mbedTLS v1.2.6 Release Notes
Release Date: 2013-03-11 // about 11 years ago-
๐ Bugfix
- Fixed memory leak in ssl_free() and ssl_reset() for active session
- Corrected GCM counter incrementation to use only 32-bits instead of 128-bits (found by Yawning Angel)
- Fixes for 64-bit compilation with MS Visual Studio
- Fixed net_bind() for specified IP addresses on little endian systems
- Fixed assembly code for ARM (Thumb and regular) for some compilers
๐ Changes
- Internally split up rsa_pkcs1_encrypt(), rsa_pkcs1_decrypt(), rsa_pkcs1_sign() and rsa_pkcs1_verify() to separate PKCS#1 v1.5 and PKCS#1 v2.1 functions
- Added support for custom labels when using rsa_rsaes_oaep_encrypt() or rsa_rsaes_oaep_decrypt()
- Re-added handling for SSLv2 Client Hello when the define POLARSSL_SSL_SRV_SUPPORT_SSLV2_CLIENT_HELLO is set
- The SSL session cache module (ssl_cache) now also retains peer_cert information (not the entire chain)
๐ Security
- Removed further timing differences during SSL message decryption in ssl_decrypt_buf()
- Removed timing differences due to bad padding from rsa_rsaes_pkcs1_v15_decrypt() and rsa_pkcs1_decrypt() for PKCS#1 v1.5 operations