Paul Elliott 027b601690 Add tag check to cert algorithm check ... Add missing tag check for algorithm parameters when comparing the signature in the description part of the cert against the actual signature whilst loading a certificate. This was found by a certificate (created by fuzzing) that openssl would not verify, but mbedtls would. Regression test added (one of the client certs modified accordingly) Signed-off-by: Paul Elliott <paul.elliott@arm.com>		2020-12-02 11:03:58 +00:00
..
00README.md	Copy the changelog entry assembling script from development	2020-04-21 18:34:06 +02:00
bugfix_PR_2632.txt	Adapt ChangeLog	2020-07-10 18:00:25 +00:00
copyright.txt	Update copyright notices to use Linux Foundation guidance	2020-08-19 16:37:36 +02:00
e2k-support.txt	Backport e2k support to mbedtls-2.7	2020-08-23 00:39:15 +03:00
fix-build-netbsd.txt	Fix building on NetBSD 9.0	2020-08-17 07:31:06 +02:00
local-lucky13.txt	Clarify that the Lucky 13 fix is quite general	2020-08-26 10:58:02 +02:00
mpi_fill_random-rng_failure.txt	Handle random generator failure in mbedtls_mpi_fill_random()	2020-11-25 16:18:39 +01:00
netbsd-rand-arc4random_buf.txt	Log change as bugfix	2020-08-13 06:46:57 +02:00
protect-base-blinding.txt	Add ChangeLog entry for base blinding protection	2020-07-24 11:55:29 +02:00
stdout-macro.txt	Fix bug in redirection of unit test outputs	2020-08-23 22:38:51 +02:00
x509-add-tag-check-to-algorithm-params	Add tag check to cert algorithm check	2020-12-02 11:03:58 +00:00
x509parse_crl-empty_entry.txt	x509_crl_parse: fix 1-byte buffer overflow and entry->raw.tag	2020-08-12 12:50:42 +02:00
x509write_csr_heap_alloc.txt	Classify #3464 ChangeLog entry as Bugfix	2020-07-18 01:14:00 +00:00
zeroising_of_plaintext_buffer.txt	Add missing newline	2020-07-31 16:00:06 +02:00
zeroizations_of_sensitive_data_in_PKCS5_and_SHA.txt	Zeroize internal buffers and variables in MD hashes	2020-09-09 15:17:11 +02:00