ยซ Changelog History


mbedTLS v1.2.6 Release Notes

Release Date: 2013-03-11 // about 11 years ago

  • ๐Ÿ›  Bugfix

    • Fixed memory leak in ssl_free() and ssl_reset() for active session
    • Corrected GCM counter incrementation to use only 32-bits instead of 128-bits (found by Yawning Angel)
    • Fixes for 64-bit compilation with MS Visual Studio
    • Fixed net_bind() for specified IP addresses on little endian systems
    • Fixed assembly code for ARM (Thumb and regular) for some compilers

    ๐Ÿ”„ Changes

    • Internally split up rsa_pkcs1_encrypt(), rsa_pkcs1_decrypt(), rsa_pkcs1_sign() and rsa_pkcs1_verify() to separate PKCS#1 v1.5 and PKCS#1 v2.1 functions
    • Added support for custom labels when using rsa_rsaes_oaep_encrypt() or rsa_rsaes_oaep_decrypt()
    • Re-added handling for SSLv2 Client Hello when the define POLARSSL_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO is set
    • The SSL session cache module (ssl_cache) now also retains peer_cert information (not the entire chain)

    ๐Ÿ”’ Security

    • Removed further timing differences during SSL message decryption in ssl_decrypt_buf()
    • Removed timing differences due to bad padding from rsa_rsaes_pkcs1_v15_decrypt() and rsa_pkcs1_decrypt() for PKCS#1 v1.5 operations