCS#1 v1.5 decryption but only observe the timing
3627      exploiting timing measurements. With DTLS, the attacker could perform
4017      sake of saving memory, but potentially leading to slight timing
4032    * New unit tests for timing. Improve the self-test to be more robust
4488    * Extended test coverage of special cases, and added new timing test suite.
4990    * Fix warnings from mingw64 in timing.c (found by kxjklele).
5005    * Remove potential sources of timing variations (some contributed by Pascal
5038    * Fix timing difference that could theoretically lead to a
5117    * Fix compile error in timing.c when POLARSSL_NET_C and POLARSSL_SELFTEST
5269    * Avoid potential timing leak in ecdsa_sign() by blinding modular division.
5305    * Ability to provide alternate timing implementation
5524    * RSA blinding on CRT operations to counter timing attacks
5543    * Fix warnings from mingw64 in timing.c (found by kxjklele).
5706    * RSA blinding on CRT operations to counter timing attacks
5778    * Removed further timing differences during SSL message decryption in
5780    * Removed timing differences due to bad padding from
5794    * Removed timing differences during SSL message decryption in
5942    * Removed timing differences during SSL message decryption in
5944    * Removed timing differences due to bad padding from
6323      padlock and timing code.
6441     * Fixed a bug introduced in xyssl-0.5/timing.c: hardclock
6476     * Updated timing.c for improved compatibility with i386
6481     * Updated timing.c to support ARM and MIPS arch